Skip to content

chore(deps-dev): bump the dev-deps group across 1 directory with 11 updates#622

Open
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/maven/dev-deps-f1f78ff9c9
Open

chore(deps-dev): bump the dev-deps group across 1 directory with 11 updates#622
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/maven/dev-deps-f1f78ff9c9

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 11, 2026

Copy link
Copy Markdown
Contributor

Bumps the dev-deps group with 11 updates in the / directory:

Package From To
org.springframework.boot:spring-boot-starter-webmvc-test 4.0.2 4.1.0
org.testcontainers:testcontainers 2.0.3 2.0.5
com.github.tomakehurst:wiremock-jre8-standalone 2.35.2 3.0.1
org.codehaus.mojo:versions-maven-plugin 2.19.0 2.21.0
org.openapitools:openapi-generator-maven-plugin 7.15.0 7.23.0
org.apache.maven.plugins:maven-compiler-plugin 3.14.0 3.15.0
org.apache.maven.plugins:maven-resources-plugin 3.3.1 3.5.0
org.apache.maven.plugins:maven-surefire-plugin 3.5.4 3.5.6
org.apache.maven.plugins:maven-release-plugin 3.1.1 3.3.1
org.apache.maven.plugins:maven-failsafe-plugin 3.5.4 3.5.6
com.diffplug.spotless:spotless-maven-plugin 3.1.0 3.7.0

Updates org.springframework.boot:spring-boot-starter-webmvc-test from 4.0.2 to 4.1.0

Release notes

Sourced from org.springframework.boot:spring-boot-starter-webmvc-test's releases.

v4.1.0

Full release notes for Spring Boot 4.1 are available on the wiki.

⭐ New Features

  • Add public constructor to InvalidConfigurationPropertyValueException that accepts a cause #50211
  • Reduce memory consumption when repeatedly calling WritableJson.toByteArray #49428

🐞 Bug Fixes

  • MailSender auto-configuration does not enable hostname verification #50747
  • Artemis auto-configuration uses a predictable default location for the embedded broker's data #50745
  • Embedded LDAP SSL should not be enabled when its bundle is empty #50700
  • InetAddressFilter.externalAddresses does not exclude special purpose addresses from RFC 6890 #50668
  • NullPointerException in reactor-netty SniProvider and unmapped SSL bundle with RSocket #50645
  • SSL should not be enabled when a SSL bundle is overridden to an empty string #50635
  • Test auto-configuration no longer integrates Spring Security with HtmlUnitDriver #50633
  • Configuration property metadata includes incorrect class references #50632
  • Docker Compose support does not restore thread interrupt flag when catching InterruptedException #50618
  • RabbitProperties enables SSL even when spring.rabbitmq.ssl.bundle is overridden to an empty string #50612
  • NullPointerException in reactor-netty SniProvider when SSL bundle uses client-auth or server truststore without server-name-bundles #50610
  • SpringJtaPlatform should have been deprecated since 4.1.0-M3 #50592
  • Layer written outside the output location of '//' exception is thrown when using extract layers in root directory #50510
  • ConfigurationPropertiesReportEndpoint exposes AOP proxy internals #50417
  • Created StackTracePrinter instances have no access to the Environment #50414
  • MappingsEndpoint reports the context's own ID as parentId when a parent exists #50412
  • Buildpack module does not validate long-to-int casts #50410
  • Gradle gRPC support fails if protobuf-java dependency is used instead of protobuf-java-util #50405
  • GraphQL WebSocket support does not configure allowed origins #50394
  • Spring Boot Loader Does Not Support RSA and EC Signed Jars #50298
  • Meter registries are not removed from the global registry when the context is closed #50287
  • DataSourceBuilder cannot derive a DataSource from a lazy connection proxy #50271
  • Nullable annotations from AbstractErrorController.getErrorAttributes are not aligned with implementation #50266
  • Bean definitions can be added with an initializer before setAllowBeanDefinitionOverriding is called #50264
  • EndpointRequest links matcher unnecessarily matches HTTP methods other than GET #50261
  • Actuator's '/cloudfoundryapplication' endpoint does not work if restrictive CORS configuration is provided using a bean named corsConfigurationSource #50258
  • ThreadPoolTaskScheduleBuilder unnecessarily loses precision when configuring await termination time #50234
  • NimbusJwtDecoder silently accepts unknown values for spring.security.oauth2.resourceserver.jwt.jws-algorithms #50228
  • Missing dependency management for spring-boot-web-server-test #50224
  • Spring Batch support for MongoDB modules are not included in dependency management #50223
  • Apply HTML escaping to timestamp attribute in Whitelabel error page #50216
  • GrpcServerHealthScheduler is not started in servlet environments #50209
  • Setting server.servlet.session.cookie.partitioned=true has no effect when using Tomcat #50204

