chore: bump the maven-low-risk group across 1 directory with 13 updates #499

dependabot · 2024-12-01T01:22:21Z

Bumps the maven-low-risk group with 13 updates in the / directory:

Package	From	To
org.apache.maven.plugins:maven-javadoc-plugin	`3.7.0`	`3.11.1`
org.apache.maven.plugins:maven-surefire-plugin	`3.2.5`	`3.5.2`
org.apache.maven.plugins:maven-gpg-plugin	`3.2.4`	`3.2.7`
commons-io:commons-io	`2.16.1`	`2.18.0`
io.github.bonigarcia:webdrivermanager	`5.8.0`	`5.9.2`
org.apache.commons:commons-lang3	`3.14.0`	`3.17.0`
com.fasterxml.jackson.core:jackson-databind	`2.17.1`	`2.18.2`
org.junit.vintage:junit-vintage-engine	`5.10.2`	`5.11.3`
com.github.eirslett:frontend-maven-plugin	`1.15.0`	`1.15.1`
com.microsoft.playwright:playwright	`1.44.0`	`1.49.0`
commons-codec:commons-codec	`1.17.0`	`1.17.1`
org.apache.commons:commons-compress	`1.26.2`	`1.27.1`
com.fasterxml.jackson.core:jackson-annotations	`2.17.1`	`2.18.2`

Updates org.apache.maven.plugins:maven-javadoc-plugin from 3.7.0 to 3.11.1

Release notes

Sourced from org.apache.maven.plugins:maven-javadoc-plugin's releases.

maven-javadoc-plugin-3.11.1

What's Changed

[MJAVADOC-821] Align toolchain discovery code with Maven Compiler Plugin by @michael-o in apache/maven-javadoc-plugin#334

Full Changelog: apache/maven-javadoc-plugin@maven-javadoc-plugin-3.11.0...maven-javadoc-plugin-3.11.1

maven-javadoc-plugin-3.10.1

What's Changed

[MJAVADOC-810] [REGRESSION] MJAVADOC-791 causes forked Maven execution fail if any toolchains or settings file isn't present by @cstamas in apache/maven-javadoc-plugin#313

Bump org.apache.commons:commons-lang3 from 3.16.0 to 3.17.0 by @dependabot in apache/maven-javadoc-plugin#314

Bump org.codehaus.plexus:plexus-io from 3.5.0 to 3.5.1 by @dependabot in apache/maven-javadoc-plugin#315

Bump commons-io:commons-io from 2.16.1 to 2.17.0 by @dependabot in apache/maven-javadoc-plugin#319

[MJAVADOC-812] [REGRESSION] maven-javadoc-plugin 3.10.0 creates empty… by @michael-o in apache/maven-javadoc-plugin#320

Full Changelog: apache/maven-javadoc-plugin@maven-javadoc-plugin-3.10.0...maven-javadoc-plugin-3.10.1

maven-javadoc-plugin-3.10.0

❗ NOTICE

Due to Doxia 2.x stack maven-site-plugin 3.20+ is requred.

What's Changed

Add test for custom FixJavadocMojo#defaultVersion by @Marcono1234 in apache/maven-javadoc-plugin#305

Bump org.apache.commons:commons-lang3 from 3.14.0 to 3.15.0 by @dependabot in apache/maven-javadoc-plugin#304

Improve URL handling by @michael-o in apache/maven-javadoc-plugin#310

Bump org.apache.commons:commons-lang3 from 3.15.0 to 3.16.0 by @dependabot in apache/maven-javadoc-plugin#307

Bump org.hamcrest:hamcrest-core from 2.2 to 3.0 by @dependabot in apache/maven-javadoc-plugin#306

Improve ITs by @michael-o in apache/maven-javadoc-plugin#311

Bump org.apache.maven.plugins:maven-plugins from 42 to 43 by @dependabot in apache/maven-javadoc-plugin#294

[MJAVADOC-809] Align Mojo class names by @michael-o in apache/maven-javadoc-plugin#312

