Bump the dependencies group across 1 directory with 12 updates #146

dependabot · 2025-01-15T18:46:32Z

Bumps the dependencies group with 11 updates in the / directory:

Package	From	To
ch.qos.logback:logback-classic	`1.5.12`	`1.5.16`
com.fasterxml.jackson.core:jackson-annotations	`2.18.1`	`2.18.2`
com.fasterxml.jackson.core:jackson-core	`2.18.1`	`2.18.2`
com.fasterxml.jackson.dataformat:jackson-dataformat-xml	`2.18.1`	`2.18.2`
commons-io:commons-io	`2.17.0`	`2.18.0`
org.junit.jupiter:junit-jupiter	`5.11.3`	`5.11.4`
org.mockito:mockito-core	`5.14.2`	`5.15.2`
org.apache.maven.plugins:maven-surefire-plugin	`3.5.1`	`3.5.2`
org.owasp:dependency-check-maven	`11.1.0`	`12.0.0`
com.diffplug.spotless:spotless-maven-plugin	`2.43.0`	`2.44.2`
org.apache.maven.plugins:maven-javadoc-plugin	`3.10.1`	`3.11.2`

Updates ch.qos.logback:logback-classic from 1.5.12 to 1.5.16

Commits

74c9ebd prepare release 1.5.16
9308a58 javadocs structure changed
8935470 adapt test to SLF4J version 2.0.16
cb60369 addded StubEventEvaluator as default class for evaluator element so as to dir...
1da2f17 bump jxr version
5bde644 bump slf4j version to 2.0.16
aa2ebae remove stax related code
80db86b fix issues/860
a8a2303 start work on 1.5.16-SNAPSHOT
bf14c2c minor javadoc update
Additional commits viewable in compare view

Updates com.fasterxml.jackson.core:jackson-annotations from 2.18.1 to 2.18.2

Commits

See full diff in compare view

Updates com.fasterxml.jackson.core:jackson-core from 2.18.1 to 2.18.2

Commits

fc1bc93 [maven-release-plugin] prepare release jackson-core-2.18.2
44f793e Prep for 2.18.2
715ec43 Disable scorecard WF from 2.18
88b4c94 fix issue with incorrect matches for some surrogate chars (#1360)
cc70bc2 Minor warnings removal
f5ed9e7 Warnings removal
93335d4 Merge branch '2.17' into 2.18
3ec9738 Back to snapshot dep
88fc49b [maven-release-plugin] prepare for next development iteration
44d1e78 [maven-release-plugin] prepare release jackson-core-2.17.3
Additional commits viewable in compare view

Updates com.fasterxml.jackson.dataformat:jackson-dataformat-xml from 2.18.1 to 2.18.2

Commits

310241b [maven-release-plugin] prepare release jackson-dataformat-xml-2.18.2
21dfc4f minor warnings removal
06d28aa Prep for 2.18.2 release
0a7cf7b Merge test classes
7e35baa Add test for #682 (passing with jackson-databind fix) (#685)
5b78983 Fix #678: allow configuring custom SerializerFactory via JacksonXmlModule (#680)
180a75b Merge branch '2.17' into 2.18
b19f1ca Back to snapshot dep
acd25dc [maven-release-plugin] prepare for next development iteration
2ddb970 [maven-release-plugin] prepare release jackson-dataformat-xml-2.17.3
Additional commits viewable in compare view

Updates com.fasterxml.jackson.core:jackson-core from 2.18.1 to 2.18.2

Commits

fc1bc93 [maven-release-plugin] prepare release jackson-core-2.18.2
44f793e Prep for 2.18.2
715ec43 Disable scorecard WF from 2.18
88b4c94 fix issue with incorrect matches for some surrogate chars (#1360)
cc70bc2 Minor warnings removal
f5ed9e7 Warnings removal
93335d4 Merge branch '2.17' into 2.18
3ec9738 Back to snapshot dep
88fc49b [maven-release-plugin] prepare for next development iteration
44d1e78 [maven-release-plugin] prepare release jackson-core-2.17.3
Additional commits viewable in compare view

