Skip to content

[2.4] Backport dependabot upgrades #2370

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 9 commits into from
Jul 17, 2025
Merged

[2.4] Backport dependabot upgrades #2370

merged 9 commits into from
Jul 17, 2025

Conversation

DavideD
Copy link
Member

@DavideD DavideD commented Jul 16, 2025
edited
Loading

  • Bump mssql/server from 2022-latest to 2025-latest in /tooling/docker
  • Bump mariadb from 11.7.2 to 11.8.2 in /tooling/docker
  • Bump junitVersion from 5.11.3 to 5.13.3
  • Bump com.diffplug.spotless from 6.25.0 to 7.1.0
  • Bump db2_community/db2 from 12.1.0.0 to 12.1.2.0 in /tooling/docker
  • Bump cockroachdb/cockroach from v24.3.13 to v25.2.2 in /tooling/docker
  • Bump org.apache.logging.log4j:log4j-core from 2.20.0 to 2.25.1
  • Bump the testcontainers group with 5 updates

dependabot bot added 7 commits July 16, 2025 12:14
@dependabot @DavideD
Bump org.asciidoctor.jvm.convert from 4.0.2 to 4.0.4
30d4e70 
Bumps org.asciidoctor.jvm.convert from 4.0.2 to 4.0.4.

---
updated-dependencies:
- dependency-name: org.asciidoctor.jvm.convert
  dependency-version: 4.0.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot @DavideD
Bump the testcontainers group with 5 updates
9be7a8d 
Bumps the testcontainers group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [com.fasterxml.jackson.core:jackson-databind](https://github.com/FasterXML/jackson) | `2.15.2` | `2.19.1` |
| com.ibm.db2:jcc | `12.1.0.0` | `12.1.2.0` |
| [com.microsoft.sqlserver:mssql-jdbc](https://github.com/Microsoft/mssql-jdbc) | `12.10.0.jre11` | `13.1.0.jre11-preview` |
| [org.mariadb.jdbc:mariadb-java-client](https://github.com/mariadb-corporation/mariadb-connector-j) | `3.5.3` | `3.5.4` |
| [org.postgresql:postgresql](https://github.com/pgjdbc/pgjdbc) | `42.7.5` | `42.7.7` |

Updates `com.fasterxml.jackson.core:jackson-databind` from 2.15.2 to 2.19.1
- [Commits](https://github.com/FasterXML/jackson/commits)

Updates `com.ibm.db2:jcc` from 12.1.0.0 to 12.1.2.0

Updates `com.microsoft.sqlserver:mssql-jdbc` from 12.10.0.jre11 to 13.1.0.jre11-preview
- [Release notes](https://github.com/Microsoft/mssql-jdbc/releases)
- [Changelog](https://github.com/microsoft/mssql-jdbc/blob/main/CHANGELOG.md)
- [Commits](https://github.com/Microsoft/mssql-jdbc/commits)

Updates `org.mariadb.jdbc:mariadb-java-client` from 3.5.3 to 3.5.4
- [Release notes](https://github.com/mariadb-corporation/mariadb-connector-j/releases)
- [Changelog](https://github.com/mariadb-corporation/mariadb-connector-j/blob/main/CHANGELOG.md)
- [Commits](mariadb-corporation/mariadb-connector-j@3.5.3...3.5.4)

Updates `org.postgresql:postgresql` from 42.7.5 to 42.7.7
- [Release notes](https://github.com/pgjdbc/pgjdbc/releases)
- [Changelog](https://github.com/pgjdbc/pgjdbc/blob/master/CHANGELOG.md)
- [Commits](pgjdbc/pgjdbc@REL42.7.5...REL42.7.7)

---
updated-dependencies:
- dependency-name: com.fasterxml.jackson.core:jackson-databind
  dependency-version: 2.19.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: testcontainers
- dependency-name: com.ibm.db2:jcc
  dependency-version: 12.1.2.0
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: testcontainers
- dependency-name: com.microsoft.sqlserver:mssql-jdbc
  dependency-version: 13.1.0.jre11-preview
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: testcontainers
- dependency-name: org.mariadb.jdbc:mariadb-java-client
  dependency-version: 3.5.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: testcontainers
- dependency-name: org.postgresql:postgresql
  dependency-version: 42.7.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: testcontainers
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot @DavideD
Bump org.apache.logging.log4j:log4j-core from 2.20.0 to 2.25.1
0c9d719 
Bumps org.apache.logging.log4j:log4j-core from 2.20.0 to 2.25.1.

---
updated-dependencies:
- dependency-name: org.apache.logging.log4j:log4j-core
  dependency-version: 2.25.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot @DavideD
Bump cockroachdb/cockroach from v24.3.13 to v25.2.2 in /tooling/docker
9bf1867 
Bumps cockroachdb/cockroach from v24.3.13 to v25.2.2.

---
updated-dependencies:
- dependency-name: cockroachdb/cockroach
  dependency-version: v25.2.2
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot @DavideD
Bump db2_community/db2 from 12.1.0.0 to 12.1.2.0 in /tooling/docker
f0d30e7 
Bumps db2_community/db2 from 12.1.0.0 to 12.1.2.0.

---
updated-dependencies:
- dependency-name: db2_community/db2
  dependency-version: 12.1.2.0
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot @DavideD
Bump com.diffplug.spotless from 6.25.0 to 7.1.0
0b77b60 
Bumps com.diffplug.spotless from 6.25.0 to 7.1.0.

---
updated-dependencies:
- dependency-name: com.diffplug.spotless
  dependency-version: 7.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot @DavideD
Bump junitVersion from 5.11.3 to 5.13.3
a4e6561 
Requires extra dependency org.junit.platform:junit-platform-launcher:1.13.3

---
updated-dependencies:
- dependency-name: org.junit.jupiter:junit-jupiter-api
  dependency-version: 5.13.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: org.junit.jupiter:junit-jupiter-engine
  dependency-version: 5.13.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@DavideD DavideD added this to the 2.4.9 milestone Jul 16, 2025
@DavideD DavideD added 2.4 dependencies Pull requests that update a dependency file labels Jul 16, 2025
dependabot bot added 2 commits July 16, 2025 12:29
@dependabot @DavideD
Bump mariadb from 11.7.2 to 11.8.2 in /tooling/docker
ae527c0 
Bumps mariadb from 11.7.2 to 11.8.2.

---
updated-dependencies:
- dependency-name: mariadb
  dependency-version: 11.8.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot @DavideD
Bump mssql/server from 2022-latest to 2025-latest in /tooling/docker
4799c4a 
Bumps mssql/server from 2022-latest to 2025-latest.

---
updated-dependencies:
- dependency-name: mssql/server
  dependency-version: 2025-latest
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>
@DavideD DavideD merged commit ae8f79c into hibernate:2.4 Jul 17, 2025
18 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
2.4 dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
2.4.9
Development

Successfully merging this pull request may close these issues.
1 participant
@DavideD