Bump ch.qos.logback:logback-core from 1.5.27 to 1.5.32 in /test/fixtures/hdfs-fixture by dependabot[bot] · Pull Request #20637 · opensearch-project/OpenSearch

dependabot · 2026-02-16T14:52:06Z

Bumps ch.qos.logback:logback-core from 1.5.27 to 1.5.32.

Release notes

Sourced from ch.qos.logback:logback-core's releases.

Logback 1.5.32

2026-02-16 Release of logback version 1.5.32

• In DefaultProcessor, fixed incorrect check for dependencies contained within a parent model. Previous only the direct children were scanned. This fixes logback-access/issues/34.

• A bit-wise identical binary of this version can be reproduced by building from source code at commit e807335a67535b4eacce94e942c0bcb649665d93 associated with the tag v_1.5.32. Release built using Java "21" 2023-10-17 LTS build 21.0.1.+12-LTS-29 under Linux Debian 11.6.

Logback 1.5.31

2026-02-14 Release of logback version 1.5.31

• Fixed missing META-INF/services directory in logback-classic.jar. This issue rendered logback-classic version 1.5.30 unusable with SLF4J.

• A bit-wise identical binary of this version can be reproduced by building from source code at commit 168e42f9f9a18a3ffdf31eb2bfe80a71e33ecd8b associated with the tag v_1.5.31. Release built using Java "21" 2023-10-17 LTS build 21.0.1.+12-LTS-29 under Linux Debian 11.6.

Logback 1.5.30

2026-02-14 Release of logback version 1.5.30

• In this version, logback-classic.jar was missing the META-INF/services directory, making it unusable with SLF4J. Version 1.5.31 (released later on the same day) fixes this issue.

• Fix scanning issue when an included file becomes available at a later time. This problem was reported in issues/1021 by Sergey Nazarov.

• Standardized code for version checking across modules.

• A bit-wise identical binary of this version can be reproduced by building from source code at commit 44164f10ca3fb44ce0e68519f13564b87e3aca61 associated with the tag v_1.5.30. Release built using Java "21" 2023-10-17 LTS build 21.0.1.+12-LTS-29 under Linux Debian 11.6.

Logback 1.5.29

2026-02-09 Release of logback version 1.5.29

• In response to issues/1017, appender names and appender references are once again subject to variable substitution, reverting the change introduced in version 1.5.28.

Logback 1.5.28

2026-02-06 Release of logback version 1.5.28

• Appender names or appender references are no longer subject to variable substitution.

• Fixed issue with configurations with conditionals encompassing appenders. This was reported in issues/1016 reported by Sergey Sazonov.

• The element now admits a 'scan' attribute which can be used to override the 'scan' attribute in the element.

• Fixed NullPointerException thrown by VersionUtil.checkForVersionEquality method occurring with GraalVM Native Images. This issue was reported in issues/1014.

• A bit-wise identical binary of this version can be reproduced by building from source code at commit e7a1855ab562bb102333f754603ff89359bf3cfc associated with the tag v_1.5.28. Release built using Java "21" 2023-10-17 LTS build 21.0.1.+12-LTS-29 under Linux Debian 11.6.

Commits

e807335 prepare release 1.5.32
dc35d55 fix logback-access/issues/34 by checking if dependency is a sub-model of the ...
8e32278 added simple test for appender definitiob via file inclusion
834dbed start work on 1.5.32-SNAPSHOT
168e42f add test to check that Logback SLF4J provider can be activated
ed45362 prepare release 1.5.31
609dae7 fix missing META-INF directory
7739739 start work on 1.5.31-SNAPSHOT
44164f1 prepare release 1.5.30
9874f06 test for top-file as a resource, introduced new module logback-classic-misc
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [ch.qos.logback:logback-core](https://github.com/qos-ch/logback) from 1.5.27 to 1.5.32. - [Release notes](https://github.com/qos-ch/logback/releases) - [Commits](qos-ch/logback@v_1.5.27...v_1.5.32) --- updated-dependencies: - dependency-name: ch.qos.logback:logback-core dependency-version: 1.5.32 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

coderabbitai · 2026-02-16T14:52:36Z

Important

Review skipped

Auto incremental reviews are disabled on this repository.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Use the checkbox below for a quick retry:

🔍 Trigger review

📝 Walkthrough

Walkthrough

Updates Logback dependency versions from 1.5.27 to 1.5.32 in the HDFS test fixture build configuration. Only version coordinates are modified with no changes to control flow or dependencies.

Changes

Cohort / File(s)	Summary
Logback Dependency Version Update `test/fixtures/hdfs-fixture/build.gradle`	Bumped ch.qos.logback:logback-core and ch.qos.logback:logback-classic from 1.5.27 to 1.5.32.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

Possibly related PRs

Bump ch.qos.logback:logback-core from 1.5.20 to 1.5.23 in /test/fixtures/hdfs-fixture #20303: Updates the same Logback dependency versions in the identical test fixture build file.
Bump ch.qos.logback:logback-core from 1.5.24 to 1.5.27 in /test/fixtures/hdfs-fixture #20525: Previously bumped the same Logback dependencies to 1.5.27; this PR further updates them to 1.5.32.
Bump ch.qos.logback:logback-classic from 1.5.23 to 1.5.24 in /test/fixtures/hdfs-fixture #20407: Modifies the same ch.qos.logback dependency declarations in test/fixtures/hdfs-fixture/build.gradle.

🚥 Pre-merge checks | ✅ 3 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Description check	⚠️ Warning	The description lacks required template sections like 'Description', 'Related Issues', and 'Check List'; it primarily contains auto-generated Dependabot content without addressing the template requirements.	Add a 'Description' section explaining the change, populate 'Related Issues' if applicable, and complete the 'Check List' with relevant checkboxes marked.

✅ Passed checks (3 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title accurately describes the main change: bumping logback-core dependency from 1.5.27 to 1.5.32 in the specified directory, which matches the raw summary.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Merge Conflict Detection	✅ Passed	✅ No merge conflicts detected when merging into `main`

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing touches

🧪 Generate unit tests (beta)

Create PR with unit tests
Post copyable unit tests in a comment
Commit unit tests in branch dependabot/gradle/test/fixtures/hdfs-fixture/ch.qos.logback-logback-core-1.5.32

Tip

Issue Planner is now in beta. Read the docs and try it out! Share your feedback on Discord.

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

Signed-off-by: dependabot[bot] <support@github.com>

coderabbitai

Actionable comments posted: 1

🤖 Fix all issues with AI agents

In `@test/fixtures/hdfs-fixture/build.gradle`:
- Around line 82-83: The build.gradle change adds dependencies
"ch.qos.logback:logback-core:1.5.32" and "ch.qos.logback:logback-classic:1.5.32"
which are not confirmed on Maven Central; before merging either verify those
exact coordinates are published to Maven Central or point Gradle to a repository
that hosts them (or revert to the last known-good logback version). Update the
Gradle repositories to include a confirmed host if needed (or change the
dependency versions back) and confirm a successful Gradle resolution/build for
the symbols "ch.qos.logback:logback-core:1.5.32" and
"ch.qos.logback:logback-classic:1.5.32" before merging.

📜 Review details

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 4b02d64 and 8aa2214.

📒 Files selected for processing (1)

test/fixtures/hdfs-fixture/build.gradle

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (21)

GitHub Check: gradle-check
GitHub Check: assemble (25, ubuntu-24.04-arm)
GitHub Check: assemble (25, windows-latest)
GitHub Check: assemble (25, ubuntu-latest)
GitHub Check: assemble (21, ubuntu-latest)
GitHub Check: assemble (21, windows-latest)
GitHub Check: assemble (21, ubuntu-24.04-arm)
GitHub Check: Analyze (java)
GitHub Check: detect-breaking-change
GitHub Check: precommit (25, ubuntu-latest)
GitHub Check: dependabot
GitHub Check: precommit (21, macos-15)
GitHub Check: precommit (25, macos-15-intel)
GitHub Check: precommit (21, windows-2025, true)
GitHub Check: precommit (25, macos-15)
GitHub Check: precommit (25, ubuntu-24.04-arm)
GitHub Check: precommit (21, ubuntu-24.04-arm)
GitHub Check: precommit (21, ubuntu-latest)
GitHub Check: precommit (25, windows-latest)
GitHub Check: precommit (21, macos-15-intel)
GitHub Check: precommit (21, windows-latest)

test/fixtures/hdfs-fixture/build.gradle

github-actions · 2026-02-16T16:09:00Z

❌ Gradle check result for f45771c: FAILURE