Updates com.fasterxml.jackson.core:jackson-databind from 2.18.1 to 2.18.2

Commits

See full diff in compare view

Updates com.fasterxml.jackson.dataformat:jackson-dataformat-xml from 2.18.1 to 2.18.2

Commits

310241b [maven-release-plugin] prepare release jackson-dataformat-xml-2.18.2
21dfc4f minor warnings removal
06d28aa Prep for 2.18.2 release
0a7cf7b Merge test classes
7e35baa Add test for #682 (passing with jackson-databind fix) (#685)
5b78983 Fix #678: allow configuring custom SerializerFactory via JacksonXmlModule (#680)
180a75b Merge branch '2.17' into 2.18
b19f1ca Back to snapshot dep
acd25dc [maven-release-plugin] prepare for next development iteration
2ddb970 [maven-release-plugin] prepare release jackson-dataformat-xml-2.17.3
Additional commits viewable in compare view

Updates commons-io:commons-io from 2.17.0 to 2.18.0

Updates org.junit.jupiter:junit-jupiter from 5.11.3 to 5.11.4

Release notes

Sourced from org.junit.jupiter:junit-jupiter's releases.

JUnit 5.11.4 = Platform 1.11.4 + Jupiter 5.11.4 + Vintage 5.11.4

See Release Notes.

Full Changelog: junit-team/junit5@r5.11.3...r5.11.4

Commits

6430ba4 Release 5.11.4
d093121 Finalize 5.11.4 release notes
0444353 Fix Maven integration tests on JDK 24
b5c7f4e Move #4153 to 5.11.4 release notes
b20c4e2 Ensure the XMLStreamWriter is closed after use
6376f0a Configure Git username and email
2b485c4 Set reference repo URI
500b5a0 Inject username and password via new DSL
d671961 Update plugin gitPublish to v5
3d11279 Add JAVA_25 to JRE enum
Additional commits viewable in compare view

Updates org.mockito:mockito-core from 5.14.2 to 5.15.2

Release notes

Sourced from org.mockito:mockito-core's releases.

v5.15.2

Changelog generated by Shipkit Changelog Gradle Plugin

5.15.2

2025-01-02 - 2 commit(s) by Brice Dutheil, dependabot[bot]

Fix javadoc publication [(#3561)](mockito/mockito#3561)

Bump org.assertj:assertj-core from 3.27.0 to 3.27.1 [(#3560)](mockito/mockito#3560)

The release job is failed again [(#3542)](mockito/mockito#3542)

v5.15.1

Changelog generated by Shipkit Changelog Gradle Plugin

5.15.1

2024-12-22 - 8 commit(s) by Brice Dutheil, Rafael Winterhalter, dependabot[bot]

Bump org.assertj:assertj-core from 3.26.3 to 3.27.0 [(#3557)](mockito/mockito#3557)

Bump org.junit.platform:junit-platform-launcher from 1.11.3 to 1.11.4 [(#3555)](mockito/mockito#3555)

Bump junit-jupiter from 5.11.3 to 5.11.4 [(#3554)](mockito/mockito#3554)

Bump bytebuddy from 1.15.10 to 1.15.11 [(#3553)](mockito/mockito#3553)

Avoid warning when dynamic attach is enabled [(#3551)](mockito/mockito#3551)

Bump com.google.googlejavaformat:google-java-format from 1.25.1 to 1.25.2 [(#3545)](mockito/mockito#3545)

Bump com.gradle.develocity from 3.18.2 to 3.19 [(#3544)](mockito/mockito#3544)

Makes shipkit / nexusPublish a convention plugin for root [(#3533)](mockito/mockito#3533)

Mockito:5.14.2 Warning: Mockito is currently self-attaching... [(#3512)](mockito/mockito#3512)

v5.15.0

Changelog generated by Shipkit Changelog Gradle Plugin

5.15.0

2024-12-19 - 69 commit(s) by Andreas Turban, Ashley, Brice Dutheil, Michael Kramer, Miguel Graham, Rafael Winterhalter, dependabot[bot]

Bump com.google.googlejavaformat:google-java-format from 1.25.0 to 1.25.1 [(#3541)](mockito/mockito#3541)

Bump org.eclipse.platform:org.eclipse.osgi from 3.21.0 to 3.22.0 [(#3539)](mockito/mockito#3539)

Bump biz.aQute.bnd:biz.aQute.bnd.gradle from 7.0.0 to 7.1.0 [(#3538)](mockito/mockito#3538)

Bump org.gradle.toolchains.foojay-resolver-convention from 0.8.0 to 0.9.0 [(#3537)](mockito/mockito#3537)

Makes license a convention plugin [(#3532)](mockito/mockito#3532)

fixes #3519: adds a Gradle groovy dsl example [(#3529)](mockito/mockito#3529)

Instructions on configuring mockito as agent lacks a Gradle Groovy DSL example (currently only Kotlin DSL) [(#3519)](mockito/mockito#3519)

Bump com.google.googlejavaformat:google-java-format from 1.24.0 to 1.25.0 [(#3516)](mockito/mockito#3516)

Bump ru.vyarus:gradle-animalsniffer-plugin from 1.7.1 to 1.7.2 [(#3513)](mockito/mockito#3513)

Bump codecov/codecov-action from 4 to 5 [(#3507)](mockito/mockito#3507)

Mockito issue #3490 [(#3506)](mockito/mockito#3506)

Bump com.gradle.develocity from 3.18.1 to 3.18.2 [(#3505)](mockito/mockito#3505)

Bump org.codehaus.groovy:groovy from 3.0.22 to 3.0.23 [(#3502)](mockito/mockito#3502)

Declare android gradle plugins in version catalog [(#3500)](mockito/mockito#3500)

Mockito fails with JVM internal error when mocking class clinit does not find a transitive dependency [(#3499)](mockito/mockito#3499)

Mockito fails with JVM internal error when mocking class clinit does not find a transitive dependency [(#3498)](mockito/mockito#3498)

Bump org.shipkit:shipkit-auto-version from 2.0.17 to 2.1.0 [(#3497)](mockito/mockito#3497)

Bump bytebuddy from 1.15.8 to 1.15.10 [(#3495)](mockito/mockito#3495)

Bump org.shipkit:shipkit-auto-version from 2.0.11 to 2.0.17 [(#3492)](mockito/mockito#3492)

Bump bytebuddy from 1.15.7 to 1.15.8 [(#3491)](mockito/mockito#3491)

Bump bytebuddy from 1.15.5 to 1.15.7 [(#3486)](mockito/mockito#3486)

... (truncated)

Commits

e04dbbe Fix javadoc publication (#3561)
567c5b9 Bump org.assertj:assertj-core from 3.27.0 to 3.27.1 (#3560)
2c184c9 Introduce release convention plugin for Shipkit integration (#3533)
68c4285 Bump org.assertj:assertj-core from 3.26.3 to 3.27.0 (#3557)
cd4704a Avoid warning when dynamic attach is enabled with JVM flag (#3551)
3731b6b Bump org.junit.platform:junit-platform-launcher from 1.11.3 to 1.11.4 (#3555)
29c9476 Bump junit-jupiter from 5.11.3 to 5.11.4 (#3554)
dc0dc88 Bump bytebuddy from 1.15.10 to 1.15.11 (#3553)
2e7992b Bump com.google.googlejavaformat:google-java-format (#3545)
51ed33f Bump com.gradle.develocity from 3.18.2 to 3.19 (#3544)
Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-surefire-plugin from 3.5.1 to 3.5.2

Release notes

Sourced from org.apache.maven.plugins:maven-surefire-plugin's releases.

3.5.2

🚀 New features and improvements

[SUREFIRE-2278] - Don't say please. (#792) @elharo

📦 Dependency updates

[SUREFIRE-2281] - Doxia 2.0.0 ga (#794) @michael-o

Bump commons-io:commons-io from 2.2 to 2.14.0 in /surefire-its/src/test/resources/surefire-979-smartStackTrace-wrongClassloader/module1 (#789) @dependabot

👻 Maintenance

[SUREFIRE-2282] - surefire-report-plugin: Update Introduction documenta… (#796) @michael-o

Reduce cyclomatic complexity (#793) @elharo

Full Changelog: apache/maven-surefire@surefire-3.5.1...surefire-3.5.2

Commits

ea9f049 [maven-release-plugin] prepare release surefire-3.5.2
e1f94a0 [SUREFIRE-2276] JUnit5's TestTemplate failures treated as flakes with retries
d24adb4 [SUREFIRE-2277] RunResult#getFlakes() is lost during serialisation/deserialis...
4385e94 Remove links to non-existing report
8881971 Remove outdated FAQ
0121834 [SUREFIRE-2283] FAQ site contains broken link to failsafe-plugin
91d16c3 Fix formatting of XML schema files
6cb417a Add .xsd to .gitattributes
9ce5221 [SUREFIRE-2282] surefire-report-plugin: Update Introduction documentation page
620b983 [SUREFIRE-2281] Upgrade to Doxia 2.0.0 GA Stack
Additional commits viewable in compare view

Updates org.owasp:dependency-check-maven from 11.1.0 to 12.0.0

Release notes

Sourced from org.owasp:dependency-check-maven's releases.

Version 12.0.0

Refer to the CHANGELOG.md for information about improvements and upgrade notes.

Version 11.1.1

Refer to the CHANGELOG.md for information about improvements and upgrade notes.

Changelog

Sourced from org.owasp:dependency-check-maven's changelog.

Version 12.0.0 (2025-01-11)

feat: report on CVSS v4 (#7204)

feat: show from which dependency the CVE comes in failure report (#7224)

feat: Use Maven settings decryption API for decrypting secrets from settings.xml (#7284)

feat: Extend authentication to support Bearer token for many resources (#7277)

feat: Add a flag to fail when one or more suppression rules are not used (#7244)

fix: add product evidence as vendor to reduce FN (#7295)

fix: Make the HTTP-Client use pre-emptive authentication (#7255)

fix: Add the missing proxy credentials for suppressionFileUser/Password authentication scenario

fix: increase max retry count (#7252)

fix: Make the HTTP-Client use pre-emptive authentication for configured server credentials and extend HTTPClient usage to Nexus search

fix: Tranform into UTC the last modified date from database (#7222)

See the full listing of changes.

Version 11.1.1 (2024-12-04)

fix: re-enable issue locking (#7220)

fix: add username/password properties to be able to authenticate for central.content.url and analyzer.central.url again (#7169)

fix: rework replaceOrAddVulnerability (#7177)

fix: do not log loading of JDBC driver (#7155)

fix: expose flag to disable version check (#7147)

fix: Gracefully handle CVEs with bad configuration nodes missing CPE match expressions (#7125)

chore: cleanup base suppression (#7138)

docs: update gradle configuration documentation (#7176)

docs: update documentation for Gradle plugin (#7143)

docs: improve false positive issue templat (#7130)

See the full listing of changes.

Commits

48d567d build: prepare release v12.0.0
69453c8 chore: prepare release
0fd289a chore: Remove code-paths for Java versions <=8 (#7297)
b51921f fix: add product evidence as vendor to reduce FN (#7295)
ae8c06a chore: fixup JQuery LICENSE.txt file which was a full github html page dump (...
5a47091 build(deps): Sanitize dependencies based on dependency:analyze-report results...
57db1ca build(deps): bump commons-beanutils:commons-beanutils from 1.9.4 to 1.10.0 (#...
361fe48 build(deps): bump commons-beanutils:commons-beanutils
09c4c71 build(deps): bump commons-codec:commons-codec from 1.17.1 to 1.17.2 (#7287)
505ddff feat: Use Maven settings decryption API for decrypting secrets from settings....
Additional commits viewable in compare view

Updates com.diffplug.spotless:spotless-maven-plugin from 2.43.0 to 2.44.2

Release notes

Sourced from com.diffplug.spotless:spotless-maven-plugin's releases.

Maven Plugin v2.44.2

Eclipse-based tasks can now handle parallel configuration (#2389)

Maven Plugin v2.44.1

Fixed

Deployment was missing part of the CDT formatter, now fixed. (#2384)

Maven Plugin v2.44.0

Headline changes

The long 2.44.0.BETAX period is finally over (sorry, there was a problem in Gradle land).

Spotless now supports linting in addition to formatting.

help wanted: maven api to suppress lints

Changed

Bump default ktlint version to latest 1.3.0 -> 1.4.0. (#2314)

Bump default jackson version to latest 2.18.0 -> 2.18.1. (#2319)

Bump default ktfmt version to latest 0.52 -> 0.53. (#2320)

Bump default ktlint version to latest 1.4.0 -> 1.5.0. (#2354)

Bump minimum eclipse-cdt version to 11.0 (removed support for 10.7). (#2373)

Bump default eclipse version to latest 4.32 -> 4.34. (#2381)

Fixed

You can now use removeUnusedImports and googleJavaFormat at the same time again. (fixes #2159)

The default list of type annotations used by formatAnnotations now includes Jakarta Validation's Valid and constraints validations (fixes #2334)

Maven Plugin v2.44.0.BETA4

Added

Support for line ending policy PRESERVE which just takes the first line ending of every given file as setting (no matter if \n, \r\n or \r) (#2304)

Fixed

ktlint steps now read from the string instead of the file so they don't clobber earlier steps. (fixes #1599)

Maven Plugin v2.44.0.BETA3

Added

Support for rdf (#2261)

Support for buf (#2291)

Changed

Leverage local repository for Equo P2 cache. (#2238)

Add explicit support for CSS via biome. Formatting CSS via biome was already supported as a general formatting step. Biome supports formatting CSS as of 1.8.0 (experimental, opt-in) and 1.9.0 (stable). (#2259)

Bump default google-java-format version to latest 1.23.0 -> 1.24.0. (#2294)

Bump default jackson version to latest 2.17.2 -> 2.18.0. (#2279)

Bump default cleanthat version to latest 2.21 -> 2.22. (#2296)

Fixed

Java import order, ignore duplicate group entries. (#2293)

Maven Plugin v2.44.0.BETA2

Changed

Support toning down sortPom logging. (#2185)

Bump default ktlint version to latest 1.2.1 -> 1.3.0. (#2165)

Bump default ktfmt version to latest 0.49 -> 0.52. (#2172, #2231)

Rename property ktfmt option removeUnusedImport -> removeUnusedImports to match ktfmt. (#2172)

... (truncated)

Changelog

Sourced from com.diffplug.spotless:spotless-maven-plugin's changelog.

spotless-lib and spotless-lib-extra releases

If you are a Spotless user (as opposed to developer), then you are probably looking for:

https://github.com/diffplug/spotless/blob/main/plugin-gradle/CHANGES.md

https://github.com/diffplug/spotless/blob/main/plugin-maven/CHANGES.md

This document is intended for Spotless developers.

We adhere to the keepachangelog format (starting after version 1.27.0).

[Unreleased]

[3.0.2] - 2025-01-14

Fixed

Node.JS-based tasks now work with the configuration cache (#2372)

Eclipse-based tasks can now handle parallel configuration (#2389)

[3.0.1] - 2025-01-07

Fixed

Deployment was missing part of the CDT formatter, now fixed. (#2384)

[3.0.0] - 2025-01-06

Headline changes

All steps now support roundtrip serialization (end of #987).

Spotless now supports linting in addition to formatting.

Changed

Allow setting Eclipse config from a string, not only from files (#2337)

Bump default ktlint version to latest 1.3.0 -> 1.4.0. (#2314)

Add Sort Members feature based on Eclipse JDT implementation. (#2312)

Bump default jackson version to latest 2.18.0 -> 2.18.1. (#2319)

Bump default ktfmt version to latest 0.52 -> 0.53. (#2320)

Bump default ktlint version to latest 1.4.0 -> 1.5.0. (#2354)

Bump minimum eclipse-cdt version to 11.0 (removed support for 10.7). (#2373)

Bump default eclipse version to latest 4.32 -> 4.34. (#2381)

Fixed

You can now use removeUnusedImports and googleJavaFormat at the same time again. (fixes #2159)

The default list of type annotations used by formatAnnotations now includes Jakarta Validation's Valid and constraints validations (fixes #2334)

[3.0.0.BETA4] - 2024-10-24

Added

APIs to support linting. (implemented in #2148, #2149, #2307)

Spotless is still primarily a formatter, not a linter. But when formatting fails, it's more flexible to model those failures as lints so that the formatting can continue and ideally we can also capture the line numbers causing the failure.

Lint models a single change. A FormatterStep can create a lint by:

throwing an exception during formatting, ideally throw Lint.atLine(127, "code", "Well what happened was...")

or by implementing the List<Lint> lint(String content, File file) method to create multiple of them

Support for line ending policy PRESERVE which just takes the first line ending of every given file as setting (no matter if \n, \r\n or \r) (#2304)

Changed

... (truncated)

Commits

6d03aed Published maven/2.44.2
20e2f5a Published gradle/7.0.2
37c85b8 Published lib/3.0.2
b8b4efc Fix eclipse-based parallel downloads (#2396 fixes #2389)
b401228 Update changelogs.
3727dfa Fix deprecations in the Spotless build.
77c480e Bump equo versions to latest, which fixes parallel downloads.
b50fcaf fix: workaround for NPM configuration cache (#2390 fixes #2372)
f77aead Update plugin com.github.spotbugs to v6.1.0 (#2393)
4c9e39a Update plugin com.github.spotbugs to v6.1.0
Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-javadoc-plugin from 3.10.1 to 3.11.2

Release notes

Sourced from org.apache.maven.plugins:maven-javadoc-plugin's releases.

3.11.2

🚀 New features and improvements

[MJAVADOC-823] - legacyMode keeps using module-info.java (-sourcedirectory still use as well as java files input) (#343) @olamy

[MJAVADOC-814] - handle parameters such packages with multi lines (#337) @olamy

[MJAVADOC-822] - skippedModules should be more scalable and support regex (#336) @olamy

📦 Dependency updates

Bump com.thoughtworks.qdox:qdox from 2.1.0 to 2.2.0 (#344) @dependabot

Bump commons-io:commons-io from 2.17.0 to 2.18.0 (#342) @dependabot

Bump org.codehaus.mojo:l10n-maven-plugin from 1.0.0 to 1.1.0 (#335) @dependabot

👻 Maintenance

refactor: Replace Plexus AbstractLogEnabled with SLF4J (#338) @timtebeek

maven-javadoc-plugin-3.11.1

What's Changed

[MJAVADOC-821] Align toolchain discovery code with Maven Compiler Plugin by @michael-o in apache/maven-javadoc-plugin#334

Full Changelog: apache/maven-javadoc-plugin@maven-javadoc-plugin-3.11.0...maven-javadoc-plugin-3.11.1

Commits

44cbab7 [maven-release-plugin] prepare release maven-javadoc-plugin-3.11.2
3de45d8 use github for scm
45ccf06 Bump com.thoughtworks.qdox:qdox from 2.1.0 to 2.2.0
530fa01 [MJAVADOC-823] legacyMode keeps using module-info.java (-sourcedirectory stil...
3a16d92 Bump commons-io:commons-io from 2.17.0 to 2.18.0
69c1ba7 Migrate from Plexus to Sisu Guice (#341)
39857ea Remove usages of deprecated ReaderFactory class (#339)
314203a [MJAVADOC-814] handle parameters such packages with multi lines (#337)
3bb982d refactor: Replace Plexus AbstractLogEnabled with SLF4J (#338)
76826c8 [MJAVADOC-822] skippedModules should be more scalable and support regex (#336)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the dependencies group with 11 updates in the / directory: | Package | From | To | | --- | --- | --- | | [ch.qos.logback:logback-classic](https://github.com/qos-ch/logback) | `1.5.12` | `1.5.16` | | [com.fasterxml.jackson.core:jackson-annotations](https://github.com/FasterXML/jackson) | `2.18.1` | `2.18.2` | | [com.fasterxml.jackson.core:jackson-core](https://github.com/FasterXML/jackson-core) | `2.18.1` | `2.18.2` | | [com.fasterxml.jackson.dataformat:jackson-dataformat-xml](https://github.com/FasterXML/jackson-dataformat-xml) | `2.18.1` | `2.18.2` | | commons-io:commons-io | `2.17.0` | `2.18.0` | | [org.junit.jupiter:junit-jupiter](https://github.com/junit-team/junit5) | `5.11.3` | `5.11.4` | | [org.mockito:mockito-core](https://github.com/mockito/mockito) | `5.14.2` | `5.15.2` | | [org.apache.maven.plugins:maven-surefire-plugin](https://github.com/apache/maven-surefire) | `3.5.1` | `3.5.2` | | [org.owasp:dependency-check-maven](https://github.com/jeremylong/DependencyCheck) | `11.1.0` | `12.0.0` | | [com.diffplug.spotless:spotless-maven-plugin](https://github.com/diffplug/spotless) | `2.43.0` | `2.44.2` | | [org.apache.maven.plugins:maven-javadoc-plugin](https://github.com/apache/maven-javadoc-plugin) | `3.10.1` | `3.11.2` | Updates `ch.qos.logback:logback-classic` from 1.5.12 to 1.5.16 - [Commits](qos-ch/logback@v_1.5.12...v_1.5.16) Updates `com.fasterxml.jackson.core:jackson-annotations` from 2.18.1 to 2.18.2 - [Commits](https://github.com/FasterXML/jackson/commits) Updates `com.fasterxml.jackson.core:jackson-core` from 2.18.1 to 2.18.2 - [Commits](FasterXML/jackson-core@jackson-core-2.18.1...jackson-core-2.18.2) Updates `com.fasterxml.jackson.dataformat:jackson-dataformat-xml` from 2.18.1 to 2.18.2 - [Commits](FasterXML/jackson-dataformat-xml@jackson-dataformat-xml-2.18.1...jackson-dataformat-xml-2.18.2) Updates `com.fasterxml.jackson.core:jackson-core` from 2.18.1 to 2.18.2 - [Commits](FasterXML/jackson-core@jackson-core-2.18.1...jackson-core-2.18.2) Updates `com.fasterxml.jackson.core:jackson-databind` from 2.18.1 to 2.18.2 - [Commits](https://github.com/FasterXML/jackson/commits) Updates `com.fasterxml.jackson.dataformat:jackson-dataformat-xml` from 2.18.1 to 2.18.2 - [Commits](FasterXML/jackson-dataformat-xml@jackson-dataformat-xml-2.18.1...jackson-dataformat-xml-2.18.2) Updates `commons-io:commons-io` from 2.17.0 to 2.18.0 Updates `org.junit.jupiter:junit-jupiter` from 5.11.3 to 5.11.4 - [Release notes](https://github.com/junit-team/junit5/releases) - [Commits](junit-team/junit5@r5.11.3...r5.11.4) Updates `org.mockito:mockito-core` from 5.14.2 to 5.15.2 - [Release notes](https://github.com/mockito/mockito/releases) - [Commits](mockito/mockito@v5.14.2...v5.15.2) Updates `org.apache.maven.plugins:maven-surefire-plugin` from 3.5.1 to 3.5.2 - [Release notes](https://github.com/apache/maven-surefire/releases) - [Commits](apache/maven-surefire@surefire-3.5.1...surefire-3.5.2) Updates `org.owasp:dependency-check-maven` from 11.1.0 to 12.0.0 - [Release notes](https://github.com/jeremylong/DependencyCheck/releases) - [Changelog](https://github.com/jeremylong/DependencyCheck/blob/main/CHANGELOG.md) - [Commits](jeremylong/DependencyCheck@v11.1.0...v12.0.0) Updates `com.diffplug.spotless:spotless-maven-plugin` from 2.43.0 to 2.44.2 - [Release notes](https://github.com/diffplug/spotless/releases) - [Changelog](https://github.com/diffplug/spotless/blob/main/CHANGES.md) - [Commits](diffplug/spotless@lib/2.43.0...maven/2.44.2) Updates `org.apache.maven.plugins:maven-javadoc-plugin` from 3.10.1 to 3.11.2 - [Release notes](https://github.com/apache/maven-javadoc-plugin/releases) - [Commits](apache/maven-javadoc-plugin@maven-javadoc-plugin-3.10.1...maven-javadoc-plugin-3.11.2) --- updated-dependencies: - dependency-name: ch.qos.logback:logback-classic dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: com.fasterxml.jackson.core:jackson-annotations dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: com.fasterxml.jackson.core:jackson-core dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: com.fasterxml.jackson.dataformat:jackson-dataformat-xml dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: com.fasterxml.jackson.core:jackson-core dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: com.fasterxml.jackson.core:jackson-databind dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: com.fasterxml.jackson.dataformat:jackson-dataformat-xml dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: commons-io:commons-io dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.junit.jupiter:junit-jupiter dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.mockito:mockito-core dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.apache.maven.plugins:maven-surefire-plugin dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.owasp:dependency-check-maven dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies - dependency-name: com.diffplug.spotless:spotless-maven-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.apache.maven.plugins:maven-javadoc-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Jan 15, 2025

dependabot bot mentioned this pull request Jan 15, 2025

Bump the dependencies group across 1 directory with 12 updates #145

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the dependencies group across 1 directory with 12 updates #146

Bump the dependencies group across 1 directory with 12 updates #146

dependabot bot commented on behalf of github Jan 15, 2025 •

edited

Loading

Bump the dependencies group across 1 directory with 12 updates #146

Are you sure you want to change the base?

Bump the dependencies group across 1 directory with 12 updates #146

Conversation

dependabot bot commented on behalf of github Jan 15, 2025 • edited Loading

v5.15.2

5.15.2

v5.15.1

5.15.1

v5.15.0

5.15.0

3.5.2

🚀 New features and improvements

📦 Dependency updates

👻 Maintenance

Version 12.0.0

Version 11.1.1

Version 12.0.0 (2025-01-11)

Version 11.1.1 (2024-12-04)

Maven Plugin v2.44.2

Maven Plugin v2.44.1

Fixed

Maven Plugin v2.44.0

Headline changes

Changed

Fixed

Maven Plugin v2.44.0.BETA4

Added

Fixed

Maven Plugin v2.44.0.BETA3

Added

Changed

Fixed

Maven Plugin v2.44.0.BETA2

Changed

spotless-lib and spotless-lib-extra releases

[Unreleased]

[3.0.2] - 2025-01-14

Fixed

[3.0.1] - 2025-01-07

Fixed

[3.0.0] - 2025-01-06

Headline changes

Changed

Fixed

[3.0.0.BETA4] - 2024-10-24

Added

Changed

3.11.2

🚀 New features and improvements

📦 Dependency updates

👻 Maintenance

maven-javadoc-plugin-3.11.1

What's Changed

dependabot bot commented on behalf of github Jan 15, 2025 •

edited

Loading