[MJAVADOC-784] Upgrade to Doxia 2.0.0 Milestone Stack by @michael-o in apache/maven-javadoc-plugin#204

Full Changelog: apache/maven-javadoc-plugin@maven-javadoc-plugin-3.8.0...maven-javadoc-plugin-3.10.0

maven-javadoc-plugin-3.8.0

What's Changed

Bump org.springframework:spring-context from 4.3.29.RELEASE to 5.2.21.RELEASE in /src/it/projects/MJAVADOC-434_fixcompile by @dependabot in apache/maven-javadoc-plugin#280

Fix usage documentation mentioning nohelp default value by @indyteo in apache/maven-javadoc-plugin#286

[MJAVADOC-796] Do not follow links for Java 12+ by @michael-o in apache/maven-javadoc-plugin#287

[MJAVADOC-800] Bump org.codehaus.plexus:plexus-io from 3.4.2 to 3.5.0 by @dependabot in apache/maven-javadoc-plugin#291

Remove outdated invoker conditions by @michael-o in apache/maven-javadoc-plugin#292

Bump org.assertj:assertj-core from 3.26.0 to 3.26.3 by @dependabot in apache/maven-javadoc-plugin#293

Bump org.apache.maven.shared:maven-common-artifact-filters from 3.2.0 to 3.4.0 by @dependabot in apache/maven-javadoc-plugin#288

[MJAVADOC-799] Remove inconsistent AbstractFixJavadocMojo#defaultVersion default value by @Marcono1234 in apache/maven-javadoc-plugin#295

[MJAVADOC-801] Upgrade to Clirr Maven Plugin 2.8 in fix goals by @michael-o in apache/maven-javadoc-plugin#296

[MJAVADOC-803] Add default parameter to force root locale by @michael-o in apache/maven-javadoc-plugin#298

[MJAVADOC-783] Invalid path when using TagletArtifact and TagletPath by @michael-o in apache/maven-javadoc-plugin#300

... (truncated)

Commits

619650c [maven-release-plugin] prepare release maven-javadoc-plugin-3.11.1
e314da0 [MJAVADOC-821] Align toolchain discovery code with Maven Compiler Plugin
62a6861 [MJAVADOC-820] [REGRESSION] MJAVADOC-787 was merged incompletely
d1090c5 [maven-release-plugin] prepare for next development iteration
ee030f7 [maven-release-plugin] prepare release maven-javadoc-plugin-3.11.0
6c5fdc0 [MJAVADOC-819] Align archive generation code with Maven Source Plugin
3a90de5 [MJAVADOC-787] Automatic detection of release option for JDK < 9
373172d [MJAVADOC-817] Upgrade to Doxia 2.0.0 GA Stack
ba266c0 Fix SCM tag
5775ce1 Fix typo
Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-surefire-plugin from 3.2.5 to 3.5.2

Release notes

Sourced from org.apache.maven.plugins:maven-surefire-plugin's releases.

3.5.2

🚀 New features and improvements

[SUREFIRE-2278] - Don't say please. (#792) @elharo

📦 Dependency updates

[SUREFIRE-2281] - Doxia 2.0.0 ga (#794) @michael-o

Bump commons-io:commons-io from 2.2 to 2.14.0 in /surefire-its/src/test/resources/surefire-979-smartStackTrace-wrongClassloader/module1 (#789) @dependabot

👻 Maintenance

[SUREFIRE-2282] - surefire-report-plugin: Update Introduction documenta… (#796) @michael-o

Reduce cyclomatic complexity (#793) @elharo

Full Changelog: apache/maven-surefire@surefire-3.5.1...surefire-3.5.2

3.5.1

🚀 New features and improvements

[SUREFIRE-2270] - Use JUnit5 in surefire-shadefire (#783) @slawekjaranowski

[SUREFIRE-2266] - Execute ITs in parallel (#781) @slawekjaranowski

[SUREFIRE-2264] - Limit usage of commons-io from surefire-shared-utils (#777) @slawekjaranowski

🐛 Bug Fixes

[SUREFIRE-2267] - Packages for commons-codec should be relocated in surefire-shared-utils (#782) @slawekjaranowski

[SUREFIRE-1737] - Fix disable in statelessTestsetReporter (#780) @slawekjaranowski

[SUREFIRE-2257] - [REGRESSION] NPEx: Cannot invoke "Object.toString()" … (#774) @michael-o

📦 Dependency updates

[SUREFIRE-2273] - Bump org.hamcrest:hamcrest from 2.2 to 3.0 (#784) @dependabot

[SUREFIRE-2272] - Bump org.codehaus.plexus:plexus-java from 1.2.0 to 1.3.0 - JDK 23 support (#786) @dependabot

[SUREFIRE-2226] - Upgrade to Maven Verifier 2.0.0-M1 (#706) @michael-o

[SUREFIRE-2265] - Bump commons-io:commons-io from 2.16.1 to 2.17.0 (#779) @dependabot

[SUREFIRE-2263] - Use the latest version of surefire for self build (#776) @slawekjaranowski

[SUREFIRE-2262] - Bump org.apache.commons:commons-lang3 from 3.16.0 to 3.17.0 (#775) @dependabot

👻 Maintenance

[SUREFIRE-2269] - Allow fail during clean in surefire-its (#785) @slawekjaranowski

3.5.0

... (truncated)

Commits

ea9f049 [maven-release-plugin] prepare release surefire-3.5.2
e1f94a0 [SUREFIRE-2276] JUnit5's TestTemplate failures treated as flakes with retries
d24adb4 [SUREFIRE-2277] RunResult#getFlakes() is lost during serialisation/deserialis...
4385e94 Remove links to non-existing report
8881971 Remove outdated FAQ
0121834 [SUREFIRE-2283] FAQ site contains broken link to failsafe-plugin
91d16c3 Fix formatting of XML schema files
6cb417a Add .xsd to .gitattributes
9ce5221 [SUREFIRE-2282] surefire-report-plugin: Update Introduction documentation page
620b983 [SUREFIRE-2281] Upgrade to Doxia 2.0.0 GA Stack
Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-gpg-plugin from 3.2.4 to 3.2.7

Release notes

Sourced from org.apache.maven.plugins:maven-gpg-plugin's releases.

3.2.7

Fixes a lingering issue affecting whole 3.2.x lineage, that resulted in "bad passphrase" on Windows OS with GPG signer (see MGPG-136 for details).

What's Changed

[MGPG-136] Windows passphrase corruption by @cstamas in apache/maven-gpg-plugin#120

Bump com.kohlschutter.junixsocket:junixsocket-core from 2.10.0 to 2.10.1 by @dependabot in apache/maven-gpg-plugin#121

Bump commons-io:commons-io from 2.16.1 to 2.17.0 by @dependabot in apache/maven-gpg-plugin#119

Full Changelog: apache/maven-gpg-plugin@maven-gpg-plugin-3.2.6...maven-gpg-plugin-3.2.7

3.2.6

Release Notes - Maven GPG Plugin - Version 3.2.6

What's Changed

[MGPG-135] Support Overriding / Enhance the signer in AbstractGpgMojo by @laeubi in apache/maven-gpg-plugin#112

Bump org.apache.maven.plugins:maven-invoker-plugin from 3.7.0 to 3.8.0 by @dependabot in apache/maven-gpg-plugin#114

[MGPG-140] Update Maven to 3.9.9 by @cstamas in apache/maven-gpg-plugin#116

[MGPG-138] Drop direct use of plexus-cipher and secdispatcher by @cstamas in apache/maven-gpg-plugin#115

[MGPG-141] Remove use of deprecated classes by @cstamas in apache/maven-gpg-plugin#117

Add FAQ for "no pinentry" issue by @cstamas in apache/maven-gpg-plugin#118

New Contributors

@laeubi made their first contribution in apache/maven-gpg-plugin#112

... (truncated)

Commits

43af21c [maven-release-plugin] prepare release maven-gpg-plugin-3.2.7
8c5a8d2 [MGPG-144] Bump commons-io:commons-io from 2.16.1 to 2.17.0 (#119)
cb5422f [MGPG-143] Bump com.kohlschutter.junixsocket:junixsocket-core from 2.10.0 to ...
6b2a27f [MGPG-136] Windows passphrase corruption (#120)
31e87e0 [maven-release-plugin] prepare for next development iteration
1c9a14c [maven-release-plugin] prepare release maven-gpg-plugin-3.2.6
bbe6156 Add FAQ for "no pinentry" issue (#118)
5b94273 [MGPG-141] Remove use of deprecated classes (#117)
afdfd28 [MGPG-138] Drop direct use of plexus-cipher and secdispatcher (#115)
7516e7c [MGPG-140] Update Maven to 3.9.9 (#116)
Additional commits viewable in compare view

Updates commons-io:commons-io from 2.16.1 to 2.18.0

Updates io.github.bonigarcia:webdrivermanager from 5.8.0 to 5.9.2

Changelog

Sourced from io.github.bonigarcia:webdrivermanager's changelog.

[5.9.2] - 2024-07-25

Fixed

HTTP 404 when downloading microsoft edgedriver in macOS or Linux (#1320)

[5.9.1] - 2024-06-24

Removed

Remove using jackson-databind 2.17.1

[5.9.0] - 2024-06-24

Fixed

Fix architecture label to build URL for Edge ARM64

Changed

Force to use jackson-databind 2.17.1

Removed

Exclude org.bouncycastle:bcpkix-jdk18on from docker-java

Commits

33adaaf [maven-release-plugin] prepare release webdrivermanager-5.9.2
16545fb Update doc for release 5.9.2
a973d4a Improve logic for latest driver version detection
19da22a Fix logic to detect browser version
d6f6d2d Improve logic to read msedgedriver latest version (#1320)
3b7165a Enable Edge test in CI
63b58ff Bump org.apache.maven.plugins:maven-javadoc-plugin from 3.7.0 to 3.8.0 (#1322)
1158826 Bump selenium.version from 4.22.0 to 4.23.0 (#1321)
44b1440 Update mirror info (Sat Jul 20 12:02:21 UTC 2024)
5a460e7 Update mirror info (Fri Jul 19 12:02:27 UTC 2024)
Additional commits viewable in compare view

Updates org.apache.commons:commons-lang3 from 3.14.0 to 3.17.0

Updates com.fasterxml.jackson.core:jackson-databind from 2.17.1 to 2.18.2

Commits

See full diff in compare view

Updates org.junit.vintage:junit-vintage-engine from 5.10.2 to 5.11.3

Release notes

Sourced from org.junit.vintage:junit-vintage-engine's releases.

JUnit 5.11.3 = Platform 1.11.3 + Jupiter 5.11.3 + Vintage 5.11.3

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.11.2...r5.11.3

JUnit 5.11.2 = Platform 1.11.2 + Jupiter 5.11.2 + Vintage 5.11.2

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.11.1...r5.11.2

JUnit 5.11.1 = Platform 1.11.1 + Jupiter 5.11.1 + Vintage 5.11.1

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.11.0...r5.11.1

JUnit 5.11.0 = Platform 1.11.0 + Jupiter 5.11.0 + Vintage 5.11.0

See Release Notes.

New Contributors

@pshevche made their first contribution in junit-team/junit5#3427

@rybak made their first contribution in junit-team/junit5#3416

@pixeebot made their first contribution in junit-team/junit5#3491

@shartte made their first contribution in junit-team/junit5#3562

@eliasnogueira made their first contribution in junit-team/junit5#3674

@bigdaz made their first contribution in junit-team/junit5#3668

@gilday made their first contribution in junit-team/junit5#3667

@bjmi made their first contribution in junit-team/junit5#3806

@madalingiurca made their first contribution in junit-team/junit5#3787

@dmlloyd made their first contribution in junit-team/junit5#3820

@compf made their first contribution in junit-team/junit5#3867

@SveinKare made their first contribution in junit-team/junit5#3840

@mobounya made their first contribution in junit-team/junit5#3720

@robinjhector made their first contribution in junit-team/junit5#3345

@jabhatfield made their first contribution in junit-team/junit5#3829

@rfscholte made their first contribution in junit-team/junit5#3909

Full Changelog: junit-team/junit-framework@r5.10.3...r5.11.0

JUnit 5.11.0-RC1 = Platform 1.11.0-RC1 + Jupiter 5.11.0-RC1 + Vintage 5.11.0-RC1

See Release Notes.

New Contributors

@compf made their first contribution in junit-team/junit5#3867

@SveinKare made their first contribution in junit-team/junit5#3840

@mobounya made their first contribution in junit-team/junit5#3720

... (truncated)

Commits

b20991e Release 5.11.3
e57b508 Finalize 5.11.3 release notes
fb1254c Allow repeating ExtendWith annotation on fields and parameters
a3192bd Fix package name comparison on Java 8 (#4077)
fcb7b01 Remove useless Order annotation
57dfcb5 Allow repeating @…Source annotations when used as meta annotations
09cd8b3 Add ArchUnit test for consistency of repeatable annotations
fa46a92 Hard-wrap at 90 characters
8f45eea Find repeatable @⁠ExtendWith meta-annotations on fields again
b451122 Introduce release notes for 5.11.3
Additional commits viewable in compare view

Updates com.github.eirslett:frontend-maven-plugin from 1.15.0 to 1.15.1

Changelog

Sourced from com.github.eirslett:frontend-maven-plugin's changelog.

1.15.1

Fix #1150: Update lifecycle-mapping-metadata.xml for npx

Commits

3f70757 [maven-release-plugin] prepare release frontend-plugins-1.15.1
c5c9aec Attempt 2: secrets for OSSRH deployment
274bb70 Update secrets for OSSRH deployment
f39b40c Fix: bun windows support
a7d3b8b Update NodeInstaller.java
2750625 Fix #1152: Copy npm script file
622ac16 #1042 Use correct Xpp3Dom class
bca8bdf Replace tabs with spaces
122cd9b #1042 Allow Authentication via Http Header
60bbf02 Fix: delete only bun directory inside the installation directory instead of t...
Additional commits viewable in compare view

Updates com.microsoft.playwright:playwright from 1.44.0 to 1.49.0

Release notes

Sourced from com.microsoft.playwright:playwright's releases.

v1.49.0

Aria snapshots

New assertion assertThat(locator).matchesAriaSnapshot() verifies page structure by comparing to an expected accessibility tree, represented as YAML.
page.navigate("https://playwright.dev");
assertThat(page.locator("body")).matchesAriaSnapshot("""
  - banner:
    - heading /Playwright enables reliable/ [level=1]
    - link "Get started"
    - link "Star microsoft/playwright on GitHub"
  - main:
    - img "Browsers (Chromium, Firefox, WebKit)"
    - heading "Any browser • Any platform • One API"
""");
You can generate this assertion with Test Generator or by calling locator.ariaSnapshot().

Learn more in the aria snapshots guide.

Tracing groups

New method tracing.group() allows you to visually group actions in the trace viewer.
// All actions between group and groupEnd
// will be shown in the trace viewer as a group.
page.context().tracing().group("Open Playwright.dev > API");
page.navigate("https://playwright.dev/");
page.getByRole(AriaRole.LINK, new Page.GetByRoleOptions().setName("API")).click();
page.context().tracing().groupEnd();
Breaking: chrome and msedge channels switch to new headless mode

This change affects you if you're using one of the following channels in your playwright.config.ts:

chrome, chrome-dev, chrome-beta, or chrome-canary

msedge, msedge-dev, msedge-beta, or msedge-canary

After updating to Playwright v1.49, run your test suite. If it still passes, you're good to go. If not, you will probably need to update your snapshots, and adapt some of your test code around PDF viewers and extensions. See [issue #33566](microsoft/playwright#33566) for more details.

Try new Chromium headless

You can opt into the new headless mode by using 'chromium' channel. As official Chrome documentation puts it:

New Headless on the other hand is the real Chrome browser, and is thus more authentic, reliable, and offers more features. This makes it more suitable for high-accuracy end-to-end web app testing or browser extension testing.

See [issue #33566](microsoft/playwright#33566) for the list of possible breakages you could encounter and more details on Chromium headless. Please file an issue if you see any problems after opting in.

... (truncated)

Commits

cec4d66 chore: set release version to 1.49.0 (#1703)
2ff37da chore: mark 1.50 snapshot (#1702)
ee99afc chore: print actual message for TestBrowserContextCDPSession.shouldDe… (#1701)
34017a2 chore: roll 1.49.0 (#1700)
29f58a5 test: unflake TestPageClock (#1699)
d2d78a7 chore: stop using microsoft/playwright-github-action@v1 (#1698)
6e66ee7 chore: roll 1.49-beta (#1697)
4bda800 chore(deps): bump the all group with 4 updates (#1695)
2cce977 devops: stop publishing Ubuntu 20.04 (#1690)
20b13ad chore: roll driver 1.48.1 (#1687)
Additional commits viewable in compare view

Updates commons-codec:commons-codec from 1.17.0 to 1.17.1

Changelog

Sourced from commons-codec:commons-codec's changelog.

Apache Commons Codec 1.17.1 RELEASE NOTES

The Apache Commons Codec component contains encoders and decoders for various formats such as Base16, Base32, Base64, digest, and Hexadecimal. In addition to these widely used encoders and decoders, the codec package also maintains a collection of phonetic encoding utilities.

Feature and fix release. Requires a minimum of Java 8.

Fixed Bugs
        Md5Crypt now throws IllegalArgumentException on an invalid prefix. Thanks to Gary Gregory.
Changes
        Bump org.apache.commons:commons-parent from 69 to 71 [#286](https://github.com/apache/commons-codec/issues/286). Thanks to Gary Gregory.
        Bump org.codehaus.mojo:animal-sniffer-maven-plugin from 1.23 to 1.24 [#293](https://github.com/apache/commons-codec/issues/293). Thanks to Dependabot.
        Bump org.codehaus.mojo:taglist-maven-plugin from 3.0.0 to 3.1.0 [#292](https://github.com/apache/commons-codec/issues/292). Thanks to Dependabot.
For complete information on Apache Commons Codec, including instructions on how to submit bug reports, patches, or suggestions for improvement, see the Apache Commons Codec website:

https://commons.apache.org/proper/commons-codec/

Download page: https://commons.apache.org/proper/commons-codec/download_codec.cgi

Commits

9651097 Prepare for the next release candidate
0d99b46 Merge branch 'master' of https://gitbox.apache.org/repos/asf/commons-codec
0c63e18 Prepare for the next release candidate
be06260 Bump actions/upload-artifact from 4.3.3 to 4.3.4 (#295)
09ef422 Bump github/codeql-action from 3.25.11 to 3.25.12 (#294)
86ef922 Merge branch 'master' of https://gitbox.apache.org/repos/asf/commons-codec.git
974cf87 Remove redundant keywords
0c82238 Remove redundant keywords
1e6544e Remove redundant keywords
8dcf9d1 Remove redundant keywords
Additional commits viewable in compare view

Updates org.apache.commons:commons-compress from 1.26.2 to 1.27.1

Updates com.fasterxml.jackson.core:jackson-annotations from 2.17.1 to 2.18.2

Commits

See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

No QA required

Bumps the maven-low-risk group with 13 updates in the / directory: | Package | From | To | | --- | --- | --- | | [org.apache.maven.plugins:maven-javadoc-plugin](https://github.com/apache/maven-javadoc-plugin) | `3.7.0` | `3.11.1` | | [org.apache.maven.plugins:maven-surefire-plugin](https://github.com/apache/maven-surefire) | `3.2.5` | `3.5.2` | | [org.apache.maven.plugins:maven-gpg-plugin](https://github.com/apache/maven-gpg-plugin) | `3.2.4` | `3.2.7` | | commons-io:commons-io | `2.16.1` | `2.18.0` | | [io.github.bonigarcia:webdrivermanager](https://github.com/bonigarcia/webdrivermanager) | `5.8.0` | `5.9.2` | | org.apache.commons:commons-lang3 | `3.14.0` | `3.17.0` | | [com.fasterxml.jackson.core:jackson-databind](https://github.com/FasterXML/jackson) | `2.17.1` | `2.18.2` | | [org.junit.vintage:junit-vintage-engine](https://github.com/junit-team/junit5) | `5.10.2` | `5.11.3` | | [com.github.eirslett:frontend-maven-plugin](https://github.com/eirslett/frontend-maven-plugin) | `1.15.0` | `1.15.1` | | [com.microsoft.playwright:playwright](https://github.com/microsoft/playwright-java) | `1.44.0` | `1.49.0` | | [commons-codec:commons-codec](https://github.com/apache/commons-codec) | `1.17.0` | `1.17.1` | | org.apache.commons:commons-compress | `1.26.2` | `1.27.1` | | [com.fasterxml.jackson.core:jackson-annotations](https://github.com/FasterXML/jackson) | `2.17.1` | `2.18.2` | Updates `org.apache.maven.plugins:maven-javadoc-plugin` from 3.7.0 to 3.11.1 - [Release notes](https://github.com/apache/maven-javadoc-plugin/releases) - [Commits](apache/maven-javadoc-plugin@maven-javadoc-plugin-3.7.0...maven-javadoc-plugin-3.11.1) Updates `org.apache.maven.plugins:maven-surefire-plugin` from 3.2.5 to 3.5.2 - [Release notes](https://github.com/apache/maven-surefire/releases) - [Commits](apache/maven-surefire@surefire-3.2.5...surefire-3.5.2) Updates `org.apache.maven.plugins:maven-gpg-plugin` from 3.2.4 to 3.2.7 - [Release notes](https://github.com/apache/maven-gpg-plugin/releases) - [Commits](apache/maven-gpg-plugin@maven-gpg-plugin-3.2.4...maven-gpg-plugin-3.2.7) Updates `commons-io:commons-io` from 2.16.1 to 2.18.0 Updates `io.github.bonigarcia:webdrivermanager` from 5.8.0 to 5.9.2 - [Release notes](https://github.com/bonigarcia/webdrivermanager/releases) - [Changelog](https://github.com/bonigarcia/webdrivermanager/blob/master/CHANGELOG.md) - [Commits](bonigarcia/webdrivermanager@webdrivermanager-5.8.0...webdrivermanager-5.9.2) Updates `org.apache.commons:commons-lang3` from 3.14.0 to 3.17.0 Updates `com.fasterxml.jackson.core:jackson-databind` from 2.17.1 to 2.18.2 - [Commits](https://github.com/FasterXML/jackson/commits) Updates `org.junit.vintage:junit-vintage-engine` from 5.10.2 to 5.11.3 - [Release notes](https://github.com/junit-team/junit5/releases) - [Commits](junit-team/junit-framework@r5.10.2...r5.11.3) Updates `com.github.eirslett:frontend-maven-plugin` from 1.15.0 to 1.15.1 - [Changelog](https://github.com/eirslett/frontend-maven-plugin/blob/master/CHANGELOG.md) - [Commits](eirslett/frontend-maven-plugin@frontend-plugins-1.15.0...frontend-plugins-1.15.1) Updates `com.microsoft.playwright:playwright` from 1.44.0 to 1.49.0 - [Release notes](https://github.com/microsoft/playwright-java/releases) - [Commits](microsoft/playwright-java@v1.44.0...v1.49.0) Updates `commons-codec:commons-codec` from 1.17.0 to 1.17.1 - [Changelog](https://github.com/apache/commons-codec/blob/master/RELEASE-NOTES.txt) - [Commits](apache/commons-codec@rel/commons-codec-1.17.0...rel/commons-codec-1.17.1) Updates `org.apache.commons:commons-compress` from 1.26.2 to 1.27.1 Updates `com.fasterxml.jackson.core:jackson-annotations` from 2.17.1 to 2.18.2 - [Commits](https://github.com/FasterXML/jackson/commits) --- updated-dependencies: - dependency-name: org.apache.maven.plugins:maven-javadoc-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-low-risk - dependency-name: org.apache.maven.plugins:maven-surefire-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-low-risk - dependency-name: org.apache.maven.plugins:maven-gpg-plugin dependency-type: direct:production update-type: version-update:semver-patch dependency-group: maven-low-risk - dependency-name: commons-io:commons-io dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-low-risk - dependency-name: io.github.bonigarcia:webdrivermanager dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-low-risk - dependency-name: org.apache.commons:commons-lang3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-low-risk - dependency-name: com.fasterxml.jackson.core:jackson-databind dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-low-risk - dependency-name: org.junit.vintage:junit-vintage-engine dependency-type: direct:development update-type: version-update:semver-minor dependency-group: maven-low-risk - dependency-name: com.github.eirslett:frontend-maven-plugin dependency-type: direct:production update-type: version-update:semver-patch dependency-group: maven-low-risk - dependency-name: com.microsoft.playwright:playwright dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-low-risk - dependency-name: commons-codec:commons-codec dependency-type: direct:production update-type: version-update:semver-patch dependency-group: maven-low-risk - dependency-name: org.apache.commons:commons-compress dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-low-risk - dependency-name: com.fasterxml.jackson.core:jackson-annotations dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-low-risk ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot requested a review from a team as a code owner December 1, 2024 01:22

dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Dec 1, 2024

dependabot bot mentioned this pull request Dec 1, 2024

chore: bump the maven-low-risk group across 1 directory with 13 updates #494

Closed

Merge branch 'develop' into dependabot/maven/maven-low-risk-e57e31614e

a8f0ba0

scottmries requested a review from a team as a code owner July 2, 2025 20:40

scottmries approved these changes Jul 2, 2025

View reviewed changes

scottmries merged commit 81d7943 into develop Jul 2, 2025
16 of 17 checks passed

scottmries deleted the dependabot/maven/maven-low-risk-e57e31614e branch July 2, 2025 20:46

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

chore: bump the maven-low-risk group across 1 directory with 13 updates #499

chore: bump the maven-low-risk group across 1 directory with 13 updates #499

Uh oh!

dependabot bot commented on behalf of github Dec 1, 2024 •

edited by scottmries

Loading

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

chore: bump the maven-low-risk group across 1 directory with 13 updates #499

chore: bump the maven-low-risk group across 1 directory with 13 updates #499

Uh oh!

Conversation

dependabot bot commented on behalf of github Dec 1, 2024 • edited by scottmries Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

maven-javadoc-plugin-3.11.1

What's Changed

maven-javadoc-plugin-3.10.1

What's Changed

maven-javadoc-plugin-3.10.0

❗ NOTICE

What's Changed

maven-javadoc-plugin-3.8.0

What's Changed

3.5.2

🚀 New features and improvements

📦 Dependency updates

👻 Maintenance

3.5.1

🚀 New features and improvements

🐛 Bug Fixes

📦 Dependency updates

👻 Maintenance

3.5.0

3.2.7

What's Changed

3.2.6

Release Notes - Maven GPG Plugin - Version 3.2.6

What's Changed

New Contributors

[5.9.2] - 2024-07-25

Fixed

[5.9.1] - 2024-06-24

Removed

[5.9.0] - 2024-06-24

Fixed

Changed

Removed

New Contributors

New Contributors

1.15.1

v1.49.0

Aria snapshots

Tracing groups

Breaking: chrome and msedge channels switch to new headless mode

Try new Chromium headless

Apache Commons Codec 1.17.1 RELEASE NOTES

Fixed Bugs

Changes

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

dependabot bot commented on behalf of github Dec 1, 2024 •

edited by scottmries

Loading

Breaking: `chrome` and `msedge` channels switch to new headless mode