📔 Documentation

  • Fix reference to Gradle documentation for module replacement #50647
  • Document SSL reloading with Let's Encrypt #50630
  • Remove the use of Optional from Data Neo4j repository examples #50622
  • Fix typos in documentation #50620

... (truncated)

Commits

Updates org.testcontainers:testcontainers from 2.0.3 to 2.0.5

Release notes

Sourced from org.testcontainers:testcontainers's releases.

2.0.5

What's Changed

🚀 Features & Enhancements

🐛 Bug Fixes

📖 Documentation

🧹 Housekeeping

📦 Dependency updates

2.0.4

... (truncated)

Commits
  • 5c44820 Fix typo (#11717)
  • 84b1c3a Add getHttpPort and getGrpcPort methods in WeaviateContainer (#11712)
  • a412b8e Use weaviate client v6 (#11711)
  • 058fa82 Combined dependencies PR (#11710)
  • 773f344 Merge remote-tracking branch 'origin/dependabot/gradle/modules/hivemq/ch.qos....
  • ebe6043 Merge remote-tracking branch 'origin/dependabot/gradle/modules/activemq/org.a...
  • 5248d1d Merge remote-tracking branch 'origin/dependabot/gradle/modules/scylladb/softw...
  • ab781f6 Combined dependencies PR (#11708)
  • 2d6c1be Merge remote-tracking branch 'origin/dependabot/gradle/core/org.jetbrains-ann...
  • e76c291 Merge remote-tracking branch 'origin/dependabot/gradle/core/org.junit.platfor...
  • Additional commits viewable in compare view

Updates com.github.tomakehurst:wiremock-jre8-standalone from 2.35.2 to 3.0.1

Release notes

Sourced from com.github.tomakehurst:wiremock-jre8-standalone's releases.

3.0.1

🐛 Bug fixes

  • Stop returning 500s for unmatched path patterns (#2339) @​Mahoney
  • Ensure that the shadow JAR is always built last to ensure webhooks fat JAR wins (#2344) @​tomakehurst
  • Added validation of UUIDs in path parameters in the admin API so that clearer errors are reported when non UUIDs are provided or item isn't found rather than throwing a 500 error (#2347) @​tomakehurst
  • Respect StopAction in V1 Filter (#2335) @​Mahoney

Thanks to the regression reporters: @​defnngj , @​oleg-nenashev , @​Mahoney

WireMock 3.0.0

A new major release that introduces a lot of new features, enhancements and also some breaking changes. The key changes include support for Java 17, dropping Java 8 support, new matchers and dynamic response macros, new API endpoints, etc. We’ve made a small number of breaking changes to the Java API plus some behavioural changes, but the JSON (REST and file) API remains fully compatible with 2.x.

NOTE: A blog post with the user-friendly summary and migration guidelines is coming soon!

Thanks to all contributors! The changelog below represents key changes between 2.35.0 and 3.0.0. The full list of changes is available below in the collapsed section.

