build(deps): bump the dependencies group with 12 updates

[dependabot]

Bumps the dependencies group with 12 updates:

Package	From	To
org.hibernate.orm:hibernate-core	6.6.9.Final	6.6.10.Final
org.eclipse.jetty:jetty-server	12.0.16	12.0.17
org.eclipse.jetty.websocket:jetty-websocket-core-server	12.0.16	12.0.17
org.eclipse.jetty.websocket:jetty-websocket-jetty-api	12.0.16	12.0.17
org.eclipse.jetty.websocket:jetty-websocket-jetty-server	12.0.16	12.0.17
org.eclipse.jetty.http2:jetty-http2-server	12.0.16	12.0.17
org.eclipse.jetty:jetty-alpn-java-server	12.0.16	12.0.17
org.eclipse.jetty.http2:jetty-http2-client	12.0.16	12.0.17
org.mockito:mockito-core	5.15.2	5.16.0
org.mockito:mockito-junit-jupiter	5.15.2	5.16.0
software.amazon.awssdk:bom	2.30.31	2.30.36
org.jsoup:jsoup	1.18.3	1.19.1

Updates org.hibernate.orm:hibernate-core from 6.6.9.Final to 6.6.10.Final

Release notes

Sourced from org.hibernate.orm:hibernate-core's releases.

Hibernate ORM 6.6.10.Final released

Today, we published a new release of Hibernate ORM 6.6: 6.6.10.Final.

You can find the full list of 6.6.10.Final changes here.

What's new

This release introduces a few minor improvements as well as bug fixes.

Conclusion

For additional details, see:

• the release page
• the Migration Guide
• the Introduction Guide
• the User Guide

See also the following resources related to supported APIs:

• the compatibility policy
• the incubating API report (@Incubating)
• the deprecated API report (@Deprecated + @Remove)
• the internal API report (internal packages, @Internal)

Visit the website for details on getting in touch with us.

Changelog

Sourced from org.hibernate.orm:hibernate-core's changelog.

Changes in 6.6.10.Final (March 09, 2025)

https://hibernate.atlassian.net/projects/HHH/versions/32647

** Bug * [HHH-19232] - BeanValidationEventListener not called if only associated collection is updated via getter * [HHH-19206] - Bytecode-enhanced dirty checking ineffective if entity's embedded ID set manually (to same value) * [HHH-19195] - Embeddable inheritance: discriminator values are not hierarchically ordered

** Improvement * [HHH-19219] - Informix Catalog and schema support

Commits

• 8ff8bd1 Pre-steps for release : 6.6.10.Final
• 34184a1 HHH-19232 Also listen to collection update events for bean validation
• 3f8b3f9 HHH-19232 Add test for issue
• a5331ad HHH-19195 Discriminator values should be hierarchically sorted.
• 6b04816 HHH-19195 Test case using classes described in https://in.relation.to/2024/07...
• fbe192a HHH-19219 Fix for Informix Catalog and schema support
• bf900c3 HHH-19206 Skip dirty tracking for embedded id fields
• 2a62f89 HHH-19206 Test mutating id verifying it doesn't trigger dirty tracking
• 65f8d91 Post-steps for release : 6.6.9.Final
• See full diff in compare view

Updates org.eclipse.jetty:jetty-server from 12.0.16 to 12.0.17

Updates org.eclipse.jetty.websocket:jetty-websocket-core-server from 12.0.16 to 12.0.17

Updates org.eclipse.jetty.websocket:jetty-websocket-jetty-api from 12.0.16 to 12.0.17

Updates org.eclipse.jetty.websocket:jetty-websocket-jetty-server from 12.0.16 to 12.0.17

Updates org.eclipse.jetty.http2:jetty-http2-server from 12.0.16 to 12.0.17

Updates org.eclipse.jetty:jetty-alpn-java-server from 12.0.16 to 12.0.17

Updates org.eclipse.jetty.http2:jetty-http2-client from 12.0.16 to 12.0.17

Updates org.eclipse.jetty.websocket:jetty-websocket-core-server from 12.0.16 to 12.0.17

Updates org.mockito:mockito-core from 5.15.2 to 5.16.0

Release notes

Sourced from org.mockito:mockito-core's releases.

v5.16.0

Changelog generated by Shipkit Changelog Gradle Plugin

5.16.0

• 2025-03-03 - 10 commit(s) by Brice Dutheil, Rafael Winterhalter, TDL, dependabot[bot]
• Add support for including module-info in Mockito. [(#3597)](mockito/mockito#3597)
• Bump com.gradle.develocity from 3.19 to 3.19.1 [(#3579)](mockito/mockito#3579)
• Bump org.assertj:assertj-core from 3.27.2 to 3.27.3 [(#3577)](mockito/mockito#3577)
• Bump com.diffplug.spotless:spotless-plugin-gradle from 7.0.1 to 7.0.2 [(#3574)](mockito/mockito#3574)
• Bump com.diffplug.spotless:spotless-plugin-gradle from 6.25.0 to 7.0.1 [(#3571)](mockito/mockito#3571)
• Bump org.assertj:assertj-core from 3.27.1 to 3.27.2 [(#3569)](mockito/mockito#3569)
• Tweaks documentation on mockito agent config for maven [(#3568)](mockito/mockito#3568)
• Adds --info to diagnose closeAndReleaseStagingRepositories issues [(#3567)](mockito/mockito#3567)
• Refine reflection when calling management factory [(#3566)](mockito/mockito#3566)
• Avoid warning when dynamic attach is enabled [(#3551)](mockito/mockito#3551)

Commits

• c81be5d Add support for including module-info in Mockito. (#3597)
• d01ac9d Issue #3584 Improve Gradle Kotlin documentation to add agent
• 83ee69b Bump com.gradle.develocity from 3.19 to 3.19.1 (#3579)
• 289e971 Bump org.assertj:assertj-core from 3.27.2 to 3.27.3 (#3577)
• 1ab8483 Bump com.diffplug.spotless:spotless-plugin-gradle from 7.0.1 to 7.0.2 (#3574)
• fdb5df1 Bump com.diffplug.spotless:spotless-plugin-gradle from 6.25.0 to 7.0.1 (#3571)
• e280630 Bump org.assertj:assertj-core from 3.27.1 to 3.27.2 (#3569)
• 96c2095 Tweak documentation on mockito agent config for maven (#3568)
• 1c3800d Add --info to diagnose release issues (#3567)
• e9a4c77 Refine reflection when calling management factory (#3566)
• See full diff in compare view

Updates org.mockito:mockito-junit-jupiter from 5.15.2 to 5.16.0

Release notes

Sourced from org.mockito:mockito-junit-jupiter's releases.

v5.16.0

Changelog generated by Shipkit Changelog Gradle Plugin

5.16.0

• 2025-03-03 - 10 commit(s) by Brice Dutheil, Rafael Winterhalter, TDL, dependabot[bot]
• Add support for including module-info in Mockito. [(#3597)](mockito/mockito#3597)
• Bump com.gradle.develocity from 3.19 to 3.19.1 [(#3579)](mockito/mockito#3579)
• Bump org.assertj:assertj-core from 3.27.2 to 3.27.3 [(#3577)](mockito/mockito#3577)
• Bump com.diffplug.spotless:spotless-plugin-gradle from 7.0.1 to 7.0.2 [(#3574)](mockito/mockito#3574)
• Bump com.diffplug.spotless:spotless-plugin-gradle from 6.25.0 to 7.0.1 [(#3571)](mockito/mockito#3571)
• Bump org.assertj:assertj-core from 3.27.1 to 3.27.2 [(#3569)](mockito/mockito#3569)
• Tweaks documentation on mockito agent config for maven [(#3568)](mockito/mockito#3568)
• Adds --info to diagnose closeAndReleaseStagingRepositories issues [(#3567)](mockito/mockito#3567)
• Refine reflection when calling management factory [(#3566)](mockito/mockito#3566)
• Avoid warning when dynamic attach is enabled [(#3551)](mockito/mockito#3551)

Commits

• c81be5d Add support for including module-info in Mockito. (#3597)
• d01ac9d Issue #3584 Improve Gradle Kotlin documentation to add agent
• 83ee69b Bump com.gradle.develocity from 3.19 to 3.19.1 (#3579)
• 289e971 Bump org.assertj:assertj-core from 3.27.2 to 3.27.3 (#3577)
• 1ab8483 Bump com.diffplug.spotless:spotless-plugin-gradle from 7.0.1 to 7.0.2 (#3574)
• fdb5df1 Bump com.diffplug.spotless:spotless-plugin-gradle from 6.25.0 to 7.0.1 (#3571)
• e280630 Bump org.assertj:assertj-core from 3.27.1 to 3.27.2 (#3569)
• 96c2095 Tweak documentation on mockito agent config for maven (#3568)
• 1c3800d Add --info to diagnose release issues (#3567)
• e9a4c77 Refine reflection when calling management factory (#3566)
• See full diff in compare view

Updates org.mockito:mockito-junit-jupiter from 5.15.2 to 5.16.0

Release notes

Sourced from org.mockito:mockito-junit-jupiter's releases.

v5.16.0

Changelog generated by Shipkit Changelog Gradle Plugin

5.16.0

• 2025-03-03 - 10 commit(s) by Brice Dutheil, Rafael Winterhalter, TDL, dependabot[bot]
• Add support for including module-info in Mockito. [(#3597)](mockito/mockito#3597)
• Bump com.gradle.develocity from 3.19 to 3.19.1 [(#3579)](mockito/mockito#3579)
• Bump org.assertj:assertj-core from 3.27.2 to 3.27.3 [(#3577)](mockito/mockito#3577)
• Bump com.diffplug.spotless:spotless-plugin-gradle from 7.0.1 to 7.0.2 [(#3574)](mockito/mockito#3574)
• Bump com.diffplug.spotless:spotless-plugin-gradle from 6.25.0 to 7.0.1 [(#3571)](mockito/mockito#3571)
• Bump org.assertj:assertj-core from 3.27.1 to 3.27.2 [(#3569)](mockito/mockito#3569)
• Tweaks documentation on mockito agent config for maven [(#3568)](mockito/mockito#3568)
• Adds --info to diagnose closeAndReleaseStagingRepositories issues [(#3567)](mockito/mockito#3567)
• Refine reflection when calling management factory [(#3566)](mockito/mockito#3566)
• Avoid warning when dynamic attach is enabled [(#3551)](mockito/mockito#3551)

Commits

• c81be5d Add support for including module-info in Mockito. (#3597)
• d01ac9d Issue #3584 Improve Gradle Kotlin documentation to add agent
• 83ee69b Bump com.gradle.develocity from 3.19 to 3.19.1 (#3579)
• 289e971 Bump org.assertj:assertj-core from 3.27.2 to 3.27.3 (#3577)
• 1ab8483 Bump com.diffplug.spotless:spotless-plugin-gradle from 7.0.1 to 7.0.2 (#3574)
• fdb5df1 Bump com.diffplug.spotless:spotless-plugin-gradle from 6.25.0 to 7.0.1 (#3571)
• e280630 Bump org.assertj:assertj-core from 3.27.1 to 3.27.2 (#3569)
• 96c2095 Tweak documentation on mockito agent config for maven (#3568)
• 1c3800d Add --info to diagnose release issues (#3567)
• e9a4c77 Refine reflection when calling management factory (#3566)
• See full diff in compare view

Updates org.eclipse.jetty.websocket:jetty-websocket-jetty-api from 12.0.16 to 12.0.17

Updates org.eclipse.jetty.websocket:jetty-websocket-jetty-server from 12.0.16 to 12.0.17

Updates org.eclipse.jetty.http2:jetty-http2-server from 12.0.16 to 12.0.17

Updates org.eclipse.jetty:jetty-alpn-java-server from 12.0.16 to 12.0.17

Updates software.amazon.awssdk:bom from 2.30.31 to 2.30.36

Updates org.jsoup:jsoup from 1.18.3 to 1.19.1

Release notes

Sourced from org.jsoup:jsoup's releases.

jsoup 1.19.1

Changes

• Added support for http/2 requests in Jsoup.connect(), when running on Java 11+, via the Java HttpClient implementation. #2257.
  • In this version of jsoup, the default is to make requests via the HttpUrlConnection implementation: use System.setProperty("jsoup.useHttpClient", "true"); to enable making requests via the HttpClient instead , which will enable http/2 support, if available. This will become the default in a later version of jsoup, so now is a good time to validate it.
  • If you are repackaging the jsoup jar in your deployment (i.e. creating a shaded- or a fat-jar), make sure to specify that as a Multi-Release JAR.
  • If the HttpClient impl is not available in your JRE, requests will continue to be made via HttpURLConnection (in http/1.1 mode).
• Updated the minimum Android API Level validation from 10 to 21. As with previous jsoup versions, Android developers need to enable core library desugaring. The minimum Java version remains Java 8. #2173
• Removed previously deprecated class: org.jsoup.UncheckedIOException (replace with java.io.UncheckedIOException); moved previously deprecated method Element Element#forEach(Consumer) to void Element#forEach(Consumer()). #2246
• Deprecated the methods Document#updateMetaCharsetElement(bool) and #Document#updateMetaCharsetElement(), as the setting had no effect. When Document#charset(Charset) is called, the document's meta charset or XML encoding instruction is always set. #2247

Improvements

• When cleaning HTML with a Safelist that preserves relative links, the isValid() method will now consider these links valid. Additionally, the enforced attribute rel=nofollow will only be added to external links when configured in the safelist. #2245
• Added Element#selectStream(String query) and Element#selectStream(Evaluator) methods, that return a Stream of matching elements. Elements are evaluated and returned as they are found, and the stream can be terminated early. #2092
• Element objects now implement Iterable, enabling them to be used in enhanced for loops.
• Added support for fragment parsing from a Reader via Parser#parseFragmentInput(Reader, Element, String). #1177
• Reintroduced CLI executable examples, in jsoup-examples.jar. #1702
• Optimized performance of selectors like #id .class (and other similar descendant queries) by around 4.6x, by better balancing the Ancestor evaluator's cost function in the query planner. #2254
• Removed the legacy parsing rules for <isindex> tags, which would autovivify a form element with labels. This is no longer in the spec.
• Added Elements.selectFirst(String cssQuery) and Elements.expectFirst(String cssQuery), to select the first matching element from an Elements list. #2263
• When parsing with the XML parser, XML Declarations and Processing Instructions are directly handled, vs bouncing through the HTML parser's bogus comment handler. Serialization for non-doctype declarations no longer end with a spurious !. #2275
• When converting parsed HTML to XML or the W3C DOM, element names containing < are normalized to _ to ensure valid XML. For example, <foo<bar> becomes <foo_bar>, as XML does not allow < in element names, but HTML5 does. #2276
• Reimplemented the HTML5 Adoption Agency Algorithm to the current spec. This handles mis-nested formating / structural elements. #2278

... (truncated)

Changelog

Sourced from org.jsoup:jsoup's changelog.

1.19.1 (2025-03-04)

Changes

• Added support for http/2 requests in Jsoup.connect(), when running on Java 11+, via the Java HttpClient implementation. #2257.
  • In this version of jsoup, the default is to make requests via the HttpUrlConnection implementation: use System.setProperty("jsoup.useHttpClient", "true"); to enable making requests via the HttpClient instead , which will enable http/2 support, if available. This will become the default in a later version of jsoup, so now is a good time to validate it.
  • If you are repackaging the jsoup jar in your deployment (i.e. creating a shaded- or a fat-jar), make sure to specify that as a Multi-Release JAR.
  • If the HttpClient impl is not available in your JRE, requests will continue to be made via HttpURLConnection (in http/1.1 mode).
• Updated the minimum Android API Level validation from 10 to 21. As with previous jsoup versions, Android developers need to enable core library desugaring. The minimum Java version remains Java 8. #2173
• Removed previously deprecated class: org.jsoup.UncheckedIOException (replace with java.io.UncheckedIOException); moved previously deprecated method Element Element#forEach(Consumer) to void Element#forEach(Consumer()). #2246
• Deprecated the methods Document#updateMetaCharsetElement(boolean) and Document#updateMetaCharsetElement(), as the setting had no effect. When Document#charset(Charset) is called, the document's meta charset or XML encoding instruction is always set. #2247

Improvements

• When cleaning HTML with a Safelist that preserves relative links, the isValid() method will now consider these links valid. Additionally, the enforced attribute rel=nofollow will only be added to external links when configured in the safelist. #2245
• Added Element#selectStream(String query) and Element#selectStream(Evaluator) methods, that return a Stream of matching elements. Elements are evaluated and returned as they are found, and the stream can be terminated early. #2092
• Element objects now implement Iterable, enabling them to be used in enhanced for loops.
• Added support for fragment parsing from a Reader via Parser#parseFragmentInput(Reader, Element, String). #1177
• Reintroduced CLI executable examples, in jsoup-examples.jar. #1702
• Optimized performance of selectors like #id .class (and other similar descendant queries) by around 4.6x, by better balancing the Ancestor evaluator's cost function in the query planner. #2254
• Removed the legacy parsing rules for <isindex> tags, which would autovivify a form element with labels. This is no longer in the spec.
• Added Elements.selectFirst(String cssQuery) and Elements.expectFirst(String cssQuery), to select the first matching element from an Elements list. #2263
• When parsing with the XML parser, XML Declarations and Processing Instructions are directly handled, vs bouncing through the HTML parser's bogus comment handler. Serialization for non-doctype declarations no longer end with a spurious !. #2275
• When converting parsed HTML to XML or the W3C DOM, element names containing < are normalized to _ to ensure valid XML. For example, <foo<bar> becomes <foo_bar>, as XML does not allow < in element names, but HTML5 does. #2276

... (truncated)

Commits

• 5c4c09a [maven-release-plugin] prepare release jsoup-1.19.1
• 7de25be Updated changelog in preparation of release
• 6d7a058 Use 'el' instead of 'node' in adoption agency
• 0679bef Perf: removed redundant lowercase normalization
• d80275e Performance tweak when appending tag names
• 4b733b1 Updated InScope search basetypes to be namespace aware
• d89d757 Changelog tidy
• 5fde3d9 Changelog for #2281
• d55469a Clone the Parser when cloning a Document
• 11a0334 Concurrency note
• Additional commits viewable in compare view

Updates org.eclipse.jetty.http2:jetty-http2-client from 12.0.16 to 12.0.17

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[jknack]

@dependabot recreate