Bump the dependencies group across 1 directory with 3 updates

[dependabot]

Bumps the dependencies group with 3 updates in the / directory: org.scala-lang:scala3-library_3, org.junit:junit-bom and org.springframework.boot.

Updates org.scala-lang:scala3-library_3 from 3.7.1 to 3.7.2

Release notes

Sourced from org.scala-lang:scala3-library_3's releases.

3.7.2

Highlights of the release

• Add an -Yimplicit-to-given flag for rewrites to easily test changes in the ecosystem #22580 This experimental flag when used in conjunction with --rewrite allows to migrate most of implicit definitions as given. It aims to ease with migration to new syntax, or testing how it would affect your code base.

• Bump Scala CLI to v1.8.4 (was v1.8.0) #23538

  • Support for URLs in using file directives
  • Better support for the REPL with JDK 24+
  • experimental publish support for the Sonatype Central Portal
  • See full Scala CLI changelog

• Implement applied constructor types #22543 It introduces new syntax allowing for easier definition of tracked parameters under -language:experimental.modularity You can read more about this experimental feature in the Modularity Improvements proposal documentation.

Other changes and fixes

Documentation

• Mark AnyRef::eq and AnyRef::ne as infix instead of special casing when emitting the warning #23252
• Mark eq and ne in Predef as infix #23255

Experimental: Capture Checking

• Allow caps in result types of functions to be mapped to reaches #23275
• Adapt types according to read-only status #23332
• Rename mut to update #23335
• Change retains annotation from using term arguments to using type arguments #22909
• New Syntax for Capture Variables and Explicit Capture Polymorphism v3 #23063
• Fix #23223: Add handling for classes deriving from Capability during Setup #23248
• Copy @use and @consume annotations to parameter types #23324
• Fix handling of @use and @consume in class parameters #23342
• Some usability improvements relating to errors #23370
• Loosen the "does not match previously inferred" criterion #23067
• Use level checking for Fresh instances #23101
• Ensure all capture variables carry the attachment #23162
• Cache ResultCaps #23198
• Move separation checking to -source:3.8 #23249
• Refactorings for CC error reporting #23260
• Standardize on log-based undo #23357
• Flag nonsensical capturing types with pure parents as errors #23367

Experimental: Erased Definitions

• Erased fields are not nullable #23311

Experimental: Explicit Nulls

• Relax comparison between Null and reference types in explicit nulls #23308

... (truncated)

Commits

• efb6ce7 Release Scala 3.7.2
• 3bfb052 Add changelog for 3.7.2
• 1800e3c Release Scala 3.7.2-RC2
• dd5694d Add changelog for release 3.7.2-RC1
• 3976856 Backport "chore: add -Yno-stdlib-patches flag for the stdlib migration" to ...
• 8d5e528 Revert "Backport "Don't force annotation unpickling when testing for SilentIn...
• 479262e Backport "Bump Scala CLI to v1.8.4 (was v1.8.3)" to 3.7.2 (#23547)
• 75d00d0 Backport "Don't force annotation unpickling when testing for SilentIntoAnnot"...
• d79603e Backport "Use result of lambda type of implicit in CheckUnused" to 3.7.2 (#23...
• 871dfb7 Backport "Check path of module prefix for tailrec" to 3.7.2 (#23544)
• Additional commits viewable in compare view

Updates org.junit:junit-bom from 5.13.3 to 5.13.4

Release notes

Sourced from org.junit:junit-bom's releases.

JUnit 5.13.4 = Platform 1.13.4 + Jupiter 5.13.4 + Vintage 5.13.4

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.13.3...r5.13.4

Commits

• 8a21048 Release 5.13.4
• 9a38789 Finalize 5.13.4 release notes
• 458325c Log only once per implementation type for CloseableResource types
• 976a110 Protect against potential problems when converting file-based selectors
• e94f728 Allow default package for PackageSource
• b60fecf Fail on classpath resource names that are blank after removing leading /
• 6378c88 Remove java.* packages from Import-Package headers in all jars (#4738)
• 1a360f3 Create initial 5.13.4 release notes from template
• 806fc9a Document #4689 in release notes
• 1653839 Document #4686 in release notes
• Additional commits viewable in compare view

Updates org.springframework.boot from 3.5.3 to 3.5.4

Release notes

Sourced from org.springframework.boot's releases.

v3.5.4

🐞 Bug Fixes

• LambdaSafe.withFilter is not public #46474
• Executable JAR application class encounters performance issues when used with Palo Alto Network Cortex XDR agent #46402
• Runtime dependencies are missing from aotCompileClasspath and aotTestCompileClasspath when using Kotlin #46398
• Additional fields for structured JSON logging incompatible with nested ecs logging in 3.5.x #46351
• Change in DefaultErrorAttributes alters the shape of API validation error responses #46260
• jdbc.connections.active and jdbc.connections.idle metrics are not available when using Hikari in a native image #46225
• developmentOnly and testAndDevelopmentOnly dependencies may prevent implementation dependencies from being included in the uber-jar #46205
• Hash calculation for uber archive entries that require unpacking is inefficient #46203
• Permissions are applied inconsistently when building uber archives with Gradle #46194
• Environment variables using legacy dash format can no longer be bound #46184
• EmbeddedWebServerFactoryCustomizerAutoConfiguration fails when undertow-core is on the classpath and undertow-servlet is not #46180
• Executable JAR application class encounters performance issues #46177
• Executable JAR application class encounters performance issues #46176
• Setting spring.reactor.context-propagation has no effect when lazy initialization is enabled #46174
• Setting spring.netty.leak-detection has no effect when lazy initialization is enabled #46170
• SslInfo does not use its Clock when checking certificate validity #46011

📔 Documentation

• Fix description of spring.batch.job.enabled #46247
• Fix broken Kotlin examples in reference documentation #46168
• Add Logback Access Reactor Netty to community starters #46060

🔨 Dependency Upgrades

• Upgrade to ActiveMQ 6.1.7 #46373
• Upgrade to Caffeine 3.2.2 #46432
• Upgrade to Couchbase Client 3.8.2 #46460
• Upgrade to GraphQL Java 24.1 #46395
• Upgrade to Groovy 4.0.28 #46516
• Upgrade to Hibernate 6.6.22.Final #46492
• Upgrade to HikariCP 6.3.1 #46493
• Upgrade to Infinispan 15.2.5.Final #46461
• Upgrade to Jackson Bom 2.19.2 #46494
• Upgrade to Jetty 12.0.23 #46375
• Upgrade to MariaDB 3.5.4 #46376
• Upgrade to Maven Invoker Plugin 3.9.1 #46377
• Upgrade to Micrometer 1.15.2 #46280
• Upgrade to Micrometer Tracing 1.5.2 #46281
• Upgrade to MSSQL JDBC 12.10.1.jre11 #46378
• Upgrade to MySQL 9.3.0 #46371
• Upgrade to Neo4j Java Driver 5.28.9 #46434
• Upgrade to Netty 4.1.123.Final #46435
• Upgrade to Prometheus Client 1.3.10 #46379
• Upgrade to Reactor Bom 2024.0.8 #46282
• Upgrade to RxJava3 3.1.11 #46380
• Upgrade to Spring AMQP 3.2.6 #46283

... (truncated)

Commits

• 925f9bc Release v3.5.4
• d82fb35 Merge branch '3.4.x' into 3.5.x
• 4b6064f Next development version (v3.4.9-SNAPSHOT)
• a39c8f0 Merge branch '3.4.x' into 3.5.x
• 99d53de Upgrade to Spring Integration 6.5.1
• 1b4aad5 Upgrade to Groovy 4.0.28
• 3f0f79b Upgrade to Spring Integration 6.4.6
• ff8443c Upgrade to Groovy 4.0.28
• aed8550 Merge branch '3.4.x' into 3.5.x
• 5406976 Apply commercial input consistently
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions