Bump the java-deps group across 1 directory with 5 updates

[dependabot]

Bumps the java-deps group with 5 updates in the / directory:

Package	From	To
net.dv8tion:JDA	6.1.2	6.2.0
ch.qos.logback:logback-core	1.5.21	1.5.22
ch.qos.logback:logback-classic	1.5.21	1.5.22
org.xerial:sqlite-jdbc	3.51.0.0	3.51.1.0
org.apache.commons:commons-text	1.14.0	1.15.0

Updates net.dv8tion:JDA from 6.1.2 to 6.2.0

Release notes

Sourced from net.dv8tion:JDA's releases.

v6.2.0

Overview

This release includes a permission change that will go into effect on February 26th, 2026. Any versions older than this will not have the correct permission checks for the new rules, or only partially support the new rules.

Permission Changes (#2967)

After the deadline of February 26th, 2026, some permissions will lose capabilities in favor of new permissions.

• MESSAGE_MANAGE will no longer allow users to Pin/Unpin Messages or Bypass Slowmode. Instead, the new BYPASS_SLOWMODE and PIN_MESSAGES permissions have been added.
• MANAGE_GUILD_EXPRESSIONS will no longer allow users to Create Emojis/Stickers. Instead, the new CREATE_GUILD_EXPRESSIONS permission has been added.
• MANAGE_EVENTS will no longer allow users to Create Scheduled Events. Instead, the new CREATE_SCHEDULED_EVENTS permission has been added.

See the Discord Changelog for details.

Retrieve Role Member Counts (#2973)

The guild role member count can now be retrieved with Guild#retrieveRoleMemberCounts.

Example:

guild.retrieveRoleMemberCounts().queue(counts -> {
    int boostRoleMemberCount = counts.get(guild.getBoostRole());
IO.println("This guild has " + boostRoleMemberCount + " boosters!");

});

Enhanced Role Colors (#2975)

You can now access and modify the Gradient or Holographic role colors, a feature unlocked through boosting a guild.

Example:

guild.createRole()
     .setName("Gradient Role")
     .setGradientColors(0x0000FF, 0x00FF00)
     .queue(role -> {
         IO.println("Is role a gradient? " + role.getColors().isGradient());
         IO.println("Primary: %X".formatted(role.getColors().getPrimaryRaw()));
         IO.println("Secondary: %X".formatted(role.getColors().getSecondaryRaw()));
     });

New Features

• Add support for enhanced role colors by @​MinnDevelopment in discord-jda/JDA#2975

... (truncated)

Commits

• 6355712 Bump version to 6.2.0 (#2979)
• dfefa61 Voice Channel Invite Guest Flag (#2966)
• 2f1de00 Add support for enhanced role colors (#2975)
• 604b169 Add Guild#retrieveRoleMemberCounts (#2973)
• 0cd5449 Add intellij icon (#2977)
• 4d69cae Add GUILD_BANNER ("banner_hash") auditlog key (#2968)
• d47863a Update permission checks with the Feb 23 2026 deadline (#2967)
• 2a71f08 Use openrewrite to enforce nullability annotations (#2976)
• f15c0f6 Bump version to 6.1.3 (#2972)
• bb6d2ce Avoid downloading external URLs for component updates (#2971)
• See full diff in compare view

Updates ch.qos.logback:logback-core from 1.5.21 to 1.5.22

Release notes

Sourced from ch.qos.logback:logback-core's releases.

Logback 1.5.22

2025-12-11 Release of logback version 1.5.22

• In order to prevent involuntary information leakage, Logback will no longer output the value of a substituted variable, if the variable name contains any of the case-insensitive strings "password", "secret" or "confidential". This problem was reported by Chintan Rohila in issues/986.

• Logback now takes the overridden toString() method of Throwable subclasses into account when printing stack traces. This issue was reported in LOGBACK-543 by Alvin Chee, with a fix provided in PR 404 by Brett Kail.

• Instead of limit-counting guard, Logback now uses a tumbling-window guard to rate limit internal error messages.

• A bit-wise identical binary of this version can be reproduced by building from source code at commit 572379aabd2f672b49593e4020696c624541e5b0 associated with the tag v_1.5.22. Release built using Java "21" 2023-10-17 LTS build 21.0.1.+12-LTS-29 under Linux Debian 11.6.

