Commit Graph

4063 Commits

Author SHA1 Message Date
Gabriele C
0ac1854a52 Implement allowPublicKeyRetrieval option in mysql datasource 2022-07-18 13:03:05 +02:00
Gabriele C
d07cb90858 Fix build under jdk 9+ 2022-07-18 13:01:51 +02:00
Gabriele C
a67a4bb72b Don't let unrestricted usernames bypass the locked ip-username check 2022-07-17 18:40:11 +02:00
Gabriele C
64c45c43df Update dependencies 2022-07-17 18:36:06 +02:00
Lê Huy Mạnh Tân
f1f5434b4b
Finished translating messages_vn.yml (#2569)
Fixed some typo's and finished translating
2022-07-16 18:36:10 +02:00
Caro
7530528432
Add test for AuthMeApi.getLastLoginMillis (#2562) 2022-07-16 18:35:42 +02:00
dependabot[bot]
9d9e039cac
Bump checker-qual from 3.22.1 to 3.23.0 (#2578)
Bumps [checker-qual](https://github.com/typetools/checker-framework) from 3.22.1 to 3.23.0.
- [Release notes](https://github.com/typetools/checker-framework/releases)
- [Changelog](https://github.com/typetools/checker-framework/blob/master/docs/CHANGELOG.md)
- [Commits](https://github.com/typetools/checker-framework/compare/checker-framework-3.22.1...checker-framework-3.23.0)

---
updated-dependencies:
- dependency-name: org.checkerframework:checker-qual
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-16 18:35:09 +02:00
games647
dbf9afbf82
Run workflows for pull requests too to verify the test results (#2574) 2022-07-16 18:35:03 +02:00
dependabot[bot]
291790178d
Bump mariadb-java-client from 3.0.4 to 3.0.6 (#2570)
Bumps [mariadb-java-client](https://github.com/mariadb-corporation/mariadb-connector-j) from 3.0.4 to 3.0.6.
- [Release notes](https://github.com/mariadb-corporation/mariadb-connector-j/releases)
- [Changelog](https://github.com/mariadb-corporation/mariadb-connector-j/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mariadb-corporation/mariadb-connector-j/compare/3.0.4...3.0.6)

---
updated-dependencies:
- dependency-name: org.mariadb.jdbc:mariadb-java-client
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-16 18:34:50 +02:00
dependabot[bot]
a111d6799e
Bump h2 from 2.1.212 to 2.1.214 (#2563)
Bumps [h2](https://github.com/h2database/h2database) from 2.1.212 to 2.1.214.
- [Release notes](https://github.com/h2database/h2database/releases)
- [Commits](https://github.com/h2database/h2database/compare/version-2.1.212...version-2.1.214)

---
updated-dependencies:
- dependency-name: com.h2database:h2
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-16 18:34:43 +02:00
dependabot[bot]
a14b8bd60e
Bump maven-enforcer-plugin from 3.0.0 to 3.1.0 (#2561)
Bumps [maven-enforcer-plugin](https://github.com/apache/maven-enforcer) from 3.0.0 to 3.1.0.
- [Release notes](https://github.com/apache/maven-enforcer/releases)
- [Commits](https://github.com/apache/maven-enforcer/compare/enforcer-3.0.0...enforcer-3.1.0)

---
updated-dependencies:
- dependency-name: org.apache.maven.plugins:maven-enforcer-plugin
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-16 18:34:35 +02:00
dependabot[bot]
18613cb3cc
Bump postgresql from 42.3.6 to 42.4.0 (#2554)
Bumps [postgresql](https://github.com/pgjdbc/pgjdbc) from 42.3.6 to 42.4.0.
- [Release notes](https://github.com/pgjdbc/pgjdbc/releases)
- [Changelog](https://github.com/pgjdbc/pgjdbc/blob/master/CHANGELOG.md)
- [Commits](https://github.com/pgjdbc/pgjdbc/compare/REL42.3.6...REL42.4.0)

---
updated-dependencies:
- dependency-name: org.postgresql:postgresql
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-16 18:34:25 +02:00
games647
0b6c92949c
Add test for the warning if the BungeeCord is enabled 2022-07-06 15:27:49 +02:00
games647
32d92e13c5
[Security] Disable BungeeCord hook if the proxy is disable in Spigot (#2572 from @Ghost-chu)
If Spigot is running without a proxy, an incoming BungeeCord can also originate from a malicious player. This happens, because there is no proxy preventing this message. There appears to be no method to check if this message comes from a trusted source from the Bukkit side.

This implementation checks if BungeeCord support is enabled in Spigot. This means that we notify them that we actually expect a proxy enabled configuration for this feature. This solves the issue, where the hook was enabled, because the server was earlier configured with proxies in mind, but they are no longer used. 

**Nevertheless** this doesn't fully solve the issue, because in misconfigured setups, where the Spigot server is publicly accessible, it's still possible. However this is always a recommended configuration step.

Alternative solutions were rejected like:
1) Check on incoming BungeeCord message, if we received BungeeCord forwarding data during login
This data can be fully faked by the player too.
2) Check the connection properties if the appearing proxy is local.
While this is possible, there instance that the proxy is not on the same network although it's legitimate. Although it could be possible to introduce this with a configuration option, but it would increase the complexity for users.

Related #2559
Related #2571
2022-07-06 15:08:08 +02:00
Ghost_chu
25cf85a7dc
Execute simple check before enable BungeeCord hook.
This commit added a simple check that check spigot.yml -> settings.bungeecord status by using AuthMe built-in method bukkitService.isBungeeCordConfiguredForSpigot() and disable hook if it enabled and not behind an BungeeCord proxy.

Register plugin message channel without BungeeCord proxy will allow attacker send fake login payload to treat AuthMe login with Plugin Message for him and bypass the user login.

This commit also updated SettingsWarner for new behavior.
2022-07-06 15:39:06 +08:00
dependabot[bot]
3892bb6923
Bump mockito-core from 4.4.0 to 4.6.1 (#2551)
Bumps [mockito-core](https://github.com/mockito/mockito) from 4.4.0 to 4.6.1.
- [Release notes](https://github.com/mockito/mockito/releases)
- [Commits](https://github.com/mockito/mockito/compare/v4.4.0...v4.6.1)

---
updated-dependencies:
- dependency-name: org.mockito:mockito-core
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-06-04 02:13:01 +02:00
dependabot[bot]
8d4942731d
Bump checker-qual from 3.21.4 to 3.22.1 (#2549)
Bumps [checker-qual](https://github.com/typetools/checker-framework) from 3.21.4 to 3.22.1.
- [Release notes](https://github.com/typetools/checker-framework/releases)
- [Changelog](https://github.com/typetools/checker-framework/blob/checker-framework-3.22.1/docs/CHANGELOG.md)
- [Commits](https://github.com/typetools/checker-framework/compare/checker-framework-3.21.4...checker-framework-3.22.1)

---
updated-dependencies:
- dependency-name: org.checkerframework:checker-qual
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-06-04 02:12:44 +02:00
dependabot[bot]
507d5ed276
Bump postgresql from 42.3.3 to 42.3.6 (#2547)
Bumps [postgresql](https://github.com/pgjdbc/pgjdbc) from 42.3.3 to 42.3.6.
- [Release notes](https://github.com/pgjdbc/pgjdbc/releases)
- [Changelog](https://github.com/pgjdbc/pgjdbc/blob/master/CHANGELOG.md)
- [Commits](https://github.com/pgjdbc/pgjdbc/compare/REL42.3.3...REL42.3.6)

---
updated-dependencies:
- dependency-name: org.postgresql:postgresql
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-06-04 02:12:26 +02:00
dependabot[bot]
84955599de
Bump maven-site-plugin from 3.11.0 to 3.12.0 (#2537)
Bumps [maven-site-plugin](https://github.com/apache/maven-site-plugin) from 3.11.0 to 3.12.0.
- [Release notes](https://github.com/apache/maven-site-plugin/releases)
- [Commits](https://github.com/apache/maven-site-plugin/compare/maven-site-plugin-3.11.0...maven-site-plugin-3.12.0)

---
updated-dependencies:
- dependency-name: org.apache.maven.plugins:maven-site-plugin
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-06-04 02:11:43 +02:00
dependabot[bot]
aca50ec87a
Bump maven-javadoc-plugin from 3.3.1 to 3.4.0 (#2536)
Bumps [maven-javadoc-plugin](https://github.com/apache/maven-javadoc-plugin) from 3.3.1 to 3.4.0.
- [Release notes](https://github.com/apache/maven-javadoc-plugin/releases)
- [Commits](https://github.com/apache/maven-javadoc-plugin/compare/maven-javadoc-plugin-3.3.1...maven-javadoc-plugin-3.4.0)

---
updated-dependencies:
- dependency-name: org.apache.maven.plugins:maven-javadoc-plugin
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-06-04 02:11:34 +02:00
dependabot[bot]
ff3f025133
Bump jacoco-maven-plugin from 0.8.7 to 0.8.8 (#2534)
Bumps [jacoco-maven-plugin](https://github.com/jacoco/jacoco) from 0.8.7 to 0.8.8.
- [Release notes](https://github.com/jacoco/jacoco/releases)
- [Commits](https://github.com/jacoco/jacoco/compare/v0.8.7...v0.8.8)

---
updated-dependencies:
- dependency-name: org.jacoco:jacoco-maven-plugin
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-06-04 02:11:27 +02:00
dependabot[bot]
54bdba1abd
Bump maven-shade-plugin from 3.2.4 to 3.3.0 (#2531)
Bumps [maven-shade-plugin](https://github.com/apache/maven-shade-plugin) from 3.2.4 to 3.3.0.
- [Release notes](https://github.com/apache/maven-shade-plugin/releases)
- [Commits](https://github.com/apache/maven-shade-plugin/compare/maven-shade-plugin-3.2.4...maven-shade-plugin-3.3.0)

---
updated-dependencies:
- dependency-name: org.apache.maven.plugins:maven-shade-plugin
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-06-04 02:11:08 +02:00
dependabot[bot]
0e6cb322de
Bump h2 from 2.1.210 to 2.1.212 (#2530)
Bumps [h2](https://github.com/h2database/h2database) from 2.1.210 to 2.1.212.
- [Release notes](https://github.com/h2database/h2database/releases)
- [Commits](https://github.com/h2database/h2database/compare/version-2.1.210...version-2.1.212)

---
updated-dependencies:
- dependency-name: com.h2database:h2
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-06-04 02:10:55 +02:00
dependabot[bot]
33d1ef1c12
Bump ProtocolLib from 4.7.0 to 4.8.0 (#2529)
Bumps [ProtocolLib](https://github.com/dmulloy2/ProtocolLib) from 4.7.0 to 4.8.0.
- [Release notes](https://github.com/dmulloy2/ProtocolLib/releases)
- [Commits](https://github.com/dmulloy2/ProtocolLib/compare/4.7.0...4.8.0)

---
updated-dependencies:
- dependency-name: com.comphenix.protocol:ProtocolLib
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-06-04 02:10:41 +02:00
dependabot[bot]
1ac7849fe3
Bump maven-clean-plugin from 3.1.0 to 3.2.0 (#2528)
Bumps [maven-clean-plugin](https://github.com/apache/maven-clean-plugin) from 3.1.0 to 3.2.0.
- [Release notes](https://github.com/apache/maven-clean-plugin/releases)
- [Commits](https://github.com/apache/maven-clean-plugin/compare/maven-clean-plugin-3.1.0...maven-clean-plugin-3.2.0)

---
updated-dependencies:
- dependency-name: org.apache.maven.plugins:maven-clean-plugin
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-10 21:08:55 +02:00
Gabriele C
35efc054c7
Ignore HikariCP in dependabot
We need to maintain java 8 support
2022-04-10 20:56:17 +02:00
dependabot[bot]
a4d13552c0
Bump maven-jar-plugin from 3.2.0 to 3.2.2 (#2485)
Bumps [maven-jar-plugin](https://github.com/apache/maven-jar-plugin) from 3.2.0 to 3.2.2.
- [Release notes](https://github.com/apache/maven-jar-plugin/releases)
- [Commits](https://github.com/apache/maven-jar-plugin/compare/maven-jar-plugin-3.2.0...maven-jar-plugin-3.2.2)

---
updated-dependencies:
- dependency-name: org.apache.maven.plugins:maven-jar-plugin
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-10 20:36:11 +02:00
dependabot[bot]
f86982a33c
Bump slf4j-simple from 1.7.32 to 1.7.36 (#2501)
Bumps [slf4j-simple](https://github.com/qos-ch/slf4j) from 1.7.32 to 1.7.36.
- [Release notes](https://github.com/qos-ch/slf4j/releases)
- [Commits](https://github.com/qos-ch/slf4j/compare/v_1.7.32...v_1.7.36)

---
updated-dependencies:
- dependency-name: org.slf4j:slf4j-simple
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-10 20:36:01 +02:00
dependabot[bot]
e8f2bfaf5f
Bump api from 5.3 to 5.4 (#2506)
Bumps [api](https://github.com/LuckPerms/LuckPerms) from 5.3 to 5.4.
- [Release notes](https://github.com/LuckPerms/LuckPerms/releases)
- [Commits](https://github.com/LuckPerms/LuckPerms/compare/v5.3...v5.4)

---
updated-dependencies:
- dependency-name: net.luckperms:api
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-10 20:35:39 +02:00
dependabot[bot]
c0c5d93a48
Bump postgresql from 42.3.1 to 42.3.3 (#2507)
Bumps [postgresql](https://github.com/pgjdbc/pgjdbc) from 42.3.1 to 42.3.3.
- [Release notes](https://github.com/pgjdbc/pgjdbc/releases)
- [Changelog](https://github.com/pgjdbc/pgjdbc/blob/master/CHANGELOG.md)
- [Commits](https://github.com/pgjdbc/pgjdbc/compare/REL42.3.1...REL42.3.3)

---
updated-dependencies:
- dependency-name: org.postgresql:postgresql
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-10 20:34:52 +02:00
dependabot[bot]
6acf26f973
Bump maven-site-plugin from 3.9.1 to 3.11.0 (#2512)
Bumps [maven-site-plugin](https://github.com/apache/maven-site-plugin) from 3.9.1 to 3.11.0.
- [Release notes](https://github.com/apache/maven-site-plugin/releases)
- [Commits](https://github.com/apache/maven-site-plugin/compare/maven-site-plugin-3.9.1...maven-site-plugin-3.11.0)

---
updated-dependencies:
- dependency-name: org.apache.maven.plugins:maven-site-plugin
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-10 20:34:24 +02:00
dependabot[bot]
72bd204597
Bump maven-compiler-plugin from 3.8.1 to 3.10.1 (#2518)
Bumps [maven-compiler-plugin](https://github.com/apache/maven-compiler-plugin) from 3.8.1 to 3.10.1.
- [Release notes](https://github.com/apache/maven-compiler-plugin/releases)
- [Commits](https://github.com/apache/maven-compiler-plugin/compare/maven-compiler-plugin-3.8.1...maven-compiler-plugin-3.10.1)

---
updated-dependencies:
- dependency-name: org.apache.maven.plugins:maven-compiler-plugin
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-10 20:34:11 +02:00
dependabot[bot]
f2bcd82160
Bump mockito-core from 4.1.0 to 4.4.0 (#2520)
Bumps [mockito-core](https://github.com/mockito/mockito) from 4.1.0 to 4.4.0.
- [Release notes](https://github.com/mockito/mockito/releases)
- [Commits](https://github.com/mockito/mockito/compare/v4.1.0...v4.4.0)

---
updated-dependencies:
- dependency-name: org.mockito:mockito-core
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-10 20:34:02 +02:00
dependabot[bot]
db72276b92
Bump mariadb-java-client from 2.7.4 to 3.0.4 (#2523)
Bumps [mariadb-java-client](https://github.com/mariadb-corporation/mariadb-connector-j) from 2.7.4 to 3.0.4.
- [Release notes](https://github.com/mariadb-corporation/mariadb-connector-j/releases)
- [Changelog](https://github.com/mariadb-corporation/mariadb-connector-j/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mariadb-corporation/mariadb-connector-j/compare/2.7.4...3.0.4)

---
updated-dependencies:
- dependency-name: org.mariadb.jdbc:mariadb-java-client
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-10 20:33:55 +02:00
dependabot[bot]
cd1aa0133a
Bump checker-qual from 3.20.0 to 3.21.4 (#2526)
Bumps [checker-qual](https://github.com/typetools/checker-framework) from 3.20.0 to 3.21.4.
- [Release notes](https://github.com/typetools/checker-framework/releases)
- [Changelog](https://github.com/typetools/checker-framework/blob/master/docs/CHANGELOG.md)
- [Commits](https://github.com/typetools/checker-framework/compare/checker-framework-3.20.0...checker-framework-3.21.4)

---
updated-dependencies:
- dependency-name: org.checkerframework:checker-qual
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-10 20:33:48 +02:00
Gabriele C
d166c951fa
Use java version matrix in github actions 2022-04-10 20:25:31 +02:00
Gabriele C
c32d090812
Fix the TravisCI pipeline (#2527)
* Fix maven version

* Attempt to fix travis Maven version

* Attempt to fix mvn and java version on travis CI

* Attempt to fix travis builds

* Update .travis.yml

* Update .travis.yml

* Update .travis.yml
2022-04-10 19:57:53 +02:00
Gabriele C
677a3f5dd6
Fix travis builds 2022-04-10 18:46:28 +02:00
ItsLukassz
5c83f5e261
Finished translating messages_lt.yml (#2498)
Fixed some typo's and finished translating
2022-02-05 14:07:32 +01:00
ljacqu
571c6106a7 Fix some Checkstyle issues
- Remove unused imports
- Fix issues relating to line length / whitespace
- Update Checkstyle suppression in matcher classes with new check name
2022-01-30 10:32:49 +01:00
ljacqu
97dd9964f3 Fix Checkstyle configuration to be compatible with CodeClimate's version
- CodeClimate now uses Checkstyle 9.2, in which 'scope' was removed for the JavadocMethod check
2022-01-30 10:20:08 +01:00
ljacqu
6bff48467b Fix SQL integration test to auto-increment IDs properly 2022-01-30 09:40:08 +01:00
dependabot[bot]
98cad0e1b4 Bump h2 from 1.4.200 to 2.1.210
Bumps [h2](https://github.com/h2database/h2database) from 1.4.200 to 2.1.210.
- [Release notes](https://github.com/h2database/h2database/releases)
- [Commits](https://github.com/h2database/h2database/compare/version-1.4.200...version-2.1.210)

---
updated-dependencies:
- dependency-name: com.h2database:h2
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-01-30 09:40:08 +01:00
ljacqu
d5b6d1584c Initialize logger in MySqlDefaultChangerTest 2022-01-06 00:32:43 +01:00
Gabriele C
b3145acf60 Update config.md 2021-12-25 15:40:40 +01:00
Gabriele C
5a3e585883
Fix #2467 2021-12-25 15:38:07 +01:00
dependabot[bot]
f44e3928b4
Bump checker-qual from 3.19.0 to 3.20.0 (#2458)
Bumps [checker-qual](https://github.com/typetools/checker-framework) from 3.19.0 to 3.20.0.
- [Release notes](https://github.com/typetools/checker-framework/releases)
- [Changelog](https://github.com/typetools/checker-framework/blob/master/docs/CHANGELOG.md)
- [Commits](https://github.com/typetools/checker-framework/compare/checker-framework-3.19.0...checker-framework-3.20.0)

---
updated-dependencies:
- dependency-name: org.checkerframework:checker-qual
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-12-12 16:27:05 +01:00
Gabriele C
b74496fb15 Update to Spigot 1.18 api
+ Add legacy jar for 1.17 and previous
2021-11-28 18:17:10 +01:00
Gabriele C
c4534e9546 Merge branch 'master' of https://github.com/AuthMe/AuthMeReloaded 2021-11-28 17:01:58 +01:00
Gabriele C
70db362e2a Add legacyHashes hint to the LoginSecurity converter #2449 2021-11-28 17:01:35 +01:00