WARNING: There are known issues in the WireMock 3.0.0 release. Please be careful when updating, and see the Errata below

Upgrade guide

This guide assumes you would be upgrading from WireMock 2.35.0 to 3.1.0

  1. If you aren’t using WireMock 2.35.0, upgrade to this version first
  2. If you use WireMock Standalone, backup your configurations, logs and other information you might need in the future, just in case the - upgrade goes wrong
  3. If you use the WireMock Webhooks Extension, delete the dependency on it and the downloads. Now the extension is a part of the WireMock core
  4. If you use any WireMock extensions, private source or open source ones, ensure they are compatible with WireMock 3 by checking this GitHub Issue, documentation and the integration tests. If you discover any incompatible extension, please raise a bug in [wiremock/wiremock/issues (https://github.com/wiremock/wiremock/issues) or comment in [wiremock/wiremock #2323](wiremock/wiremock#2323), We will triage and route it accordingly
  5. If you use Java 8 on the instance, update to Java 11 or Java 17
  6. Update WireMock to the most recent release of WireMock 3

🚀 New features and improvements

Proxy mode:

... (truncated)

Commits
  • 34d4930 Bump patch version to 3.0.1
  • ae6ed02 Stopped updating package-lock.json when bumping versions
  • a302419 Fixed bump patch and minor versions logic
  • ae525f9 Fixed get patch version function in build
  • 0d4ccca Merge pull request #2347 from wiremock/better-stub-id-validation-in-admin-api
  • c5e8230 Added validation of UUIDs in path parameters in the admin API so that clearer...
  • 5273a43 Merge pull request #2339 from wiremock/fix-exception-in-diff
  • ab05ee9 Ensured that the shadow JAR is always built last. Relocated dependencies in w...
  • 9eaaa69 Merge pull request #2337 from wiremock/dependabot/gradle/com.diffplug.spotles...
  • 36f04c7 Merge pull request #2343 from wiremock/semver-release-drafter
  • Additional commits viewable in compare view

Updates org.codehaus.mojo:versions-maven-plugin from 2.19.0 to 2.21.0

Release notes

Sourced from org.codehaus.mojo:versions-maven-plugin's releases.

2.21.0

🚀 New features and improvements

🐛 Bug Fixes

  • #1331: Fix NPE in restrictionForUnchangedSegment if actual version is null (#1332) @​andrzejj0
  • #1310: Corrected UseDepVersionMojo + handling a similar case in SetMojo, SetScmTagMojo, UpdateChildModulesMojo (#1322) @​andrzejj0
  • UseDepVersionMoto should process all projects on the project list (#1320) @​andrzejj0
  • Fixed #1317: Regression coming from ArtifactVersions::filter when currentVersion is null and ignoredVersions is not null (#1319) @​andrzejj0

📝 Documentation updates

📦 Dependency updates

2.20.1

🐛 Bug Fixes

2.20.0

🚀 New features and improvements

🐛 Bug Fixes

📝 Documentation updates

... (truncated)

Commits
  • 1cdedea [maven-release-plugin] prepare release 2.21.0
  • b947957 Fix README typos in Contributing section
  • b85c0a8 Bump project version to 2.21.0-SNAPSHOT
  • 7ae3767 Bump byteBuddyVersion from 1.18.3 to 1.18.4 (#1335)
  • 38afa9f Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness
  • 39af6a2 Bump org.codehaus.plexus:plexus-archiver from 4.10.4 to 4.11.0
  • f51b9d5 #1331: Fix NPE in restrictionForUnchangedSegment if actual version is null (#...
  • 8d209b3 Bump org.codehaus.mojo:mojo-parent from 94 to 95 (#1330)
  • 4929d48 Bump byteBuddyVersion from 1.18.2 to 1.18.3 (#1329)
  • cb84d01 Add versions.skip parameter to skip plugin execution (#1328)
  • Additional commits viewable in compare view

Updates org.openapitools:openapi-generator-maven-plugin from 7.15.0 to 7.23.0

Updates org.apache.maven.plugins:maven-compiler-plugin from 3.14.0 to 3.15.0

Release notes

Sourced from org.apache.maven.plugins:maven-compiler-plugin's releases.

3.15.0

🐛 Bug Fixes

👻 Maintenance

📦 Dependency updates

3.14.1

🚀 New features and improvements

🐛 Bug Fixes

📦 Dependency updates

Commits
  • 9290cb3 [maven-release-plugin] prepare release maven-compiler-plugin-3.15.0
  • 3657d40 Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness
  • 7bbf805 Bump plexusCompilerVersion from 2.16.1 to 2.16.2
  • 57fa938 Bump org.apache.maven.plugins:maven-plugins from 46 to 47
  • 385e3f2 Fix Java 25 compatibility during integration tests (#1020)
  • 6b34423 Bump org.apache.maven.plugins:maven-plugins from 45 to 46
  • aaeb9c6 [MCOMPILER-540] useIncrementalCompilation=false may add generated sources to ...
  • 6e3db9d Bump org.codehaus.plexus:plexus-java from 1.5.1 to 1.5.2
  • 0fe9b84 Remove declaration of "plexus-snapshots" repository (#1010)
  • 35f6800 Bump org.ow2.asm:asm from 9.9 to 9.9.1
  • Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-resources-plugin from 3.3.1 to 3.5.0

Release notes

Sourced from org.apache.maven.plugins:maven-resources-plugin's releases.

3.5.0

🚀 New features and improvements

👻 Maintenance

📦 Dependency updates

3.4.0

🚀 New features and improvements

📝 Documentation updates

👻 Maintenance

📦 Dependency updates

... (truncated)

Commits
  • ce485a0 [maven-release-plugin] prepare release maven-resources-plugin-3.5.0
  • bfadfff Use maven-filtering 3.5.0 (staged)
  • 3f74ba2 Drop commons-io; unused
  • caefcde Bug: use change detecton strategies (#462)
  • 38534e3 Cleanup deps (#463)
  • 0814ec7 Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness (#461)
  • e2f9135 Bump org.apache.maven.plugins:maven-plugins from 45 to 47 (#459)
  • a050be3 Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness (#457)
  • 1825b2a Bump mavenVersion from 3.9.11 to 3.9.12 (#452)
  • ad31b55 Add IT for #444 issue
  • Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-surefire-plugin from 3.5.4 to 3.5.6

Release notes

Sourced from org.apache.maven.plugins:maven-surefire-plugin's releases.

3.5.6

🚀 New features and improvements

  • Introduce reportTestTimestamp option and include timestamp for test sets and test cases (#3261) (#3302) @​olamy

🐛 Bug Fixes

👻 Maintenance

📦 Dependency updates

3.5.5

🚀 New features and improvements

🐛 Bug Fixes

  • Use PowerShell instead of WMIC for detecting zombie process on Windows (#3258) @​jbliznak. Please note if you are using Windows with Java 8 and not PowerShell (you have options to: use Java 9+, install PowerShell or stay on Surefire 3.5.4)
  • Properly work with test failures caused during beforeAll phase (#3194) @​Frawless

📝 Documentation updates

  • Clarify how late placeholder replacement (@{...}) deals with (#3208) @​kwin

👻 Maintenance

... (truncated)

Commits
  • 25ea054 [maven-release-plugin] prepare release surefire-3.5.6
  • e5f374c Bump org.fusesource.jansi:jansi from 2.4.2 to 2.4.3
  • dadd55b Issue #2613 Debugging failsafe tests: Message 'Listening for transport dt_soc...
  • 39dd250 Bump commons-io:commons-io from 2.21.0 to 2.22.0
  • 2774273 Ensure that the statistics filename is calculated only once. (#3326) (#3327)
  • 0d5df8a 3.5.x/bug/cherry pick embedded mode its (#3328)
  • 04ad9a2 Use surefire 3.5.5 by project itself for testing
  • 37e8f69 Add flakes attribute to use in testsuite report (#3306) (#3308)
  • a970fef Introduce reportTestTimestamp option and include timestamp for test sets and ...
  • e838393 deploy 3.5.x branch to nexus
  • Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-release-plugin from 3.1.1 to 3.3.1

Release notes

Sourced from org.apache.maven.plugins:maven-release-plugin's releases.

3.3.1

💥 Breaking changes

🐛 Bug Fixes

📦 Dependency updates

3.3.0

💥 Breaking changes

    ...

    Description has been truncated

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels May 11, 2026
@dependabot dependabot Bot force-pushed the dependabot/maven/dev-deps-f1f78ff9c9 branch 2 times, most recently from 909fa96 to cb1f543 Compare May 25, 2026 06:14
@dependabot dependabot Bot force-pushed the dependabot/maven/dev-deps-f1f78ff9c9 branch 2 times, most recently from 791c055 to 8b20e0d Compare June 8, 2026 04:55
@dependabot dependabot Bot force-pushed the dependabot/maven/dev-deps-f1f78ff9c9 branch from 8b20e0d to 614d613 Compare June 9, 2026 08:04
@sonarqubecloud

sonarqubecloud Bot commented Jun 9, 2026

Copy link
Copy Markdown

@dependabot dependabot Bot force-pushed the dependabot/maven/dev-deps-f1f78ff9c9 branch from 614d613 to df9ba7b Compare June 15, 2026 04:55
…pdates

Bumps the dev-deps group with 11 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [org.springframework.boot:spring-boot-starter-webmvc-test](https://github.com/spring-projects/spring-boot) | `4.0.2` | `4.1.0` |
| [org.testcontainers:testcontainers](https://github.com/testcontainers/testcontainers-java) | `2.0.3` | `2.0.5` |
| [com.github.tomakehurst:wiremock-jre8-standalone](https://github.com/wiremock/wiremock) | `2.35.2` | `3.0.1` |
| [org.codehaus.mojo:versions-maven-plugin](https://github.com/mojohaus/versions) | `2.19.0` | `2.21.0` |
| org.openapitools:openapi-generator-maven-plugin | `7.15.0` | `7.23.0` |
| [org.apache.maven.plugins:maven-compiler-plugin](https://github.com/apache/maven-compiler-plugin) | `3.14.0` | `3.15.0` |
| [org.apache.maven.plugins:maven-resources-plugin](https://github.com/apache/maven-resources-plugin) | `3.3.1` | `3.5.0` |
| [org.apache.maven.plugins:maven-surefire-plugin](https://github.com/apache/maven-surefire) | `3.5.4` | `3.5.6` |
| [org.apache.maven.plugins:maven-release-plugin](https://github.com/apache/maven-release) | `3.1.1` | `3.3.1` |
| [org.apache.maven.plugins:maven-failsafe-plugin](https://github.com/apache/maven-surefire) | `3.5.4` | `3.5.6` |
| [com.diffplug.spotless:spotless-maven-plugin](https://github.com/diffplug/spotless) | `3.1.0` | `3.7.0` |



Updates `org.springframework.boot:spring-boot-starter-webmvc-test` from 4.0.2 to 4.1.0
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](spring-projects/spring-boot@v4.0.2...v4.1.0)

Updates `org.testcontainers:testcontainers` from 2.0.3 to 2.0.5
- [Release notes](https://github.com/testcontainers/testcontainers-java/releases)
- [Changelog](https://github.com/testcontainers/testcontainers-java/blob/main/CHANGELOG.md)
- [Commits](testcontainers/testcontainers-java@2.0.3...2.0.5)

Updates `com.github.tomakehurst:wiremock-jre8-standalone` from 2.35.2 to 3.0.1
- [Release notes](https://github.com/wiremock/wiremock/releases)
- [Commits](wiremock/wiremock@2.35.2...3.0.1)