Commits

• 572379a prepare release 1.5.22
• 39d17ea fix status printing of variable substitution when the variable name contains ...
• 75509a9 fix PR 404, LOGBACK-543
• 8eb9356 remove unused import
• 6131a3a use a slightly more sophisticated guard for printing status messages
• 9efca21 add no-args constructor to support various serialization frameworks
• 1bea580 minor comment edits
• bd07fdd update angus, greenmail versions
• aef993c start work on 1.5.22-SNAPSHOT
• See full diff in compare view

Updates ch.qos.logback:logback-classic from 1.5.21 to 1.5.22

Release notes

Sourced from ch.qos.logback:logback-classic's releases.

Logback 1.5.22

2025-12-11 Release of logback version 1.5.22

• In order to prevent involuntary information leakage, Logback will no longer output the value of a substituted variable, if the variable name contains any of the case-insensitive strings "password", "secret" or "confidential". This problem was reported by Chintan Rohila in issues/986.

• Logback now takes the overridden toString() method of Throwable subclasses into account when printing stack traces. This issue was reported in LOGBACK-543 by Alvin Chee, with a fix provided in PR 404 by Brett Kail.

• Instead of limit-counting guard, Logback now uses a tumbling-window guard to rate limit internal error messages.

• A bit-wise identical binary of this version can be reproduced by building from source code at commit 572379aabd2f672b49593e4020696c624541e5b0 associated with the tag v_1.5.22. Release built using Java "21" 2023-10-17 LTS build 21.0.1.+12-LTS-29 under Linux Debian 11.6.

Commits

• 572379a prepare release 1.5.22
• 39d17ea fix status printing of variable substitution when the variable name contains ...
• 75509a9 fix PR 404, LOGBACK-543
• 8eb9356 remove unused import
• 6131a3a use a slightly more sophisticated guard for printing status messages
• 9efca21 add no-args constructor to support various serialization frameworks
• 1bea580 minor comment edits
• bd07fdd update angus, greenmail versions
• aef993c start work on 1.5.22-SNAPSHOT
• See full diff in compare view

Updates org.xerial:sqlite-jdbc from 3.51.0.0 to 3.51.1.0

Release notes

Sourced from org.xerial:sqlite-jdbc's releases.

Release 3.51.1.0

Changelog

🚀 Features

sqlite

• upgrade to sqlite 3.51.1 (6868e66)

🛠 Build

deps

• bump org.codehaus.mojo:versions-maven-plugin (7603dbb)
• bump actions/checkout from 5 to 6 (79a5083)
• bump org.apache.maven.plugins:maven-jar-plugin (41d4bb3)
• bump org.graalvm.buildtools:native-maven-plugin (2499f23)
• org.graalvm.buildtools:native-maven-plugin from 0.10.6 to 0.11.2 (#1346) (4f126e5), closes #1346

deps-dev

• bump org.assertj:assertj-core from 3.27.4 to 3.27.6 (c6f063c)

unscoped

• disable fail-fast (5df7db9)

Contributors

We'd like to thank the following people for their contributions: Gauthier, Gauthier Roebroeck, Kristof

Commits

• a6d0147 chore(release): 3.51.1.0 [skip ci]
• 5df7db9 ci: disable fail-fast
• f7f2d9d chore: update native libraries
• 6868e66 feat(sqlite): upgrade to sqlite 3.51.1
• 7603dbb build(deps): bump org.codehaus.mojo:versions-maven-plugin
• 79a5083 build(deps): bump actions/checkout from 5 to 6
• 41d4bb3 build(deps): bump org.apache.maven.plugins:maven-jar-plugin
• 2499f23 build(deps): bump org.graalvm.buildtools:native-maven-plugin
• c6f063c build(deps-dev): bump org.assertj:assertj-core from 3.27.4 to 3.27.6
• 4f126e5 build(deps): org.graalvm.buildtools:native-maven-plugin from 0.10.6 to 0.11.2...
• Additional commits viewable in compare view

Updates org.apache.commons:commons-text from 1.14.0 to 1.15.0

Changelog

Sourced from org.apache.commons:commons-text's changelog.

Apache Commons Text 1.15.0 Release Notes

The Apache Commons Text team is pleased to announce the release of Apache Commons Text 1.15.0.

Apache Commons Text is a set of utility functions and reusable components for processing and manipulating text in a Java environment.

Release 1.15.0. This is a feature and maintenance release. Java 8 or later is required.

New features

•        Add experimental CycloneDX VEX file [#683](https://github.com/apache/commons-text/issues/683). Thanks to Piotr P. Karwasz, Gary Gregory.
  

• TEXT-235: Add Damerau-Levenshtein distance #687. Thanks to LorgeN, Gary Gregory.

•        Add unit tests to increase coverage [#719](https://github.com/apache/commons-text/issues/719). Thanks to Michael Hausegger, Gary Gregory.
  

•        Add new test for CharSequenceTranslator#with() [#725](https://github.com/apache/commons-text/issues/725). Thanks to Michael Hausegger, Gary Gregory.
  

•        Add tests and assertions to org.apache.commons.text.similarity to get to 100% code coverage [#727](https://github.com/apache/commons-text/issues/727), [#728](https://github.com/apache/commons-text/issues/728). Thanks to Michael Hausegger.
  

Fixed Bugs

•        Fix exception message typo in XmlStringLookup.XmlStringLookup(Map, Path...). Thanks to Gary Gregory.
  

• TEXT-236: Inserting at the end of a TextStringBuilder throws a StringIndexOutOfBoundsException. Thanks to Pierre Post, Sumit Bera, Alex Herbert, Gary Gregory.

•        Fix TextStringBuilderTest.testAppendToCharBuffer() to use proper argument type [#724](https://github.com/apache/commons-text/issues/724). Thanks to Michael Hausegger.
  

•        Fix Apache RAT plugin console warnings. Thanks to Gary Gregory.
  

•        Fix site XML to use version 2.0.0 XML schema. Thanks to Gary Gregory.
  

•        Removed unreachable threshold verification code in src/main/java/org/apache/commons/text/similarity [#730](https://github.com/apache/commons-text/issues/730). Thanks to Michael Hausegger.
  

•        Enable secure processing for the XML parser in XmlStringLookup in case the underlying JAXP implementation doesn't [#729](https://github.com/apache/commons-text/issues/729). Thanks to 김민재 (minjas0507), Gary Gregory, Piotr Karwasz.
  

Changes

•        Bump org.apache.commons:commons-parent from 85 to 93 [#704](https://github.com/apache/commons-text/issues/704), [#723](https://github.com/apache/commons-text/issues/723), [#726](https://github.com/apache/commons-text/issues/726). Thanks to Gary Gregory.
  

•        Bump commons.bytebuddy.version from 1.17.6 to 1.18.2 [#696](https://github.com/apache/commons-text/issues/696), [#722](https://github.com/apache/commons-text/issues/722). Thanks to Gary Gregory.
  

•        Bump graalvm.version from 24.2.2 to 25.0.1 [#703](https://github.com/apache/commons-text/issues/703), [#716](https://github.com/apache/commons-text/issues/716). Thanks to Gary Gregory, Dependabot.
  

•        Bump org.apache.commons:commons-lang3 from 3.18.0 to 3.20.0. Thanks to Gary Gregory.
  

•        Bump commons-io:commons-io from 2.20.0 to 2.21.0. Thanks to Gary Gregory.
  

Historical list of changes: https://commons.apache.org/proper/commons-text/changes.html

For complete information on Apache Commons Text, including instructions on how to submit bug reports, patches, or suggestions for improvement, see the Apache Commons Text website:

https://commons.apache.org/proper/commons-text

Download page: https://commons.apache.org/proper/commons-text/download_text.cgi

... (truncated)

Commits

• 04e9374 Prepare for the release candidate 1.15.0 RC1
• 502c4c4 Prepare for the next release candidate
• c6e17ec Use direct access
• 58e1e12 Simplify XML FSP (#731)
• b5052c9 Bump actions/setup-java from 5.0.0 to 5.1.0
• 2e2d4bc Revert "Bump actions/setup-java from 5.0.0 to 5.1.0"
• b0ddbd1 Bump actions/setup-java from 5.0.0 to 5.1.0
• 1c2d382 Add tests with external DTD
• ed3df4b Internal clean up
• bb508f3 Bump actions/checkout from 6.0.0 to 6.0.1
• Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
net.dv8tion:JDA	[>= 6.0.a0, < 6.0.999999]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions