chore: [DevOps] bump the production-minor-patch group across 1 directory with 25 updates #661

dependabot · 2024-12-09T07:07:05Z

Bumps the production-minor-patch group with 25 updates in the / directory:

Package	From	To
org.springframework:spring-framework-bom	`6.1.14`	`6.2.0`
org.apache.maven.plugin-tools:maven-plugin-annotations	`3.15.0`	`3.15.1`
com.thoughtworks.qdox:qdox	`2.1.0`	`2.2.0`
org.openapitools:openapi-generator	`7.8.0`	`7.10.0`
io.swagger.core.v3:swagger-models	`2.2.25`	`2.2.26`
io.swagger.parser.v3:swagger-parser	`2.1.22`	`2.1.24`
io.swagger.parser.v3:swagger-parser-core	`2.1.22`	`2.1.24`
org.bouncycastle:bcpkix-jdk18on	`1.78.1`	`1.79`
org.bouncycastle:bcprov-jdk18on	`1.78.1`	`1.79`
org.wiremock:wiremock	`3.9.1`	`3.10.0`
org.junit.jupiter:junit-jupiter-engine	`5.11.2`	`5.11.3`
org.junit.jupiter:junit-jupiter-api	`5.11.2`	`5.11.3`
org.junit.jupiter:junit-jupiter-params	`5.11.2`	`5.11.3`
com.puppycrawl.tools:checkstyle	`10.18.2`	`10.20.2`
org.projectlombok:lombok	`1.18.34`	`1.18.36`
org.apache.maven.archetype:archetype-packaging	`3.3.0`	`3.3.1`
com.sap.cloud.security:java-bom	`3.5.3`	`3.5.5`
com.sap.cloud.environment.servicebinding:java-modules-bom	`0.10.5`	`0.20.0`
commons-io:commons-io	`2.17.0`	`2.18.0`
org.apache.httpcomponents.client5:httpclient5	`5.4`	`5.4.1`
org.checkerframework:checker-qual	`3.48.1`	`3.48.3`
com.google.errorprone:error_prone_annotations	`2.34.0`	`2.36.0`
io.grpc:grpc-bom	`1.68.0`	`1.68.2`
io.spiffe:java-spiffe-core	`0.8.9`	`0.8.11`
io.spiffe:grpc-netty-linux	`0.8.9`	`0.8.11`

Updates org.springframework:spring-framework-bom from 6.1.14 to 6.2.0

Release notes

Sourced from org.springframework:spring-framework-bom's releases.

v6.2.0

⭐ New Features

Update UndertowHttpHandlerAdapter to dispatch #33885

Refine @Contract Javadoc to mention this and new return values #33849

AOT processing for bean validation does not consider cascaded and container element constraints #33842

Avoid repeated resolving of singleton beans through @Lazy proxy #33841

Regiser runtime hints for @TestBean fully-qualified method names #33836

Introduce support for custom reason in @DisabledInAotMode #33833

Use optimistic locking where possible in ResponseBodyEmitter #33831

Revise cookies support with Apache HTTP Components in WebClient and WebTestClient #33822

Remove the pure attribute from @Contract #33820

Introduce @CheckReturnValue annotation #33818

ResourceHttpRequestHandler throwing IllegalArgumentException if resource doesn't end with slash breaks some third-party libraris #33815

Provide first-class virtual thread option on ThreadPoolTaskExecutor/ThreadPoolTaskScheduler #33807

HttpServiceProxyFactory should omit optional @RequestParam if converted from null to empty string #33794

Reactor Netty response should not buffer the full response #33781

Relax the visibility of MockMVC DSL constructors #33778

Support Publisher to InputStream conversion #31677

🐞 Bug Fixes

MockReset should be honored without @Mockito[Spy]Bean fields #33829

Test Bean Overrides do not honor @Primary semantics #33819

Bean Overrides cannot reliably override beans created by a FactoryBean with generics #33811

Bean Overrides for certain FactoryBean use cases no longer work #33800

@MockitoBean, @MockitoSpyBean, & @TestBean do not work with @DirtiesContext "before method" modes #33783

Deprecate exchangeTimeout and refactor readTimeout in ReactorClientHttpRequestFactory #33782

📔 Documentation

Revise documentation for SpEL PropertyAccessor and IndexAccessor APIs regarding ordering #33862

Document UrlHandler Servlet and reactive filters #33784

Improve documentation for SpelCompilerMode #33223

🔨 Dependency Upgrades

Upgrade to ASM 9.7.1 (for early Java 24 support) #33821

Upgrade to Micrometer 1.14.0 #33876

Upgrade to Reactor 2024.0.0 #33878

❤️ Contributors

Thank you to all the contributors who worked on this release:

@Hejow, @OlegDokuka, and @lucky8987

v6.2.0-RC3

⭐ New Features

... (truncated)

Commits

5024bb7 Release v6.2.0
35b452b Upgrade to Undertow 2.3.18.Final, dispatch in UndertowHttpHandlerAdapter
56525da Merge branch '6.1.x'
5145cf4 Next development version (v6.1.16-SNAPSHOT)
d4f8b5d Merge branch '6.1.x'
6cb41dc Upgrade to Netty 4.1.115
cca2450 Improve documentation for SpelCompilerMode
de8a94f Do not set up CookieStore in Apache connector
973d815 Merge branch '6.1.x'
1e95332 Fix link to "Resources" section in reference guide
Additional commits viewable in compare view

Updates org.apache.maven.plugin-tools:maven-plugin-annotations from 3.15.0 to 3.15.1

