chore(deps): bump the low-risk group across 1 directory with 18 updates#369
Open
dependabot[bot] wants to merge 1 commit into
Open
chore(deps): bump the low-risk group across 1 directory with 18 updates#369dependabot[bot] wants to merge 1 commit into
dependabot[bot] wants to merge 1 commit into
Conversation
Bumps the low-risk group with 18 updates in the / directory: | Package | From | To | | --- | --- | --- | | [ch.qos.logback:logback-core](https://github.com/qos-ch/logback) | `1.5.32` | `1.5.37` | | [ch.qos.logback:logback-classic](https://github.com/qos-ch/logback) | `1.5.32` | `1.5.37` | | [org.junit.jupiter:junit-jupiter](https://github.com/junit-team/junit-framework) | `6.1.0` | `6.1.1` | | [com.fasterxml.jackson:jackson-bom](https://github.com/FasterXML/jackson-bom) | `2.21.3` | `2.22.0` | | [io.projectreactor:reactor-bom](https://github.com/reactor/reactor) | `2025.0.5` | `2025.0.6` | | [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot) | `3.5.14` | `3.5.16` | | [org.springframework.cloud:spring-cloud-dependencies](https://github.com/spring-cloud/spring-cloud-release) | `2025.1.1` | `2025.1.2` | | [io.projectreactor.netty:reactor-netty-core](https://github.com/reactor/reactor-netty) | `1.3.5` | `1.3.6` | | [org.pitest:pitest-parent](https://github.com/hcoles/pitest) | `1.25.1` | `1.25.5` | | [org.pitest:pitest-maven](https://github.com/hcoles/pitest) | `1.25.1` | `1.25.5` | | [io.netty:netty-codec-http](https://github.com/netty/netty) | `4.2.14.Final` | `4.2.15.Final` | | [io.netty:netty-codec](https://github.com/netty/netty) | `4.2.14.Final` | `4.2.15.Final` | | [io.netty:netty-common](https://github.com/netty/netty) | `4.2.14.Final` | `4.2.15.Final` | | [io.netty:netty-handler](https://github.com/netty/netty) | `4.2.14.Final` | `4.2.15.Final` | | [com.github.spotbugs:spotbugs](https://github.com/spotbugs/spotbugs) | `4.9.8` | `4.10.2` | | [org.jacoco:jacoco-maven-plugin](https://github.com/jacoco/jacoco) | `0.8.14` | `0.8.15` | | [com.github.spotbugs:spotbugs-maven-plugin](https://github.com/spotbugs/spotbugs-maven-plugin) | `4.9.8.3` | `4.10.2.0` | | [org.sonatype.central:central-publishing-maven-plugin](https://github.com/sonatype/central-publishing-maven-plugin) | `0.10.0` | `0.11.0` | Updates `ch.qos.logback:logback-core` from 1.5.32 to 1.5.37 - [Release notes](https://github.com/qos-ch/logback/releases) - [Commits](qos-ch/logback@v_1.5.32...v_1.5.37) Updates `ch.qos.logback:logback-classic` from 1.5.32 to 1.5.37 - [Release notes](https://github.com/qos-ch/logback/releases) - [Commits](qos-ch/logback@v_1.5.32...v_1.5.37) Updates `ch.qos.logback:logback-classic` from 1.5.32 to 1.5.37 - [Release notes](https://github.com/qos-ch/logback/releases) - [Commits](qos-ch/logback@v_1.5.32...v_1.5.37) Updates `org.junit.jupiter:junit-jupiter` from 6.1.0 to 6.1.1 - [Release notes](https://github.com/junit-team/junit-framework/releases) - [Commits](junit-team/junit-framework@r6.1.0...r6.1.1) Updates `com.fasterxml.jackson:jackson-bom` from 2.21.3 to 2.22.0 - [Commits](FasterXML/jackson-bom@jackson-bom-2.21.3...jackson-bom-2.22.0) Updates `io.projectreactor:reactor-bom` from 2025.0.5 to 2025.0.6 - [Release notes](https://github.com/reactor/reactor/releases) - [Commits](reactor/reactor@2025.0.5...2025.0.6) Updates `org.springframework.boot:spring-boot-dependencies` from 3.5.14 to 3.5.16 - [Release notes](https://github.com/spring-projects/spring-boot/releases) - [Commits](spring-projects/spring-boot@v3.5.14...v3.5.16) Updates `org.springframework.cloud:spring-cloud-dependencies` from 2025.1.1 to 2025.1.2 - [Release notes](https://github.com/spring-cloud/spring-cloud-release/releases) - [Commits](spring-cloud/spring-cloud-release@v2025.1.1...v2025.1.2) Updates `io.projectreactor.netty:reactor-netty-core` from 1.3.5 to 1.3.6 - [Release notes](https://github.com/reactor/reactor-netty/releases) - [Commits](reactor/reactor-netty@v1.3.5...v1.3.6) Updates `org.pitest:pitest-parent` from 1.25.1 to 1.25.5 - [Release notes](https://github.com/hcoles/pitest/releases) - [Commits](hcoles/pitest@1.25.1...1.25.5) Updates `org.pitest:pitest-maven` from 1.25.1 to 1.25.5 - [Release notes](https://github.com/hcoles/pitest/releases) - [Commits](hcoles/pitest@1.25.1...1.25.5) Updates `io.netty:netty-codec-http` from 4.2.14.Final to 4.2.15.Final - [Release notes](https://github.com/netty/netty/releases) - [Commits](netty/netty@netty-4.2.14.Final...netty-4.2.15.Final) Updates `io.netty:netty-codec` from 4.2.14.Final to 4.2.15.Final - [Release notes](https://github.com/netty/netty/releases) - [Commits](netty/netty@netty-4.2.14.Final...netty-4.2.15.Final) Updates `io.netty:netty-common` from 4.2.14.Final to 4.2.15.Final - [Release notes](https://github.com/netty/netty/releases) - [Commits](netty/netty@netty-4.2.14.Final...netty-4.2.15.Final) Updates `io.netty:netty-handler` from 4.2.14.Final to 4.2.15.Final - [Release notes](https://github.com/netty/netty/releases) - [Commits](netty/netty@netty-4.2.14.Final...netty-4.2.15.Final) Updates `io.netty:netty-codec` from 4.2.14.Final to 4.2.15.Final - [Release notes](https://github.com/netty/netty/releases) - [Commits](netty/netty@netty-4.2.14.Final...netty-4.2.15.Final) Updates `io.netty:netty-common` from 4.2.14.Final to 4.2.15.Final - [Release notes](https://github.com/netty/netty/releases) - [Commits](netty/netty@netty-4.2.14.Final...netty-4.2.15.Final) Updates `io.netty:netty-handler` from 4.2.14.Final to 4.2.15.Final - [Release notes](https://github.com/netty/netty/releases) - [Commits](netty/netty@netty-4.2.14.Final...netty-4.2.15.Final) Updates `com.github.spotbugs:spotbugs` from 4.9.8 to 4.10.2 - [Release notes](https://github.com/spotbugs/spotbugs/releases) - [Changelog](https://github.com/spotbugs/spotbugs/blob/master/CHANGELOG.md) - [Commits](spotbugs/spotbugs@4.9.8...4.10.2) Updates `org.jacoco:jacoco-maven-plugin` from 0.8.14 to 0.8.15 - [Release notes](https://github.com/jacoco/jacoco/releases) - [Commits](jacoco/jacoco@v0.8.14...v0.8.15) Updates `com.github.spotbugs:spotbugs-maven-plugin` from 4.9.8.3 to 4.10.2.0 - [Release notes](https://github.com/spotbugs/spotbugs-maven-plugin/releases) - [Commits](spotbugs/spotbugs-maven-plugin@spotbugs-maven-plugin-4.9.8.3...spotbugs-maven-plugin-4.10.2.0) Updates `org.pitest:pitest-maven` from 1.25.1 to 1.25.5 - [Release notes](https://github.com/hcoles/pitest/releases) - [Commits](hcoles/pitest@1.25.1...1.25.5) Updates `org.sonatype.central:central-publishing-maven-plugin` from 0.10.0 to 0.11.0 - [Commits](https://github.com/sonatype/central-publishing-maven-plugin/commits) --- updated-dependencies: - dependency-name: ch.qos.logback:logback-core dependency-version: 1.5.37 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: low-risk - dependency-name: ch.qos.logback:logback-classic dependency-version: 1.5.37 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: low-risk - dependency-name: ch.qos.logback:logback-classic dependency-version: 1.5.37 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: low-risk - dependency-name: org.junit.jupiter:junit-jupiter dependency-version: 6.1.1 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: low-risk - dependency-name: com.fasterxml.jackson:jackson-bom dependency-version: 2.22.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: low-risk - dependency-name: io.projectreactor:reactor-bom dependency-version: 2025.0.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: low-risk - dependency-name: org.springframework.boot:spring-boot-dependencies dependency-version: 3.5.16 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: low-risk - dependency-name: org.springframework.cloud:spring-cloud-dependencies dependency-version: 2025.1.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: low-risk - dependency-name: io.projectreactor.netty:reactor-netty-core dependency-version: 1.3.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: low-risk - dependency-name: org.pitest:pitest-parent dependency-version: 1.25.