Bump the dependencies group across 1 directory with 22 updates

[dependabot]

Bumps the dependencies group with 21 updates in the / directory:

Package	From	To
com.fasterxml.jackson.core:jackson-annotations	2.17.1	2.17.2
com.fasterxml.jackson.core:jackson-core	2.17.1	2.17.2
com.fasterxml.jackson.dataformat:jackson-dataformat-xml	2.17.1	2.17.2
com.github.dasniko:testcontainers-keycloak	3.3.1	3.4.0
com.google.guava:guava	33.2.0-jre	33.2.1-jre
org.eclipse.jetty:jetty-servlet	10.0.21	10.0.22
org.jooq:jooq	3.19.8	3.19.10
org.jooq:jooq-codegen	3.19.8	3.19.10
org.jooq:jooq-meta	3.19.8	3.19.10
org.junit:junit-bom	5.10.2	5.10.3
org.junit.platform:junit-platform-suite	1.10.2	1.10.3
org.keycloak:keycloak-servlet-filter-adapter	24.0.4	24.0.5
io.github.git-commit-id:git-commit-id-maven-plugin	8.0.2	9.0.1
org.apache.maven.plugins:maven-jar-plugin	3.4.1	3.4.2
org.apache.maven.plugins:maven-dependency-plugin	3.6.1	3.7.1
org.apache.maven.plugins:maven-shade-plugin	3.5.3	3.6.0
org.owasp:dependency-check-maven	9.2.0	10.0.2
org.apache.maven.plugins:maven-surefire-plugin	3.2.5	3.3.1
org.apache.maven.plugins:maven-release-plugin	3.0.1	3.1.1
org.apache.maven.plugins:maven-javadoc-plugin	3.6.3	3.7.0
org.sonatype.plugins:nexus-staging-maven-plugin	1.6.13	1.7.0

Updates com.fasterxml.jackson.core:jackson-annotations from 2.17.1 to 2.17.2

Commits

• See full diff in compare view

Updates com.fasterxml.jackson.core:jackson-core from 2.17.1 to 2.17.2

Commits

• a6f49ca [maven-release-plugin] prepare release jackson-core-2.17.2
• 3d41b1c Prepare for 2.17.2 release
• 55261be Fix #1308: allow trailing dot for "Stringified numbers" (#1309)
• 449ed86 Update javadoc to clarify buffering of JsonParser.getText(Writer) wrt #1288
• 27edeb7 Back to snapshot deps
• 948e63d [maven-release-plugin] prepare for next development iteration
• See full diff in compare view

Updates com.fasterxml.jackson.dataformat:jackson-dataformat-xml from 2.17.1 to 2.17.2

Commits

• 1d0d5c1 [maven-release-plugin] prepare release jackson-dataformat-xml-2.17.2
• 853d781 Prepare for 2.17.2 release
• 81632e0 Minor changes to test, move to misc tests package
• 91581fe Revert imports
• ad58313 Add regression test
• 1bccf79 Update Woodstox dep to 6.7.0
• afc3109 Fix #657: track nesting depth (#658)
• d05688e Merge branch '2.16' into 2.17
• c3b48f3 Fix #509 (re-created #651 with changes) (#652)
• 120b2bb Back to snapshot dep
• Additional commits viewable in compare view

Updates com.fasterxml.jackson.core:jackson-core from 2.17.1 to 2.17.2

Commits

• a6f49ca [maven-release-plugin] prepare release jackson-core-2.17.2
• 3d41b1c Prepare for 2.17.2 release
• 55261be Fix #1308: allow trailing dot for "Stringified numbers" (#1309)
• 449ed86 Update javadoc to clarify buffering of JsonParser.getText(Writer) wrt #1288
• 27edeb7 Back to snapshot deps
• 948e63d [maven-release-plugin] prepare for next development iteration
• See full diff in compare view

Updates com.fasterxml.jackson.core:jackson-databind from 2.17.1 to 2.17.2

Commits

• See full diff in compare view

Updates com.fasterxml.jackson.dataformat:jackson-dataformat-xml from 2.17.1 to 2.17.2

Commits

• 1d0d5c1 [maven-release-plugin] prepare release jackson-dataformat-xml-2.17.2
• 853d781 Prepare for 2.17.2 release
• 81632e0 Minor changes to test, move to misc tests package
• 91581fe Revert imports
• ad58313 Add regression test
• 1bccf79 Update Woodstox dep to 6.7.0
• afc3109 Fix #657: track nesting depth (#658)
• d05688e Merge branch '2.16' into 2.17
• c3b48f3 Fix #509 (re-created #651 with changes) (#652)
• 120b2bb Back to snapshot dep
• Additional commits viewable in compare view

Updates com.github.dasniko:testcontainers-keycloak from 3.3.1 to 3.4.0

Release notes

Sourced from com.github.dasniko:testcontainers-keycloak's releases.

v3.4.0

What's Changed

• use fixed health endpoint for wait strategy on new management port by @​dasniko in dasniko/testcontainers-keycloak#142
• use envvars as default config options and add custom command parts by @​dasniko in dasniko/testcontainers-keycloak#143
• allow for multiple provider classes locations by @​dasniko in dasniko/testcontainers-keycloak#129
• new truststore config by @​dasniko in dasniko/testcontainers-keycloak#144
• don't use client auth on http management port by @​dasniko in dasniko/testcontainers-keycloak#146

Full Changelog: dasniko/testcontainers-keycloak@v.3.3.1...3.4.0

Bump to Keycloak 19.0.0

No release notes provided.

Commits

• 9ac6f36 [maven-release-plugin] prepare release 3.4.0
• 5c9e33d upgrade Keycloak image to 25
• b60a771 docs to 25
• 0d020e6 update dependencies
• 317a2bc don't use client auth on http management port (#146)
• 861ffe6 new truststore config (#144)
• 6494808 add new video about this testcontainer
• 455a5df "fix" (re-enable) mutual-tls-required tests with custom wait strategy (log)
• 9a9f386 adjust trigger
• d2780aa fix doc
• Additional commits viewable in compare view

Updates com.google.guava:guava from 33.2.0-jre to 33.2.1-jre

Release notes

Sourced from com.google.guava:guava's releases.

33.2.1

<dependency>
  <groupId>com.google.guava</groupId>
  <artifactId>guava</artifactId>
  <version>33.2.1-jre</version>
  <!-- or, for Android: -->
  <version>33.2.1-android</version>
</dependency>

Jar files

• 33.2.1-jre.jar
• 33.2.1-android.jar

Guava requires one runtime dependency, which you can download here:

• failureaccess-1.0.1.jar

Javadoc

• 33.2.1-jre
• 33.2.1-android

JDiff

• 33.2.1-jre vs. 33.2.0-jre
• 33.2.1-android vs. 33.2.0-android
• 33.2.1-android vs. 33.2.1-jre

Changelog

• net: Changed InetAddress-String conversion methods to preserve the IPv6 scope ID if present. The scope ID can be necessary for IPv6-capable devices with multiple network interfaces. However, preserving it can also lead to problems for callers that rely on the returned values not to include the scope ID:
  • Callers might compensate for the old behavior of the methods by appending the scope ID to a returned string themselves. If so, you can update your code to stop doing so at the same time as you upgrade Guava. Of, if your code might run against multiple versions of Guava, you can check whether Guava has included a scope ID before you add one yourself.
  • Callers might pass the returned string to another system that does not understand scope IDs. If so, you can strip the scope ID off, whether by truncating the string form at a % character (leaving behind any trailing ] character in the case of forUriString) or by replacing the returned InetAddress with a new instance constructed by calling InetAddress.getByAddress(addr).
  • java.net.InetAddress validates any provided scope ID against the interfaces available on the machine. As a result, methods in InetAddresses may now fail if the scope ID fails validation.
    • Notable cases in which this may happen include:
      • if the code runs in an Android app without networking permission
      • if code passes InetAddress instances or strings across devices
    • If this is not the behavior that you want, then you can strip off the scope ID from the input string before passing it to Guava, as discussed above. (3f61870ac6)

Commits

• See full diff in compare view

Updates org.eclipse.jetty:jetty-servlet from 10.0.21 to 10.0.22

Updates org.jooq:jooq from 3.19.8 to 3.19.10

Updates org.jooq:jooq-codegen from 3.19.8 to 3.19.10

Updates org.jooq:jooq-meta from 3.19.8 to 3.19.10

Updates org.jooq:jooq-codegen from 3.19.8 to 3.19.10

Updates org.jooq:jooq-meta from 3.19.8 to 3.19.10

Updates org.junit:junit-bom from 5.10.2 to 5.10.3

Release notes

Sourced from org.junit:junit-bom's releases.

JUnit 5.10.3 = Platform 1.10.3 + Jupiter 5.10.3 + Vintage 5.10.3

See Release Notes.

Full Changelog: junit-team/junit5@r5.10.2...r5.10.3

Commits

• 55d1232 Release 5.10.3
• 4455093 Remove accidental heading
• b86a681 Remove JDK 21 as it's no longer available via Oracle's setup-java step
• bc1608c Clean up release notes
• 316ed31 Use Liberica for JDK 8 for compatibility with Apple Silicon
• ad7c5dd Update copyright headers to 2024
• 6c663b1 Use same default seed for method and class ordering (#3821)
• d29e3eb Fix NPE when deserializing TestIdentifier (#3820)
• f936c01 Fix class-level execution conditions on GraalVM (#3785)
• 76b7c05 Allow GraalVmStarterTests to run remotely on Test Distribution agents
• Additional commits viewable in compare view

Updates org.junit.platform:junit-platform-suite from 1.10.2 to 1.10.3

Commits

• See full diff in compare view

Updates org.keycloak:keycloak-servlet-filter-adapter from 24.0.4 to 24.0.5

Updates io.github.git-commit-id:git-commit-id-maven-plugin from 8.0.2 to 9.0.1

Release notes

Sourced from io.github.git-commit-id:git-commit-id-maven-plugin's releases.

Version 9.0.1 is finally there and includes various bug-fixes and improvements :-)

New Features / Bug-Fixes:

The main key-aspects that have been improved or being worked on are the following:

• #754 / #760: Fix an issue where empty git.properties had been generated in submodules when injectAllReactorProjects=true

• bump several maven plugins

  • bump org.apache.maven.plugins:maven-checkstyle-plugin from 3.3.1 to 3.4.0
  • bump org.apache.maven.plugins:maven-release-plugin from 3.0.1 to 3.1.0
  • bump org.apache.maven.plugins:maven-surefire-plugin from 3.2.5 to 3.3.0
  • bump org.apache.maven.plugins:maven-clean-plugin from 3.3.2 to 3.4.0
  • bump org.apache.maven.plugins:maven-dependency-plugin from 3.6.1 to 3.7.1

Getting the latest release

The plugin is available from Maven Central (see here), so you don't have to configure any additional repositories to use this plugin. All you need to do is to configure it inside your project as dependency:

<dependency>
    <groupId>io.github.git-commit-id</groupId>
    <artifactId>git-commit-id-maven-plugin</artifactId>
    <version>9.0.1</version>
</dependency>

Getting the latest snapshot (build automatically)

If you can't wait for the next release, you can also get the latest snapshot version from sonatype, that is being deployed automatically by github actions:

<pluginRepositories>
    <pluginRepository>
        <id>sonatype-snapshots</id>
        <name>Sonatype Snapshots</name>
         <url>https://s01.oss.sonatype.org/content/repositories/snapshots/</url>
    </pluginRepository>
</pluginRepositories>

Even though the github actions will only deploy a new snapshot once all tests have finished, it is recommended to rely on the released and more stable version.

Known Issues / Limitations:

• This plugin is unfortunately not working with Heroku which is due to the fact how Heroku works. In summary Heroku does not copy over the .git-repository but in order to determine the git properties this plugin relies on the fact that it has access to the git-repository. A somewhat workaround to get some information is outlined in ktoso/maven-git-commit-id-plugin#279
• Using maven's plugin prefix resolution (e.g. mvn com.test.plugins:myPlugin:myMojo) might result in unresolved properties even with <injectAllReactorProjects>true</injectAllReactorProjects>. Please refer to git-commit-id/maven-git-commit-id-plugin#287 or git-commit-id/maven-git-commit-id-plugin#413 for details and potential workarounds

Reporting Problems

If you find any problem with this plugin, feel free to report it here

Version 9.0.0 is finally there and includes various bug-fixes and improvements :-)

⚠️ This is a potentially breaking release. Read the release-notes carefully ⚠️

Potential Breaking changes:

The main key-aspects that might cause a breakage when migrating to the new version:

... (truncated)

Commits

• cba7dc5 [maven-release-plugin] prepare release v9.0.1
• 08004a2 Merge pull request #760 from git-commit-id/754
• 1238467 fix checkstyle
• cb2490d git-commit-id/git-commit-id-maven-plugin#754: Fix a...
• 38b9b4e Merge pull request #759 from git-commit-id/dependabot/maven/org.apache.maven....
• 977f148 Merge pull request #758 from git-commit-id/dependabot/maven/org.apache.maven....
• 9867c07 Merge pull request #756 from git-commit-id/dependabot/maven/org.apache.maven....
• 20f53da Merge pull request #755 from git-commit-id/dependabot/maven/org.apache.maven....
• 98c058e build(deps): bump org.apache.maven.plugins:maven-dependency-plugin
• 345cf3d build(deps): bump org.apache.maven.plugins:maven-clean-plugin
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-jar-plugin from 3.4.1 to 3.4.2

Release notes

Sourced from org.apache.maven.plugins:maven-jar-plugin's releases.

3.4.2

🐛 Bug Fixes

• [MJAR-310] - fixed toolchain version detection when toolchain paths contain white spaces (#86) @​jansohn

👻 Maintenance

• Build with Maven 4 (#88) @​slawekjaranowski

Commits

• 95007e8 [maven-release-plugin] prepare release maven-jar-plugin-3.4.2
• 99584ce Build with Maven 4
• e9c98a4 [MJAR-310] fixed toolchain version detection when toolchain paths contain whi...
• a5554bb [maven-release-plugin] prepare for next development iteration
• See full diff in compare view

Updates org.apache.maven.plugins:maven-dependency-plugin from 3.6.1 to 3.7.1

Release notes

Sourced from org.apache.maven.plugins:maven-dependency-plugin's releases.

3.7.1

🐛 Bug Fixes

• [MDEP-943] - Fix appendOutput option (#414) @​slawekjaranowski

📦 Dependency updates

• [MDEP-944] - Bump org.apache.maven.shared:maven-common-artifact-filters from 3.3.2 to 3.4.0 (#413) @​dependabot

👻 Maintenance

• [MDEP-945] - Fix documentation about get goal (#415) @​slawekjaranowski
• [MDEP-940] - Use Resolver API instead of m-a-t for resolving artifacts (#410) @​slawekjaranowski

3.7.0

• [MDEP-941] - Deprecate dependency:sources in favor of dependency:resolv… (#411) @​michael-o
• [MDEP-838] - "Artifact has not been packaged yet" error message is not … (#412) @​michael-o
• [MDEP-939] - Lock down classifier in dependency:sources goal (#409) @​michael-o
• Revert "Fix sources goal for multimodule projects" (#408) @​michael-o
• [MDEP-923] - Move methods in place where are used (#407) @​slawekjaranowski
• MDEP-938] Correct invalid property name and add deprecated old one (#404) @​hazendaz
• [MDEP-835] - Add optional dependency for tree IT (#403) @​slawekjaranowski
• Add missing dependency (#401) @​michael-o

🚀 New features and improvements

• [MDEP-799] - tree: add optional output type json (#391) @​LogFlames
• [MDEP-928] - Allow excluding classes from dependency:analyze (#393) @​slawekjaranowski
• [MDEP-924] - Get rid of maven-artifact-transfer from list-classes goal (#382) @​slawekjaranowski
• [MDEP-925] - Require Maven 3.6.3 (#381) @​slawekjaranowski
• [MDEP-922] - dependency:analyze-exclusions - should report issue only in current project (#378) @​slawekjaranowski
• [MDEP-917] - dependency:analyze-exclusions - use Resolver API instead of ProjectBuilder (#374) @​slawekjaranowski
• [MDEP-317] - add mojo to analyze invalid exclusions (#362) @​vbreivik
• [MDEP-894] - Use @Component only - fix tests (#360) @​michael-o

🐛 Bug Fixes

• [MDEP-914] - Fix link in collect goal description (#380) @​slawekjaranowski
• [MDEP-895] - dependency:sources fails for multi-module project (#349) @​jmle
• [MDEP-771] - Remove broken 404 link (#344) @​elharo

📦 Dependency updates

• [MDEP-936] - Bump org.apache.maven.shared:maven-dependency-tree from 3.2.1 to 3.3.0 (#397) @​dependabot
• [MDEP-920] - Bump org.assertj:assertj-core from 3.25.3 to 3.26.0 (#395) @​dependabot
• [MDEP-929] - Bump org.apache.maven.shared:maven-dependency-analyzer from 1.14.0 to 1.14.1 (#394) @​dependabot
• Bump org.apache.maven.shared:maven-dependency-analyzer from 1.13.2 to 1.14.0 (#392) @​dependabot
• [MDEP-921] - Bump org.apache.commons:commons-text from 1.11.0 to 1.12.0 (#376) @​dependabot

... (truncated)

Commits

• e8c1a62 [maven-release-plugin] prepare release maven-dependency-plugin-3.7.1
• d656b03 [MDEP-945] Fix documentation about get goal
• 82a9d60 [MDEP-940] Use Resolver API instead of m-a-t for resolving artifacts
• 8e1f1b5 [MDEP-943] Fix appendOutput option
• e06630c Bump org.apache.maven.shared:maven-common-artifact-filters
• a11d253 [maven-release-plugin] prepare for next development iteration
• f975bcb [maven-release-plugin] prepare release maven-dependency-plugin-3.7.0
• dbdda0c [MDEP-941] Deprecate dependency:sources in favor of dependency:resolve-sources
• f090b5e [MDEP-838] "Artifact has not been packaged yet" error message is not very hel...
• 9902456 [MDEP-669] Optimize the documentation of <outputProperty> of build-classpath ...
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-shade-plugin from 3.5.3 to 3.6.0

Commits

• 9a572e2 [maven-release-plugin] prepare release maven-shade-plugin-3.6.0
• ade2e35 [MSHADE-428] Prevent null value in array of transformers (#229)
• b573b8c [MSHADE-478] Extra JARs feature (#228)
• 199ffae Drop the cruft (#225)
• 912a81d Bump maven-gh-actions-shared to v4
• 80e4420 [maven-release-plugin] prepare for next development iteration
• See full diff in compare view

Updates org.owasp:dependency-check-maven from 9.2.0 to 10.0.2

Release notes

Sourced from org.owasp:dependency-check-maven's releases.

Version 10.0.2

Refer to the CHANGELOG.md for information about improvements and upgrade notes.

Version 10.0.1

Refer to the CHANGELOG.md for information about improvements and upgrade notes.

Version 10.0.0

Refer to the CHANGELOG.md for information about improvements and upgrade notes.

Changelog

Sourced from org.owasp:dependency-check-maven's changelog.

Version 10.0.2 (2024-07-06)

Mandatory Upgrade - due to older versions of dependency-check causing numerous, spurious requests that end in processing failures, this upgrade is mandatory so that the NVD can differentiate valid requests and block the old clients.

• build(deps): bump open-vulnerability-clients (#6810)
• fix(db): #6788 removing redundant db index "idxVulnerability" on "vulnerability.cve" (#6807)
• docs: Further improve formatting and docs of H2 database caching strats (#6804)
• fix: update_vulnerability in dbStatements_oracle.properties (#6803)
• fix: fix NPE (#6778)
• fix: add hint to resolve false negative (#6802)
• chore: update configure (#6794)

See the full listing of changes.

Version 10.0.1 (2024-07-02)

• build(deps): bump open-vulnerability-client (#6772)
• fix: remove debug logging (#6770)
• fix: postgresql column count error (#6773)
• fix: mssql column name and version (#6761)
• docs: update supported versions (#6771)

See the full listing of changes.

Version 10.0.0 (2024-07-01)

• breaking change: upgrade to dotnet 8.0 (#6580)
  • Users of the AssemblyAnalyzer must upgrade/utilize dotnet 8 to analyze assemblies
• feat: fix the NVD API related errors by adding cvssV4 support (#6756)
  • breaking changes: anyone utilizing a centralized database will need to upgrade the schema; see changes in [PR #6756](jeremylong/DependencyCheck#6756)
• fix: avoid escaping unnecessary chars in HTML report suppression regexes (#6749)
• fix: #6688 Trim version number when parsin POM (#6705)
• fix: change request if lockfile is file v3 (#6690)
• fix: skip pyproject.toml unless it contains tool.poetry before ensuring lockfiles (#6681)

See the full listing of changes.

Commits

• b7b030c build: prepare release v10.0.2
• f22ebf1 docs: mandatory upgrade notice
• bcbbe1c docs: release 10.0.2
• 1b3398d build(deps): bump open-vulnerability-clients (#6810)
• 06e39fc fix(db): #6788 removing redundant db index "idxVulnerability" on "vulnerabili...
• 4926cd2 build(deps): bump org.apache.maven.plugins:maven-dependency-plugin from 3.7.0...
• 3bfb398 docs: Further improve formatting and docs of H2 database caching strats (#6804)
• 51f84ff fix: update_vulnerability in dbStatements_oracle.properties (#6803)
• 3f0ffa9 fix: fix NPE (#6778)
• 9fbb996 fix: add hint to resolve false negative (#6802)
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-surefire-plugin from 3.2.5 to 3.3.1

Release notes

Sourced from org.apache.maven.plugins:maven-surefire-plugin's releases.

3.3.0

Release Notes - Maven Surefire - Version 3.3.0

What's Changed

• Bump org.htmlunit:htmlunit from 3.9.0 to 3.10.0 by @​dependabot in apache/maven-surefire#717

... (truncated)

Commits

• 7e45620 [maven-release-plugin] prepare release surefire-3.3.1
• 561b4ca [SUREFIRE-2250] Surefire Test Report Schema properties element is not consist...
• 6aaea8a [SUREFIRE-1360] Ability to disable properties for successfully passed tests
• c17b92b Bump org.codehaus.mojo:animal-sniffer-maven-plugin from 1.23 to 1.24
• 748d9dc Fix typos
• f8092e9 Improve time units
• c670335 [SUREFIRE-1934] Ability to disable system-out/system-err for successfully pas...
• bce1b39 Improve docs of linkXRef
• 3c49ebd Bump org.htmlunit:htmlunit from 4.2.0 to 4.3.0
• 6ff0f83 [SUREFIRE-2242] Plain test report does not include names of the skipped tests
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-release-plugin from 3.0.1 to 3.1.1

Release notes

Sourced from org.apache.maven.plugins:maven-release-plugin's releases.

3.1.0

🚀 New features and improvements

• [MRELEASE-1145] - Upgrade to Maven 3.6.3 (#217) @​michael-o
• [MRELEASE-1139] - Improve logging of sources for used credentials (#209) @​kwin
• [MRELEASE-1134] - Pass interactive flag to SCM provider (#197) @​kwin

🐛 Bug Fixes

• [MRELEASE-1064] - [REGRESSION] release:branch uses @​releaseLabel instea… (#221) @​michael-o
• [MRELEASE-1147] - @​junitVersion@ never replaced in UTs (make explicit) (#220) @​michael-o
• [MRELEASE-1148] - Release Manage pulls in transitive dependencies (#219) @​michael-o
• [MRELEASE-1146] - maven-release-plugin tests do not properly check for … (#218) @​michael-o
• [MRELEASE-1109] - patch JDomModel (#201) @​mkolesnikov
• [MRELEASE-1109] - Support CI friendly versions (#198) @​kwin

📦 Dependency updates

• Bump scmVersion from 2.0.1 to 2.1.0 (#213) @​dependabot
• Bump org.apache.maven.shared:maven-invoker from 3.2.0 to 3.3.0 (#215) @​dependabot
• Bump org.codehaus.plexus:plexus-interactivity-api from 1.2 to 1.3 (#210) @​dependabot
• Bump org.codehaus.plexus:plexus-interpolation from 1.26 to 1.27 (#206) @​dependabot
• Bump org.xmlunit:xmlunit-core from 2.9.1 to 2.10.0 (#214) @​dependabot
• [MRELEASE-1144] - Upgrade to Parent 42 (#216) @​michael-o
• Bump apache/maven-gh-actions-shared from 3 to 4 (#212) @​dependabot
• Bump org.codehaus.plexus:plexus-interactivity-api from 1.1 to 1.2 (#207) @​dependabot
• Bump org.codehaus.mojo:mrm-maven-plugin from 1.5.0 to 1.6.0 (#200) @​dependabot
• Bump org.apache.maven.plugins:maven-invoker-plugin from 3.5.1 to 3.6.0 (#204) @​dependabot
• Bump org.apache.commons:commons-lang3 from 3.12.0 to 3.14.0 (#205) @​dependabot
• [MRELEASE-1128] - update maven-scm to 2.0.1 (#192) @​elharo

👻 Maintenance

• Bump release-drafter/release-drafter from 5 to 6 (#211) @​dependabot
• [MRELEASE-1136] - Upgrade parent pom to 41 (#208) @​slachiewicz
• fixup hamcrest dependencies (#194) @​elharo
• prefer JDK String replace methods to Plexus ones (#193) @​elharo

Commits

• 4f350d4 [maven-release-plugin] prepare release maven-release-3.1.1
• 06f6de4 [MRELEASE-1153] Revert parts of MRELEASE-1109 (8dfcb47996320af5e6f0b2d50eac20...
• 985d0bc [MRELEASE-1149] Current release of the plugin has configuration docs missing
• 47e94b4 [maven-release-plugin] prepare for next development iteration
• f2f9f4e [maven-release-plugin] prepare release maven-release-3.1.0
• e109d3b Bump scmVersion from 2.0.1 to 2.1.0
• 5f794a1 Bump org.apache.maven.shared:maven-invoker from 3.2.0 to 3.3.0
• 28201bb Bump org.codehaus.plexus:plexus-interactivity-api from 1.2 to 1.3
• 8547606 Bump org.codehaus.plexus:plexus-interpolation from 1.26 to 1.27
• adf6aaf Bump org.xmlunit:xmlunit-core from 2.9.1 to 2.10.0
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-javadoc-plugin from 3.6.3 to 3.7.0

Release notes

Sourced from org.apache.maven.plugins:maven-javadoc-plugin's releases.

3.7.0

• [MJAVADOC-795] - Upgrade to Parent 42 and Maven 3.6.3 (#281) @​michael-o
• [MJAVADOC-682] - Reactor builds fail when multiple modules with same gr… (#253) @​michael-o
• directory, not folder (

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.