Commits

bc2daa4 [maven-release-plugin] prepare release maven-plugin-tools-3.15.1
08c9597 Bump asmVersion from 9.7 to 9.7.1
578637b Bump org.junit:junit-bom from 5.11.0 to 5.11.3
a6c9b9c [MPLUGIN-538] Upgrade to Doxia 2.0.0 GA Stack
5d8b615 Bump net.bytebuddy:byte-buddy from 1.14.18 to 1.15.5
9888c96 Bump org.codehaus.plexus:plexus-java from 1.2.0 to 1.3.0
d2adc90 Bump org.apache.commons:commons-lang3 from 3.16.0 to 3.17.0
18c156b Bump maven3Version from 3.9.8 to 3.9.9 (#321)
306fabe Bump org.junit:junit-bom from 5.10.3 to 5.11.0
93604a3 [maven-release-plugin] prepare for next development iteration
See full diff in compare view

Updates com.thoughtworks.qdox:qdox from 2.1.0 to 2.2.0

Commits

9f42358 [maven-release-plugin] prepare release qdox-2.2.0
a65a816 Fix about 100 shift/reduce conflicts
f578b01 Bump org.apache.maven.plugins:maven-release-plugin from 3.0.1 to 3.1.1 (#245)
08b1c57 Bump org.apache.maven.plugins:maven-assembly-plugin from 3.6.0 to 3.7.1 (#246)
a2af82c Bump org.apache.maven.plugins:maven-invoker-plugin from 3.6.0 to 3.8.1 (#247)
b7eff90 unittest for #50 (#244)
ef003c8 unittest for #60 (#243)
f5a2d8b Unittest for 61 (#242)
1112792 Support textblock in Annotations (#241)
5506daf Bump org.apache.maven.plugins:maven-project-info-reports-plugin (#237)
Additional commits viewable in compare view

Updates org.openapitools:openapi-generator from 7.8.0 to 7.10.0

Release notes

Sourced from org.openapitools:openapi-generator's releases.

v7.10.0 released

v7.10.0 stable release (breaking changes with fallbacks) comes with 100+ enhancements, bug fixes. Once again thank you for all the awesome contributions from the community.

This release comes with 4 breaking changes (with fallback) listed below.

3 new generators are included in this release:

Added support for a trait based reqwest Rust client #19788 -g rust --library reqwest-trait

[csharp] Add a server generator for FastEndpoints #19690 aspnet-fastendpoints

[GdScript] Templates for GdScript (Godot 4) #19267 gdscript

Below are the highlights of the changes. For a full list of changes, please refer to the "Pull Request" tab.

General

Fix allOf with properties for the REF_AS_PARENT_IN_ALLOF rule #20083

Update inline model resolver to flatten responses #19992

Fix $ref to allOf in properties #19986

Better handling of allOf with unsupported schemas #19964

Add logic in normalizer to auto fix self-reference schemas #19849

C

[C][Client] Add gcc predefined macros to reserved keywords #19791

C#

fix(csharp): Fixed JsonConverter for discriminators only appearing on base classes #19972

[csharp][generichost] Better handling of duplicate operation ids #19913

[csharp] Address MaxTimeout obsolete build warning #19875 (Breaking change (with fallback))

[csharp] Add a server generator for FastEndpoints #19690

[csharp] Mustache fully qualify namespace for Path #19349

C++

feat cpp-qt-client: fix cast primitive to string #20000

Remove further Qt support before Qt 5.15.2 #19824

Dart

[PHP/Dart/Python] Correctly escape strings in single quotes #19529

[dart2] [client] Added better double handling to 'mapValueOfType' #17808

Erlang

erlang-server: add jesse to app.up release #20120

GdScript

[GdScript] Templates for GdScript (Godot 4) #19267

Go

[BUG][GO] only import reflect when using it #19967

Java

Adding support for @ResponseStatus annotation into spring-http-interface java spring generator #20071

Add equals and hashCode methods to Microprofile #20011

... (truncated)

Commits

12dfe8f prepare 7.10.0 release (#20128)
6b9f6bd update java samples
4185782 #20125 Remove unnecessary model package import to avoid ambiguous class ref...
51a0bd0 Replaced deprecated 'summary' attribute with recommended 'caption' element (#...
1a58d31 update gdscript samples, docs
959cf1c [GdScript] Templates for GdScript (Godot 4) (#19267)
86a18bf erlang-server: add jesse to app.up release (#20120)
6690802 [python-pydantic-v1] Fix bug in serialization for SecretStr by applying chang...
7087104 Bump cross-spawn from 7.0.3 to 7.0.5 in /website (#20116)
02847e9 Update minimum supported version of python in docs to 3.8+ (#20118)
Additional commits viewable in compare view

Updates io.swagger.core.v3:swagger-models from 2.2.25 to 2.2.26

Updates io.swagger.parser.v3:swagger-parser from 2.1.22 to 2.1.24

Release notes

Sourced from io.swagger.parser.v3:swagger-parser's releases.

Swagger-parser 2.1.24 released!

refs #2126 - update swagger parser v1 to 1.0.72 (#2140)

remove leftover (#2133)

fixes OAS 3.1 dereferencing (#2132)

Add logic to process responses with resolvFully parsing option (#2131)

Swagger-parser 2.1.23 released!

update dependencies (#2128)

Enhancement/parser resolve responses flag (#2127)

fix #2081 - support nested composed schemas in resolveFully (#2097)

Fix ref handling in CB, AnyOf & examples (fixes : #2086) (#2087)

Commits

4016cf0 prepare release 2.1.24
65e9f97 refs #2126 - update swagger parser v1 to 1.0.72
bb8e066 remove leftover
47e9f66 fixes OAS 3.1 dereferencing
3f51a62 Merge pull request #2131 from swagger-api/enhancement/ResolverFully-Responses
0e945bd Add logic to process responses with resolvFully parsing option
6bdd4be bump snapshot 2.1.24-SNAPSHOT
d41c742 prepare release 2.1.23
1803529 update dependencies
c84b494 Add ref handling for callbacks
Additional commits viewable in compare view

Updates io.swagger.parser.v3:swagger-parser-core from 2.1.22 to 2.1.24

Updates org.bouncycastle:bcpkix-jdk18on from 1.78.1 to 1.79

Changelog

Sourced from org.bouncycastle:bcpkix-jdk18on's changelog.

2.1.1 Version Release: 1.80 Date: TBD.

2.2.1 Version Release: 1.79 Date: 2024, 30th October.

... (truncated)

Commits

See full diff in compare view

Updates org.bouncycastle:bcprov-jdk18on from 1.78.1 to 1.79

Changelog

Sourced from org.bouncycastle:bcprov-jdk18on's changelog.

2.1.1 Version Release: 1.80 Date: TBD.

2.2.1 Version Release: 1.79 Date: 2024, 30th October.

... (truncated)

Commits

See full diff in compare view

Updates org.bouncycastle:bcprov-jdk18on from 1.78.1 to 1.79

Changelog

Sourced from org.bouncycastle:bcprov-jdk18on's changelog.

2.1.1 Version Release: 1.80 Date: TBD.

2.2.1 Version Release: 1.79 Date: 2024, 30th October.

... (truncated)

Commits

See full diff in compare view

Updates org.wiremock:wiremock from 3.9.1 to 3.10.0

Release notes

Sourced from org.wiremock:wiremock's releases.

3.10.0

🚀 New Features

Added ability for extension factories to be declared as classes (#2909) @tomakehurst

HTTP server loading refinement (#2891) @tomakehurst

New JSON and XML handlebars helpers (#2904) @RafeArnold

🐛 Bug fixes

Add null check in WireMockExtension.stopServerIfRunning() (#2901) @baezzys

fix serialization of ignoreOrderOfSameNode for equalToXml (#2896) @viktormelnychuk

📦 Dependency updates

Bump org.apache.httpcomponents.client5:httpclient5 from 5.3.1 to 5.4.1 (#2883) @dependabot

Bump com.networknt:json-schema-validator from 1.5.2 to 1.5.4 (#2905) @dependabot

Bump com.fasterxml.jackson:jackson-bom from 2.17.2 to 2.18.2 (#2908) @dependabot

Bump org.sonarqube from 5.1.0.4882 to 6.0.1.5171 (#2907) @dependabot

Bump commons-io:commons-io from 2.7 to 2.14.0 in /testlogging (#2862) @dependabot

Bump commons-io:commons-io from 2.17.0 to 2.18.0 (#2902) @dependabot

3.9.2

🐞 Bug Fixes

write RenderableDate to JSON correctly. (#2875) @RafeArnold

Fixed method name typo in MultipartBodyMatchingAcceptanceTest.class (#2867) @aatifansari

Header checks should be case-insensitive in RequestWrapper (#2851) @leeturner

fix failing diffing for multiple path params. (#2827) @RafeArnold

📦 Dependency updates

Bump versions.junitJupiter from 5.11.2 to 5.11.3 (#2877) @dependabot

Bump org.mockito:mockito-junit-jupiter from 5.14.1 to 5.14.2 (#2869) @dependabot

Bump org.mockito:mockito-core from 5.14.1 to 5.14.2 (#2870) @dependabot

Bump org.junit-pioneer:junit-pioneer from 2.2.0 to 2.3.0 (#2865) @dependabot

Bump versions.junitJupiter from 5.11.1 to 5.11.2 (#2864) @dependabot

Bump org.mockito:mockito-junit-jupiter from 5.14.0 to 5.14.1 (#2859) @dependabot

Bump versions.junitJupiter from 5.11.0 to 5.11.1 (#2854) @dependabot

Bump org.mockito:mockito-core from 5.14.0 to 5.14.1 (#2858) @dependabot

Bump org.mockito:mockito-junit-jupiter from 5.13.0 to 5.14.0 (#2857) @dependabot

Bump org.mockito:mockito-core from 5.13.0 to 5.14.0 (#2856) @dependabot

Bump com.google.guava:guava from 33.3.0-jre to 33.3.1-jre (#2850) @dependabot

Bump commons-io:commons-io from 2.16.1 to 2.17.0 (#2846) @dependabot

... (truncated)

Commits

7df345b Filter out class version 66 (java 22) from the shadowJar
248cfdf Bump minor version
bb348b1 Merge pull request #2883 from wiremock/dependabot/gradle/org.apache.httpcompo...
40e6e02 Back to filtering out the connection header and now the upgrade header
764823d No longer filter out the connection header when proxying
0b731eb Merge pull request #2909 from wiremock/support-extension-factories-as-classes
96075b3 Added ability for extension factories to be declared as classes
a0df1e0 Merge pull request #2891 from wiremock/http-server-loading-refinement
2cf90bb Apache now enforces UTF-8 encoding in BasicSchemeFactory as per RFC 7617
0e98c90 Merge remote-tracking branch 'origin/dependabot/gradle/org.apache.httpcompone...
Additional commits viewable in compare view

Updates org.junit.jupiter:junit-jupiter-engine from 5.11.2 to 5.11.3

Release notes

Sourced from org.junit.jupiter:junit-jupiter-engine's releases.

JUnit 5.11.3 = Platform 1.11.3 + Jupiter 5.11.3 + Vintage 5.11.3

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.11.2...r5.11.3

Commits

b20991e Release 5.11.3
e57b508 Finalize 5.11.3 release notes
fb1254c Allow repeating ExtendWith annotation on fields and parameters
a3192bd Fix package name comparison on Java 8 (#4077)
fcb7b01 Remove useless Order annotation
57dfcb5 Allow repeating @…Source annotations when used as meta annotations
09cd8b3 Add ArchUnit test for consistency of repeatable annotations
fa46a92 Hard-wrap at 90 characters
8f45eea Find repeatable @⁠ExtendWith meta-annotations on fields again
b451122 Introduce release notes for 5.11.3
Additional commits viewable in compare view

Updates org.junit.jupiter:junit-jupiter-api from 5.11.2 to 5.11.3

Release notes

Sourced from org.junit.jupiter:junit-jupiter-api's releases.

JUnit 5.11.3 = Platform 1.11.3 + Jupiter 5.11.3 + Vintage 5.11.3

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.11.2...r5.11.3

Commits

b20991e Release 5.11.3
e57b508 Finalize 5.11.3 release notes
fb1254c Allow repeating ExtendWith annotation on fields and parameters
a3192bd Fix package name comparison on Java 8 (#4077)
fcb7b01 Remove useless Order annotation
57dfcb5 Allow repeating @…Source annotations when used as meta annotations
09cd8b3 Add ArchUnit test for consistency of repeatable annotations
fa46a92 Hard-wrap at 90 characters
8f45eea Find repeatable @⁠ExtendWith meta-annotations on fields again
b451122 Introduce release notes for 5.11.3
Additional commits viewable in compare view

Updates org.junit.jupiter:junit-jupiter-params from 5.11.2 to 5.11.3

Release notes

Sourced from org.junit.jupiter:junit-jupiter-params's releases.

JUnit 5.11.3 = Platform 1.11.3 + Jupiter 5.11.3 + Vintage 5.11.3

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.11.2...r5.11.3

Commits

b20991e Release 5.11.3
e57b508 Finalize 5.11.3 release notes
fb1254c Allow repeating ExtendWith annotation on fields and parameters
a3192bd Fix package name comparison on Java 8 (#4077)
fcb7b01 Remove useless Order annotation
57dfcb5 Allow repeating @…Source annotations when used as meta annotations
09cd8b3 Add ArchUnit test for consistency of repeatable annotations
fa46a92 Hard-wrap at 90 characters
8f45eea Find repeatable @⁠ExtendWith meta-annotations on fields again
b451122 Introduce release notes for 5.11.3
Additional commits viewable in compare view

Updates org.junit.jupiter:junit-jupiter-api from 5.11.2 to 5.11.3

Release notes

Sourced from org.junit.jupiter:junit-jupiter-api's releases.

JUnit 5.11.3 = Platform 1.11.3 + Jupiter 5.11.3 + Vintage 5.11.3

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.11.2...r5.11.3

Commits

b20991e Release 5.11.3
e57b508 Finalize 5.11.3 release notes
fb1254c Allow repeating ExtendWith annotation on fields and parameters
a3192bd Fix package name comparison on Java 8 (#4077)
fcb7b01 Remove useless Order annotation
57dfcb5 Allow repeating @…Source annotations when used as meta annotations
09cd8b3 Add ArchUnit test for consistency of repeatable annotations
fa46a92 Hard-wrap at 90 characters
8f45eea Find repeatable @⁠ExtendWith meta-annotations on fields again
b451122 Introduce release notes for 5.11.3
Additional commits viewable in compare view

Updates org.junit.jupiter:junit-jupiter-params from 5.11.2 to 5.11.3

Release notes

Sourced from org.junit.jupiter:junit-jupiter-params's releases.

JUnit 5.11.3 = Platform 1.11.3 + Jupiter 5.11.3 + Vintage 5.11.3

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.11.2...r5.11.3

Commits

b20991e Release 5.11.3
e57b508 Finalize 5.11.3 release notes
fb1254c Allow repeating ExtendWith annotation on fields and parameters
a3192bd Fix package name comparison on Java 8 (#4077)
fcb7b01 Remove useless Order annotation
57dfcb5 Allow repeating @…Source annotations when used as meta annotations
09cd8b3 Add ArchUnit test for consistency of repeatable annotations
fa46a92 Hard-wrap at 90 characters
8f45eea Find repeatable @⁠ExtendWith meta-annotations on fields again
b451122 Introduce release notes for 5.11.3
Additional commits viewable in compare view

Updates com.puppycrawl.tools:checkstyle from 10.18.2 to 10.20.2

Release notes

Sourced from com.puppycrawl.tools:checkstyle's releases.

checkstyle-10.20.2

Checkstyle 10.20.2 - https://checkstyle.org/releasenotes.html#Release_10.20.2

Bug fixes:

#15943 - ArrayIndexOutOfBoundsException on indentation check of try-with-resources #13061 - Solving parsing errors for missing description in block tags #14573 - JavadocType: False negative for unknown tag with no description #11584 - WriteTag reports violation with confusing message when there is no javadoc

checkstyle-10.20.1

Checkstyle 10.20.1 - https://checkstyle.org/releasenotes.html#Release_10.20.1

Bug fixes:

#15851 - google_checks: False positive on left curly brace in switch statement with lambda-like construct

... (truncated)

Commits

fde6157 [maven-release-plugin] prepare release checkstyle-10.20.2
6cb833a doc: release notes for 10.20.2
e89621e Issue #13213: Remove //ok comments from javadoctagcontinuationindentation
5f5e87c dependency: bump pmd.version from 7.7.0 to 7.8.0
8d791cf dependency: bump org.pitest:pitest-maven from 1.17.1 to 1.17.2
ade5c38 dependency: bump nl.jqno.equalsverifier:equalsverifier
c54f4ca Issue #13345: Enable examples tests for AnonInnerLengthCheck
7e5c3c6 Issue #13345: Enable examples tests for RegexSinglelinejavaCheck
d961385 Issue #13345: Enable examples tests for RegexpMultilineCheck
7868e65 Issue #13345: Enable examples tests for PackageDeclarationCheck
Additional commits viewable in compare view

Updates org.projectlombok:lombok from 1.18.34 to 1.18.36

Changelog

Sourced from org.projectlombok:lombok's changelog.

v1.18.36 (November 15th, 2024)

PLATFORM: JDK23 support added.

BUGFIX: Eclipse projects using the com.pro-crafting.tools:jasperreports-maven-plugin will now compile.

Commits

91d79ff [release] pre-release version bump
e8db33a Merge pull request #3768 from tamila-krashtan/fix/with-html
0338705 Revert "[fixes #3116] Add multi round support for mapstruct":
9af596e Fix typo in With.html
3394b6e eclipse downloader: When downloading sources, accept failure.
03cd61a Merge branch 'eclipse-tests-fix'
7a9f3a8 Fix resource management in the eclipse downloader:
87bc91a Merge pull request #3764 from Rawi01/update-index
d21d551 Close ZipOutputStream in eclipse dependency downloader
5caea32 [fixes #3761] Update annotation value index
Additional commits viewable in compare view

Updates org.apache.maven.archetype:archetype-packaging from 3.3.0 to 3.3.1

Release notes

Sourced from org.apache.maven.archetype:archetype-packaging's releases.

3.3.1

Release Notes - Maven Archetype - Version 3.3.1

Commits

e721b39 [maven-release-plugin] prepare release maven-archetype-3.3.1
cb6351c [ARCHETYPE-686] Bump org.apache.velocity:velocity-engine-core from 2.4 to 2.4...
96374eb [ARCHETYPE-574] Use default values in integration tests goal (#232)
24e70c4 [ARCHETYPE-676] Report warning when catalog is not parsable (#234)
3f65ed4 [ARCHETYPE-690] Install archetype-packaging for ITs
2d7b2e5 [ARCHETYPE-689] Restore removed public methods in ArchetypeGenerationRequest
e24ef2c Add PR template
b96cb78 [ARCHETYPE-688] Allow hyphen in requiredProperty
a7b91d8 [ARCHETYPE-680] Use ERROR loglevel in integration test
edd826b [ARCHETYPE-687] Bump org.codehaus.plexus:plexus-velocity from 2.1.0 to 2.2.0 ...
Additional commits viewable in compare view

Updates com.sap.cloud.security:java-bom from 3.5.3 to 3.5.5

Release notes

Sourced from com.sap.cloud.security:java-bom's releases.

3.5.4

[java-security] Reduce log level to debug for errors during certificate parsing

[samples] Cleanup and rework most sample applications

Dependency upgrades

Bump org.mockito:mockito-core from 5.12.0 to 5.14.2

Bump org.eclipse.jetty.version from 12.0.12 to 12.0.13

Bump log4j2.version from 2.23.1 to 2.24.1

Bump spring.security.version from 6.3.3 to 6.3.4

Bump spring.core.version from 6.1.12 to 6.1.14

Bump spring.boot.version from 3.3.2 to 3.3.3

Changelog

Sourced from com.sap.cloud.security:java-bom's changelog.

3.5.5

[token-client] Support CRLF line-endings in PEM formatted service keys

Dependency upgrades

Bump org.apache.httpcomponents.client5:httpclient5 from 5.3.1 to 5.4.1

Bump io.projectreactor:reactor-test from 3.6.9 to 3.7.0

Update spring versions

core to 6.2.0

boot to 3.4.0

security to 6.4.1

Bump org.wiremock:wiremock-standalone from 3.9.1 to 3.9.2

Bump uk.org.webcompere:system-stubs-jupiter from 2.1.6 to 2.1.7

Bump com.nimbusds:nimbus-jose-jwt from 9.40 to 9.47

Bump com.sap.cloud.environment.servicebinding:java-bom from 0.10.5 to 0.20.0

Bump log4j2.version from 2.24.1 to 2.24.2

Bump org.apache.maven.plugins:maven-pmd-plugin from 3.24.0 to 3.26.0

Bump org.apache.maven.plugins:maven-source-plugin from 3.2.1 to 3.3.1

Bump net.revelc.code:impsort-maven-plugin from 1.11.0 to 1.12.0

Bump org.owasp:dependency-check-maven from 10.0.3 to 11.1.0

Bump org.apache.maven.plugins:maven-gpg-plugin from 3.2.5 to 3.2.7

Bump org.apache.maven.plugins:maven-javadoc-plugin from 3.8.0 to 3.11.1

Bump org.apache.maven.plugins:maven-surefire-plugin from 3.4.0 to 3.5.2

Bump com.github.spotbugs:spotbugs-maven-plugin from 4.8.6.2 to 4.8.6.6

Bump commons-io:commons-io from 2.16.1 to 2.18.0

3.5.4

[java-security] Reduce log level to debug for errors during certificate parsing

[samples] Cleanup and rework most sample applications

Dependency upgrades

Bump org.mockito:mockito-core from 5.12.0 to 5.14.2

Bump org.eclipse.jetty.version from 12.0.12 to 12.0.13

Bump log4j2.version from 2.23.1 to 2.24.1

Bump spring.security.ver...
Description has been truncated

…ory with 25 updates Bumps the production-minor-patch group with 25 updates in the / directory: | Package | From | To | | --- | --- | --- | | [org.springframework:spring-framework-bom](https://github.com/spring-projects/spring-framework) | `6.1.14` | `6.2.0` | | [org.apache.maven.plugin-tools:maven-plugin-annotations](https://github.com/apache/maven-plugin-tools) | `3.15.0` | `3.15.1` | | [com.thoughtworks.qdox:qdox](https://github.com/paul-hammant/qdox) | `2.1.0` | `2.2.0` | | [org.openapitools:openapi-generator](https://github.com/openapitools/openapi-generator) | `7.8.0` | `7.10.0` | | io.swagger.core.v3:swagger-models | `2.2.25` | `2.2.26` | | [io.swagger.parser.v3:swagger-parser](https://github.com/swagger-api/swagger-parser) | `2.1.22` | `2.1.24` | | io.swagger.parser.v3:swagger-parser-core | `2.1.22` | `2.1.24` | | [org.bouncycastle:bcpkix-jdk18on](https://github.com/bcgit/bc-java) | `1.78.1` | `1.79` | | [org.bouncycastle:bcprov-jdk18on](https://github.com/bcgit/bc-java) | `1.78.1` | `1.79` | | [org.wiremock:wiremock](https://github.com/wiremock/wiremock) | `3.9.1` | `3.10.0` | | [org.junit.jupiter:junit-jupiter-engine](https://github.com/junit-team/junit5) | `5.11.2` | `5.11.3` | | [org.junit.jupiter:junit-jupiter-api](https://github.com/junit-team/junit5) | `5.11.2` | `5.11.3` | | [org.junit.jupiter:junit-jupiter-params](https://github.com/junit-team/junit5) | `5.11.2` | `5.11.3` | | [com.puppycrawl.tools:checkstyle](https://github.com/checkstyle/checkstyle) | `10.18.2` | `10.20.2` | | [org.projectlombok:lombok](https://github.com/projectlombok/lombok) | `1.18.34` | `1.18.36` | | [org.apache.maven.archetype:archetype-packaging](https://github.com/apache/maven-archetype) | `3.3.0` | `3.3.1` | | [com.sap.cloud.security:java-bom](https://github.com/SAP/cloud-security-xsuaa-integration) | `3.5.3` | `3.5.5` | | [com.sap.cloud.environment.servicebinding:java-modules-bom](https://github.com/SAP/btp-environment-variable-access) | `0.10.5` | `0.20.0` | | commons-io:commons-io | `2.17.0` | `2.18.0` | | [org.apache.httpcomponents.client5:httpclient5](https://github.com/apache/httpcomponents-client) | `5.4` | `5.4.1` | | [org.checkerframework:checker-qual](https://github.com/typetools/checker-framework) | `3.48.1` | `3.48.3` | | [com.google.errorprone:error_prone_annotations](https://github.com/google/error-prone) | `2.34.0` | `2.36.0` | | [io.grpc:grpc-bom](https://github.com/grpc/grpc-java) | `1.68.0` | `1.68.2` | | [io.spiffe:java-spiffe-core](https://github.com/spiffe/java-spiffe) | `0.8.9` | `0.8.11` | | [io.spiffe:grpc-netty-linux](https://github.com/spiffe/java-spiffe) | `0.8.9` | `0.8.11` | Updates `org.springframework:spring-framework-bom` from 6.1.14 to 6.2.0 - [Release notes](https://github.com/spring-projects/spring-framework/releases) - [Commits](spring-projects/spring-framework@v6.1.14...v6.2.0) Updates `org.apache.maven.plugin-tools:maven-plugin-annotations` from 3.15.0 to 3.15.1 - [Release notes](https://github.com/apache/maven-plugin-tools/releases) - [Commits](apache/maven-plugin-tools@maven-plugin-tools-3.15.0...maven-plugin-tools-3.15.1) Updates `com.thoughtworks.qdox:qdox` from 2.1.0 to 2.2.0 - [Commits](paul-hammant/qdox@qdox-2.1.0...qdox-2.2.0) Updates `org.openapitools:openapi-generator` from 7.8.0 to 7.10.0 - [Release notes](https://github.com/openapitools/openapi-generator/releases) - [Changelog](https://github.com/OpenAPITools/openapi-generator/blob/master/docs/3.0.0-release-note.md) - [Commits](OpenAPITools/openapi-generator@v7.8.0...v7.10.0) Updates `io.swagger.core.v3:swagger-models` from 2.2.25 to 2.2.26 Updates `io.swagger.parser.v3:swagger-parser` from 2.1.22 to 2.1.24 - [Release notes](https://github.com/swagger-api/swagger-parser/releases) - [Commits](swagger-api/swagger-parser@v2.1.22...v2.1.24) Updates `io.swagger.parser.v3:swagger-parser-core` from 2.1.22 to 2.1.24 Updates `io.swagger.parser.v3:swagger-parser-core` from 2.1.22 to 2.1.24 Updates `org.bouncycastle:bcpkix-jdk18on` from 1.78.1 to 1.79 - [Changelog](https://github.com/bcgit/bc-java/blob/main/docs/releasenotes.html) - [Commits](https://github.com/bcgit/bc-java/commits) Updates `org.bouncycastle:bcprov-jdk18on` from 1.78.1 to 1.79 - [Changelog](https://github.com/bcgit/bc-java/blob/main/docs/releasenotes.html) - [Commits](https://github.com/bcgit/bc-java/commits) Updates `org.bouncycastle:bcprov-jdk18on` from 1.78.1 to 1.79 - [Changelog](https://github.com/bcgit/bc-java/blob/main/docs/releasenotes.html) - [Commits](https://github.com/bcgit/bc-java/commits) Updates `org.wiremock:wiremock` from 3.9.1 to 3.10.0 - [Release notes](https://github.com/wiremock/wiremock/releases) - [Commits](wiremock/wiremock@3.9.1...3.10.0) Updates `org.junit.jupiter:junit-jupiter-engine` from 5.11.2 to 5.11.3 - [Release notes](https://github.com/junit-team/junit5/releases) - [Commits](junit-team/junit-framework@r5.11.2...r5.11.3) Updates `org.junit.jupiter:junit-jupiter-api` from 5.11.2 to 5.11.3 - [Release notes](https://github.com/junit-team/junit5/releases) - [Commits](junit-team/junit-framework@r5.11.2...r5.11.3) Updates `org.junit.jupiter:junit-jupiter-params` from 5.11.2 to 5.11.3 - [Release notes](https://github.com/junit-team/junit5/releases) - [Commits](junit-team/junit-framework@r5.11.2...r5.11.3) Updates `org.junit.jupiter:junit-jupiter-api` from 5.11.2 to 5.11.3 - [Release notes](https://github.com/junit-team/junit5/releases) - [Commits](junit-team/junit-framework@r5.11.2...r5.11.3) Updates `org.junit.jupiter:junit-jupiter-params` from 5.11.2 to 5.11.3 - [Release notes](https://github.com/junit-team/junit5/releases) - [Commits](junit-team/junit-framework@r5.11.2...r5.11.3) Updates `com.puppycrawl.tools:checkstyle` from 10.18.2 to 10.20.2 - [Release notes](https://github.com/checkstyle/checkstyle/releases) - [Commits](checkstyle/checkstyle@checkstyle-10.18.2...checkstyle-10.20.2) Updates `org.projectlombok:lombok` from 1.18.34 to 1.18.36 - [Changelog](https://github.com/projectlombok/lombok/blob/master/doc/changelog.markdown) - [Commits](projectlombok/lombok@v1.18.34...v1.18.36) Updates `org.apache.maven.archetype:archetype-packaging` from 3.3.0 to 3.3.1 - [Release notes](https://github.com/apache/maven-archetype/releases) - [Commits](apache/maven-archetype@maven-archetype-3.3.0...maven-archetype-3.3.1) Updates `com.sap.cloud.security:java-bom` from 3.5.3 to 3.5.5 - [Release notes](https://github.com/SAP/cloud-security-xsuaa-integration/releases) - [Changelog](https://github.com/SAP/cloud-security-services-integration-library/blob/main/CHANGELOG.md) - [Commits](https://github.com/SAP/cloud-security-xsuaa-integration/commits) Updates `com.sap.cloud.environment.servicebinding:java-modules-bom` from 0.10.5 to 0.20.0 - [Release notes](https://github.com/SAP/btp-environment-variable-access/releases) - [Commits](SAP/btp-environment-variable-access@0.10.5...0.20.0) Updates `commons-io:commons-io` from 2.17.0 to 2.18.0 Updates `org.apache.httpcomponents.client5:httpclient5` from 5.4 to 5.4.1 - [Changelog](https://github.com/apache/httpcomponents-client/blob/rel/v5.4.1/RELEASE_NOTES.txt) - [Commits](apache/httpcomponents-client@rel/v5.4...rel/v5.4.1) Updates `org.checkerframework:checker-qual` from 3.48.1 to 3.48.3 - [Release notes](https://github.com/typetools/checker-framework/releases) - [Changelog](https://github.com/typetools/checker-framework/blob/master/docs/CHANGELOG.md) - [Commits](typetools/checker-framework@checker-framework-3.48.1...checker-framework-3.48.3) Updates `com.google.errorprone:error_prone_annotations` from 2.34.0 to 2.36.0 - [Release notes](https://github.com/google/error-prone/releases) - [Commits](google/error-prone@v2.34.0...v2.36.0) Updates `io.grpc:grpc-bom` from 1.68.0 to 1.68.2 - [Release notes](https://github.com/grpc/grpc-java/releases) - [Commits](grpc/grpc-java@v1.68.0...v1.68.2) Updates `io.spiffe:java-spiffe-core` from 0.8.9 to 0.8.11 - [Release notes](https://github.com/spiffe/java-spiffe/releases) - [Changelog](https://github.com/spiffe/java-spiffe/blob/main/CHANGELOG.md) - [Commits](spiffe/java-spiffe@v0.8.9...v0.8.11) Updates `io.spiffe:grpc-netty-linux` from 0.8.9 to 0.8.11 - [Release notes](https://github.com/spiffe/java-spiffe/releases) - [Changelog](https://github.com/spiffe/java-spiffe/blob/main/CHANGELOG.md) - [Commits](spiffe/java-spiffe@v0.8.9...v0.8.11) --- updated-dependencies: - dependency-name: org.springframework:spring-framework-bom dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-minor-patch - dependency-name: org.apache.maven.plugin-tools:maven-plugin-annotations dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-minor-patch - dependency-name: com.thoughtworks.qdox:qdox dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-minor-patch - dependency-name: org.openapitools:openapi-generator dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-minor-patch - dependency-name: io.swagger.core.v3:swagger-models dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-minor-patch - dependency-name: io.swagger.parser.v3:swagger-parser dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-minor-patch - dependency-name: io.swagger.parser.v3:swagger-parser-core dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-minor-patch - dependency-name: io.swagger.parser.v3:swagger-parser-core dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-minor-patch - dependency-name: org.bouncycastle:bcpkix-jdk18on dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-minor-patch - dependency-name: org.bouncycastle:bcprov-jdk18on dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-minor-patch - dependency-name: org.bouncycastle:bcprov-jdk18on dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-minor-patch - dependency-name: org.wiremock:wiremock dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-minor-patch - dependency-name: org.junit.jupiter:junit-jupiter-engine dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-minor-patch - dependency-name: org.junit.jupiter:junit-jupiter-api dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-minor-patch - dependency-name: org.junit.jupiter:junit-jupiter-params dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-minor-patch - dependency-name: org.junit.jupiter:junit-jupiter-api dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-minor-patch - dependency-name: org.junit.jupiter:junit-jupiter-params dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-minor-patch - dependency-name: com.puppycrawl.tools:checkstyle dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-minor-patch - dependency-name: org.projectlombok:lombok dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-minor-patch - dependency-name: org.apache.maven.archetype:archetype-packaging dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-minor-patch - dependency-name: com.sap.cloud.security:java-bom dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-minor-patch - dependency-name: com.sap.cloud.environment.servicebinding:java-modules-bom dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-minor-patch - dependency-name: commons-io:commons-io dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-minor-patch - dependency-name: org.apache.httpcomponents.client5:httpclient5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-minor-patch - dependency-name: org.checkerframework:checker-qual dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-minor-patch - dependency-name: com.google.errorprone:error_prone_annotations dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-minor-patch - dependency-name: io.grpc:grpc-bom dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-minor-patch - dependency-name: io.spiffe:java-spiffe-core dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-minor-patch - dependency-name: io.spiffe:grpc-netty-linux dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-minor-patch ... Signed-off-by: dependabot[bot] <[email protected]>

…-ae3cc54963

newtork · 2024-12-09T11:25:10Z

...enapi/openapi-core/src/main/java/com/sap/cloud/sdk/services/openapi/apiclient/ApiClient.java

+        @SuppressWarnings( "deprecation" ) // spring-web:6.2.0 and later, works until <7.0.0
        final UriComponentsBuilder builder = UriComponentsBuilder.fromHttpUrl(basePath).path(path);


With spring-web:6.2.0 they...

deprecated UriComponentsBuilder.fromHttpUrl

added UriComponentsBuilder.fromUriString

We cannot simply change API usage, as it would be breaking for all users that have spring-web:6.1.15 and older (2024-11-14).

Screenshot

…ory with 25 updates (#661) Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Alexander Dümont <[email protected]> Co-authored-by: Alexander Dümont <[email protected]>

dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Dec 9, 2024

bot-sdk-js enabled auto-merge (squash) December 9, 2024 10:18

bot-sdk-js previously approved these changes Dec 9, 2024

View reviewed changes

newtork and others added 2 commits December 9, 2024 12:12

Merge branch 'main' into dependabot/maven/main/production-minor-patch…

4726667

…-ae3cc54963

Add suppression

0111a9b

newtork dismissed bot-sdk-js’s stale review via 0111a9b December 9, 2024 11:21

newtork reviewed Dec 9, 2024

View reviewed changes

newtork approved these changes Dec 9, 2024

View reviewed changes

bot-sdk-js merged commit ae36154 into main Dec 9, 2024
14 checks passed

bot-sdk-js deleted the dependabot/maven/main/production-minor-patch-ae3cc54963 branch December 9, 2024 11:44

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

chore: [DevOps] bump the production-minor-patch group across 1 directory with 25 updates #661

chore: [DevOps] bump the production-minor-patch group across 1 directory with 25 updates #661

dependabot bot commented on behalf of github Dec 9, 2024

Uh oh!

newtork Dec 9, 2024

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants

		@SuppressWarnings( "deprecation" ) // spring-web:6.2.0 and later, works until <7.0.0
		final UriComponentsBuilder builder = UriComponentsBuilder.fromHttpUrl(basePath).path(path);

chore: [DevOps] bump the production-minor-patch group across 1 directory with 25 updates #661

chore: [DevOps] bump the production-minor-patch group across 1 directory with 25 updates #661

Conversation

dependabot bot commented on behalf of github Dec 9, 2024

v6.2.0

⭐ New Features

🐞 Bug Fixes

📔 Documentation

🔨 Dependency Upgrades

❤️ Contributors

v6.2.0-RC3

⭐ New Features

v7.10.0 released

General

C

C#

C++

Dart

Erlang

GdScript

Go

Java

Swagger-parser 2.1.24 released!

Swagger-parser 2.1.23 released!

3.10.0

🚀 New Features

🐛 Bug fixes

📦 Dependency updates

3.9.2

🐞 Bug Fixes

📦 Dependency updates

checkstyle-10.20.2

checkstyle-10.20.1

v1.18.36 (November 15th, 2024)

3.3.1

3.5.4

Dependency upgrades

3.5.5

Dependency upgrades

3.5.4

Dependency upgrades

Uh oh!

newtork Dec 9, 2024

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants