chore: bump the maven-low-risk group across 1 directory with 13 updates

[dependabot]

Bumps the maven-low-risk group with 13 updates in the / directory:

Package	From	To
org.apache.maven.plugins:maven-javadoc-plugin	3.7.0	3.10.0
org.apache.maven.plugins:maven-surefire-plugin	3.2.5	3.5.0
org.apache.maven.plugins:maven-gpg-plugin	3.2.4	3.2.7
commons-io:commons-io	2.16.1	2.17.0
io.github.bonigarcia:webdrivermanager	5.8.0	5.9.2
org.apache.commons:commons-lang3	3.14.0	3.17.0
com.fasterxml.jackson.core:jackson-databind	2.17.1	2.18.0
org.junit.vintage:junit-vintage-engine	5.10.2	5.11.1
com.github.eirslett:frontend-maven-plugin	1.15.0	1.15.1
com.microsoft.playwright:playwright	1.44.0	1.47.0
commons-codec:commons-codec	1.17.0	1.17.1
org.apache.commons:commons-compress	1.26.2	1.27.1
com.fasterxml.jackson.core:jackson-annotations	2.17.1	2.18.0

Updates org.apache.maven.plugins:maven-javadoc-plugin from 3.7.0 to 3.10.0

Commits

• 487e479 [maven-release-plugin] prepare release maven-javadoc-plugin-3.10.0
• 9638a6a [MJAVADOC-785] Align plugin implementation with AbstractMavenReport (maven-re...
• 9d33925 [MJAVADOC-784] Upgrade to Doxia 2.0.0 Milestone Stack
• a11b921 [MJAVADOC-809] Align Mojo class names
• 7c4b467 Bump org.apache.maven.plugins:maven-plugins from 42 to 43
• 636442b Improve ITs
• dbca15a Bump org.hamcrest:hamcrest-core from 2.2 to 3.0
• d02bb88 Bump org.apache.commons:commons-lang3 from 3.15.0 to 3.16.0
• 0a850a1 [MJAVADOC-807] Simplify IT for MJAVADOC-498
• 43e901f Improve URL handling
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-surefire-plugin from 3.2.5 to 3.5.0

Release notes

Sourced from org.apache.maven.plugins:maven-surefire-plugin's releases.

3.5.0

What's Changed

• [SUREFIRE-2256] Upgrade to Parent 43 by @​michael-o in apache/maven-surefire#770
• Bump org.apache.commons:commons-compress from 1.27.0 to 1.27.1 by @​dependabot in apache/maven-surefire#771
• [SUREFIRE-2228] Upgrade to Doxia 2.0.0 Milestone Stack by @​michael-o in apache/maven-surefire#629

Full Changelog: apache/maven-surefire@surefire-3.4.0...surefire-3.5.0

3.4.0

... (truncated)

Commits

• c78365f [maven-release-plugin] prepare release surefire-3.5.0
• 05e4681 [SUREFIRE-2227] Dynamically calculate xrefTestLocation
• f1a419a [SUREFIRE-2228] Upgrade to Doxia 2.0.0 Milestone Stack
• 5e14d4f [SUREFIRE-2161] Align Mojo class names and output names
• c0784ab Bump org.apache.commons:commons-compress from 1.27.0 to 1.27.1
• 79ea717 [SUREFIRE-2256] Upgrade to Parent 43
• 4648b47 add Reproducible Builds badge
• f64c1b3 [maven-release-plugin] prepare for next development iteration
• 3ae062d [maven-release-plugin] prepare release surefire-3.4.0
• f0de8c0 Bump org.htmlunit:htmlunit from 4.3.0 to 4.4.0
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-gpg-plugin from 3.2.4 to 3.2.7

Release notes

Sourced from org.apache.maven.plugins:maven-gpg-plugin's releases.

3.2.7

Fixes a lingering issue affecting whole 3.2.x lineage, that resulted in "bad passphrase" on Windows OS with GPG signer (see MGPG-136 for details).

What's Changed

• [MGPG-136] Windows passphrase corruption by @​cstamas in apache/maven-gpg-plugin#120
• Bump com.kohlschutter.junixsocket:junixsocket-core from 2.10.0 to 2.10.1 by @​dependabot in apache/maven-gpg-plugin#121
• Bump commons-io:commons-io from 2.16.1 to 2.17.0 by @​dependabot in apache/maven-gpg-plugin#119

Full Changelog: apache/maven-gpg-plugin@maven-gpg-plugin-3.2.6...maven-gpg-plugin-3.2.7

3.2.6

Release Notes - Maven GPG Plugin - Version 3.2.6

---

What's Changed

• [MGPG-135] Support Overriding / Enhance the signer in AbstractGpgMojo by @​laeubi in apache/maven-gpg-plugin#112
• Bump org.apache.maven.plugins:maven-invoker-plugin from 3.7.0 to 3.8.0 by @​dependabot in apache/maven-gpg-plugin#114
• [MGPG-140] Update Maven to 3.9.9 by @​cstamas in apache/maven-gpg-plugin#116
• [MGPG-138] Drop direct use of plexus-cipher and secdispatcher by @​cstamas in apache/maven-gpg-plugin#115
• [MGPG-141] Remove use of deprecated classes by @​cstamas in apache/maven-gpg-plugin#117
• Add FAQ for "no pinentry" issue by @​cstamas in apache/maven-gpg-plugin#118

New Contributors

• @​laeubi made their first contribution in apache/maven-gpg-plugin#112

... (truncated)

Commits

• 43af21c [maven-release-plugin] prepare release maven-gpg-plugin-3.2.7
• 8c5a8d2 [MGPG-144] Bump commons-io:commons-io from 2.16.1 to 2.17.0 (#119)
• cb5422f [MGPG-143] Bump com.kohlschutter.junixsocket:junixsocket-core from 2.10.0 to ...
• 6b2a27f [MGPG-136] Windows passphrase corruption (#120)
• 31e87e0 [maven-release-plugin] prepare for next development iteration
• 1c9a14c [maven-release-plugin] prepare release maven-gpg-plugin-3.2.6
• bbe6156 Add FAQ for "no pinentry" issue (#118)
• 5b94273 [MGPG-141] Remove use of deprecated classes (#117)
• afdfd28 [MGPG-138] Drop direct use of plexus-cipher and secdispatcher (#115)
• 7516e7c [MGPG-140] Update Maven to 3.9.9 (#116)
• Additional commits viewable in compare view

Updates commons-io:commons-io from 2.16.1 to 2.17.0

Updates io.github.bonigarcia:webdrivermanager from 5.8.0 to 5.9.2

Changelog

Sourced from io.github.bonigarcia:webdrivermanager's changelog.

[5.9.2] - 2024-07-25

Fixed

• HTTP 404 when downloading microsoft edgedriver in macOS or Linux (#1320)

[5.9.1] - 2024-06-24

Removed

• Remove using jackson-databind 2.17.1

[5.9.0] - 2024-06-24

Fixed

• Fix architecture label to build URL for Edge ARM64

Changed

• Force to use jackson-databind 2.17.1

Removed

• Exclude org.bouncycastle:bcpkix-jdk18on from docker-java

Commits

• 33adaaf [maven-release-plugin] prepare release webdrivermanager-5.9.2
• 16545fb Update doc for release 5.9.2
• a973d4a Improve logic for latest driver version detection
• 19da22a Fix logic to detect browser version
• d6f6d2d Improve logic to read msedgedriver latest version (#1320)
• 3b7165a Enable Edge test in CI
• 63b58ff Bump org.apache.maven.plugins:maven-javadoc-plugin from 3.7.0 to 3.8.0 (#1322)
• 1158826 Bump selenium.version from 4.22.0 to 4.23.0 (#1321)
• 44b1440 Update mirror info (Sat Jul 20 12:02:21 UTC 2024)
• 5a460e7 Update mirror info (Fri Jul 19 12:02:27 UTC 2024)
• Additional commits viewable in compare view

Updates org.apache.commons:commons-lang3 from 3.14.0 to 3.17.0

Updates com.fasterxml.jackson.core:jackson-databind from 2.17.1 to 2.18.0

Commits

• See full diff in compare view

Updates org.junit.vintage:junit-vintage-engine from 5.10.2 to 5.11.1

Release notes

Sourced from org.junit.vintage:junit-vintage-engine's releases.

JUnit 5.11.1 = Platform 1.11.1 + Jupiter 5.11.1 + Vintage 5.11.1

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.11.0...r5.11.1

JUnit 5.11.0 = Platform 1.11.0 + Jupiter 5.11.0 + Vintage 5.11.0

See Release Notes.

New Contributors

• @​pshevche made their first contribution in junit-team/junit5#3427
• @​rybak made their first contribution in junit-team/junit5#3416
• @​pixeebot made their first contribution in junit-team/junit5#3491
• @​shartte made their first contribution in junit-team/junit5#3562
• @​eliasnogueira made their first contribution in junit-team/junit5#3674
• @​bigdaz made their first contribution in junit-team/junit5#3668
• @​gilday made their first contribution in junit-team/junit5#3667
• @​bjmi made their first contribution in junit-team/junit5#3806
• @​madalingiurca made their first contribution in junit-team/junit5#3787
• @​dmlloyd made their first contribution in junit-team/junit5#3820
• @​compf made their first contribution in junit-team/junit5#3867
• @​SveinKare made their first contribution in junit-team/junit5#3840
• @​mobounya made their first contribution in junit-team/junit5#3720
• @​robinjhector made their first contribution in junit-team/junit5#3345
• @​jabhatfield made their first contribution in junit-team/junit5#3829
• @​rfscholte made their first contribution in junit-team/junit5#3909

Full Changelog: junit-team/junit-framework@r5.10.3...r5.11.0

JUnit 5.11.0-RC1 = Platform 1.11.0-RC1 + Jupiter 5.11.0-RC1 + Vintage 5.11.0-RC1

See Release Notes.

New Contributors

• @​compf made their first contribution in junit-team/junit5#3867
• @​SveinKare made their first contribution in junit-team/junit5#3840
• @​mobounya made their first contribution in junit-team/junit5#3720
• @​robinjhector made their first contribution in junit-team/junit5#3345
• @​jabhatfield made their first contribution in junit-team/junit5#3829

Full Changelog: junit-team/junit-framework@r5.11.0-M2...r5.11.0-RC1

JUnit 5.11.0-M2 = Platform 1.11.0-M2 + Jupiter 5.11.0-M2 + Vintage 5.11.0-M2

See Release Notes.

New Contributors

• @​bjmi made their first contribution in junit-team/junit5#3806
• @​madalingiurca made their first contribution in junit-team/junit5#3787

... (truncated)

Commits

• e4b2c0c Release 5.11.1
• c37b179 Finalize 5.11.1 release notes
• a7b1c49 Include 5.10.4 release notes
• 3646b7d Document benefits of messageSupplier in Assertions (#3938)
• 6b9f15d Delete unnecessary (and potentially misleading) comment in User Guide
• 98dafd3 Reduce flakiness
• 6529d8d Allow for work stealing when only holding read locks (#4012)
• 0d25a5a Fix YAML syntax
• 28dd375 Fix step label
• 348ef61 Switch to Temurin for JDK 23 (#4005)
• Additional commits viewable in compare view

Updates com.github.eirslett:frontend-maven-plugin from 1.15.0 to 1.15.1

Changelog

Sourced from com.github.eirslett:frontend-maven-plugin's changelog.

1.15.1

• Fix #1150: Update lifecycle-mapping-metadata.xml for npx

Commits

• 3f70757 [maven-release-plugin] prepare release frontend-plugins-1.15.1
• c5c9aec Attempt 2: secrets for OSSRH deployment
• 274bb70 Update secrets for OSSRH deployment
• f39b40c Fix: bun windows support
• a7d3b8b Update NodeInstaller.java
• 2750625 Fix #1152: Copy npm script file
• 622ac16 #1042 Use correct Xpp3Dom class
• bca8bdf Replace tabs with spaces
• 122cd9b #1042 Allow Authentication via Http Header
• 60bbf02 Fix: delete only bun directory inside the installation directory instead of t...
• Additional commits viewable in compare view

Updates com.microsoft.playwright:playwright from 1.44.0 to 1.47.0

Release notes

Sourced from com.microsoft.playwright:playwright's releases.

v1.47.0

Network Tab improvements

The Network tab in the trace viewer has several nice improvements:

• filtering by asset type and URL
• better display of query string parameters
• preview of font assets

Miscellaneous

• The mcr.microsoft.com/playwright/java:v1.47.0 now serves a Playwright image based on Ubuntu 24.04 Noble. To use the 22.02 jammy-based image, please use mcr.microsoft.com/playwright/java:v1.47.0-jammy instead.
• The :latest/:focal/:jammy tag for Playwright Docker images is no longer being published. Pin to a specific version for better stability and reproducibility.
• TLS client certificates can now be passed from memory by passing cert and key as byte arrays instead of file paths.
• noWaitAfter in locator.selectOption() was deprecated.
• We've seen reports of WebGL in Webkit misbehaving on GitHub Actions macos-13. We recommend upgrading GitHub Actions to macos-14.

Browser Versions

• Chromium 129.0.6668.29
• Mozilla Firefox 130.0
• WebKit 18.0

This version was also tested against the following stable channels:

• Google Chrome 128
• Microsoft Edge 128

v1.46.0

TLS Client Certificates

Playwright now allows to supply client-side certificates, so that server can verify them, as specified by TLS Client Authentication.

You can provide client certificates as a parameter of browser.newContext() and apiRequest.newContext(). The following snippet sets up a client certificate for https://example.com:

BrowserContext context = browser.newContext(new Browser.NewContextOptions()
    .setClientCertificates(asList(new ClientCertificate("https://example.com")
          .setCertPath(Paths.get("client-certificates/cert.pem"))
          .setKeyPath(Paths.get("client-certificates/key.pem")))));

Trace Viewer Updates

• Content of text attachments is now rendered inline in the attachments pane.
• New setting to show/hide routing actions like route.resume().
• Request method and status are shown in the network details tab.
• New button to copy source file location to clipboard.
• Metadata pane now displays the baseURL.

Miscellaneous

• New maxRetries option in apiRequestContext.fetch() which retries on the ECONNRESET network error.

... (truncated)

Commits

• bb0f48e chore: set version to 1.47.0 (#1673)
• ee18e1a chore: roll 1.47.0-beta-1726138322000 (#1672)
• 9cf4bf2 docs: Update ROLLING.md with new roll script
• 36350f3 chore: roll 1.47.0 (#1670)
• f3476c6 test: fix client-certificate tests (#1669)
• 8fd8f1c test: remove per-context proxy hacks for Windows/Chromium (#1668)
• 7d20666 chore(deps): bump the all group with 2 updates (#1664)
• 6b01b87 chore: roll driver to 1.47.0 alpha 2024 08 28 (#1663)
• 2e32eb7 feat(junit): Implement automatic saving of traces and screenshots via fixture...
• b81b144 fix: null check in ListenerCollection notify method (#1661)
• Additional commits viewable in compare view

Updates commons-codec:commons-codec from 1.17.0 to 1.17.1

Changelog

Sourced from commons-codec:commons-codec's changelog.

Apache Commons Codec 1.17.1 RELEASE NOTES

The Apache Commons Codec component contains encoders and decoders for various formats such as Base16, Base32, Base64, digest, and Hexadecimal. In addition to these widely used encoders and decoders, the codec package also maintains a collection of phonetic encoding utilities.

Feature and fix release. Requires a minimum of Java 8.

Fixed Bugs

•         Md5Crypt now throws IllegalArgumentException on an invalid prefix. Thanks to Gary Gregory.
  

Changes

•         Bump org.apache.commons:commons-parent from 69 to 71 [#286](https://github.com/apache/commons-codec/issues/286). Thanks to Gary Gregory.
  

•         Bump org.codehaus.mojo:animal-sniffer-maven-plugin from 1.23 to 1.24 [#293](https://github.com/apache/commons-codec/issues/293). Thanks to Dependabot.
  

•         Bump org.codehaus.mojo:taglist-maven-plugin from 3.0.0 to 3.1.0 [#292](https://github.com/apache/commons-codec/issues/292). Thanks to Dependabot.
  

For complete information on Apache Commons Codec, including instructions on how to submit bug reports, patches, or suggestions for improvement, see the Apache Commons Codec website:

https://commons.apache.org/proper/commons-codec/

Download page: https://commons.apache.org/proper/commons-codec/download_codec.cgi

---

Commits

• 9651097 Prepare for the next release candidate
• 0d99b46 Merge branch 'master' of https://gitbox.apache.org/repos/asf/commons-codec
• 0c63e18 Prepare for the next release candidate
• be06260 Bump actions/upload-artifact from 4.3.3 to 4.3.4 (#295)
• 09ef422 Bump github/codeql-action from 3.25.11 to 3.25.12 (#294)
• 86ef922 Merge branch 'master' of https://gitbox.apache.org/repos/asf/commons-codec.git
• 974cf87 Remove redundant keywords
• 0c82238 Remove redundant keywords
• 1e6544e Remove redundant keywords
• 8dcf9d1 Remove redundant keywords
• Additional commits viewable in compare view

Updates org.apache.commons:commons-compress from 1.26.2 to 1.27.1

Updates com.fasterxml.jackson.core:jackson-annotations from 2.17.1 to 2.18.0

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Superseded by #494.