Bump the dependencies group with 43 updates #3999

dependabot · 2025-12-11T22:22:07Z

Bumps the dependencies group with 43 updates:

Package	From	To
org.apache.logging.log4j:log4j-mongodb4	`2.26.0-SNAPSHOT`	`3.0.0-beta2`
org.apache.logging.log4j:log4j-slf4j-impl	`2.26.0-SNAPSHOT`	`3.0.0-beta2`
org.apache.commons:commons-compress	`1.27.1`	`1.28.0`
org.apache.commons:commons-csv	`1.14.0`	`1.14.1`
com.fasterxml.jackson:jackson-bom	`2.19.2`	`2.20.1`
org.apache.rat:apache-rat-plugin	`0.16.1`	`0.17`
org.apache.groovy:groovy-bom	`4.0.27`	`5.0.3`
org.junit:junit-bom	`5.13.4`	`6.0.1`
org.junit.jupiter:junit-jupiter-engine	`5.13.4`	`6.0.1`
org.apache.activemq:activemq-broker	`6.1.7`	`6.2.0`
org.eclipse.angus:angus-activation	`2.0.2`	`2.0.3`
org.assertj:assertj-core	`3.27.3`	`3.27.6`
com.code-intelligence:jazzer	`0.24.0`	`0.28.0`
com.code-intelligence:jazzer-api	`0.24.0`	`0.28.0`
commons-codec:commons-codec	`1.18.0`	`1.20.0`
commons-io:commons-io	`2.19.0`	`2.21.0`
org.apache.commons:commons-lang3	`3.18.0`	`3.20.0`
org.apache.commons:commons-pool2	`2.12.1`	`2.13.0`
com.google.guava:guava	`33.4.8-jre`	`33.5.0-jre`
com.google.guava:guava-testlib	`33.4.8-jre`	`33.5.0-jre`
jakarta.activation:jakarta.activation-api	`2.1.3`	`2.1.4`
org.eclipse.angus:jakarta.mail	`2.0.3`	`2.0.5`
jakarta.mail:jakarta.mail-api	`2.1.3`	`2.1.5`
org.jmdns:jmdns	`3.6.1`	`3.6.2`
net.java.dev.jna:jna	`5.17.0`	`5.18.1`
org.apache.maven:maven-core	`3.9.10`	`3.9.11`
org.apache.maven:maven-model	`3.9.10`	`3.9.11`
org.openjdk.nashorn:nashorn-core	`15.6`	`15.7`
org.eclipse.platform:org.eclipse.osgi	`3.23.100`	`3.24.0`
org.xmlunit:xmlunit-core	`2.10.3`	`2.11.0`
org.xmlunit:xmlunit-matchers	`2.10.3`	`2.11.0`
org.tukaani:xz	`1.10`	`1.11`
com.github.luben:zstd-jni	`1.5.7-4`	`1.5.7-6`
com.google.errorprone:error_prone_annotations	`2.38.0`	`2.45.0`
io.fabric8:docker-maven-plugin	`0.46.0`	`0.48.0`
org.gradlex:gradle-module-metadata-maven-plugin	`1.1`	`1.2`
org.eclipse.jetty:jetty-util	`9.4.57.v20241219`	`9.4.58.v20250814`
co.elastic.clients:elasticsearch-java	`9.2.0`	`9.2.2`
org.elasticsearch.client:elasticsearch-rest-client	`9.2.0`	`9.2.2`
org.mongodb:bson	`5.6.1`	`5.6.2`
org.mongodb:mongodb-driver-core	`5.6.1`	`5.6.2`
org.mongodb:mongodb-driver-sync	`5.6.1`	`5.6.2`
org.springframework.cloud:spring-cloud-context	`4.3.0`	`5.0.0`

Updates org.apache.logging.log4j:log4j-mongodb4 from 2.26.0-SNAPSHOT to 3.0.0-beta2

Updates org.apache.logging.log4j:log4j-slf4j-impl from 2.26.0-SNAPSHOT to 3.0.0-beta2

Updates org.apache.commons:commons-compress from 1.27.1 to 1.28.0

Changelog

Sourced from org.apache.commons:commons-compress's changelog.

Apache Commons Compress 1.28.0 Release Notes

The Apache Commons Compress team is pleased to announce the release of Apache Commons Compress 1.28.0.

Apache Commons Compress defines an API for working with compression and archive formats. These include bzip2, gzip, pack200, LZMA, XZ, Snappy, traditional Unix Compress, DEFLATE, DEFLATE64, LZ4, Brotli, Zstandard and ar, cpio, jar, tar, zip, dump, 7z, arj.

This is a feature and maintenance release. Java 8 or later is required.

This release updates Apache Commons Lang to 3.18.0 to pick up the fix for CVE-2025-48924 (https://nvd.nist.gov/vuln/detail/CVE-2025-48924), but is not affected by it.

Changes in this version

Changes in this version include the following.

New Features

       Add GzipParameters.getModificationInstant(). Thanks to Gary Gregory.

       Add GzipParameters.setModificationInstant(Instant). Thanks to Gary Gregory.

       Add GzipParameters.OS, setOS(OS), getOS(). Thanks to Gary Gregory.

       Add GzipParameters.toString(). Thanks to Gary Gregory.

COMPRESS-638: Add GzipParameters.setFileNameCharset(Charset) and getFileNameCharset() to override the default ISO-8859-1 Charset #602. Thanks to vincexjl, Gary Gregory, Piotr P. Karwasz.

       Add support for gzip extra subfields, see GzipParameters.setExtra(HeaderExtraField) [#604](https://github.com/apache/commons-compress/issues/604). Thanks to ddeschenes-1, Gary Gregory.

       Add CompressFilterOutputStream and refactor to use. Thanks to Gary Gregory.

       Add ZipFile.stream(). Thanks to Gary Gregory.

       GzipCompressorInputStream reads the modification time (MTIME) and stores its value incorrectly multiplied by 1,000. Thanks to Danny Deschenes, Gary Gregory.

       GzipCompressorInputStream writes the modification time (MTIME) the value incorrectly divided by 1,000. Thanks to Danny Deschenes, Gary Gregory.

       Add optional FHCRC to GZIP header [#627](https://github.com/apache/commons-compress/issues/627). Thanks to Danny Deschenes, Gary Gregory.

       Add GzipCompressorInputStream.Builder allowing to customize the file name and comment Charsets. Thanks to Gary Gregory.

       Add GzipCompressorInputStream.Builder.setOnMemberStart(IOConsumer) to monitor member parsing. Thanks to Gary Gregory.

       Add GzipCompressorInputStream.Builder.setOnMemberEnd(IOConsumer) to monitor member parsing. Thanks to Gary Gregory.

       Add PMD check to default Maven goal. Thanks to Gary Gregory.

       Add SevenZFile.Builder.setMaxMemoryLimitKiB(int). Thanks to Gary Gregory.

       Add MemoryLimitException.MemoryLimitException(long, int, Throwable) and deprecate MemoryLimitException.MemoryLimitException(long, int, Exception). Thanks to Gary Gregory.

COMPRESS-692: Add support for zstd compression in zip archives. Thanks to Mehmet Karaman, Andrey Loskutov, Gary Gregory.

       Add support for XZ compression in ZIP archives. Thanks to Gary Gregory.

COMPRESS-695: Add ZipArchiveInputStream.createZstdInputStream(InputStream) to provide a different InputStream implementation for Zstandard (Zstd) #649. Thanks to Gary Gregory.

       Add org.apache.commons.compress.harmony.pack200.Pack200Exception.Pack200Exception(String, Throwable). Thanks to Gary Gregory.

COMPRESS-697: Move BitStream.nextBit() method to BitInputStream #663. Thanks to Fredrik Kjellberg, Gary Gregory.

       Add org.apache.commons.compress.compressors.lzma.LZMACompressorInputStream.builder/Builder(). Thanks to Gary Gregory.

       Add org.apache.commons.compress.compressors.lzma.LZMACompressorOutputStream.builder/Builder(). Thanks to Gary Gregory.

       Add org.apache.commons.compress.compressors.xz.XZCompressorInputStream.builder/Builder(). Thanks to Gary Gregory.

       Add org.apache.commons.compress.compressors.xz.XZCompressorOutputStream.builder/Builder(). Thanks to Gary Gregory.

       Add org.apache.commons.compress.compressors.xz.ZstdCompressorOutputStream.builder/Builder() [#666](https://github.com/apache/commons-compress/issues/666). Thanks to Gary Gregory, David Walluck, Piotr P. Karwasz.

       Add org.apache.commons.compress.compressors.xz.ZstdConstants [#666](https://github.com/apache/commons-compress/issues/666). Thanks to Gary Gregory, David Walluck, Piotr P. Karwasz.

... (truncated)

Commits

852d9c2 Prepare for the release candidate 1.28.0 RC1
f5eb9e2 Prepare for the next release candidate
36f204c Camel case parameter name
4c04e4a Use final
6cb7da1 Javadoc
563c9d2 Javadoc
ce73bd8 Javadoc
a464ae9 Better parameter names
c0b2b84 Add TODO for next major version
c76bc97 Use OpenVEX to document that we are not affected by CVE-2025-48924 in
Additional commits viewable in compare view

Updates org.apache.commons:commons-csv from 1.14.0 to 1.14.1

Changelog

Sourced from org.apache.commons:commons-csv's changelog.

Apache Commons CSV 1.14.1 Release Notes

The Apache Commons CSV team is pleased to announce the release of Apache Commons CSV 1.14.1.

This document contains the release notes for the 1.14.1 version of Apache Commons CSV. Commons CSV reads and writes files in Comma Separated Value (CSV) format variations.

Commons CSV requires at least Java 8.

The Apache Commons CSV library provides a simple interface for reading and writing CSV files of various types.

This is a feature and maintenance release. Java 8 or later is required.

Changes in this version include:

Fixed Bugs
CSV-318: CSVPrinter.printRecord(Stream) hangs if given a parallel stream. Thanks to Joseph Shraibman, Gary Gregory.

CSV-318: CSVPrinter now uses an internal lock instead of synchronized methods. Thanks to Joseph Shraibman, Gary Gregory.
      org.apache.commons.csv.CSVPrinter.printRecords(ResultSet) now writes one record at a time using a lock. Thanks to Gary Gregory.
Changes
      Bump org.apache.commons:commons-parent from 81 to 85 [#542](https://github.com/apache/commons-csv/issues/542). Thanks to Gary Gregory, Dependabot.
      Bump commons-io:commons-io from 2.18.0 to 2.20.0. Thanks to Gary Gregory.
      Bump com.opencsv:opencsv from 5.10 to 5.11.2 [#545](https://github.com/apache/commons-csv/issues/545), [#551](https://github.com/apache/commons-csv/issues/551), [#553](https://github.com/apache/commons-csv/issues/553). Thanks to Gary Gregory, Dependabot.
      Bump org.apache.commons:commons-lang3 from 3.17.0 to 3.18.0 [#556](https://github.com/apache/commons-csv/issues/556). Thanks to Gary Gregory, Dependabot.
      Bump commons-codec:commons-codec from 1.18.0 to 1.19.0. Thanks to Gary Gregory.
Historical list of changes: https://commons.apache.org/proper/commons-csv/changes.html

For complete information on Apache Commons CSV, including instructions on how to submit bug reports, patches, or suggestions for improvement, see the Apache Commons CSV website:

https://commons.apache.org/proper/commons-csv/

Download page: https://commons.apache.org/proper/commons-csv/download_csv.cgi

Have fun! -Apache Commons CSV team

Commits

e14ef86 Ignore macOS file
d8724bf Prepare for the release candidate 1.14.1 RC1
b76971c Prepare for the next release candidate
b66814e Merge pull request #557 from apache/dependabot/github_actions/github/codeql-a...
9c95e92 Bump github/codeql-action from 3.29.2 to 3.29.4
1fb3716 Bump commons-codec:commons-codec from 1.18.0 to 1.19.0
7b72c50 Merge some string literals
9658373 Update the GitHub pull request template for AI
67192a9 Bump commons-io:commons-io from 2.19.0 to 2.20.0
59164c8 Bump com.opencsv:opencsv from 5.11.1 to 5.11.2 #553
Additional commits viewable in compare view

Updates com.fasterxml.jackson:jackson-bom from 2.19.2 to 2.20.1

Commits

5e24010 [maven-release-plugin] prepare release jackson-bom-2.20.1
59a2e4a Prep for 2.20.1 release
3fc3645 Merge branch '2.19' into 2.20
7539ecc Post-release dep version bump
21f04ba [maven-release-plugin] prepare for next development iteration
085b32f [maven-release-plugin] prepare release jackson-bom-2.19.4
f2a1f50 Prep for 2.19.4 release
ee69fcf ...
3735e1e ...
d405492 Add helper script for safekeeping
Additional commits viewable in compare view

Updates org.apache.rat:apache-rat-plugin from 0.16.1 to 0.17

Updates org.apache.groovy:groovy-bom from 4.0.27 to 5.0.3

Commits

See full diff in compare view

Updates org.junit:junit-bom from 5.13.4 to 6.0.1

Release notes

Sourced from org.junit:junit-bom's releases.

JUnit 6.0.1 = Platform 6.0.1 + Jupiter 6.0.1 + Vintage 6.0.1

See Release Notes.

Full Changelog: junit-team/junit-framework@r6.0.0...r6.0.1

JUnit 6.0.0 = Platform 6.0.0 + Jupiter 6.0.0 + Vintage 6.0.0

See Release Notes.

New Contributors

@2897robo made their first contribution in junit-team/junit-framework#4525

@strangelookingnerd made their first contribution in junit-team/junit-framework#4683

@eric6iese made their first contribution in junit-team/junit-framework#4717

@raccoonback made their first contribution in junit-team/junit-framework#4822

@currenjin made their first contribution in junit-team/junit-framework#4823

@mehulimukherjee made their first contribution in junit-team/junit-framework#4913

@lslonina made their first contribution in junit-team/junit-framework#4629

Full Changelog: junit-team/junit-framework@r5.14.0...r6.0.0

JUnit 6.0.0-RC3 = Platform 6.0.0-RC3 + Jupiter 6.0.0-RC3 + Vintage 6.0.0-RC3

See Release Notes.

New Contributors

@mehulimukherjee made their first contribution in junit-team/junit-framework#4913

@lslonina made their first contribution in junit-team/junit-framework#4629

Full Changelog: junit-team/junit-framework@r6.0.0-RC2...r6.0.0-RC3

JUnit 6.0.0-RC2 = Platform 6.0.0-RC2 + Jupiter 6.0.0-RC2 + Vintage 6.0.0-RC2

See Release Notes.

Full Changelog: junit-team/junit-framework@r6.0.0-RC1...r6.0.0-RC2

JUnit 6.0.0-RC1 = Platform 6.0.0-RC1 + Jupiter 6.0.0-RC1 + Vintage 6.0.0-RC1

See Release Notes.

New Contributors

@raccoonback made their first contribution in junit-team/junit-framework#4822

@currenjin made their first contribution in junit-team/junit-framework#4823

Full Changelog: junit-team/junit-framework@r6.0.0-M2...r6.0.0-RC1

JUnit 6.0.0-M2 = Platform 6.0.0-M2 + Jupiter 6.0.0-M2 + Vintage 6.0.0-M2

See Release Notes.

... (truncated)

Commits

d774b9c Release 6.0.1 (second attempt)
8178545 Mark module as deprecated for removal
7b43fcc Back to snapshots for further development
a5ef746 Release 6.0.1
008be8d Finalize 5.14.1 release notes
b2c55a8 Finalize 6.0.1 release notes
866c01a Add note about duplicate test execution with @Suite (#5080)
de88e88 Fix broken links in documentation
9dd132d Add Valhalla EA to workflow matrix
fedda88 Make jdk.jfr import optional in OSGi manifest (#5092)
Additional commits viewable in compare view

Updates org.junit.jupiter:junit-jupiter-engine from 5.13.4 to 6.0.1

Release notes

Sourced from org.junit.jupiter:junit-jupiter-engine's releases.

JUnit 6.0.1 = Platform 6.0.1 + Jupiter 6.0.1 + Vintage 6.0.1

See Release Notes.

Full Changelog: junit-team/junit-framework@r6.0.0...r6.0.1

JUnit 6.0.0 = Platform 6.0.0 + Jupiter 6.0.0 + Vintage 6.0.0

See Release Notes.

New Contributors

@2897robo made their first contribution in junit-team/junit-framework#4525

@strangelookingnerd made their first contribution in junit-team/junit-framework#4683

@eric6iese made their first contribution in junit-team/junit-framework#4717

@raccoonback made their first contribution in junit-team/junit-framework#4822

@currenjin made their first contribution in junit-team/junit-framework#4823

@mehulimukherjee made their first contribution in junit-team/junit-framework#4913

@lslonina made their first contribution in junit-team/junit-framework#4629

Full Changelog: junit-team/junit-framework@r5.14.0...r6.0.0

JUnit 6.0.0-RC3 = Platform 6.0.0-RC3 + Jupiter 6.0.0-RC3 + Vintage 6.0.0-RC3

See Release Notes.

New Contributors

@mehulimukherjee made their first contribution in junit-team/junit-framework#4913

@lslonina made their first contribution in junit-team/junit-framework#4629

Full Changelog: junit-team/junit-framework@r6.0.0-RC2...r6.0.0-RC3

JUnit 6.0.0-RC2 = Platform 6.0.0-RC2 + Jupiter 6.0.0-RC2 + Vintage 6.0.0-RC2

See Release Notes.

Full Changelog: junit-team/junit-framework@r6.0.0-RC1...r6.0.0-RC2

JUnit 6.0.0-RC1 = Platform 6.0.0-RC1 + Jupiter 6.0.0-RC1 + Vintage 6.0.0-RC1

See Release Notes.

New Contributors

@raccoonback made their first contribution in junit-team/junit-framework#4822

@currenjin made their first contribution in junit-team/junit-framework#4823

Full Changelog: junit-team/junit-framework@r6.0.0-M2...r6.0.0-RC1

JUnit 6.0.0-M2 = Platform 6.0.0-M2 + Jupiter 6.0.0-M2 + Vintage 6.0.0-M2

See Release Notes.

... (truncated)

Commits

d774b9c Release 6.0.1 (second attempt)
8178545 Mark module as deprecated for removal
7b43fcc Back to snapshots for further development
a5ef746 Release 6.0.1
008be8d Finalize 5.14.1 release notes
b2c55a8 Finalize 6.0.1 release notes
866c01a Add note about duplicate test execution with @Suite (#5080)
de88e88 Fix broken links in documentation
9dd132d Add Valhalla EA to workflow matrix
fedda88 Make jdk.jfr import optional in OSGi manifest (#5092)
Additional commits viewable in compare view

Updates org.apache.activemq:activemq-broker from 6.1.7 to 6.2.0

Commits

6d5b6bf [maven-release-plugin] prepare release activemq-6.2.0
1323c54 Some tests are not cleanly using the target folder (creating targetfoo instea...
730e94e Update md files in preparation of the 6.2.0 release
d3de142 Change file mode
248f58c AMQ-9805: Upgrade to Shiro 2.0.6 (#1530)
9dbdf61 Merge pull request #1529 from cshannon/AMQ-9392
5861ed4 AMQ-9392 - Add extra inactivty monitor test case
aed472d AMQ-9392 - Rework fix for read check Timer leak
2cafa43 [AMQ-9392] Prevent InactivityMonitor read check Timer leak when TCP connectio...
53cff64 Revert "[AMQ-9392] Prevent InactivityMonitor read check Timer leak when TCP c...
Additional commits viewable in compare view

Updates org.eclipse.angus:angus-activation from 2.0.2 to 2.0.3

Commits

6eff4c5 Prepare release org.eclipse.angus:angus-activation-project:2.0.3
bcb3375 jaf api 2.1.4 (#55)
84e5a0d Rename resources so javax and jakarta can live in same classpath #174
c3c4d67 Merge pull request #46 from eclipse-ee4j/2.0.2-RELEASE
354de40 Update README.md
c62baf3 Update TCK-Results.md
6cda1e7 Prepare next development cycle for 2.1.0-SNAPSHOT
See full diff in compare view

Updates org.assertj:assertj-core from 3.27.3 to 3.27.6

Release notes

Sourced from org.assertj:assertj-core's releases.

v3.27.6

🐛 Bug Fixes

Core

Add missing export for org.assertj.core.annotation #3951

❤️ Contributors

Thanks to all the contributors who worked on this release:

@duponter

v3.27.5

⚡ Improvements

Core

ByteBuddy in AssertJ 3.27.4 not compatible with Java 25 #3946

🔨 Dependency Upgrades

Core

Upgrade to Byte Buddy 1.17.7 #3947

Upgrade to JUnit BOM 5.13.4 #3947

Guava

Upgrade to Guava 33.4.8-jre #3947

v3.27.4

🚫 Deprecated

Core

Deprecate org.assertj.core.annotations.Beta in favor of org.assertj.core.annotation.Beta

Deprecate org.assertj.core.util.CanIgnoreReturnValue in favor of org.assertj.core.annotation.CanIgnoreReturnValue

Deprecate org.assertj.core.util.CheckReturnValue in favor of org.assertj.core.annotation.CheckReturnValue

🐛 Bug Fixes

Core

Fix thread-safety in AbstractDateAssert #3874

⚡ Improvements

Migrate to the Central Publisher Portal, enable snapshot publishing #3881

... (truncated)

Commits

716b1e0 [maven-release-plugin] prepare release assertj-build-3.27.6
e189652 Add missing export for org.assertj.core.annotation (#3951)
0cb489e Update Maven Central URL
7286309 [maven-release-plugin] prepare for next development iteration
dd4cc1d [maven-release-plugin] prepare release assertj-build-3.27.5
1d0defc Add missing permission to release workflow
844d5d0 Add missing GitHub Actions pinning to CodeQL workflow
bdd7106 Add CodeQL custom workflow
a93d7e6 Remove EOL Java 24
26ea866 Update production dependencies (#3947)
Additional commits viewable in compare view

Updates com.code-intelligence:jazzer from 0.24.0 to 0.28.0

Release notes

Sourced from com.code-intelligence:jazzer's releases.

v0.28.0

What's Changed

feat: add @ValuePool to propagate values to types by @oetr in CodeIntelligenceTesting/jazzer#975

feat: add mutator support for generic classes by @simonresch in CodeIntelligenceTesting/jazzer#1008

fix: handle null values in Arrays.equal/compare hooks by @simonresch in CodeIntelligenceTesting/jazzer#1017

chore: almost automatic release to Maven Central by @oetr in CodeIntelligenceTesting/jazzer#1016

Full Changelog: CodeIntelligenceTesting/jazzer@v0.27.0...v0.28.0

v0.27.0

What's Changed

chore: update bazel dependencies by @simonresch in CodeIntelligenceTesting/jazzer#987

fix: guard against malformed corpus entries in protobuf mutator by @simonresch in CodeIntelligenceTesting/jazzer#989

chore: update maven dependencies by @simonresch in CodeIntelligenceTesting/jazzer#988

fix: fixes for sanitizer handling in honeypot class by @simonresch in CodeIntelligenceTesting/jazzer#991

feat: add guidance hook for SpEL injection by @simonresch in CodeIntelligenceTesting/jazzer#990

feat: add big decimal sanitizer by @florianGla in CodeIntelligenceTesting/jazzer#992

BREAKING: remove Spring API fuzz test helpers by @florianGla in CodeIntelligenceTesting/jazzer#993

chore(deps): update github workflows by @simonresch in CodeIntelligenceTesting/jazzer#997

chore: update bazel dependencies by @simonresch in CodeIntelligenceTesting/jazzer#998

fix: fuzz test invocation with referring protobufs by @simonresch in CodeIntelligenceTesting/jazzer#995

chore: exclude potentially dangerous tests by default by @simonresch in CodeIntelligenceTesting/jazzer#996

fix: assertion failure when fuzzing proto strings by @simonresch in CodeIntelligenceTesting/jazzer#1002

feat: add hooks for additional EL evaluation methods by @florianGla in CodeIntelligenceTesting/jazzer#994

chore: upgrade to bazel 8 by @simonresch in CodeIntelligenceTesting/jazzer#1001

feat: add support for proto maps with enum values by @simonresch in CodeIntelligenceTesting/jazzer#1006

dependency updates by @simonresch in CodeIntelligenceTesting/jazzer#1000

feat: add jexl expression guidance hook by @florianGla in CodeIntelligenceTesting/jazzer#1003

feat: MVEL guidance hook by @simonresch in CodeIntelligenceTesting/jazzer#1005

feat: add ognl expression guidance hook by @florianGla in CodeIntelligenceTesting/jazzer#1004

feat: add xml parser guidance hook by @simonresch in CodeIntelligenceTesting/jazzer#999

feat: set mutator by @oetr in CodeIntelligenceTesting/jazzer#955

Mention Set in WithSize Javadoc & slightly improve test by @Marcono1234 in CodeIntelligenceTesting/jazzer#1010

refactor: improve readability of util function by @simonresch in CodeIntelligenceTesting/jazzer#1011

feat: add freemarker template injection guidance hook by @florianGla in CodeIntelligenceTesting/jazzer#1007

fix: properly instrument nested records by @oetr in CodeIntelligenceTesting/jazzer#1009

docs: document seed input sources for @FuzzTest by @simonresch in CodeIntelligenceTesting/jazzer#1012

chore(deps): update maven deps by @simonresch in CodeIntelligenceTesting/jazzer#1014

Full Changelog: CodeIntelligenceTesting/jazzer@v0.26.0...v0.27.0

v0.26.0

What's Changed

feat: add linux arm64 support by @simonresch in CodeIntelligenceTesting/jazzer#973

feat: add Finite annotation by @onionpsy in CodeIntelligenceTesting/jazzer#969

feat: add additional number annotations by @florianGla in CodeIntelligenceTesting/jazzer#959

feat: dedicated options for fuzzing duration & executions by @simonresch in CodeIntelligenceTesting/jazzer#956

... (truncated)

Commits

b15372a feat: mutator support for generic superclasses
bee8c4e feat: resolve type variables recursively
a4fa4a7 feat: support generic classes in ConstructorBasedBeanMutator
a87d068 feat: add support for generic setter based beans
506a126 feat: support generic constructor based beans
93e24d8 chore: update the release instructions
1ce2eac chore: automatically deploy to Maven Central and create a GH release
7768b2d chore: making local bundle doesn't need Sonatype usename or password
cb951cf feat: @ValuePool - propagate user values to types
d960aff feat: add meta-annotation for multi-level annotation propagation
Additional commits viewable in compare view

Updates com.code-intelligence:jazzer-api from 0.24.0 to 0.28.0

Release notes

Sourced from com.code-intelligence:jazzer-api's releases.

v0.28.0

What's Changed

feat: add @ValuePool to propagate values to types by @oetr in CodeIntelligenceTesting/jazzer#975

feat: add mutator support for generic classes by @simonresch in CodeIntelligenceTesting/jazzer#1008

fix: handle null values in Arrays.equal/compare hooks by @simonresch in CodeIntelligenceTesting/jazzer#1017

chore: almost automatic release to Maven Central by @oetr in CodeIntelligenceTesting/jazzer#1016

Full Changelog: CodeIntelligenceTesting/jazzer@v0.27.0...v0.28.0

v0.27.0

What's Changed

chore: update bazel dependencies by @simonresch in CodeIntelligenceTesting/jazzer#987

fix: guard against malformed corpus entries in protobuf mutator by @simonresch in CodeIntelligenceTesting/jazzer#989

chore: update maven dependencies by @simonresch in CodeIntelligenceTesting/jazzer#988

fix: fixes for sanitizer handling in honeypot class by @simonresch in CodeIntelligenceTesting/jazzer#991

feat: add guidance hook for SpEL injection by @simonresch in CodeIntelligenceTesting/jazzer#990

feat: add big decimal sanitizer by @florianGla in CodeIntelligenceTesting/jazzer#992

BREAKING: remove Spring API fuzz test helpers by @florianGla in CodeIntelligenceTesting/jazzer#993

chore(deps): update github workflows by @simonresch in CodeIntelligenceTesting/jazzer#997

chore: update bazel dependencies by @simonresch in CodeIntelligenceTesting/jazzer#998

fix: fuzz test invocation with referring protobufs by @simonresch in CodeIntelligenceTesting/jazzer#995

chore: exclude potentially dangerous tests by default by @simonresch in CodeIntelligenceTesting/jazzer#996

fix: assertion failure when fuzzing proto strings by @simonresch in CodeIntelligenceTesting/jazzer#1002

feat: add hooks for additional EL evaluation methods by @florianGla in CodeIntelligenceTesting/jazzer#994

chore: upgrade to bazel 8 by @simonresch in CodeIntelligenceTesting/jazzer#1001

feat: add support for proto maps with enum values by @simonresch in CodeIntelligenceTesting/jazzer#1006

dependency updates by @simonresch in CodeIntelligenceTesting/jazzer#1000

feat: add jexl expression guidance hook by @florianGla in CodeIntelligenceTesting/jazzer#1003

feat: MVEL guidance hook by @simonresch in CodeIntelligenceTesting/jazzer#1005

feat: add ognl expression guidance hook by @florianGla in CodeIntelligenceTesting/jazzer#1004

feat: add xml parser guidance hook by @simonresch in CodeIntelligenceTesting/jazzer#999

feat: set mutator by @oetr in CodeIntelligenceTesting/jazzer#955

Mention Set in WithSize Javadoc & slightly improve test by @Marcono1234 in CodeIntelligenceTesting/jazzer#1010

refactor: improve readability of util function by @simonresch in CodeIntelligenceTesting/jazzer#1011

feat: add freemarker template injection guidance hook by @florianGla in CodeIntelligenceTesting/jazzer#1007

fix: properly instrument nested records by @oetr in CodeIntelligenceTesting/jazzer#1009

docs: document seed input sources for @FuzzTest by @simonresch in CodeIntelligenceTesting/jazzer#1012

chore(deps): update maven deps by @simonresch in CodeIntelligenceTesting/jazzer#1014

Full Changelog: CodeIntelligenceTesting/jazzer@v0.26.0...v0.27.0

v0.26.0

What's Changed

feat: add linux arm64 support by @simonresch in CodeIntelligenceTesting/jazzer#973

feat: add Finite annotation by @onionpsy in CodeIntelligenceTesting/jazzer#969

feat: add additional number annotations by @florianGla in CodeIntelligenceTesting/jazzer#959

feat: dedicated options for fuzzing duration & executions by @simonresch in CodeIntelligenceTesting/jazzer#956

... (truncated)

Commits

b15372a feat: mutator support for generic superclasses
bee8c4e feat: resolve type variables recursively
a4fa4a7 feat: support generic classes in ConstructorBasedBeanMutator
a87d068 feat: add support for generic setter based beans
506a126 feat: support generic constructor based beans
93e24d8 chore: update the release instructions
1ce2eac chore: automatically deploy to Maven Central and create a GH release
7768b2d chore: making local bundle doesn't need Sonatype usename or password
cb951cf feat: @ValuePool - propagate user values to types
d960aff feat: add meta-annotation for multi-level annotation propagation
Additional commits viewable in compare view

Updates `com.code-intell...

Description has been truncated

Bumps the dependencies group with 43 updates: | Package | From | To | | --- | --- | --- | | org.apache.logging.log4j:log4j-mongodb4 | `2.26.0-SNAPSHOT` | `3.0.0-beta2` | | org.apache.logging.log4j:log4j-slf4j-impl | `2.26.0-SNAPSHOT` | `3.0.0-beta2` | | [org.apache.commons:commons-compress](https://github.com/apache/commons-compress) | `1.27.1` | `1.28.0` | | [org.apache.commons:commons-csv](https://github.com/apache/commons-csv) | `1.14.0` | `1.14.1` | | [com.fasterxml.jackson:jackson-bom](https://github.com/FasterXML/jackson-bom) | `2.19.2` | `2.20.1` | | org.apache.rat:apache-rat-plugin | `0.16.1` | `0.17` | | [org.apache.groovy:groovy-bom](https://github.com/apache/groovy) | `4.0.27` | `5.0.3` | | [org.junit:junit-bom](https://github.com/junit-team/junit-framework) | `5.13.4` | `6.0.1` | | [org.junit.jupiter:junit-jupiter-engine](https://github.com/junit-team/junit-framework) | `5.13.4` | `6.0.1` | | [org.apache.activemq:activemq-broker](https://github.com/apache/activemq) | `6.1.7` | `6.2.0` | | [org.eclipse.angus:angus-activation](https://github.com/eclipse-ee4j/angus-activation) | `2.0.2` | `2.0.3` | | [org.assertj:assertj-core](https://github.com/assertj/assertj) | `3.27.3` | `3.27.6` | | [com.code-intelligence:jazzer](https://github.com/CodeIntelligenceTesting/jazzer) | `0.24.0` | `0.28.0` | | [com.code-intelligence:jazzer-api](https://github.com/CodeIntelligenceTesting/jazzer) | `0.24.0` | `0.28.0` | | [commons-codec:commons-codec](https://github.com/apache/commons-codec) | `1.18.0` | `1.20.0` | | [commons-io:commons-io](https://github.com/apache/commons-io) | `2.19.0` | `2.21.0` | | org.apache.commons:commons-lang3 | `3.18.0` | `3.20.0` | | org.apache.commons:commons-pool2 | `2.12.1` | `2.13.0` | | [com.google.guava:guava](https://github.com/google/guava) | `33.4.8-jre` | `33.5.0-jre` | | [com.google.guava:guava-testlib](https://github.com/google/guava) | `33.4.8-jre` | `33.5.0-jre` | | [jakarta.activation:jakarta.activation-api](https://github.com/jakartaee/jaf-api) | `2.1.3` | `2.1.4` | | org.eclipse.angus:jakarta.mail | `2.0.3` | `2.0.5` | | [jakarta.mail:jakarta.mail-api](https://github.com/jakartaee/mail-api) | `2.1.3` | `2.1.5` | | [org.jmdns:jmdns](https://github.com/jmdns/jmdns) | `3.6.1` | `3.6.2` | | [net.java.dev.jna:jna](https://github.com/java-native-access/jna) | `5.17.0` | `5.18.1` | | org.apache.maven:maven-core | `3.9.10` | `3.9.11` | | org.apache.maven:maven-model | `3.9.10` | `3.9.11` | | [org.openjdk.nashorn:nashorn-core](https://github.com/openjdk/nashorn) | `15.6` | `15.7` | | [org.eclipse.platform:org.eclipse.osgi](https://github.com/eclipse-equinox/equinox) | `3.23.100` | `3.24.0` | | [org.xmlunit:xmlunit-core](https://github.com/xmlunit/xmlunit) | `2.10.3` | `2.11.0` | | [org.xmlunit:xmlunit-matchers](https://github.com/xmlunit/xmlunit) | `2.10.3` | `2.11.0` | | [org.tukaani:xz](https://github.com/tukaani-project/xz-java) | `1.10` | `1.11` | | [com.github.luben:zstd-jni](https://github.com/luben/zstd-jni) | `1.5.7-4` | `1.5.7-6` | | [com.google.errorprone:error_prone_annotations](https://github.com/google/error-prone) | `2.38.0` | `2.45.0` | | [io.fabric8:docker-maven-plugin](https://github.com/fabric8io/docker-maven-plugin) | `0.46.0` | `0.48.0` | | [org.gradlex:gradle-module-metadata-maven-plugin](https://github.com/gradlex-org/gradle-module-metadata-maven-plugin) | `1.1` | `1.2` | | org.eclipse.jetty:jetty-util | `9.4.57.v20241219` | `9.4.58.v20250814` | | [co.elastic.clients:elasticsearch-java](https://github.com/elastic/elasticsearch-java) | `9.2.0` | `9.2.2` | | [org.elasticsearch.client:elasticsearch-rest-client](https://github.com/elastic/elasticsearch) | `9.2.0` | `9.2.2` | | [org.mongodb:bson](https://github.com/mongodb/mongo-java-driver) | `5.6.1` | `5.6.2` | | [org.mongodb:mongodb-driver-core](https://github.com/mongodb/mongo-java-driver) | `5.6.1` | `5.6.2` | | [org.mongodb:mongodb-driver-sync](https://github.com/mongodb/mongo-java-driver) | `5.6.1` | `5.6.2` | | [org.springframework.cloud:spring-cloud-context](https://github.com/spring-cloud/spring-cloud-commons) | `4.3.0` | `5.0.0` | Updates `org.apache.logging.log4j:log4j-mongodb4` from 2.26.0-SNAPSHOT to 3.0.0-beta2 Updates `org.apache.logging.log4j:log4j-slf4j-impl` from 2.26.0-SNAPSHOT to 3.0.0-beta2 Updates `org.apache.logging.log4j:log4j-slf4j-impl` from 2.26.0-SNAPSHOT to 3.0.0-beta2 Updates `org.apache.commons:commons-compress` from 1.27.1 to 1.28.0 - [Changelog](https://github.com/apache/commons-compress/blob/master/RELEASE-NOTES.txt) - [Commits](apache/commons-compress@rel/commons-compress-1.27.1...rel/commons-compress-1.28.0) Updates `org.apache.commons:commons-csv` from 1.14.0 to 1.14.1 - [Changelog](https://github.com/apache/commons-csv/blob/master/RELEASE-NOTES.txt) - [Commits](apache/commons-csv@rel/commons-csv-1.14.0...rel/commons-csv-1.14.1) Updates `com.fasterxml.jackson:jackson-bom` from 2.19.2 to 2.20.1 - [Commits](FasterXML/jackson-bom@jackson-bom-2.19.2...jackson-bom-2.20.1) Updates `org.apache.rat:apache-rat-plugin` from 0.16.1 to 0.17 Updates `org.apache.groovy:groovy-bom` from 4.0.27 to 5.0.3 - [Commits](https://github.com/apache/groovy/commits) Updates `org.junit:junit-bom` from 5.13.4 to 6.0.1 - [Release notes](https://github.com/junit-team/junit-framework/releases) - [Commits](junit-team/junit-framework@r5.13.4...r6.0.1) Updates `org.junit.jupiter:junit-jupiter-engine` from 5.13.4 to 6.0.1 - [Release notes](https://github.com/junit-team/junit-framework/releases) - [Commits](junit-team/junit-framework@r5.13.4...r6.0.1) Updates `org.apache.activemq:activemq-broker` from 6.1.7 to 6.2.0 - [Commits](apache/activemq@activemq-6.1.7...activemq-6.2.0) Updates `org.eclipse.angus:angus-activation` from 2.0.2 to 2.0.3 - [Release notes](https://github.com/eclipse-ee4j/angus-activation/releases) - [Commits](eclipse-ee4j/angus-activation@2.0.2...2.0.3) Updates `org.assertj:assertj-core` from 3.27.3 to 3.27.6 - [Release notes](https://github.com/assertj/assertj/releases) - [Commits](assertj/assertj@assertj-build-3.27.3...assertj-build-3.27.6) Updates `com.code-intelligence:jazzer` from 0.24.0 to 0.28.0 - [Release notes](https://github.com/CodeIntelligenceTesting/jazzer/releases) - [Commits](CodeIntelligenceTesting/jazzer@v0.24.0...v0.28.0) Updates `com.code-intelligence:jazzer-api` from 0.24.0 to 0.28.0 - [Release notes](https://github.com/CodeIntelligenceTesting/jazzer/releases) - [Commits](CodeIntelligenceTesting/jazzer@v0.24.0...v0.28.0) Updates `com.code-intelligence:jazzer-api` from 0.24.0 to 0.28.0 - [Release notes](https://github.com/CodeIntelligenceTesting/jazzer/releases) - [Commits](CodeIntelligenceTesting/jazzer@v0.24.0...v0.28.0) Updates `commons-codec:commons-codec` from 1.18.0 to 1.20.0 - [Changelog](https://github.com/apache/commons-codec/blob/master/RELEASE-NOTES.txt) - [Commits](apache/commons-codec@rel/commons-codec-1.18.0...rel/commons-codec-1.20.0) Updates `commons-io:commons-io` from 2.19.0 to 2.21.0 - [Changelog](https://github.com/apache/commons-io/blob/master/RELEASE-NOTES.txt) - [Commits](apache/commons-io@rel/commons-io-2.19.0...rel/commons-io-2.21.0) Updates `org.apache.commons:commons-lang3` from 3.18.0 to 3.20.0 Updates `org.apache.commons:commons-pool2` from 2.12.1 to 2.13.0 Updates `com.google.guava:guava` from 33.4.8-jre to 33.5.0-jre - [Release notes](https://github.com/google/guava/releases) - [Commits](https://github.com/google/guava/commits) Updates `com.google.guava:guava-testlib` from 33.4.8-jre to 33.5.0-jre - [Release notes](https://github.com/google/guava/releases) - [Commits](https://github.com/google/guava/commits) Updates `com.google.guava:guava-testlib` from 33.4.8-jre to 33.5.0-jre - [Release notes](https://github.com/google/guava/releases) - [Commits](https://github.com/google/guava/commits) Updates `jakarta.activation:jakarta.activation-api` from 2.1.3 to 2.1.4 - [Release notes](https://github.com/jakartaee/jaf-api/releases) - [Commits](jakartaee/jaf-api@2.1.3...2.1.4) Updates `org.eclipse.angus:jakarta.mail` from 2.0.3 to 2.0.5 Updates `jakarta.mail:jakarta.mail-api` from 2.1.3 to 2.1.5 - [Release notes](https://github.com/jakartaee/mail-api/releases) - [Commits](jakartaee/mail-api@2.1.3...2.1.5) Updates `org.jmdns:jmdns` from 3.6.1 to 3.6.2 - [Release notes](https://github.com/jmdns/jmdns/releases) - [Changelog](https://github.com/jmdns/jmdns/blob/main/CHANGELOG.txt) - [Commits](jmdns/jmdns@3.6.1...3.6.2) Updates `net.java.dev.jna:jna` from 5.17.0 to 5.18.1 - [Changelog](https://github.com/java-native-access/jna/blob/master/CHANGES.md) - [Commits](java-native-access/jna@5.17.0...5.18.1) Updates `org.apache.maven:maven-core` from 3.9.10 to 3.9.11 Updates `org.apache.maven:maven-model` from 3.9.10 to 3.9.11 Updates `org.apache.maven:maven-model` from 3.9.10 to 3.9.11 Updates `org.openjdk.nashorn:nashorn-core` from 15.6 to 15.7 - [Changelog](https://github.com/openjdk/nashorn/blob/main/CHANGELOG.md) - [Commits](openjdk/nashorn@release-15.6...release-15.7) Updates `org.eclipse.platform:org.eclipse.osgi` from 3.23.100 to 3.24.0 - [Commits](https://github.com/eclipse-equinox/equinox/commits) Updates `org.xmlunit:xmlunit-core` from 2.10.3 to 2.11.0 - [Release notes](https://github.com/xmlunit/xmlunit/releases) - [Changelog](https://github.com/xmlunit/xmlunit/blob/main/RELEASE_NOTES.md) - [Commits](xmlunit/xmlunit@v2.10.3...v2.11.0) Updates `org.xmlunit:xmlunit-matchers` from 2.10.3 to 2.11.0 - [Release notes](https://github.com/xmlunit/xmlunit/releases) - [Changelog](https://github.com/xmlunit/xmlunit/blob/main/RELEASE_NOTES.md) - [Commits](xmlunit/xmlunit@v2.10.3...v2.11.0) Updates `org.xmlunit:xmlunit-matchers` from 2.10.3 to 2.11.0 - [Release notes](https://github.com/xmlunit/xmlunit/releases) - [Changelog](https://github.com/xmlunit/xmlunit/blob/main/RELEASE_NOTES.md) - [Commits](xmlunit/xmlunit@v2.10.3...v2.11.0) Updates `org.tukaani:xz` from 1.10 to 1.11 - [Release notes](https://github.com/tukaani-project/xz-java/releases) - [Changelog](https://github.com/tukaani-project/xz-java/blob/master/NEWS.md) - [Commits](tukaani-project/xz-java@v1.10...v1.11) Updates `com.github.luben:zstd-jni` from 1.5.7-4 to 1.5.7-6 - [Commits](luben/zstd-jni@v1.5.7-4...v1.5.7-6) Updates `com.google.errorprone:error_prone_annotations` from 2.38.0 to 2.45.0 - [Release notes](https://github.com/google/error-prone/releases) - [Commits](google/error-prone@v2.38.0...v2.45.0) Updates `io.fabric8:docker-maven-plugin` from 0.46.0 to 0.48.0 - [Release notes](https://github.com/fabric8io/docker-maven-plugin/releases) - [Changelog](https://github.com/fabric8io/docker-maven-plugin/blob/master/doc/changelog.md) - [Commits](fabric8io/docker-maven-plugin@v0.46.0...v0.48.0) Updates `org.gradlex:gradle-module-metadata-maven-plugin` from 1.1 to 1.2 - [Release notes](https://github.com/gradlex-org/gradle-module-metadata-maven-plugin/releases) - [Changelog](https://github.com/gradlex-org/gradle-module-metadata-maven-plugin/blob/main/CHANGELOG.md) - [Commits](gradlex-org/gradle-module-metadata-maven-plugin@v1.1...v1.2) Updates `org.junit.jupiter:junit-jupiter-engine` from 5.13.4 to 6.0.1 - [Release notes](https://github.com/junit-team/junit-framework/releases) - [Commits](junit-team/junit-framework@r5.13.4...r6.0.1) Updates `org.eclipse.jetty:jetty-util` from 9.4.57.v20241219 to 9.4.58.v20250814 Updates `co.elastic.clients:elasticsearch-java` from 9.2.0 to 9.2.2 - [Release notes](https://github.com/elastic/elasticsearch-java/releases) - [Changelog](https://github.com/elastic/elasticsearch-java/blob/main/CHANGELOG.md) - [Commits](elastic/elasticsearch-java@v9.2.0...v9.2.2) Updates `org.elasticsearch.client:elasticsearch-rest-client` from 9.2.0 to 9.2.2 - [Release notes](https://github.com/elastic/elasticsearch/releases) - [Changelog](https://github.com/elastic/elasticsearch/blob/main/CHANGELOG.md) - [Commits](elastic/elasticsearch@v9.2.0...v9.2.2) Updates `org.elasticsearch.client:elasticsearch-rest-client` from 9.2.0 to 9.2.2 - [Release notes](https://github.com/elastic/elasticsearch/releases) - [Changelog](https://github.com/elastic/elasticsearch/blob/main/CHANGELOG.md) - [Commits](elastic/elasticsearch@v9.2.0...v9.2.2) Updates `org.mongodb:bson` from 5.6.1 to 5.6.2 - [Release notes](https://github.com/mongodb/mongo-java-driver/releases) - [Commits](mongodb/mongo-java-driver@r5.6.1...r5.6.2) Updates `org.mongodb:mongodb-driver-core` from 5.6.1 to 5.6.2 - [Release notes](https://github.com/mongodb/mongo-java-driver/releases) - [Commits](mongodb/mongo-java-driver@r5.6.1...r5.6.2) Updates `org.mongodb:mongodb-driver-sync` from 5.6.1 to 5.6.2 - [Release notes](https://github.com/mongodb/mongo-java-driver/releases) - [Commits](mongodb/mongo-java-driver@r5.6.1...r5.6.2) Updates `org.mongodb:mongodb-driver-core` from 5.6.1 to 5.6.2 - [Release notes](https://github.com/mongodb/mongo-java-driver/releases) - [Commits](mongodb/mongo-java-driver@r5.6.1...r5.6.2) Updates `org.mongodb:mongodb-driver-sync` from 5.6.1 to 5.6.2 - [Release notes](https://github.com/mongodb/mongo-java-driver/releases) - [Commits](mongodb/mongo-java-driver@r5.6.1...r5.6.2) Updates `org.springframework.cloud:spring-cloud-context` from 4.3.0 to 5.0.0 - [Release notes](https://github.com/spring-cloud/spring-cloud-commons/releases) - [Commits](spring-cloud/spring-cloud-commons@v4.3.0...v5.0.0) --- updated-dependencies: - dependency-name: org.apache.logging.log4j:log4j-mongodb4 dependency-version: 3.0.0-beta2 dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies - dependency-name: org.apache.logging.log4j:log4j-slf4j-impl dependency-version: 3.0.0-beta2 dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies - dependency-name: org.apache.logging.log4j:log4j-slf4j-impl dependency-version: 3.0.0-beta2 dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies - dependency-name: org.apache.commons:commons-compress dependency-version: 1.28.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.apache.commons:commons-csv dependency-version: 1.14.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: com.fasterxml.jackson:jackson-bom dependency-version: 2.20.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.apache.rat:apache-rat-plugin dependency-version: '0.17' dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.apache.groovy:groovy-bom dependency-version: 5.0.3 dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies - dependency-name: org.junit:junit-bom dependency-version: 6.0.1 dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies - dependency-name: org.junit.jupiter:junit-jupiter-engine dependency-version: 6.0.1 dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies - dependency-name: org.apache.activemq:activemq-broker dependency-version: 6.2.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.eclipse.angus:angus-activation dependency-version: 2.0.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.assertj:assertj-core dependency-version: 3.27.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: com.code-intelligence:jazzer dependency-version: 0.28.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: com.code-intelligence:jazzer-api dependency-version: 0.28.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: com.code-intelligence:jazzer-api dependency-version: 0.28.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: commons-codec:commons-codec dependency-version: 1.20.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: commons-io:commons-io dependency-version: 2.21.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.apache.commons:commons-lang3 dependency-version: 3.20.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.apache.commons:commons-pool2 dependency-version: 2.13.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: com.google.guava:guava dependency-version: 33.5.0-jre dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: com.google.guava:guava-testlib dependency-version: 33.5.0-jre dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: com.google.guava:guava-testlib dependency-version: 33.5.0-jre dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: jakarta.activation:jakarta.activation-api dependency-version: 2.1.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.eclipse.angus:jakarta.mail dependency-version: 2.0.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: jakarta.mail:jakarta.mail-api dependency-version: 2.1.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.jmdns:jmdns dependency-version: 3.6.2 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: net.java.dev.jna:jna dependency-version: 5.18.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.apache.maven:maven-core dependency-version: 3.9.11 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.apache.maven:maven-model dependency-version: 3.9.11 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.apache.maven:maven-model dependency-version: 3.9.11 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.openjdk.nashorn:nashorn-core dependency-version: '15.7' dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.eclipse.platform:org.eclipse.osgi dependency-version: 3.24.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.xmlunit:xmlunit-core dependency-version: 2.11.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.xmlunit:xmlunit-matchers dependency-version: 2.11.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.xmlunit:xmlunit-matchers dependency-version: 2.11.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.tukaani:xz dependency-version: '1.11' dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: com.github.luben:zstd-jni dependency-version: 1.5.7-6 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: com.google.errorprone:error_prone_annotations dependency-version: 2.45.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: io.fabric8:docker-maven-plugin dependency-version: 0.48.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.gradlex:gradle-module-metadata-maven-plugin dependency-version: '1.2' dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.junit.jupiter:junit-jupiter-engine dependency-version: 6.0.1 dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies - dependency-name: org.eclipse.jetty:jetty-util dependency-version: 9.4.58.v20250814 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: co.elastic.clients:elasticsearch-java dependency-version: 9.2.2 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.elasticsearch.client:elasticsearch-rest-client dependency-version: 9.2.2 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.elasticsearch.client:elasticsearch-rest-client dependency-version: 9.2.2 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.mongodb:bson dependency-version: 5.6.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.mongodb:mongodb-driver-core dependency-version: 5.6.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.mongodb:mongodb-driver-sync dependency-version: 5.6.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.mongodb:mongodb-driver-core dependency-version: 5.6.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.mongodb:mongodb-driver-sync dependency-version: 5.6.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.springframework.cloud:spring-cloud-context dependency-version: 5.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies ... Signed-off-by: dependabot[bot] <[email protected]>

github-actions · 2025-12-11T22:25:50Z

Job	Requested goals	Build Tool Version	Build Outcome
build-macos-latest	clean install	3.9.8	❌
build-ubuntu-latest	clean install	3.9.8	❌
build-windows-latest	clean install	3.9.8	❌

Generated by gradle/develocity-actions

dependabot bot added dependencies Related to third party dependency updates or migrations java Pull requests that update Java code labels Dec 11, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Bump the dependencies group with 43 updates #3999

Bump the dependencies group with 43 updates #3999

dependabot bot commented on behalf of github Dec 11, 2025 •

edited

Loading

Uh oh!

github-actions bot commented Dec 11, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Uh oh!

Bump the dependencies group with 43 updates #3999

Are you sure you want to change the base?

Bump the dependencies group with 43 updates #3999

Conversation

dependabot bot commented on behalf of github Dec 11, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Apache Commons Compress 1.28.0 Release Notes

Changes in this version

New Features

Apache Commons CSV 1.14.1 Release Notes

Fixed Bugs

Changes

New Contributors

New Contributors

New Contributors

New Contributors

New Contributors

New Contributors

v3.27.6

🐛 Bug Fixes

Core

❤️ Contributors

v3.27.5

⚡ Improvements

Core

🔨 Dependency Upgrades

Core

Guava

v3.27.4

🚫 Deprecated

Core

🐛 Bug Fixes

Core

⚡ Improvements

v0.28.0

What's Changed

v0.27.0

What's Changed

v0.26.0

What's Changed

v0.28.0

What's Changed

v0.27.0

What's Changed

v0.26.0

What's Changed

Uh oh!

github-actions bot commented Dec 11, 2025

Generated by gradle/develocity-actions

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

dependabot bot commented on behalf of github Dec 11, 2025 •

edited

Loading