Update All patch-minor dependencies

[renovate]

This PR contains the following updates:

Package	Type	Update	Change	Age	Adoption	Passing	Confidence
gradle (source)		minor	8.7 -> 8.12
hashicorp/terraform		minor	1.9.4 -> 1.10.3
java		patch	5.2.0 -> 5.2.1
info.solidsoft.gradle.pitest:gradle-pitest-plugin (source)	dependencies	minor	1.9.11 -> 1.15.0
com.github.hmcts:fortify-client	dependencies	minor	1.3.0 -> 1.4.6
com.github.hmcts:befta-fw	dependencies	minor	9.0.2 -> 9.2.0
com.github.hmcts:ccd-test-definitions	dependencies	minor	7.22.2 -> 7.25
org.testcontainers:junit-jupiter (source)	dependencies	patch	1.20.2 -> 1.20.4
org.testcontainers:testcontainers (source)	dependencies	patch	1.20.2 -> 1.20.4
org.junit.jupiter:junit-jupiter (source)	dependencies	minor	5.10.0 -> 5.11.4
com.github.codacy:codacy-coverage-reporter	dependencies	patch	13.13.7 -> 13.13.13
com.github.hmcts:service-auth-provider-java-client	dependencies	minor	5.1.0 -> 5.3.0
org.apache.commons:commons-lang3 (source)	dependencies	minor	3.13.0 -> 3.17.0
com.google.guava:guava	dependencies	minor	33.1.0-jre -> 33.4.0-jre
com.github.hmcts:auth-checker-lib	dependencies	minor	2.1.5 -> 2.3.0
org.postgresql:postgresql (source)	dependencies	minor	42.6.1 -> 42.7.4
com.zaxxer:HikariCP	dependencies	minor	5.0.1 -> 5.1.0
org.yaml:snakeyaml	dependencies	minor	2.1 -> 2.3
org.flywaydb:flyway-core (source)	dependencies	minor	9.21.1 -> 9.22.3
org.springdoc:springdoc-openapi-starter-webmvc-ui (source)	dependencies	minor	2.2.0 -> 2.8.1
org.bouncycastle:bcprov-jdk18on (source)	dependencies	minor	1.78 -> 1.79
org.apache.tomcat.embed:tomcat-embed-websocket	dependencies	patch	10.1.29 -> 10.1.34
org.apache.tomcat.embed:tomcat-embed-el	dependencies	patch	10.1.29 -> 10.1.34
org.apache.tomcat.embed:tomcat-embed-core	dependencies	patch	10.1.29 -> 10.1.34
org.springframework.security:spring-security-crypto (source)	dependencies	minor	6.1.9 -> 6.4.2
org.springframework.security:spring-security-web (source)	dependencies	minor	6.1.9 -> 6.4.2
org.springframework.security:spring-security-config (source)	dependencies	minor	6.1.9 -> 6.4.2
org.springframework.security:spring-security-core (source)	dependencies	minor	6.1.9 -> 6.4.2
org.springframework.cloud:spring-cloud-dependencies (source)	dependencies	patch	2022.0.3 -> 2022.0.5
com.github.hmcts.java-logging:logging-appinsights	dependencies	minor	6.0.1 -> 6.1.7
com.github.hmcts.java-logging:logging	dependencies	minor	6.0.1 -> 6.1.7
org.projectlombok:lombok (source)	dependencies	patch	1.18.34 -> 1.18.36
org.slf4j:jcl-over-slf4j (source, changelog)	dependencies	patch	2.0.7 -> 2.0.16
org.slf4j:slf4j-api (source, changelog)	dependencies	patch	2.0.7 -> 2.0.16
org.slf4j:slf4j-simple (source, changelog)	dependencies	patch	2.0.7 -> 2.0.16
info.solidsoft.pitest	plugin	minor	1.9.11 -> 1.15.0
com.github.spacialcircumstances.gradle-cucumber-reporting	plugin	patch	0.1.23 -> 0.1.25
org.owasp.dependencycheck	plugin	minor	8.3.1 -> 8.4.3
org.springframework.boot	plugin	minor	3.1.2 -> 3.4.1
io.spring.dependency-management	plugin	patch	1.1.3 -> 1.1.7
org.springframework.boot:spring-boot-gradle-plugin (source)	dependencies	minor	3.1.2 -> 3.4.1

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

gradle/gradle (gradle)

v8.12

Compare Source

v8.11.1: 8.11.1

Compare Source

This is a patch release for Gradle 8.11. We recommend users upgrade to 8.11.1 instead of 8.11.

It fixes the following issues:

• #​31268 BuildEventsListenerRegistry corrupted with Isolated Projects and parallel configuration
• #​31282 Running executables sporadically fails with ETXTBSY (Text file busy)
• #​31284 ArrayIndexOutOfBoundsException after upgrading to gradle 8.11 when generating problems report
• #​31310 Unable to run Gradle task in 8.10 due to bytecode interception

Read the Release Notes

Upgrade instructions

Switch your build to use Gradle 8.11.1 by updating your wrapper:

./gradlew wrapper --gradle-version=8.11.1

See the Gradle 8.x upgrade guide to learn about deprecations, breaking changes and other considerations when upgrading.

For Java, Groovy, Kotlin and Android compatibility, see the full compatibility notes.

Reporting problems

If you find a problem with this release, please file a bug on GitHub Issues adhering to our issue guidelines.
If you're not sure you're encountering a bug, please use the forum.

We hope you will build happiness with Gradle, and we look forward to your feedback via Twitter or on GitHub.

v8.11: 8.11

Compare Source

The Gradle team is excited to announce Gradle 8.11.

Read the Release Notes

We would like to thank the following community members for their contributions to this release of Gradle:
Adam,
alyssoncs,
Bilel MEDIMEGH,
Björn Kautler,
Chuck Thomas,
Daniel Lacasse,
Finn Petersen,
JK,
Jérémie Bresson,
luozexuan,
Mahdi Hosseinzadeh,
Markus Gaisbauer,
Matthew Haughton,
Matthew Von-Maszewski,
ploober,
Siarhei,
Titus James,
vrp0211

Upgrade instructions

Switch your build to use Gradle 8.11 by updating your wrapper:

./gradlew wrapper --gradle-version=8.11

See the Gradle 8.x upgrade guide to learn about deprecations, breaking changes and other considerations when upgrading.

For Java, Groovy, Kotlin and Android compatibility, see the full compatibility notes.

Reporting problems

If you find a problem with this release, please file a bug on GitHub Issues adhering to our issue guidelines.
If you're not sure you're encountering a bug, please use the forum.

We hope you will build happiness with Gradle, and we look forward to your feedback via Twitter or on GitHub.

v8.10.2: 8.10.2

Compare Source

This is a patch release for 8.10. We recommend using 8.10.2 instead of 8.10

It fixes the following issues:

• #​30472 Investigate possibly broken 8.10.1
• #​30477 Kotlin Mutliplatform build with reused daemon fails with "Cannot query the value of task ':compileKotlinWindows' property 'kotlinNativeBundleBuildService' because it has no value available."
• #​30497 DefaultTaskCollection#configureEach(Action) on task set cannot be executed in the current context

Issues fixed in the first patch release:

• #​30239 Gradle 8.10 Significantly Slower Due to Dependency Resolution
• #​30272 Broken equals() contract for LifecycleAwareProject
• #​30385 Gradle should not validate isolated projects when isolated projects is disabled

Read the Release Notes

Upgrade instructions

Switch your build to use Gradle 8.10.2 by updating your wrapper:

./gradlew wrapper --gradle-version=8.10.2

See the Gradle 8.x upgrade guide to learn about deprecations, breaking changes and other considerations when upgrading.

For Java, Groovy, Kotlin and Android compatibility, see the full compatibility notes.

Reporting problems

If you find a problem with this release, please file a bug on GitHub Issues adhering to our issue guidelines.
If you're not sure you're encountering a bug, please use the forum.

We hope you will build happiness with Gradle, and we look forward to your feedback via Twitter or on GitHub.

v8.10.1: 8.10.1

Compare Source

This is a patch release for 8.10. We recommend using 8.10.1 instead of 8.10

It fixes the following issues:

• #​30239 Gradle 8.10 Significantly Slower Due to Dependency Resolution
• #​30272 Broken equals() contract for LifecycleAwareProject
• #​30385 Gradle should not validate isolated projects when isolated projects is disabled

Read the Release Notes

Upgrade instructions

Switch your build to use Gradle 8.10.1 by updating your wrapper:

./gradlew wrapper --gradle-version=8.10.1

See the Gradle 8.x upgrade guide to learn about deprecations, breaking changes and other considerations when upgrading.

For Java, Groovy, Kotlin and Android compatibility, see the full compatibility notes.

Reporting problems

If you find a problem with this release, please file a bug on GitHub Issues adhering to our issue guidelines.
If you're not sure you're encountering a bug, please use the forum.

We hope you will build happiness with Gradle, and we look forward to your feedback via Twitter or on GitHub.

v8.10: 8.10

Compare Source

The Gradle team is excited to announce Gradle 8.10.

Read the Release Notes

We would like to thank the following community members for their contributions to this release of Gradle:
Björn Kautler,
Craig Andrews,
gotovsky,
Jeff,
Kirill Gavrilov,
Madalin Valceleanu,
Sergei Vorobev,
Thach Le,
Thad Guidry

Upgrade instructions

Switch your build to use Gradle 8.10 by updating your wrapper:

./gradlew wrapper --gradle-version=8.10

See the Gradle 8.x upgrade guide to learn about deprecations, breaking changes and other considerations when upgrading.

For Java, Groovy, Kotlin and Android compatibility, see the full compatibility notes.

Reporting problems

If you find a problem with this release, please file a bug on GitHub Issues adhering to our issue guidelines.
If you're not sure you're encountering a bug, please use the forum.

We hope you will build happiness with Gradle, and we look forward to your feedback via Twitter or on GitHub.

v8.9: 8.9

Compare Source

The Gradle team is excited to announce Gradle 8.9.

Read the Release Notes

We would like to thank the following community members for their contributions to this release of Gradle:
/dev/mataha,
Alex-Vol-Amz,
Andrew Quinney,
Andrey Mischenko,
Björn Kautler,
dancer13,
Danish Nawab,
Endeavour233,
Gediminas Rimša,
gotovsky,
Jay Wei,
Jeff,
Madalin Valceleanu,
markslater,
Mel Arthurs,
Michael,
Nils Brugger,
Ole Osterhagen,
Piotr Kubowicz,
Róbert Papp,
Sebastian Davids,
Sebastian Schuberth,
Stefan Oehme,
Stefanos Koutsouflakis,
Taeik Lim,
Tianyi Tao,
Tim Nielens,
наб

Upgrade instructions

Switch your build to use Gradle 8.9 by updating your wrapper:

./gradlew wrapper --gradle-version=8.9

See the Gradle 8.x upgrade guide to learn about deprecations, breaking changes and other considerations when upgrading.

For Java, Groovy, Kotlin and Android compatibility, see the full compatibility notes.

Reporting problems

If you find a problem with this release, please file a bug on GitHub Issues adhering to our issue guidelines.
If you're not sure you're encountering a bug, please use the forum.

We hope you will build happiness with Gradle, and we look forward to your feedback via Twitter or on GitHub.

v8.8: 8.8

Compare Source

The Gradle team is excited to announce Gradle 8.8.

Read the Release Notes

We would like to thank the following community members for their contributions to this release of Gradle:
Björn Kautler,
Denes Daniel,
Fabian Windheuser,
Hélio Fernandes Sebastião,
Jay Wei,
jhrom,
jwp345,
Jörgen Andersson,
Kirill Gavrilov,
MajesticMagikarpKing,
Maksim Lazeba,
Philip Wedemann,
Robert Elliot,
Róbert Papp,
Stefan M.,
Tibor Vyletel,
Tony Robalik,
Valentin Kulesh,
Yanming Zhou,
김용후

Upgrade instructions

Switch your build to use Gradle 8.8 by updating your wrapper:

./gradlew wrapper --gradle-version=8.8

See the Gradle 8.x upgrade guide to learn about deprecations, breaking changes and other considerations when upgrading.

For Java, Groovy, Kotlin and Android compatibility, see the full compatibility notes.

Reporting problems

If you find a problem with this release, please file a bug on GitHub Issues adhering to our issue guidelines.
If you're not sure you're encountering a bug, please use the forum.

We hope you will build happiness with Gradle, and we look forward to your feedback via Twitter or on GitHub.

hashicorp/terraform (hashicorp/terraform)

v1.10.3

Compare Source

1.10.3 (December 18, 2024)

BUG FIXES:

• Terraform could panic when encountering an error during plan encoding (#​36212)

v1.10.2

Compare Source

1.10.2 (December 11, 2024)

BUG FIXES:

• cli: variables in an auto-loaded tfvars file which were overridden during plan incorrectly show as changed during apply [GH-36180]

v1.10.1

Compare Source

1.10.1 (December 4, 2024)

BUG FIXES:

• cli: Complex variables values set via environment variables were parsed incorrectly during apply (#​36121)
• config: templatefile would panic if given and entirely unknown map of variables (#​36118)
• config: templatefile would panic if the variables map contains marked values (#​36127)
• config: Remove constraint that an expanded resource block must only be used in conjunction with imports using for_each (#​36119)
• backend/s3: Lock files could not be written to buckets with object locking enabled (#​36120)

v1.10.0

Compare Source

1.10.0 (November 27, 2024)

NEW FEATURES:

• Ephemeral resources: Ephemeral resources are read anew during each phase of Terraform evaluation, and cannot be persisted to state storage. Ephemeral resources always produce ephemeral values.
• Ephemeral values: Input variables and outputs can now be defined as ephemeral. Ephemeral values may only be used in certain contexts in Terraform configuration, and are not persisted to the plan or state files.
  • ephemeralasnull function: a function takes a value of any type and returns a similar value of the same type with any ephemeral values replaced with non-ephemeral null values and all non-ephemeral values preserved.

BUG FIXES:

• The secret_suffix in the kubernetes backend now includes validation to prevent errors when the secret_suffix ends with a number (#​35666).
• The error message for an invalid default value for an input variable now indicates when the problem is with a nested value in a complex data type. (#​35465)
• Sensitive marks could be incorrectly transferred to nested resource values, causing erroneous changes during a plan (#​35501)
• Allow unknown error_message values to pass the core validate step, so variable validation can be completed later during plan
  (#​35537)
• Unencoded slashes within GitHub module source refs were being truncated and incorrectly used as subdirectories in the request path (#​35552)
• Terraform refresh-only plans with output only changes are now applyable. (#​35812)
• Postconditions referencing self with many instances could encounter an error during evaluation (#​35895)
• The plantimestamp() function would return an invalid date during validation (#​35902)
• Updates to resources which were forced to use create_before_destroy could lose that flag in the state temporarily and cause cycles if immediately removed from the configuration (#​35966)
• backend/cloud: Prefer KV tags, even when tags are defined as set (#​35937)
• Simplify config generation (plan -generate-config-out) for string attributes that contain primitive types (e.g. numbers or booleans) (#​35984)
• config: issensitive could incorrectly assert that an unknown value was not sensitive during plan, but later became sensitive during apply, causing failures where changes did not match the planned result (#​36012)
• config: The evaluation of conditional expressions and for expression in HCL could lose marks with certain combinations of unknown values (#​36017)

ENHANCEMENTS:

• The element function now accepts negative indices (#​35501)
• Import block validation has been improved to provide more useful errors and catch more invalid cases during terraform validate (#​35543)
• Performance enhancements for resource evaluation, especially when large numbers of resource instances are involved (#​35558)
• The plan, apply, and refresh commands now produce a deprecated warning when using the -state flag. Instead use the path attribute within the local backend to modify the state file. (#​35660)
• backend/cos: Add new auth for Tencent Cloud backend (#​35888)

UPGRADE NOTES:

• backend/s3: Removes deprecated attributes for assuming IAM role. Must use the assume_role block (#​35721)
• backend/s3: The s3 backend now supports S3 native state locking. When used with DynamoDB-based locking, locks will be acquired from both sources. In a future minor release of Terraform the DynamoDB locking mechanism and associated arguments will be deprecated. (#​35661)
• moved: Moved blocks now respect reserved keywords when parsing resource addresses. Configurations that reference resources with type names that match top level blocks and keywords from moved blocks will need to prepend the resource. identifier to these references. ([#​35850](https://redirect.github.com/hashicorp/terrafo

---

Configuration

📅 Schedule: Branch creation - "after 7am and before 11am every weekday" in timezone Europe/London, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[hmcts-jenkins-a-to-c]

Plan Result

No changes. Your infrastructure matches the configuration.