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: low-risk - dependency-name: org.pitest:pitest-maven dependency-version: 1.25.5 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: low-risk - dependency-name: io.netty:netty-codec-http dependency-version: 4.2.15.Final dependency-type: direct:production update-type: version-update:semver-patch dependency-group: low-risk - dependency-name: io.netty:netty-codec dependency-version: 4.2.15.Final dependency-type: direct:production update-type: version-update:semver-patch dependency-group: low-risk - dependency-name: io.netty:netty-common dependency-version: 4.2.15.Final dependency-type: direct:production update-type: version-update:semver-patch dependency-group: low-risk - dependency-name: io.netty:netty-handler dependency-version: 4.2.15.Final dependency-type: direct:production update-type: version-update:semver-patch dependency-group: low-risk - dependency-name: io.netty:netty-codec dependency-version: 4.2.15.Final dependency-type: direct:production update-type: version-update:semver-patch dependency-group: low-risk - dependency-name: io.netty:netty-common dependency-version: 4.2.15.Final dependency-type: direct:production update-type: version-update:semver-patch dependency-group: low-risk - dependency-name: io.netty:netty-handler dependency-version: 4.2.15.Final dependency-type: direct:production update-type: version-update:semver-patch dependency-group: low-risk - dependency-name: com.github.spotbugs:spotbugs dependency-version: 4.10.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: low-risk - dependency-name: org.jacoco:jacoco-maven-plugin dependency-version: 0.8.15 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: low-risk - dependency-name: com.github.spotbugs:spotbugs-maven-plugin dependency-version: 4.10.2.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: low-risk - dependency-name: org.pitest:pitest-maven dependency-version: 1.25.5 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: low-risk - dependency-name: org.sonatype.central:central-publishing-maven-plugin dependency-version: 0.11.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: low-risk ... Signed-off-by: dependabot[bot] <support@github.com>
Contributor
Author
AssigneesThe following users could not be added as assignees: Please fix the above issues or remove invalid values from |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Bumps the low-risk group with 18 updates in the / directory:
1.5.321.5.371.5.321.5.376.1.06.1.12.21.32.22.02025.0.52025.0.63.5.143.5.162025.1.12025.1.21.3.51.3.61.25.11.25.51.25.11.25.54.2.14.Final4.2.15.Final4.2.14.Final4.2.15.Final4.2.14.Final4.2.15.Final4.2.14.Final4.2.15.Final4.9.84.10.20.8.140.8.154.9.8.34.10.2.00.10.00.11.0Updates
ch.qos.logback:logback-corefrom 1.5.32 to 1.5.37Release notes
Sourced from ch.qos.logback:logback-core's releases.
... (truncated)
Commits
c1df7f5prepare release 1.5.37a189967remove conditional based on janinoaaa9052start work on 1.5.37-SNAPSHOT9b94c37prepare release 1.5.36e6a8280prevent attacks using disallowed references24c4b63start work on 1.5.36-SNAPSHOT08bd159preapre release 1.5.3537d256bindentation changes onlyd3d7307minor commentfa0411aradomize file locationUpdates
ch.qos.logback:logback-classicfrom 1.5.32 to 1.5.37Release notes
Sourced from ch.qos.logback:logback-classic's releases.
... (truncated)
Commits
c1df7f5prepare release 1.5.37a189967remove conditional based on janinoaaa9052start work on 1.5.37-SNAPSHOT9b94c37prepare release 1.5.36e6a8280prevent attacks using disallowed references24c4b63start work on 1.5.36-SNAPSHOT08bd159preapre release 1.5.3537d256bindentation changes onlyd3d7307minor commentfa0411aradomize file locationUpdates
ch.qos.logback:logback-classicfrom 1.5.32 to 1.5.37Release notes
Sourced from ch.qos.logback:logback-classic's releases.
... (truncated)
Commits
c1df7f5prepare release 1.5.37a189967remove conditional based on janinoaaa9052start work on 1.5.37-SNAPSHOT9b94c37prepare release 1.5.36e6a8280prevent attacks using disallowed references24c4b63start work on 1.5.36-SNAPSHOT08bd159preapre release 1.5.3537d256bindentation changes onlyd3d7307minor commentfa0411aradomize file locationUpdates
org.junit.jupiter:junit-jupiterfrom 6.1.0 to 6.1.1Release notes
Sourced from org.junit.jupiter:junit-jupiter's releases.
Commits
0d85889Release 6.1.10363eeeFinalize 6.1.1 release notesa6d540aMove entry to 6.1.1 release notes69339d5Only pass timeout when publishing to avoid failure in nmcp plugindec2eb9Allow excluding engines from memory cleanup mode (#5786)a5f4270Publish sha256/sha512 checksums again but filter out signature ones (#5796)8213012Update plugin nmcp-settings to v1.6.0 (#5787)d1bf847Generate Javadoc for aggregator modulesd721de5Pass--no-fontstojavadocconventiond289ec6Restore original SetSystemProperty values in a ParameterizedTest (#5720)Updates
com.fasterxml.jackson:jackson-bomfrom 2.21.3 to 2.22.0Commits
112e859[maven-release-plugin] prepare release jackson-bom-2.22.02cae2cePrep for 2.22.0 release7955d21Merge branch '2.21' into 2.x8922a05Post-release dep version bump1fa9943[maven-release-plugin] prepare for next development iterationd1abd31[maven-release-plugin] prepare release jackson-bom-2.21.42aaea43Prep for 2.21.4 release902ec69Update Woodstox/stax2-api (to 7.2.0/4.3.0)2570647Merge branch '2.21' into 2.x9d3a9d5Post-release dep version bumpUpdates
io.projectreactor:reactor-bomfrom 2025.0.5 to 2025.0.6Release notes
Sourced from io.projectreactor:reactor-bom's releases.
Commits
2764b66[release] Prepare and release BOM 2025.0.6d7fff6bMerge-ignore release 2024.0.18 into 2025.0.652e80b7[release] Back to snapshots, next BOM will be SR 19518bad4[release] Prepare and release BOM 2024.0.1886280c8Merge #780 into 2025.0.68d7d6f3Bump actions/checkout from 6.0.2 to 6.0.3 (#780)df88e6bMerge 4dece8e9 into 2025.0.64dece8e[build] Use non-capturing groups for all numeric segments in qualifyVersion2f4cdc8Merge 17214287 into 2025.0.61721428[build] Enhance version parsing to support 4-part numeric versionsUpdates
org.springframework.boot:spring-boot-dependenciesfrom 3.5.14 to 3.5.16Release notes
Sourced from org.springframework.boot:spring-boot-dependencies's releases.
... (truncated)
Commits
0566f69Release v3.5.1693edd16Next development version (v3.5.16-SNAPSHOT)5bafd0aUpgrade to Spring Integration 6.5.10baf3290Upgrade to Spring AMQP 3.2.122c5964aUpgrade to Spring Data Bom 2025.0.13dbb08aaUpgrade Antora dependencies9b281d5Upgrade to actions/checkout 7.0.0a854058Upgrade to jfrog/setup-jfrog-cli 5.1.0fc236aeStart building against Spring Integration 6.5.10 snapshots5271da7Start building against Spring Data Bom 2025.0.13 snapshotsUpdates
org.springframework.cloud:spring-cloud-dependenciesfrom 2025.1.1 to 2025.1.2Release notes
Sourced from org.springframework.cloud:spring-cloud-dependencies's releases.
Commits
bda306dUpdate SNAPSHOT to 2025.1.24fd3272Merge pull request #517 from spring-cloud/dependabot/npm_and_yarn/docs/main/s...be421f5Bump@springio/antora-extensionsfrom 1.14.11 to 1.14.12 in /docs6ad8d9dMerge pull request #513 from spring-cloud/dependabot/maven/main/org.apache.ma...bc10fd4Merge pull request #514 from spring-cloud/dependabot/maven/org.apache.maven-m...57ecb39Bump org.apache.maven:maven-model from 3.9.15 to 3.9.163963ec2Bump org.apache.maven:maven-model from 3.9.15 to 3.9.16def3e63Upgrading antora to 3.2.0-alpha.12145f1d6Bumping versions0a141a4Update spring-cloud-config.version to 5.0.4-SNAPSHOTUpdates
io.projectreactor.netty:reactor-netty-corefrom 1.3.5 to 1.3.6Release notes
Sourced from io.projectreactor.netty:reactor-netty-core's releases.
Commits
511a3b6[release] Prepare and release 1.3.63d3bdcbMerge-ignore release 1.2.18 into 1.3.69bd9255[release] Back to snapshots, next is 1.2.19-SNAPSHOTc753da4[release] Prepare and release 1.2.181a4c422Update HTTP/3 configuration2c6325eMerge e7ef551ee into 1.3.6e7ef551Refine header handling during redirects22ecd82Merge #4243 into 1.3.6b26ac28Bump biz.aQute.bnd.builder from 7.2.3 to 7.3.0 (#4243)bf1c241Merge #4242 into 1.3.6Updates
org.pitest:pitest-parentfrom 1.25.1 to 1.25.5Release notes
Sourced from org.pitest:pitest-parent's releases.
Commits
978c681Merge pull request #1479 from hcoles/bug/daemon_threads1f395c2single threaded mutant timeout detectiondcdc5faupdate readme5595375Merge pull request #1468 from see-quick/support-configurable-decimal-precision