Bump the all-dependencies group across 1 directory with 22 updates

[dependabot]

Bumps the all-dependencies group with 22 updates in the / directory:

Package	From	To
org.junit:junit-bom	5.12.2	5.13.4
org.junit.jupiter:junit-jupiter	5.12.2	5.13.4
commons-net:commons-net	3.11.1	3.12.0
org.apache.commons:commons-lang3	3.17.0	3.18.0
org.apache.httpcomponents.client5:httpclient5	5.4.3	5.5
org.apache.httpcomponents.client5:httpclient5-fluent	5.4.4	5.5
org.bouncycastle:bcprov-jdk18on	1.80	1.81
org.bouncycastle:bcpkix-jdk18on	1.80	1.81
org.mockito:mockito-core	5.17.0	5.18.0
org.mockito:mockito-junit-jupiter	5.17.0	5.18.0
org.apache.maven.plugins:maven-gpg-plugin	3.2.7	3.2.8
org.sonatype.central:central-publishing-maven-plugin	0.7.0	0.8.0
org.springframework.boot:spring-boot-starter-web	3.4.5	3.5.4
org.springframework.boot:spring-boot-starter-data-jpa	3.4.5	3.5.4
org.springframework.boot:spring-boot-starter-webflux	3.4.5	3.5.4
org.springframework.boot:spring-boot-starter-test	3.4.5	3.5.4
org.springframework.boot:spring-boot-maven-plugin	3.4.5	3.5.4
io.projectreactor:reactor-test	3.7.5	3.7.8
com.mysql:mysql-connector-j	9.3.0	9.4.0
com.fasterxml.jackson.core:jackson-databind	2.19.0	2.19.2
com.fasterxml.jackson.core:jackson-core	2.19.0	2.19.2
com.fasterxml.jackson.core:jackson-annotations	2.19.0	2.19.2

Updates org.junit:junit-bom from 5.12.2 to 5.13.4

Release notes

Sourced from org.junit:junit-bom's releases.

JUnit 5.13.4 = Platform 1.13.4 + Jupiter 5.13.4 + Vintage 5.13.4

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.13.3...r5.13.4

JUnit 5.13.3 = Platform 1.13.3 + Jupiter 5.13.3 + Vintage 5.13.3

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.13.2...r5.13.3

JUnit 5.13.2 = Platform 1.13.2 + Jupiter 5.13.2 + Vintage 5.13.2

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.13.1...r5.13.2

JUnit 5.13.1 = Platform 1.13.1 + Jupiter 5.13.1 + Vintage 5.13.1

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.13.0...r5.13.1

JUnit 5.13.0 = Platform 1.13.0 + Jupiter 5.13.0 + Vintage 5.13.0

See Release Notes.

New Contributors

• @​Oyster-zx made their first contribution in junit-team/junit5#4311
• @​etrandafir93 made their first contribution in junit-team/junit5#4336
• @​hanszt made their first contribution in junit-team/junit5#3377
• @​ngocnhan-tran1996 made their first contribution in junit-team/junit5#4545

Full Changelog: junit-team/junit-framework@r5.12.2...r5.13.0

JUnit 5.13.0-RC1 = Platform 1.13.0-RC1 + Jupiter 5.13.0-RC1 + Vintage 5.13.0-RC1

See Release Notes.

New Contributors

• @​hanszt made their first contribution in junit-team/junit5#3377

Full Changelog: junit-team/junit-framework@r5.13.0-M3...r5.13.0-RC1

JUnit 5.13.0-M3 = Platform 1.13.0-M3 + Jupiter 5.13.0-M3 + Vintage 5.13.0-M3

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.13.0-M2...r5.13.0-M3

... (truncated)

Commits

• 8a21048 Release 5.13.4
• 9a38789 Finalize 5.13.4 release notes
• 458325c Log only once per implementation type for CloseableResource types
• 976a110 Protect against potential problems when converting file-based selectors
• e94f728 Allow default package for PackageSource
• b60fecf Fail on classpath resource names that are blank after removing leading /
• 6378c88 Remove java.* packages from Import-Package headers in all jars (#4738)
• 1a360f3 Create initial 5.13.4 release notes from template
• 806fc9a Document #4689 in release notes
• 1653839 Document #4686 in release notes
• Additional commits viewable in compare view

Updates org.junit.jupiter:junit-jupiter from 5.12.2 to 5.13.4

Release notes

Sourced from org.junit.jupiter:junit-jupiter's releases.

JUnit 5.13.4 = Platform 1.13.4 + Jupiter 5.13.4 + Vintage 5.13.4

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.13.3...r5.13.4

JUnit 5.13.3 = Platform 1.13.3 + Jupiter 5.13.3 + Vintage 5.13.3

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.13.2...r5.13.3

JUnit 5.13.2 = Platform 1.13.2 + Jupiter 5.13.2 + Vintage 5.13.2

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.13.1...r5.13.2

JUnit 5.13.1 = Platform 1.13.1 + Jupiter 5.13.1 + Vintage 5.13.1

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.13.0...r5.13.1

JUnit 5.13.0 = Platform 1.13.0 + Jupiter 5.13.0 + Vintage 5.13.0

See Release Notes.

New Contributors

• @​Oyster-zx made their first contribution in junit-team/junit5#4311
• @​etrandafir93 made their first contribution in junit-team/junit5#4336
• @​hanszt made their first contribution in junit-team/junit5#3377
• @​ngocnhan-tran1996 made their first contribution in junit-team/junit5#4545

Full Changelog: junit-team/junit-framework@r5.12.2...r5.13.0

JUnit 5.13.0-RC1 = Platform 1.13.0-RC1 + Jupiter 5.13.0-RC1 + Vintage 5.13.0-RC1

See Release Notes.

New Contributors

• @​hanszt made their first contribution in junit-team/junit5#3377

Full Changelog: junit-team/junit-framework@r5.13.0-M3...r5.13.0-RC1

JUnit 5.13.0-M3 = Platform 1.13.0-M3 + Jupiter 5.13.0-M3 + Vintage 5.13.0-M3

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.13.0-M2...r5.13.0-M3

... (truncated)

Commits

• 8a21048 Release 5.13.4
• 9a38789 Finalize 5.13.4 release notes
• 458325c Log only once per implementation type for CloseableResource types
• 976a110 Protect against potential problems when converting file-based selectors
• e94f728 Allow default package for PackageSource
• b60fecf Fail on classpath resource names that are blank after removing leading /
• 6378c88 Remove java.* packages from Import-Package headers in all jars (#4738)
• 1a360f3 Create initial 5.13.4 release notes from template
• 806fc9a Document #4689 in release notes
• 1653839 Document #4686 in release notes
• Additional commits viewable in compare view

Updates commons-net:commons-net from 3.11.1 to 3.12.0

Changelog

Sourced from commons-net:commons-net's changelog.

Apache Commons Net 3.12.0 Release Notes

The Apache Commons Net team is pleased to announce the release of Apache Commons Net 3.12.0.

Apache Commons Net library contains a collection of network utilities and protocol implementations. Supported protocols include Echo, Finger, FTP, NNTP, NTP, POP3(S), SMTP(S), Telnet, and Whois.

This is a feature and maintenance release. Java 8 or later is required.

For complete information on Apache Commons Net, including instructions on how to submit bug reports, patches, or suggestions for improvement, see the Apache Commons Net website:

https://commons.apache.org/proper/commons-net/

Download page: https://commons.apache.org/proper/commons-net/download_net.cgi

New features

o Add org.apache.commons.net.nntp.Article#getChild(). Thanks to Gary Gregory. o Add org.apache.commons.net.nntp.Article#getNext(). Thanks to Gary Gregory. o Add private SubnetAddressStringIterable and private SubnetAddressStringIterator to implement SubnetInfo.iterableAddressStrings() and SubnetInfo.streamAddressStrings() #298. Thanks to Lixiongyou, Gary Gregory. o Add SubnetInfo.iterableAddressStrings(). Thanks to Gary Gregory. o Add SubnetInfo.streamAddressStrings(). Thanks to Gary Gregory. o Add FTPCmd.OPTS. Thanks to Gary Gregory. o Add FTP.opts(String, String). Thanks to Gary Gregory. o Add FTP.opts(String...). Thanks to Gary Gregory. o Add FTP.setControlEncoding(Charset). Thanks to Gary Gregory. o Add --OPTS to FTPClientExample. Thanks to Gary Gregory. o NET-727: Add accessing options map for TFTP request packet and allow using 'blksize' option #331. Thanks to Gary Gregory. o Add org.apache.commons.net.util.ListenerList.isEmpty(). Thanks to Gary Gregory. o Add org.apache.commons.net.ftp.FTPClient.getSystemTypeOverride(). Thanks to Gary Gregory. o Add generics to ListenerList. Thanks to Gary Gregory. o Add module-info.class in the JAR file instead of an Automatic-Module-Name in MANIFEST.MF. Thanks to Gary Gregory.

Fixed Bugs

o Increase message limit in IMAPReply.TAGGED_RESPONSE from 80 to 500 characters. Thanks to Andreas Lemke, Gary Gregory. o Increase message limit in IMAPReply.UNTAGGED_RESPONSE from 160 to 500 characters. Thanks to Andreas Lemke, Gary Gregory. o Remove InvalidKeySpecException from AuthenticatingIMAPClient.auth(AUTH_METHOD, String, String) never throws, it's not thrown. Thanks to Gary Gregory. o Remove InvalidKeySpecException from AuthenticatingIMAPClient.authenticate(AUTH_METHOD, String, String) never throws, it's not thrown. Thanks to Gary Gregory. o Remove InvalidKeySpecException from ExtendedPOP3Client.auth(AUTH_METHOD, String, String) never throws, it's not thrown. Thanks to Gary Gregory. o Remove InvalidKeySpecException from org.apache.commons.net.smtp.AuthenticatingSMTPClient.auth(AUTH_METHOD, String, String) never throws, it's not thrown. Thanks to Gary Gregory. o Fix SpotBugs RCN_REDUNDANT_NULLCHECK_OF_NONNULL_VALUE in SSLSocketUtils. Thanks to Gary Gregory. o Fix PMD UnnecessaryFullyQualifiedName. Thanks to Gary Gregory. o Fix PMD UnusedFormalParameter. Thanks to Gary Gregory.

... (truncated)

Commits

• bb741d0 Prepare for the release candidate 3.12.0 RC1
• bfaf5d2 Prepare for the next release candidate
• 91baa6f Add module-info.class in the JAR file instead of an
• 6a49728 Merge pull request #355 from apache/dependabot/github_actions/github/codeql-a...
• de4990b Bump github/codeql-action from 3.29.2 to 3.29.4
• 078c17d Merge some string literals
• 200dccd Format nit
• f84d393 Format nit
• 7cfdadf Format nit
• 1213ed8 Update the GitHub pull request template for AI
• Additional commits viewable in compare view

Updates org.apache.commons:commons-lang3 from 3.17.0 to 3.18.0

Updates org.apache.httpcomponents.client5:httpclient5 from 5.4.3 to 5.5

Changelog

Sourced from org.apache.httpcomponents.client5:httpclient5's changelog.

Release 5.5

This is the first GA release in the 5.5 release series. This release finalizes the 5.5 APIs and adds several experimental features and improvements, such as request multiplexing over a shared HTTP/2 connection and the Classic API facade acting as a compatibility bridge between classic I/O client services and the asynchronous message transport used internally.

Notable changes and features included in the 5.5 series:

• Improved conformance to RFC 7616 (HTTP Digest Access Authentication).

• The connection pool implementation acts as a caching facade in front of a standard managed connection pool and shares already leased connections to multiplex message exchanges over active HTTP/2 connections. Experimental.

• Extended Auth API and improved authentication protocol logic to support mutual authentication.

• The Classic API facade now acts as a compatibility bridge between the classic I/O client services (based on the standard InputStream / OutputStream model) and the asynchronous message transport used internally. This is experimental.

• HTTP/2 support for the Fluent Facade (via Classic API facade). This is experimental.

Compatibility notes:

• As of this release, HttpClient does not automatically execute redirects if the original request manually added headers that are considered sensitive.

Change Log

• HTTPCLIENT-2367: Fixed NPE in InternalAbstractHttpAsyncClient by adding a null check for resolvedTarget (#634). Contributed by Arturo Bernal

• Fixed case of Cookie#HTTP_ONLY_ATTR Contributed by Finn Petersen [email protected]

• Simplified ProtocolSwitchStrategy by leveraging ProtocolVersionParser (#627). Contributed by Arturo Bernal

• HTTPCLIENT-2364: Fixed incorrect re-binding of the upgraded SSL socket to the HTTP connection by the #upgrade method of the DefaultHttpClientConnectionOperator. Contributed by Oleg Kalnichevski

... (truncated)

Commits

• b42e73c HttpClient 5.5 release
• 3061c34 Updated release notes for HttpClient 5.5 release
• 14a9208 Updated NOTICE to 2025
• 4021b7c Link text adjustment
• be441c1 Update the GitHub Security page with a link to the new HttpComponents
• f5f9ae8 HTTPCLIENT-2367 - Fix NPE in InternalAbstractHttpAsyncClient by adding null c...
• 19c0278 Bump org.junit:junit-bom from 5.12.1 to 5.12.2 #632
• ef06a27 Bump org.junit:junit-bom from 5.12.1 to 5.12.2 (#632)
• 9bae302 Fix case of Cookie.HTTP_ONLY_ATTR
• 0ba6102 Simplify ProtocolSwitchStrategy by Leveraging ProtocolVersionParser (#627)
• Additional commits viewable in compare view

Updates org.apache.httpcomponents.client5:httpclient5-fluent from 5.4.4 to 5.5

Changelog

Sourced from org.apache.httpcomponents.client5:httpclient5-fluent's changelog.

Release 5.5

This is the first GA release in the 5.5 release series. This release finalizes the 5.5 APIs and adds several experimental features and improvements, such as request multiplexing over a shared HTTP/2 connection and the Classic API facade acting as a compatibility bridge between classic I/O client services and the asynchronous message transport used internally.

Notable changes and features included in the 5.5 series:

• Improved conformance to RFC 7616 (HTTP Digest Access Authentication).

• The connection pool implementation acts as a caching facade in front of a standard managed connection pool and shares already leased connections to multiplex message exchanges over active HTTP/2 connections. Experimental.

• Extended Auth API and improved authentication protocol logic to support mutual authentication.

• The Classic API facade now acts as a compatibility bridge between the classic I/O client services (based on the standard InputStream / OutputStream model) and the asynchronous message transport used internally. This is experimental.

• HTTP/2 support for the Fluent Facade (via Classic API facade). This is experimental.

Compatibility notes:

• As of this release, HttpClient does not automatically execute redirects if the original request manually added headers that are considered sensitive.

Change Log

• HTTPCLIENT-2367: Fixed NPE in InternalAbstractHttpAsyncClient by adding a null check for resolvedTarget (#634). Contributed by Arturo Bernal

• Fixed case of Cookie#HTTP_ONLY_ATTR Contributed by Finn Petersen [email protected]

• Simplified ProtocolSwitchStrategy by leveraging ProtocolVersionParser (#627). Contributed by Arturo Bernal

• HTTPCLIENT-2364: Fixed incorrect re-binding of the upgraded SSL socket to the HTTP connection by the #upgrade method of the DefaultHttpClientConnectionOperator. Contributed by Oleg Kalnichevski

... (truncated)

Commits

• b42e73c HttpClient 5.5 release
• 3061c34 Updated release notes for HttpClient 5.5 release
• 14a9208 Updated NOTICE to 2025
• 4021b7c Link text adjustment
• be441c1 Update the GitHub Security page with a link to the new HttpComponents
• f5f9ae8 HTTPCLIENT-2367 - Fix NPE in InternalAbstractHttpAsyncClient by adding null c...
• 19c0278 Bump org.junit:junit-bom from 5.12.1 to 5.12.2 #632
• ef06a27 Bump org.junit:junit-bom from 5.12.1 to 5.12.2 (#632)
• 9bae302 Fix case of Cookie.HTTP_ONLY_ATTR
• 0ba6102 Simplify ProtocolSwitchStrategy by Leveraging ProtocolVersionParser (#627)
• Additional commits viewable in compare view

Updates org.apache.httpcomponents.client5:httpclient5-fluent from 5.4.4 to 5.5

Changelog

Sourced from org.apache.httpcomponents.client5:httpclient5-fluent's changelog.

Release 5.5

This is the first GA release in the 5.5 release series. This release finalizes the 5.5 APIs and adds several experimental features and improvements, such as request multiplexing over a shared HTTP/2 connection and the Classic API facade acting as a compatibility bridge between classic I/O client services and the asynchronous message transport used internally.

Notable changes and features included in the 5.5 series:

• Improved conformance to RFC 7616 (HTTP Digest Access Authentication).

• The connection pool implementation acts as a caching facade in front of a standard managed connection pool and shares already leased connections to multiplex message exchanges over active HTTP/2 connections. Experimental.

• Extended Auth API and improved authentication protocol logic to support mutual authentication.

• The Classic API facade now acts as a compatibility bridge between the classic I/O client services (based on the standard InputStream / OutputStream model) and the asynchronous message transport used internally. This is experimental.

• HTTP/2 support for the Fluent Facade (via Classic API facade). This is experimental.

Compatibility notes:

• As of this release, HttpClient does not automatically execute redirects if the original request manually added headers that are considered sensitive.

Change Log

• HTTPCLIENT-2367: Fixed NPE in InternalAbstractHttpAsyncClient by adding a null check for resolvedTarget (#634). Contributed by Arturo Bernal

• Fixed case of Cookie#HTTP_ONLY_ATTR Contributed by Finn Petersen [email protected]

• Simplified ProtocolSwitchStrategy by leveraging ProtocolVersionParser (#627). Contributed by Arturo Bernal

• HTTPCLIENT-2364: Fixed incorrect re-binding of the upgraded SSL socket to the HTTP connection by the #upgrade method of the DefaultHttpClientConnectionOperator. Contributed by Oleg Kalnichevski

... (truncated)

Commits

• b42e73c HttpClient 5.5 release
• 3061c34 Updated release notes for HttpClient 5.5 release
• 14a9208 Updated NOTICE to 2025
• 4021b7c Link text adjustment
• be441c1 Update the GitHub Security page with a link to the new HttpComponents
• f5f9ae8 HTTPCLIENT-2367 - Fix NPE in InternalAbstractHttpAsyncClient by adding null c...
• 19c0278 Bump org.junit:junit-bom from 5.12.1 to 5.12.2 #632
• ef06a27 Bump org.junit:junit-bom from 5.12.1 to 5.12.2 (#632)
• 9bae302 Fix case of Cookie.HTTP_ONLY_ATTR
• 0ba6102 Simplify ProtocolSwitchStrategy by Leveraging ProtocolVersionParser (#627)
• Additional commits viewable in compare view

Updates org.bouncycastle:bcprov-jdk18on from 1.80 to 1.81

Changelog

Sourced from org.bouncycastle:bcprov-jdk18on's changelog.

2.1.1 Version Release: 1.82 Date:      TBD.

2.2.1 Version Release: 1.81 Date:      2025, 4th June.

... (truncated)

Commits

• See full diff in compare view

Updates org.bouncycastle:bcpkix-jdk18on from 1.80 to 1.81

Changelog

Sourced from org.bouncycastle:bcpkix-jdk18on's changelog.

2.1.1 Version Release: 1.82 Date:      TBD.

2.2.1 Version Release: 1.81 Date:      2025, 4th June.

... (truncated)

Commits

• See full diff in compare view

Updates org.bouncycastle:bcpkix-jdk18on from 1.80 to 1.81

Changelog

Sourced from org.bouncycastle:bcpkix-jdk18on's changelog.

2.1.1 Version Release: 1.82 Date:      TBD.

2.2.1 Version Release: 1.81 Date:      2025, 4th June.

... (truncated)

Commits

• See full diff in compare view

Updates org.mockito:mockito-core from 5.17.0 to 5.18.0

Release notes

Sourced from org.mockito:mockito-core's releases.

v5.18.0

Changelog generated by Shipkit Changelog Gradle Plugin

5.18.0

• 2025-05-20 - 5 commit(s) by Eugene Platonov, Patrick Doyle, Tim van der Lippe, dependabot[bot]
• Make vararg checks Scala friendly (for mockito-scala) [(#3651)](mockito/mockito#3651)
• For UnfinishedStubbingException, suggest the possibility of another thread [(#3636)](mockito/mockito#3636)
• UnfinishedStubbingException ought to suggest the possibility of another thread [(#3635)](mockito/mockito#3635)

Commits

• 0673747 Force Jacoco version for Android
• 65388f0 Update Jacoco version to 0.8.13
• 60179ca Bump bytebuddy from 1.15.11 to 1.16.1
• 8f15169 Make vararg checks Scala friendly (#3651)
• 3a631cb Add hint for multithreading in UnfinishedStubbingException (#3636)
• See full diff in compare view

Updates org.mockito:mockito-junit-jupiter from 5.17.0 to 5.18.0

Release notes

Sourced from org.mockito:mockito-junit-jupiter's releases.

v5.18.0

Changelog generated by Shipkit Changelog Gradle Plugin

5.18.0

• 2025-05-20 - 5 commit(s) by Eugene Platonov, Patrick Doyle, Tim van der Lippe, dependabot[bot]
• Make vararg checks Scala friendly (for mockito-scala) [(#3651)](mockito/mockito#3651)
• For UnfinishedStubbingException, suggest the possibility of another thread [(#3636)](mockito/mockito#3636)
• UnfinishedStubbingException ought to suggest the possibility of another thread [(#3635)](mockito/mockito#3635)

Commits

• 0673747 Force Jacoco version for Android
• 65388f0 Update Jacoco version to 0.8.13
• 60179ca Bump bytebuddy from 1.15.11 to 1.16.1
• 8f15169 Make vararg checks Scala friendly (#3651)
• 3a631cb Add hint for multithreading in UnfinishedStubbingException (#3636)
• See full diff in compare view

Updates org.mockito:mockito-junit-jupiter from 5.17.0 to 5.18.0

Release notes

Sourced from org.mockito:mockito-junit-jupiter's releases.

v5.18.0

Changelog generated by Shipkit Changelog Gradle Plugin

5.18.0

• 2025-05-20 - 5 commit(s) by Eugene Platonov, Patrick Doyle, Tim van der Lippe, dependabot[bot]
• Make vararg checks Scala friendly (for mockito-scala) [(#3651)](mockito/mockito#3651)
• For UnfinishedStubbingException, suggest the possibility of another thread [(#3636)](mockito/mockito#3636)
• UnfinishedStubbingException ought to suggest the possibility of another thread [(#3635)](mockito/mockito#3635)

Commits

• 0673747 Force Jacoco version for Android
• 65388f0 Update Jacoco version to 0.8.13
• 60179ca Bump bytebuddy from 1.15.11 to 1.16.1
• 8f15169 Make vararg checks Scala friendly (#3651)
• 3a631cb Add hint for multithreading in UnfinishedStubbingException (#3636)
• See full diff in compare view

Updates org.apache.maven.plugins:maven-gpg-plugin from 3.2.7 to 3.2.8

Release notes

Sourced from org.apache.maven.plugins:maven-gpg-plugin's releases.

3.2.8

🐛 Bug Fixes

• Make empty classifier null (not empty string) (#287) @​cstamas

📝 Documentation updates

• [MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#129) @​Bukama
• Describe how to prime a specific GPG key (#128) @​kwin

👻 Maintenance

• Enable GitHub issues (#134) @​Bukama
• Prefer Guice constructor injection (#126) @​elharo

📦 Dependency updates

• Update parent POM to 45 (#284) @​cstamas
• Bump bouncycastleVersion from 1.78.1 to 1.80 (#127) @dependabot[bot]
• Bump commons-io:commons-io from 2.18.0 to 2.19.0 (#133) @dependabot[bot]
• Bump org.apache.maven.plugins:maven-invoker-plugin from 3.8.0 to 3.9.0 (#125) @dependabot[bot]
• Bump org.simplify4u.plugins:pgpverify-maven-plugin from 1.18.2 to 1.19.1 (#131) @dependabot[bot]
• Bump commons-io:commons-io from 2.17.0 to 2.18.0 (#124) @dependabot[bot]

Commits

• 8a46455 [maven-release-plugin] prepare release maven-gpg-plugin-3.2.8
• 7012821 Fix issueManagement, ciManagement system and url
• a9a8c84 Make empty classifier null (not empty string) (#287)
• a8368b0 Add .mvn
• f0e45e0 Update parent POM to 45 (#284)
• cb1236c Bump bouncycastleVersion from 1.78.1 to 1.80 (#127)
• 5377a10 Bump commons-io:commons-io from 2.18.0 to 2.19.0 (#133)
• 8b63932 Bump org.apache.maven.plugins:maven-invoker-plugin from 3.8.0 to 3.9.0 (#125)
• 54ea518 Bump org.simplify4u.plugins:pgpverify-maven-plugin from 1.18.2 to 1.19.1
• a6a412d Remove old JIRA issue link
• Additional commits viewable in compare view

Updates org.sonatype.central:central-publishing-maven-plugin from 0.7.0 to 0.8.0

Commits

• See full diff in compare view

Updates org.springframework.boot:spring-boot-starter-web from 3.4.5 to 3.5.4

Release notes

Sourced from org.springframework.boot:spring-boot-starter-web's releases.

v3.5.4

🐞 Bug Fixes

• LambdaSafe.withFilter is not public #46474
• Executable JAR application class encounters performance issues when used with Palo Alto Network Cortex XDR agent #46402
• Runtime dependencies are missing from aotCompileClasspath and aotTestCompileClasspath when using Kotlin #46398
• Additional fields for structured JSON logging incompatible with nested ecs logging in 3.5.x #46351
• Change in DefaultErrorAttributes alters the shape of API validation error responses #46260
• jdbc.connections.active and jdbc.connections.idle metrics are not available when using Hikari in a native image #46225
• developmentOnly and testAndDevelopmentOnly dependencies may prevent implementation dependencies from being included in the uber-jar #46205
• Hash calculation for uber archive entries that require unpacking is inefficient #46203
• Permissions are applied inconsistently when building uber archives with Gradle #46194
• Environment variables using legacy dash format can no longer be bound #46184
• EmbeddedWebServerFactoryCustomizerAutoConfiguration fails when undertow-core is on the classpath and undertow-servlet is not #46180
• Executable JAR application class encounters performance issues #46177
• Executable JAR application class encounters performance issues #46176
• Setting spring.reactor.context-propagation has no effect when lazy initialization is enabled #46174
• Setting spring.netty.leak-detection has no effect when lazy initialization is enabled #46170
• SslInfo does not use its Clock when checking certificate validity #46011

📔 Documentation

• Fix description of spring.batch.job.enabled #46247
• Fix broken Kotlin examples in reference documentation #46168
• Add Logback Access Reactor Netty to community starters #46060

🔨 Dependency Upgrades

• Upgrade to ActiveMQ 6.1.7 #46373
• Upgrade to Caffeine 3.2.2 #46432
• Upgrade to Couchbase Client 3.8.2 #46460
• Upgrade to GraphQL Java 24.1 #46395
• Upgrade to Groovy 4.0.28 #46516
• Upgrade to Hibernate 6.6.22.Final #46492
• Upgrade to HikariCP 6.3.1 #46493
• Upgrade to Infinispan 15.2.5.Final #46461
• Upgrade to Jackson Bom 2.19.2 #46494
• Upgrade to Jetty 12.0.23 #46375
• Upgrade to MariaDB 3.5.4 #46376
• Upgrade to Maven Invoker Plugin 3.9.1 #46377
• Upgrade to Micrometer 1.15.2 #46280
• Upgrade to Micrometer Tracing 1.5.2 #46281
• Upgrade to MSSQL JDBC 12.10.1.jre11 #46378
• Upgrade to MySQL 9.3.0 #46371
• Upgrade to Neo4j Java Driver 5.28.9 #46434
• Upgrade to Netty 4.1.123.Final #46435
• Upgrade to Prometheus Client 1.3.10 #46379
• Upgrade to Reactor Bom 2024.0.8 #46282
• Upgrade to RxJava3 3.1.11 #46380
• Upgrade to Spring AMQP 3.2.6 #46283

... (truncated)

Commits

• 925f9bc Release v3.5.4
• d82fb35 Merge branch '3.4.x' into 3.5.x
• 4b6064f Next development version (v3.4.9-SNAPSHOT)
• a39c8f0 Merge branch '3.4.x' into 3.5.x
• 99d53de Upgrade to Spring Integration 6.5.1
• 1b4aad5 Upgrade to Groovy 4.0.28
• 3f0f79b Upgrade to Spring Integration 6.4.6
• ff8443c Upgrade to Groovy 4.0.28
• aed8550 Merge branch '3.4.x' into 3.5.x
• 5406976 Apply commercial input consistently
• Additional commits viewable in compare view

Updates org.springframework.boot:spring-boot-starter-data-jpa from 3.4.5 to 3.5.4

Release notes

Sourced from org.springframework.boot:spring-boot-starter-data-jpa's releases.

v3.5.4

🐞 Bug Fixes

• LambdaSafe.withFilter is not public #46474
• Executable JAR application class encounters performance issues when used with Palo Alto Network Cortex XDR agent #46402
• Runtime dependencies are missing from aotCompileClasspath and aotTestCompileClasspath when using Kotlin #46398
• Additional fields for structured JSON logging incompatible with nested ecs logging in 3.5.x #46351
• Change in DefaultErrorAttributes alters the shape of API validation error responses #46260
• jdbc.connections.active and jdbc.connections.idle metrics are not available when using Hikari in a native image #46225
• developmentOnly and testAndDevelopmentOnly dependencies may prevent implementation dependencies from being included in the uber-jar #46205
• Hash calculation for uber archive entries that require unpacking is inefficient #46203
• Permissions are applied inconsistently when building uber archives with Gradle #46194
• Environment variables using legacy dash format can no longer be bound #46184
• EmbeddedWebServerFactoryCustomizerAutoConfiguration fails when undertow-core is on the classpath and undertow-servlet is not #46180
• Executable JAR application class encounters performance issues #46177
• Executable JAR application class encounters performance issues #46176
• Setting spring.reactor.context-propagation has no effect when lazy initialization is enabled #46174
• Setting spring.netty.leak-detection has no effect when lazy initialization is enabled #46170
• SslInfo does not use its Clock when checking certificate validity #46011

📔 Documentation

• Fix description of spring.batch.job.enabled #46247
• Fix broken Kotlin examples in reference documentation #46168
• Add Logback Access Reactor Netty to community starters #46060

🔨 Dependency Upgrades

• Upgrade to ActiveMQ 6.1.7 #4...

  Description has been truncated

[dependabot]

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot rebase.

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.