Updates `org.codehaus.mojo:versions-maven-plugin` from 2.19.0 to 2.21.0
- [Release notes](https://github.com/mojohaus/versions/releases)
- [Changelog](https://github.com/mojohaus/versions/blob/master/ReleaseNotes.md)
- [Commits](mojohaus/versions@2.19.0...2.21.0)

Updates `org.openapitools:openapi-generator-maven-plugin` from 7.15.0 to 7.23.0

Updates `org.apache.maven.plugins:maven-compiler-plugin` from 3.14.0 to 3.15.0
- [Release notes](https://github.com/apache/maven-compiler-plugin/releases)
- [Commits](apache/maven-compiler-plugin@maven-compiler-plugin-3.14.0...maven-compiler-plugin-3.15.0)

Updates `org.apache.maven.plugins:maven-resources-plugin` from 3.3.1 to 3.5.0
- [Release notes](https://github.com/apache/maven-resources-plugin/releases)
- [Commits](apache/maven-resources-plugin@maven-resources-plugin-3.3.1...maven-resources-plugin-3.5.0)

Updates `org.apache.maven.plugins:maven-surefire-plugin` from 3.5.4 to 3.5.6
- [Release notes](https://github.com/apache/maven-surefire/releases)
- [Commits](apache/maven-surefire@surefire-3.5.4...surefire-3.5.6)

Updates `org.apache.maven.plugins:maven-release-plugin` from 3.1.1 to 3.3.1
- [Release notes](https://github.com/apache/maven-release/releases)
- [Commits](apache/maven-release@maven-release-3.1.1...maven-release-3.3.1)

Updates `org.apache.maven.plugins:maven-failsafe-plugin` from 3.5.4 to 3.5.6
- [Release notes](https://github.com/apache/maven-surefire/releases)
- [Commits](apache/maven-surefire@surefire-3.5.4...surefire-3.5.6)

Updates `com.diffplug.spotless:spotless-maven-plugin` from 3.1.0 to 3.7.0
- [Release notes](https://github.com/diffplug/spotless/releases)
- [Changelog](https://github.com/diffplug/spotless/blob/main/CHANGES.md)
- [Commits](diffplug/spotless@lib/3.1.0...maven/3.7.0)

---
updated-dependencies:
- dependency-name: com.diffplug.spotless:spotless-maven-plugin
  dependency-version: 3.4.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dev-deps
- dependency-name: com.github.tomakehurst:wiremock-jre8-standalone
  dependency-version: 3.0.1
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: dev-deps
- dependency-name: org.apache.maven.plugins:maven-compiler-plugin
  dependency-version: 3.15.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dev-deps
- dependency-name: org.apache.maven.plugins:maven-failsafe-plugin
  dependency-version: 3.5.5
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dev-deps
- dependency-name: org.apache.maven.plugins:maven-release-plugin
  dependency-version: 3.3.1
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dev-deps
- dependency-name: org.apache.maven.plugins:maven-resources-plugin
  dependency-version: 3.5.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dev-deps
- dependency-name: org.apache.maven.plugins:maven-surefire-plugin
  dependency-version: 3.5.5
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dev-deps
- dependency-name: org.codehaus.mojo:versions-maven-plugin
  dependency-version: 2.21.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dev-deps
- dependency-name: org.openapitools:openapi-generator-maven-plugin
  dependency-version: 7.22.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dev-deps
- dependency-name: org.springframework.boot:spring-boot-starter-webmvc-test
  dependency-version: 4.0.6
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dev-deps
- dependency-name: org.testcontainers:testcontainers
  dependency-version: 2.0.5
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dev-deps
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/maven/dev-deps-f1f78ff9c9 branch from df9ba7b to e994c35 Compare June 22, 2026 04:55
@sonarqubecloud

Copy link
Copy Markdown

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file java Pull requests that update java code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants