Renovate Dashboard 🚧

[mend-for-github-com]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.

Repository Problems

Renovate tried to run on this repository, but found these problems.

• ⚠️ WARN: Base branch does not exist - skipping

Pending Approval

The following branches are pending approval. To create them, click on a checkbox below.

• chore(deps): update actions/checkout digest to 0c366fd (main)
• chore(deps): update actions/upload-artifact digest to 47309c9 (main)
• chore(deps): update github/codeql-action digest to 147d149 (main)
• chore(deps): update ossf/scorecard-action digest to 4a0b87a (main)
• chore(deps): update dependency org.apache.maven.plugins:maven-compiler-plugin to v3.14.1 (main)
• chore(deps): update dependency org.apache.maven.plugins:maven-gpg-plugin to v3.2.8 (main)
• chore(deps): update dependency org.apache.maven.plugins:maven-javadoc-plugin to v3.11.3 (main)
• chore(deps): update dependency org.apache.maven.plugins:maven-surefire-plugin to v3.5.4 (main)
• chore(deps): update dependency org.jacoco:jacoco-maven-plugin to v0.8.14 (main)
• chore(deps): update jjwt.version to v0.12.7 (main) (patch) (io.jsonwebtoken:jjwt-jackson, io.jsonwebtoken:jjwt-impl, io.jsonwebtoken:jjwt-api)
• fix(deps): update jackson monorepo to v2.19.4 (main) (patch) (com.fasterxml.jackson.datatype:jackson-datatype-jsr310, com.fasterxml.jackson.core:jackson-databind)
• chore(deps): update dependency org.apache.maven.plugins:maven-antrun-plugin to v3.2.0 (main)
• chore(deps): update dependency org.apache.maven.plugins:maven-assembly-plugin to v3.8.0 (main)
• chore(deps): update dependency org.apache.maven.plugins:maven-compiler-plugin to v3.15.0 (main)
• chore(deps): update dependency org.apache.maven.plugins:maven-enforcer-plugin to v3.6.2 (main)
• chore(deps): update dependency org.apache.maven.plugins:maven-jar-plugin to v3.5.0 (main)
• chore(deps): update dependency org.apache.maven.plugins:maven-javadoc-plugin to v3.12.0 (main)
• chore(deps): update dependency org.apache.maven.plugins:maven-source-plugin to v3.4.0 (main)
• chore(deps): update dependency org.junit.jupiter:junit-jupiter-engine to v5.14.2 (main)
• chore(deps): update dependency org.mockito:mockito-core to v5.21.0 (main)
• chore(deps): update dependency org.sonatype.central:central-publishing-maven-plugin to v0.10.0 (main)
• chore(deps): update jjwt.version to v0.13.0 (main) (minor) (io.jsonwebtoken:jjwt-jackson, io.jsonwebtoken:jjwt-impl, io.jsonwebtoken:jjwt-api)
• chore(deps): update slackapi/slack-github-action action to v2.1.1 (main)
• fix(deps): update dependency commons-codec:commons-codec to v1.21.0 (main)
• fix(deps): update dependency org.apache.commons:commons-lang3 to v3.20.0 (main)
• fix(deps): update jackson monorepo to v2.21.0 (main) (minor) (com.fasterxml.jackson.datatype:jackson-datatype-jsr310, com.fasterxml.jackson.core:jackson-databind)
• chore(deps): update actions/checkout action to v5 (main)
• chore(deps): update actions/checkout action to v6 (main)
• chore(deps): update actions/setup-java action to v5 (main)
• chore(deps): update dependency org.junit.jupiter:junit-jupiter-engine to v6 (main)
• 🔐 Create all pending approval PRs at once 🔐

Vulnerabilities

Important

1/1 CVEs have possible Renovate fixes.
See osvVulnerabilityAlerts to allow Renovate to supply fixes.

Detected Dependencies

github-actions (4)

.github/workflows/build.yml (5)

• actions/checkout v4 → [Updates: v5, v6]
• actions/setup-java v4 → [Updates: v5]
• actions/checkout v4 → [Updates: v5, v6]
• actions/setup-java v4 → [Updates: v5]
• codecov/codecov-action v5

.github/workflows/codeql.yml (3)

• actions/checkout 85e6279cec87321a52edac9c87bce653a07cf6c2 → [Updates: undefined]
• github/codeql-action 486ab5a2922b634015408a83e10f6867efb5922c → [Updates: undefined]
• github/codeql-action 486ab5a2922b634015408a83e10f6867efb5922c → [Updates: undefined]

.github/workflows/publish.yml (3)

• actions/checkout v4 → [Updates: v5, v6]
• actions/setup-java v4 → [Updates: v5]
• slackapi/slack-github-action v2.0.0 → [Updates: v2.1.1]

.github/workflows/scorecard.yml (4)

• actions/checkout 85e6279cec87321a52edac9c87bce653a07cf6c2 → [Updates: undefined]
• ossf/scorecard-action 5e6e801bdc1342ad294f36b91afd06af2e4a0f3b → [Updates: undefined]
• actions/upload-artifact 6027e3dd177782cd8ab9af838c04fd81a07f1d47 → [Updates: undefined]
• github/codeql-action 486ab5a2922b634015408a83e10f6867efb5922c → [Updates: undefined]

maven (1)

pom.xml (22)

• com.vonage:jwt 2.0.1
• com.fasterxml.jackson.core:jackson-databind 2.19.0 → [Updates: 2.19.4, 2.21.0]
• com.fasterxml.jackson.datatype:jackson-datatype-jsr310 2.19.0 → [Updates: 2.19.4, 2.21.0]
• org.apache.httpcomponents:httpmime 4.5.14
• org.apache.commons:commons-lang3 3.17.0 → [Updates: 3.20.0]
• commons-codec:commons-codec 1.18.0 → [Updates: 1.21.0]
• org.junit.jupiter:junit-jupiter-engine 5.12.2 → [Updates: 5.14.2, 6.0.2]
• org.mockito:mockito-core 5.17.0 → [Updates: 5.21.0]
• io.jsonwebtoken:jjwt-api 0.12.6 → [Updates: 0.12.7, 0.13.0]
• io.jsonwebtoken:jjwt-impl 0.12.6 → [Updates: 0.12.7, 0.13.0]
• io.jsonwebtoken:jjwt-jackson 0.12.6 → [Updates: 0.12.7, 0.13.0]
• org.apache.maven.plugins:maven-enforcer-plugin 3.5.0 → [Updates: 3.6.2]
• org.apache.maven.plugins:maven-antrun-plugin 3.1.0 → [Updates: 3.2.0]
• org.apache.maven.plugins:maven-compiler-plugin 3.14.0 → [Updates: 3.14.1, 3.15.0]
• org.apache.maven.plugins:maven-surefire-plugin 3.5.3 → [Updates: 3.5.4]
• org.jacoco:jacoco-maven-plugin 0.8.13 → [Updates: 0.8.14]
• org.apache.maven.plugins:maven-source-plugin 3.3.1 → [Updates: 3.4.0]
• org.apache.maven.plugins:maven-javadoc-plugin 3.11.2 → [Updates: 3.11.3, 3.12.0]
• org.apache.maven.plugins:maven-jar-plugin 3.4.2 → [Updates: 3.5.0]
• org.apache.maven.plugins:maven-gpg-plugin 3.2.7 → [Updates: 3.2.8]
• org.sonatype.central:central-publishing-maven-plugin 0.7.0 → [Updates: 0.10.0]
• org.apache.maven.plugins:maven-assembly-plugin 3.7.1 → [Updates: 3.8.0]