build(deps): bump the dependencies group across 1 directory with 44 updates by dependabot[bot] · Pull Request #10 · craftercms/handlebars.java

dependabot · 2026-06-17T02:44:51Z

Bumps the dependencies group with 44 updates in the / directory:

Package	From	To
org.apache.commons:commons-lang3	`3.18.0`	`3.20.0`
org.apache.commons:commons-text	`1.14.0`	`1.15.0`
org.springframework:spring-webmvc	`6.2.9`	`7.0.8`
org.springframework:spring-test	`6.2.9`	`7.0.8`
org.slf4j:slf4j-api	`2.0.17`	`2.0.18`
com.fasterxml.jackson.core:jackson-databind	`2.19.2`	`2.22.0`
ch.qos.logback:logback-classic	`1.5.18`	`1.5.34`
org.junit.jupiter:junit-jupiter-api	`5.13.4`	`6.1.0`
org.junit.jupiter:junit-jupiter-params	`5.13.4`	`6.1.0`
org.junit.jupiter:junit-jupiter-engine	`5.13.4`	`6.1.0`
org.yaml:snakeyaml	`2.4`	`2.6`
org.mockito:mockito-core	`5.18.0`	`5.23.0`
org.sonatype.central:central-publishing-maven-plugin	`0.10.0`	`0.11.0`
org.apache.maven.plugins:maven-compiler-plugin	`3.14.0`	`3.15.0`
org.apache.maven.plugins:maven-jar-plugin	`3.4.2`	`3.5.0`
org.apache.maven.plugins:maven-javadoc-plugin	`3.11.2`	`3.12.0`
org.apache.maven.plugins:maven-surefire-plugin	`3.5.3`	`3.5.6`
com.diffplug.spotless:spotless-maven-plugin	`2.46.1`	`3.7.0`
org.codehaus.mojo:exec-maven-plugin	`3.5.1`	`3.6.3`
org.apache.maven.plugins:maven-antrun-plugin	`3.1.0`	`3.2.0`
com.rudikershaw.gitbuildhook:git-build-hook-maven-plugin	`3.5.0`	`3.6.0`
org.apache.maven.plugins:maven-source-plugin	`3.3.1`	`3.4.0`
org.apache.maven.plugins:maven-gpg-plugin	`3.2.7`	`3.2.8`
org.moditect:moditect-maven-plugin	`1.2.2.Final`	`1.3.0.Final`
org.antlr:antlr4-runtime	`4.13.1`	`4.13.2`
org.antlr:antlr4-maven-plugin	`4.13.1`	`4.13.2`
org.openjdk.nashorn:nashorn-core	`15.6`	`15.7`
org.jacoco:org.jacoco.agent	`0.8.12`	`0.8.15`
org.jacoco:jacoco-maven-plugin	`0.8.12`	`0.8.15`
org.junit.platform:junit-platform-suite	`1.13.4`	`6.1.0`
commons-io:commons-io	`2.18.0`	`2.22.0`
org.apache.maven.plugins:maven-shade-plugin	`3.6.0`	`3.6.2`
org.codehaus.mojo:build-helper-maven-plugin	`3.6.0`	`3.6.1`
org.apache.felix:maven-bundle-plugin	`6.0.0`	`6.0.2`
joda-time:joda-time	`2.14.0`	`2.14.2`
com.google.guava:guava	`33.4.6-jre`	`33.6.0-jre`
com.github.ben-manes.caffeine:caffeine	`3.2.0`	`3.2.4`
org.apache.maven:maven-plugin-api	`3.9.9`	`3.9.16`
org.apache.maven:maven-core	`3.9.9`	`3.9.16`
org.apache.maven.plugin-tools:maven-plugin-annotations	`3.15.1`	`3.15.2`
org.codehaus.plexus:plexus-utils	`4.0.2`	`4.0.3`
org.codehaus.plexus:plexus-xml	`4.1.0`	`4.1.1`
org.apache.maven.plugins:maven-plugin-plugin	`3.15.1`	`3.15.2`
org.apache.maven.plugins:maven-war-plugin	`3.4.0`	`3.5.1`

Updates org.apache.commons:commons-lang3 from 3.18.0 to 3.20.0

Updates org.apache.commons:commons-text from 1.14.0 to 1.15.0

Changelog

Sourced from org.apache.commons:commons-text's changelog.

Apache Commons Text 1.15.0 Release Notes

The Apache Commons Text team is pleased to announce the release of Apache Commons Text 1.15.0.

Apache Commons Text is a set of utility functions and reusable components for processing and manipulating text in a Java environment.

Release 1.15.0. This is a feature and maintenance release. Java 8 or later is required.

New features

       Add experimental CycloneDX VEX file [#683](https://github.com/apache/commons-text/issues/683). Thanks to Piotr P. Karwasz, Gary Gregory.

TEXT-235: Add Damerau-Levenshtein distance #687. Thanks to LorgeN, Gary Gregory.

       Add unit tests to increase coverage [#719](https://github.com/apache/commons-text/issues/719). Thanks to Michael Hausegger, Gary Gregory.

       Add new test for CharSequenceTranslator#with() [#725](https://github.com/apache/commons-text/issues/725). Thanks to Michael Hausegger, Gary Gregory.

       Add tests and assertions to org.apache.commons.text.similarity to get to 100% code coverage [#727](https://github.com/apache/commons-text/issues/727), [#728](https://github.com/apache/commons-text/issues/728). Thanks to Michael Hausegger.

Fixed Bugs

       Fix exception message typo in XmlStringLookup.XmlStringLookup(Map, Path...). Thanks to Gary Gregory.

TEXT-236: Inserting at the end of a TextStringBuilder throws a StringIndexOutOfBoundsException. Thanks to Pierre Post, Sumit Bera, Alex Herbert, Gary Gregory.

       Fix TextStringBuilderTest.testAppendToCharBuffer() to use proper argument type [#724](https://github.com/apache/commons-text/issues/724). Thanks to Michael Hausegger.

       Fix Apache RAT plugin console warnings. Thanks to Gary Gregory.

       Fix site XML to use version 2.0.0 XML schema. Thanks to Gary Gregory.

       Removed unreachable threshold verification code in src/main/java/org/apache/commons/text/similarity [#730](https://github.com/apache/commons-text/issues/730). Thanks to Michael Hausegger.

       Enable secure processing for the XML parser in XmlStringLookup in case the underlying JAXP implementation doesn't [#729](https://github.com/apache/commons-text/issues/729). Thanks to 김민재 (minjas0507), Gary Gregory, Piotr Karwasz.

Changes

       Bump org.apache.commons:commons-parent from 85 to 93 [#704](https://github.com/apache/commons-text/issues/704), [#723](https://github.com/apache/commons-text/issues/723), [#726](https://github.com/apache/commons-text/issues/726). Thanks to Gary Gregory.

       Bump commons.bytebuddy.version from 1.17.6 to 1.18.2 [#696](https://github.com/apache/commons-text/issues/696), [#722](https://github.com/apache/commons-text/issues/722). Thanks to Gary Gregory.

       Bump graalvm.version from 24.2.2 to 25.0.1 [#703](https://github.com/apache/commons-text/issues/703), [#716](https://github.com/apache/commons-text/issues/716). Thanks to Gary Gregory, Dependabot.

       Bump org.apache.commons:commons-lang3 from 3.18.0 to 3.20.0. Thanks to Gary Gregory.

       Bump commons-io:commons-io from 2.20.0 to 2.21.0. Thanks to Gary Gregory.

Historical list of changes: https://commons.apache.org/proper/commons-text/changes.html

For complete information on Apache Commons Text, including instructions on how to submit bug reports, patches, or suggestions for improvement, see the Apache Commons Text website:

https://commons.apache.org/proper/commons-text

Download page: https://commons.apache.org/proper/commons-text/download_text.cgi

... (truncated)

Commits

04e9374 Prepare for the release candidate 1.15.0 RC1
502c4c4 Prepare for the next release candidate
c6e17ec Use direct access
58e1e12 Simplify XML FSP (#731)
b5052c9 Bump actions/setup-java from 5.0.0 to 5.1.0
2e2d4bc Revert "Bump actions/setup-java from 5.0.0 to 5.1.0"
b0ddbd1 Bump actions/setup-java from 5.0.0 to 5.1.0
1c2d382 Add tests with external DTD
ed3df4b Internal clean up
bb508f3 Bump actions/checkout from 6.0.0 to 6.0.1
Additional commits viewable in compare view

Updates org.springframework:spring-webmvc from 6.2.9 to 7.0.8

Release notes

Sourced from org.springframework:spring-webmvc's releases.

v7.0.8

⚠️ Security Fixes

This maintenance release fixes a high number of CVEs. You can learn more about this in the "Spring and Security In The Times Of AI" blog post. Here is the full list of 16 CVEs:

CVE-2026-41838 "Spring Framework Predictable Session ID in WebSocket Module"

CVE-2026-41839 "Spring Framework Escalation via Session Fixation in WebFlux"

CVE-2026-41840 "Spring Framework Denial of Service via Multipart Requests in WebFlux"

CVE-2026-41841 "Spring Framework Information Disclosure via Static Resource Cache in Spring MVC and WebFlux"

CVE-2026-41842 "Spring Framework Denial of Service via Versioned Resources in Spring MVC and WebFlux"

CVE-2026-41843 "Spring Framework Path Traversal via Versioned Static Resources in Spring MVC and WebFlux"

CVE-2026-41844 "Spring Framework Open Redirect in Spring MVC and WebFlux"

CVE-2026-41845 "Spring Framework Cross-site Scripting via JavaScriptUtils"

CVE-2026-41846 "Spring Framework Cross-site Scripting via JSP Form Tags"

CVE-2026-41848 "Spring Framework Denial of Service via AntPathMatcher"

CVE-2026-41850 "Spring Framework Algorithmic Denial of Service via SpEL Expressions"

CVE-2026-41851 "Spring Framework Denial of Service via Unbounded Cache in SpEL"

CVE-2026-41852 "Spring Framework Arbitrary Method Invocation in SpEL Expressions"

CVE-2026-41853 "Spring Framework Multipart Request Smuggling in Spring MVC and WebFlux"

CVE-2026-41854 "Spring Framework Server-Side Request Forgery via UriComponentsBuilder"

CVE-2026-41855 "Spring Framework Unsafe Deserialization via Jackson JMS Converters"

⭐ New Features

Include zone ID in CronTrigger's equals/hashCode implementations #36871

Expose ClassLoader from DefaultDeserializer #36833

Use immutable map for SEPARATORS static field in DefaultPathContainer #36821

Track operations during SpEL expression evaluation #36801

Ensure getters have non-void return types in SpEL #36800

Avoid too many character access attempts in AntPathMatcher #36799

Refine default view name resolution #36793

Refine Jackson JMS converters #36791

Improve ABNF rule checks in RfcUriParser #36787

Restrict SpringVersion.getVersion() to "major.minor.patch" format #36785

Runtime compatibility with JPA 4.0 M4 and corresponding Hibernate 8.0 snapshots #36784

Allow specifying the charset to use in ExchangeFilterFunctions#basicAuthentication #36777

Use CollectionUtils to initialize HashMap in DefaultUriBuilderFactory #36763

Improve error messages in SpEL #36756

Improve pattern caching in SpEL #36755

Avoid ResolvableType#forType contention for implicit cache cleanup #36745

Switch to JdkIdGenerator for WebSocket Sessions #36740

Detect custom deserialized NullValue instances in AbstractValueAdaptingCache #36727

LiteWebJarsResourceResolver does not resolve directories #36726

Warn against unsafe static resource locations in MVC and WebFlux #36692

Consistent compatibility with Woodstox as an alternative to Xerces #36682

Improve principal checks for SockJS session #36681

Set host header consistently in STOMP relay CONNECT frames #36673

Support Micrometer context propagation in Kotlin Flow #36667

Reliable detection of broadcast messages in UserDestinationMessageHandler #36662

... (truncated)

Commits

9e8cea3 Release v7.0.8
2c18c33 Track operations during SpEL expression evaluation
83667f8 Ensure getters have non-void return types in SpEL
7a8917b Improve additional error messages in SpEL
7baa865 Further improve pattern caching in SpEL
12b44f2 Avoid too many character access attempts in AntPathMatcher
e8f1024 Ensure consistent JSP tag attribute processing
a1826b7 Refine JavaScriptUtils#javaScriptEscape
7add524 Prevent special prefixes in default view name resolution
9bec52b Add trusted packages to MappingJackson2MessageConverter
Additional commits viewable in compare view

Updates org.springframework:spring-test from 6.2.9 to 7.0.8

Release notes

Sourced from org.springframework:spring-test's releases.

v7.0.8

⚠️ Security Fixes

This maintenance release fixes a high number of CVEs. You can learn more about this in the "Spring and Security In The Times Of AI" blog post. Here is the full list of 16 CVEs:

CVE-2026-41838 "Spring Framework Predictable Session ID in WebSocket Module"

CVE-2026-41839 "Spring Framework Escalation via Session Fixation in WebFlux"

CVE-2026-41840 "Spring Framework Denial of Service via Multipart Requests in WebFlux"

CVE-2026-41841 "Spring Framework Information Disclosure via Static Resource Cache in Spring MVC and WebFlux"

CVE-2026-41842 "Spring Framework Denial of Service via Versioned Resources in Spring MVC and WebFlux"

CVE-2026-41843 "Spring Framework Path Traversal via Versioned Static Resources in Spring MVC and WebFlux"

CVE-2026-41844 "Spring Framework Open Redirect in Spring MVC and WebFlux"

CVE-2026-41845 "Spring Framework Cross-site Scripting via JavaScriptUtils"

CVE-2026-41846 "Spring Framework Cross-site Scripting via JSP Form Tags"

CVE-2026-41848 "Spring Framework Denial of Service via AntPathMatcher"

CVE-2026-41850 "Spring Framework Algorithmic Denial of Service via SpEL Expressions"

CVE-2026-41851 "Spring Framework Denial of Service via Unbounded Cache in SpEL"

CVE-2026-41852 "Spring Framework Arbitrary Method Invocation in SpEL Expressions"

CVE-2026-41853 "Spring Framework Multipart Request Smuggling in Spring MVC and WebFlux"

CVE-2026-41854 "Spring Framework Server-Side Request Forgery via UriComponentsBuilder"

CVE-2026-41855 "Spring Framework Unsafe Deserialization via Jackson JMS Converters"

⭐ New Features

Include zone ID in CronTrigger's equals/hashCode implementations #36871

Expose ClassLoader from DefaultDeserializer #36833

Use immutable map for SEPARATORS static field in DefaultPathContainer #36821

Track operations during SpEL expression evaluation #36801

Ensure getters have non-void return types in SpEL #36800

Avoid too many character access attempts in AntPathMatcher #36799

Refine default view name resolution #36793

Refine Jackson JMS converters #36791

Improve ABNF rule checks in RfcUriParser #36787

Restrict SpringVersion.getVersion() to "major.minor.patch" format #36785

Runtime compatibility with JPA 4.0 M4 and corresponding Hibernate 8.0 snapshots #36784

Allow specifying the charset to use in ExchangeFilterFunctions#basicAuthentication #36777

Use CollectionUtils to initialize HashMap in DefaultUriBuilderFactory #36763

Improve error messages in SpEL #36756

Improve pattern caching in SpEL #36755

Avoid ResolvableType#forType contention for implicit cache cleanup #36745

Switch to JdkIdGenerator for WebSocket Sessions #36740

Detect custom deserialized NullValue instances in AbstractValueAdaptingCache #36727

LiteWebJarsResourceResolver does not resolve directories #36726

Warn against unsafe static resource locations in MVC and WebFlux #36692

Consistent compatibility with Woodstox as an alternative to Xerces #36682

Improve principal checks for SockJS session #36681

Set host header consistently in STOMP relay CONNECT frames #36673

Support Micrometer context propagation in Kotlin Flow #36667

Reliable detection of broadcast messages in UserDestinationMessageHandler #36662

... (truncated)

Commits

9e8cea3 Release v7.0.8
2c18c33 Track operations during SpEL expression evaluation
83667f8 Ensure getters have non-void return types in SpEL
7a8917b Improve additional error messages in SpEL
7baa865 Further improve pattern caching in SpEL
12b44f2 Avoid too many character access attempts in AntPathMatcher
e8f1024 Ensure consistent JSP tag attribute processing
a1826b7 Refine JavaScriptUtils#javaScriptEscape
7add524 Prevent special prefixes in default view name resolution
9bec52b Add trusted packages to MappingJackson2MessageConverter
Additional commits viewable in compare view

Updates org.springframework:spring-test from 6.2.9 to 7.0.8

Release notes

Sourced from org.springframework:spring-test's releases.

v7.0.8

⚠️ Security Fixes

This maintenance release fixes a high number of CVEs. You can learn more about this in the "Spring and Security In The Times Of AI" blog post. Here is the full list of 16 CVEs:

CVE-2026-41838 "Spring Framework Predictable Session ID in WebSocket Module"

CVE-2026-41839 "Spring Framework Escalation via Session Fixation in WebFlux"

CVE-2026-41840 "Spring Framework Denial of Service via Multipart Requests in WebFlux"

CVE-2026-41841 "Spring Framework Information Disclosure via Static Resource Cache in Spring MVC and WebFlux"

CVE-2026-41842 "Spring Framework Denial of Service via Versioned Resources in Spring MVC and WebFlux"

CVE-2026-41843 "Spring Framework Path Traversal via Versioned Static Resources in Spring MVC and WebFlux"

CVE-2026-41844 "Spring Framework Open Redirect in Spring MVC and WebFlux"

CVE-2026-41845 "Spring Framework Cross-site Scripting via JavaScriptUtils"

CVE-2026-41846 "Spring Framework Cross-site Scripting via JSP Form Tags"

CVE-2026-41848 "Spring Framework Denial of Service via AntPathMatcher"

CVE-2026-41850 "Spring Framework Algorithmic Denial of Service via SpEL Expressions"

CVE-2026-41851 "Spring Framework Denial of Service via Unbounded Cache in SpEL"

CVE-2026-41852 "Spring Framework Arbitrary Method Invocation in SpEL Expressions"

CVE-2026-41853 "Spring Framework Multipart Request Smuggling in Spring MVC and WebFlux"

CVE-2026-41854 "Spring Framework Server-Side Request Forgery via UriComponentsBuilder"

CVE-2026-41855 "Spring Framework Unsafe Deserialization via Jackson JMS Converters"

⭐ New Features

Include zone ID in CronTrigger's equals/hashCode implementations #36871

Expose ClassLoader from DefaultDeserializer #36833

Use immutable map for SEPARATORS static field in DefaultPathContainer #36821

Track operations during SpEL expression evaluation #36801

Ensure getters have non-void return types in SpEL #36800

Avoid too many character access attempts in AntPathMatcher #36799

Refine default view name resolution #36793

Refine Jackson JMS converters #36791

Improve ABNF rule checks in RfcUriParser #36787

Restrict SpringVersion.getVersion() to "major.minor.patch" format #36785

Runtime compatibility with JPA 4.0 M4 and corresponding Hibernate 8.0 snapshots #36784

Allow specifying the charset to use in ExchangeFilterFunctions#basicAuthentication #36777

Use CollectionUtils to initialize HashMap in DefaultUriBuilderFactory #36763

Improve error messages in SpEL #36756

Improve pattern caching in SpEL #36755

Avoid ResolvableType#forType contention for implicit cache cleanup #36745

Switch to JdkIdGenerator for WebSocket Sessions #36740

Detect custom deserialized NullValue instances in AbstractValueAdaptingCache #36727

LiteWebJarsResourceResolver does not resolve directories #36726

Warn against unsafe static resource locations in MVC and WebFlux #36692

Consistent compatibility with Woodstox as an alternative to Xerces #36682

Improve principal checks for SockJS session #36681

Set host header consistently in STOMP relay CONNECT frames #36673

Support Micrometer context propagation in Kotlin Flow #36667

Reliable detection of broadcast messages in UserDestinationMessageHandler #36662

... (truncated)

Commits

9e8cea3 Release v7.0.8
2c18c33 Track operations during SpEL expression evaluation
83667f8 Ensure getters have non-void return types in SpEL
7a8917b Improve additional error messages in SpEL
7baa865 Further improve pattern caching in SpEL
12b44f2 Avoid too many character access attempts in AntPathMatcher
e8f1024 Ensure consistent JSP tag attribute processing
a1826b7 Refine JavaScriptUtils#javaScriptEscape
7add524 Prevent special prefixes in default view name resolution
9bec52b Add trusted packages to MappingJackson2MessageConverter
Additional commits viewable in compare view

Updates org.slf4j:slf4j-api from 2.0.17 to 2.0.18

Updates com.fasterxml.jackson.core:jackson-databind from 2.19.2 to 2.22.0

Commits

See full diff in compare view

Updates ch.qos.logback:logback-classic from 1.5.18 to 1.5.34

Release notes

Sourced from ch.qos.logback:logback-classic's releases.

Logback 1.5.34

2026-06-01 Release of logback version 1.5.34

• In case certain StackTraceElement values returned by the Throwable.getStackTrace method are null, StackTraceElementProxy substitutes a dummy instance instead of throwing an IllegalArgumentException. This resolves [issues #1040](qos-ch/logback#1040), reported by Naotsugu Kobayashi.

• HardenedObjectInputStream will now throw an InvalidClassException during deserialization attempts of Proxy classes. This change addresses potential deserialization whitelist bypass vulnerability reported by York Shen and registered as CVE-2026-10532.

• A bitwise identical binary of this version can be reproduced by building from source code at commit e62272ac152469aec1ede056c3c7d0d7314e7bfe associated with the tag v_1.5.34. This release was built using Java "21" 2023-10-17 LTS build 21.0.1.+12-LTS-29 under Linux Debian 11.6.

Logback 1.5.33

2026-05-27 Release of logback version 1.5.33

• PropertiesConfiguratorModelHandler now registers properties file URLs to the ConfigurationWatchList when scan is enabled (via local scan="true" attribute or top-level configuration scan), ensuring changes are detected and reconfiguration occurs. This problem was reported in issues/1034.

• When processing <conversionRule> elements and both class and converterClass attributes are specified, silently use the class attribute without issuing a warning. However, if the attribute values differ, a warning will be issued. This change was requested in issues/1031.

• HardenedModelInputStream will no longer accept to deserialize all classes located under the "java.lang" and "java.util" packages but a limited number of explicitly authorized classes in those packages. This potential deserialization whitelist bypass vulnerability was reported by York Shen and registered as CVE-2026-9828.

• SSL parameters for SSLSocketAppender now enable hostname verification by default. Moreover, the default protocol is now "TLSv1.2". This potential vulnerability was reported by York Shen.

• When printing the status message field, ViewStatusMessagesServletBase now escapes special characters such as "&" as character entities. This potential vulnerability was reported by York Shen.

• A bit-wise identical binary of this version can be reproduced by building from source code at commit 124e8b49b55ac34d08743a0646bd463410192647 associated with the tag v_1.5.33. Release built using Java "21" 2023-10-17 LTS build 21.0.1.+12-LTS-29 under Linux Debian 11.6.

Logback 1.5.32

2026-02-16 Release of logback version 1.5.32

• In DefaultProcessor, fixed incorrect check for dependencies contained within a parent model. Previous only the direct children were scanned. This fixes logback-access/issues/34.

• A bit-wise identical binary of this version can be reproduced by building from source code at commit e807335a67535b4eacce94e942c0bcb649665d93 associated with the tag v_1.5.32. Release built using Java "21" 2023-10-17 LTS build 21.0.1.+12-LTS-29 under Linux Debian 11.6.

Logback 1.5.31

2026-02-14 Release of logback version 1.5.31

• Fixed missing META-INF/services directory in logback-classic.jar. This issue rendered logback-classic version 1.5.30 unusable with SLF4J.

• A bit-wise identical binary of this version can be reproduced by building from source code at commit 168e42f9f9a18a3ffdf31eb2bfe80a71e33ecd8b associated with the tag v_1.5.31. Release built using Java "21" 2023-10-17 LTS build 21.0.1.+12-LTS-29 under Linux Debian 11.6.

Logback 1.5.30

2026-02-14 Release of logback version 1.5.30

• In this version, logback-classic.jar was missing the META-INF/services directory, making it unusable with SLF4J. Version 1.5.31 (released later on the same day) fixes this issue.

• Fix scanning issue when an included file becomes available at a later time. This problem was reported in issues/1021 by Sergey Nazarov.

• Standardized code for version checking across modules.

• A bit-wise identical binary of this version can be reproduced by building from source code at commit 44164f10ca3fb44ce0e68519f13564b87e3aca61 associated with the tag v_1.5.30. Release built using Java "21" 2023-10-17 LTS build 21.0.1.+12-LTS-29 under Linux Debian 11.6.

Logback 1.5.29

... (truncated)

Commits

e62272a prepare release 1.5.34
1e9e926 add resolveProxyClassRejectsDynamicProxies unit test
2de5cbe added StackTraceElementProxyTest, minor edits to AGENTS.md
0e9b927 in case StackTraceElement is null use a substitute, fixing issues/1040
f7a0654 prevent resolveProxyClass bypass
249b81f docs are no longer distributed
1c3b26a start work on 1.5.34-SNAPSHOT
124e8b4 prepare release 1.5.33
d8fd6f2 escapeTags in message field when printing status messages
95edbeb hostnameVerification default to true in SSLParametersConfiguration, SSL.DEFAU...
Additional commits viewable in compare view

Updates org.junit.jupiter:junit-jupiter-api from 5.13.4 to 6.1.0

Release notes

Sourced from org.junit.jupiter:junit-jupiter-api's releases.

JUnit 6.1.0 = Platform 6.1.0 + Jupiter 6.1.0 + Vintage 6.1.0

See Release Notes.

New Contributors

@JarvisCraft made their first contribution in junit-team/junit-framework#5633

@Maran23 made their first contribution in junit-team/junit-framework#5644

Full Changelog: junit-team/junit-framework@r6.0.3...r6.1.0

JUnit 6.1.0-RC1 = Platform 6.1.0-RC1 + Jupiter 6.1.0-RC1 + Vintage 6.1.0-RC1

See Release Notes.

New Contributors

@mariokhoury4 made their first contribution in junit-team/junit-framework#4574

@Ogu1208 made their first contribution in junit-team/junit-framework#5145

@HyungGeun94 made their first contribution in junit-team/junit-framework#5271

@yalishevant made their first contribution in junit-team/junit-framework#5316

@JINU-CHANG made their first contribution in junit-team/junit-framework#5290

@jaschdoc made their first contribution in junit-team/junit-framework#5427

@kawshikbuet17 made their first contribution in junit-team/junit-framework#5561

@msridhar made their first contribution in junit-team/junit-framework#5602

Full Changelog: junit-team/junit-framework@r6.1.0-M1...r6.1.0-RC1

JUnit 6.1.0-M1 = Platform 6.1.0-M1 + Jupiter 6.1.0-M1 + Vintage 6.1.0-M1

See Release Notes.

New Contributors

@vy made their first contribution in junit-team/junit-framework#5041

@Pankraz76 made their first contribution in junit-team/junit-framework#5006

@arukiidou made their first contribution in junit-team/junit-framework#5066

@laeubi made their first contribution in junit-team/junit-framework#5092

@jihun4452 made their first contribution in junit-team/junit-framework#5088

@TWiStErRob made their first contribution in junit-team/junit-framework#5133

Full Changelog: junit-team/junit-framework@r6.0.0...r6.1.0-M1

JUnit 6.0.3 = Platform 6.0.3 + Jupiter 6.0.3 + Vintage 6.0.3

See Release Notes.

Full Changelog: junit-team/junit-framework@r6.0.2...r6.0.3

JUnit 6.0.2 = Platform 6.0.2 + Jupiter 6.0.2 + Vintage 6.0.2

See Release Notes.

... (truncated)

Commits

0dc3af1 Release 6.1.0
1d13002 Prepare 6.1.0 release notes
072b217 Update plugin spotless to v8.5.0 (#5668)
3a53480 Update Gradle to v9.5.1 (#5666)
0e18a20 Update zizmorcore/zizmor-action action to v0.5.4 (#5669)
0a2634f Update github/codeql-action action to v4.35.5 (#5671)
4dbd556 Restructure workflows to have single "status" job (#5670)
f2194ce Increase timeout to reduce flakiness
5c8fdd2 Update dependency org.apache.groovy:groovy to v5.0.6 (#5659)
43c6982 Update dependency org.slf4j:slf4j-jdk14 to v2.0.18 (#5667)
Additional commits viewable in compare view

Updates org.junit.jupiter:junit-jupiter-params from 5.13.4 to 6.1.0

Release notes

Sourced from org.junit.jupiter:junit-jupiter-params's releases.

JUnit 6.1.0 = Platform 6.1.0 + Jupiter 6.1.0 + Vintage 6.1.0

See Release Notes.

New Contributors

@JarvisCraft made their first contribution in junit-team/junit-framework#5633

@Maran23 made their first contribution in junit-team/junit-framework#5644

Full Changelog: junit-team/junit-framework@r6.0.3...r6.1.0

JUnit 6.1.0-RC1 = Platform 6.1.0-RC1 + Jupiter 6.1.0-RC1 + Vintage 6.1.0-RC1

See Release Notes.

New Contributors

@mariokhoury4 made their first contribution in junit-team/junit-framework#4574

@Ogu1208 made their first contribution in junit-team/junit-framework#5145

@HyungGeun94 made their first contribution in junit-team/junit-framework#5271

@yalishevant made their first contribution in junit-team/junit-framework#5316

@JINU-CHANG made their first contribution in junit-team/junit-framework#5290

@jaschdoc made their first contribution in junit-team/junit-framework#5427

@kawshikbuet17 made their first contribution in junit-team/junit-framework#5561

@msridhar made their first contribution in junit-team/junit-framework#5602

Full Changelog: junit-team/junit-framework@r6.1.0-M1...r6.1.0-RC1

JUnit 6.1.0-M1 = Platform 6.1.0-M1 + Jupiter 6.1.0-M1 + Vintage 6.1.0-M1

See Release Notes.

New Contributors

@vy made their first contribution in junit-team/junit-framework#5041

@Pankraz76 made their first contribution in junit-team/junit-framework#5006

@arukiidou made their first contribution in junit-team/junit-framework#5066

@laeubi made their first contribution in junit-team/junit-framework#5092

@jihun4452 made their first contribution in junit-team/junit-framework#5088

@TWiStErRob made their first contribution in junit-team/junit-framework#5133

Full Changelog: junit-team/junit-framework@r6.0.0...r6.1.0-M1

JUnit 6.0.3 = Platform 6.0.3 + Jupiter 6.0.3 + Vintage 6.0.3

See Release Notes.

Full Changelog: junit-team/junit-framework@r6.0.2...r6.0.3

JUnit 6.0.2 = Platform 6.0.2 + Jupiter 6.0.2 + Vintage 6.0.2

See Release Notes.

... (truncated)

Commits

0dc3af1 Release 6.1.0
1d13002 Prepare 6.1.0 release notes
072b217 Update plugin spotless to v8.5.0 (#5668)
3a53480 Update Gradle to v9.5.1 (#5666)
0e18a20 Update zizmorcore/zizmor-action action to v0.5.4 (#5669)
0a2634f Update github/codeql-action action to v4.35.5 (#5671)
4dbd556 Restructure workflows to have single "status" job (#5670)
f2194ce Increase timeout to reduce flakiness
5c8fdd2 Update dependency org.apache.groovy:groovy to v5.0.6 (#5659)
43c6982 Update dependency org.slf4j:slf4j-jdk14 to v2.0.18 (#5667)
Additional commits viewable in compare view

Updates org.junit.jupiter:junit-jupiter-engine from 5.13.4 to 6.1.0

Release notes

Sourced from org.junit.jupiter:junit-jupiter-engine's releases.

JUnit 6.1.0 = Platform 6.1.0 + Jupiter 6.1.0 + Vintage 6.1.0

See Release Notes.

New Contributors

@JarvisCraft made their first contribution in junit-team/junit-framework#5633

@Maran23 made their first contribution in junit-team/junit-framework#5644

Full Changelog: junit-team/junit-framework@r6.0.3...r6.1.0

JUnit 6.1.0-RC1 = Platform 6.1.0-RC1 + Jupiter 6.1.0-RC1 + Vintage 6.1.0-RC1

See Release Notes.

New Contributors

…pdates Bumps the dependencies group with 44 updates in the / directory: | Package | From | To | | --- | --- | --- | | org.apache.commons:commons-lang3 | `3.18.0` | `3.20.0` | | [org.apache.commons:commons-text](https://github.com/apache/commons-text) | `1.14.0` | `1.15.0` | | [org.springframework:spring-webmvc](https://github.com/spring-projects/spring-framework) | `6.2.9` | `7.0.8` | | [org.springframework:spring-test](https://github.com/spring-projects/spring-framework) | `6.2.9` | `7.0.8` | | org.slf4j:slf4j-api | `2.0.17` | `2.0.18` | | [com.fasterxml.jackson.core:jackson-databind](https://github.com/FasterXML/jackson) | `2.19.2` | `2.22.0` | | [ch.qos.logback:logback-classic](https://github.com/qos-ch/logback) | `1.5.18` | `1.5.34` | | [org.junit.jupiter:junit-jupiter-api](https://github.com/junit-team/junit-framework) | `5.13.4` | `6.1.0` | | [org.junit.jupiter:junit-jupiter-params](https://github.com/junit-team/junit-framework) | `5.13.4` | `6.1.0` | | [org.junit.jupiter:junit-jupiter-engine](https://github.com/junit-team/junit-framework) | `5.13.4` | `6.1.0` | | [org.yaml:snakeyaml](https://bitbucket.org/snakeyaml/snakeyaml) | `2.4` | `2.6` | | [org.mockito:mockito-core](https://github.com/mockito/mockito) | `5.18.0` | `5.23.0` | | [org.sonatype.central:central-publishing-maven-plugin](https://github.com/sonatype/central-publishing-maven-plugin) | `0.10.0` | `0.11.0` | | [org.apache.maven.plugins:maven-compiler-plugin](https://github.com/apache/maven-compiler-plugin) | `3.14.0` | `3.15.0` | | [org.apache.maven.plugins:maven-jar-plugin](https://github.com/apache/maven-jar-plugin) | `3.4.2` | `3.5.0` | | [org.apache.maven.plugins:maven-javadoc-plugin](https://github.com/apache/maven-javadoc-plugin) | `3.11.2` | `3.12.0` | | [org.apache.maven.plugins:maven-surefire-plugin](https://github.com/apache/maven-surefire) | `3.5.3` | `3.5.6` | | [com.diffplug.spotless:spotless-maven-plugin](https://github.com/diffplug/spotless) | `2.46.1` | `3.7.0` | | [org.codehaus.mojo:exec-maven-plugin](https://github.com/mojohaus/exec-maven-plugin) | `3.5.1` | `3.6.3` | | [org.apache.maven.plugins:maven-antrun-plugin](https://github.com/apache/maven-antrun-plugin) | `3.1.0` | `3.2.0` | | [com.rudikershaw.gitbuildhook:git-build-hook-maven-plugin](https://github.com/rudikershaw/git-build-hook) | `3.5.0` | `3.6.0` | | [org.apache.maven.plugins:maven-source-plugin](https://github.com/apache/maven-source-plugin) | `3.3.1` | `3.4.0` | | [org.apache.maven.plugins:maven-gpg-plugin](https://github.com/apache/maven-gpg-plugin) | `3.2.7` | `3.2.8` | | [org.moditect:moditect-maven-plugin](https://github.com/moditect/moditect) | `1.2.2.Final` | `1.3.0.Final` | | [org.antlr:antlr4-runtime](https://github.com/antlr/antlr4) | `4.13.1` | `4.13.2` | | [org.antlr:antlr4-maven-plugin](https://github.com/antlr/antlr4) | `4.13.1` | `4.13.2` | | [org.openjdk.nashorn:nashorn-core](https://github.com/openjdk/nashorn) | `15.6` | `15.7` | | [org.jacoco:org.jacoco.agent](https://github.com/jacoco/jacoco) | `0.8.12` | `0.8.15` | | [org.jacoco:jacoco-maven-plugin](https://github.com/jacoco/jacoco) | `0.8.12` | `0.8.15` | | [org.junit.platform:junit-platform-suite](https://github.com/junit-team/junit-framework) | `1.13.4` | `6.1.0` | | commons-io:commons-io | `2.18.0` | `2.22.0` | | [org.apache.maven.plugins:maven-shade-plugin](https://github.com/apache/maven-shade-plugin) | `3.6.0` | `3.6.2` | | [org.codehaus.mojo:build-helper-maven-plugin](https://github.com/mojohaus/build-helper-maven-plugin) | `3.6.0` | `3.6.1` | | org.apache.felix:maven-bundle-plugin | `6.0.0` | `6.0.2` | | [joda-time:joda-time](https://github.com/JodaOrg/joda-time) | `2.14.0` | `2.14.2` | | [com.google.guava:guava](https://github.com/google/guava) | `33.4.6-jre` | `33.6.0-jre` | | [com.github.ben-manes.caffeine:caffeine](https://github.com/ben-manes/caffeine) | `3.2.0` | `3.2.4` | | [org.apache.maven:maven-plugin-api](https://github.com/apache/maven) | `3.9.9` | `3.9.16` | | org.apache.maven:maven-core | `3.9.9` | `3.9.16` | | [org.apache.maven.plugin-tools:maven-plugin-annotations](https://github.com/apache/maven-plugin-tools) | `3.15.1` | `3.15.2` | | [org.codehaus.plexus:plexus-utils](https://github.com/codehaus-plexus/plexus-utils) | `4.0.2` | `4.0.3` | | [org.codehaus.plexus:plexus-xml](https://github.com/codehaus-plexus/plexus-xml) | `4.1.0` | `4.1.1` | | [org.apache.maven.plugins:maven-plugin-plugin](https://github.com/apache/maven-plugin-tools) | `3.15.1` | `3.15.2` | | [org.apache.maven.plugins:maven-war-plugin](https://github.com/apache/maven-war-plugin) | `3.4.0` | `3.5.1` | Updates `org.apache.commons:commons-lang3` from 3.18.0 to 3.20.0 Updates `org.apache.commons:commons-text` from 1.14.0 to 1.15.0 - [Changelog](https://github.com/apache/commons-text/blob/master/RELEASE-NOTES.txt) - [Commits](apache/commons-text@rel/commons-text-1.14.0...rel/commons-text-1.15.0) Updates `org.springframework:spring-webmvc` from 6.2.9 to 7.0.8 - [Release notes](https://github.com/spring-projects/spring-framework/releases) - [Commits](spring-projects/spring-framework@v6.2.9...v7.0.8) Updates `org.springframework:spring-test` from 6.2.9 to 7.0.8 - [Release notes](https://github.com/spring-projects/spring-framework/releases) - [Commits](spring-projects/spring-framework@v6.2.9...v7.0.8) Updates `org.springframework:spring-test` from 6.2.9 to 7.0.8 - [Release notes](https://github.com/spring-projects/spring-framework/releases) - [Commits](spring-projects/spring-framework@v6.2.9...v7.0.8) Updates `org.slf4j:slf4j-api` from 2.0.17 to 2.0.18 Updates `com.fasterxml.jackson.core:jackson-databind` from 2.19.2 to 2.22.0 - [Commits](https://github.com/FasterXML/jackson/commits) Updates `ch.qos.logback:logback-classic` from 1.5.18 to 1.5.34 - [Release notes](https://github.com/qos-ch/logback/releases) - [Commits](qos-ch/logback@v_1.5.18...v_1.5.34) Updates `org.junit.jupiter:junit-jupiter-api` from 5.13.4 to 6.1.0 - [Release notes](https://github.com/junit-team/junit-framework/releases) - [Commits](junit-team/junit-framework@r5.13.4...r6.1.0) Updates `org.junit.jupiter:junit-jupiter-params` from 5.13.4 to 6.1.0 - [Release notes](https://github.com/junit-team/junit-framework/releases) - [Commits](junit-team/junit-framework@r5.13.4...r6.1.0) Updates `org.junit.jupiter:junit-jupiter-engine` from 5.13.4 to 6.1.0 - [Release notes](https://github.com/junit-team/junit-framework/releases) - [Commits](junit-team/junit-framework@r5.13.4...r6.1.0) Updates `org.junit.jupiter:junit-jupiter-params` from 5.13.4 to 6.1.0 - [Release notes](https://github.com/junit-team/junit-framework/releases) - [Commits](junit-team/junit-framework@r5.13.4...r6.1.0) Updates `org.junit.jupiter:junit-jupiter-engine` from 5.13.4 to 6.1.0 - [Release notes](https://github.com/junit-team/junit-framework/releases) - [Commits](junit-team/junit-framework@r5.13.4...r6.1.0) Updates `org.yaml:snakeyaml` from 2.4 to 2.6 - [Commits](https://bitbucket.org/snakeyaml/snakeyaml/branches/compare/snakeyaml-2.6..snakeyaml-2.4) Updates `org.mockito:mockito-core` from 5.18.0 to 5.23.0 - [Release notes](https://github.com/mockito/mockito/releases) - [Commits](mockito/mockito@v5.18.0...v5.23.0) Updates `org.sonatype.central:central-publishing-maven-plugin` from 0.10.0 to 0.11.0 - [Commits](https://github.com/sonatype/central-publishing-maven-plugin/commits) Updates `org.apache.maven.plugins:maven-compiler-plugin` from 3.14.0 to 3.15.0 - [Release notes](https://github.com/apache/maven-compiler-plugin/releases) - [Commits](apache/maven-compiler-plugin@maven-compiler-plugin-3.14.0...maven-compiler-plugin-3.15.0) Updates `org.apache.maven.plugins:maven-jar-plugin` from 3.4.2 to 3.5.0 - [Release notes](https://github.com/apache/maven-jar-plugin/releases) - [Commits](apache/maven-jar-plugin@maven-jar-plugin-3.4.2...maven-jar-plugin-3.5.0) Updates `org.apache.maven.plugins:maven-javadoc-plugin` from 3.11.2 to 3.12.0 - [Release notes](https://github.com/apache/maven-javadoc-plugin/releases) - [Commits](apache/maven-javadoc-plugin@maven-javadoc-plugin-3.11.2...maven-javadoc-plugin-3.12.0) Updates `org.apache.maven.plugins:maven-surefire-plugin` from 3.5.3 to 3.5.6 - [Release notes](https://github.com/apache/maven-surefire/releases) - [Commits](apache/maven-surefire@surefire-3.5.3...surefire-3.5.6) Updates `com.diffplug.spotless:spotless-maven-plugin` from 2.46.1 to 3.7.0 - [Release notes](https://github.com/diffplug/spotless/releases) - [Changelog](https://github.com/diffplug/spotless/blob/main/CHANGES.md) - [Commits](diffplug/spotless@maven/2.46.1...maven/3.7.0) Updates `org.codehaus.mojo:exec-maven-plugin` from 3.5.1 to 3.6.3 - [Release notes](https://github.com/mojohaus/exec-maven-plugin/releases) - [Commits](mojohaus/exec-maven-plugin@3.5.1...3.6.3) Updates `org.apache.maven.plugins:maven-antrun-plugin` from 3.1.0 to 3.2.0 - [Release notes](https://github.com/apache/maven-antrun-plugin/releases) - [Commits](apache/maven-antrun-plugin@maven-antrun-plugin-3.1.0...maven-antrun-plugin-3.2.0) Updates `com.rudikershaw.gitbuildhook:git-build-hook-maven-plugin` from 3.5.0 to 3.6.0 - [Release notes](https://github.com/rudikershaw/git-build-hook/releases) - [Commits](rudikershaw/git-build-hook@3.5.0...3.6.0) Updates `org.apache.maven.plugins:maven-source-plugin` from 3.3.1 to 3.4.0 - [Release notes](https://github.com/apache/maven-source-plugin/releases) - [Commits](apache/maven-source-plugin@maven-source-plugin-3.3.1...maven-source-plugin-3.4.0) Updates `org.apache.maven.plugins:maven-gpg-plugin` from 3.2.7 to 3.2.8 - [Release notes](https://github.com/apache/maven-gpg-plugin/releases) - [Commits](apache/maven-gpg-plugin@maven-gpg-plugin-3.2.7...maven-gpg-plugin-3.2.8) Updates `org.moditect:moditect-maven-plugin` from 1.2.2.Final to 1.3.0.Final - [Release notes](https://github.com/moditect/moditect/releases) - [Commits](moditect/moditect@1.2.2.Final...1.3.0.Final) Updates `org.antlr:antlr4-runtime` from 4.13.1 to 4.13.2 - [Release notes](https://github.com/antlr/antlr4/releases) - [Changelog](https://github.com/antlr/antlr4/blob/dev/CHANGES.txt) - [Commits](antlr/antlr4@4.13.1...4.13.2) Updates `org.antlr:antlr4-maven-plugin` from 4.13.1 to 4.13.2 - [Release notes](https://github.com/antlr/antlr4/releases) - [Changelog](https://github.com/antlr/antlr4/blob/dev/CHANGES.txt) - [Commits](antlr/antlr4@4.13.1...4.13.2) Updates `org.openjdk.nashorn:nashorn-core` from 15.6 to 15.7 - [Changelog](https://github.com/openjdk/nashorn/blob/main/CHANGELOG.md) - [Commits](openjdk/nashorn@release-15.6...release-15.7) Updates `org.jacoco:org.jacoco.agent` from 0.8.12 to 0.8.15 - [Release notes](https://github.com/jacoco/jacoco/releases) - [Commits](jacoco/jacoco@v0.8.12...v0.8.15) Updates `org.jacoco:jacoco-maven-plugin` from 0.8.12 to 0.8.15 - [Release notes](https://github.com/jacoco/jacoco/releases) - [Commits](jacoco/jacoco@v0.8.12...v0.8.15) Updates `org.junit.platform:junit-platform-suite` from 1.13.4 to 6.1.0 - [Release notes](https://github.com/junit-team/junit-framework/releases) - [Commits](https://github.com/junit-team/junit-framework/commits/r6.1.0) Updates `commons-io:commons-io` from 2.18.0 to 2.22.0 Updates `org.apache.maven.plugins:maven-shade-plugin` from 3.6.0 to 3.6.2 - [Release notes](https://github.com/apache/maven-shade-plugin/releases) - [Commits](apache/maven-shade-plugin@maven-shade-plugin-3.6.0...maven-shade-plugin-3.6.2) Updates `org.antlr:antlr4-maven-plugin` from 4.13.1 to 4.13.2 - [Release notes](https://github.com/antlr/antlr4/releases) - [Changelog](https://github.com/antlr/antlr4/blob/dev/CHANGES.txt) - [Commits](antlr/antlr4@4.13.1...4.13.2) Updates `org.codehaus.mojo:build-helper-maven-plugin` from 3.6.0 to 3.6.1 - [Release notes](https://github.com/mojohaus/build-helper-maven-plugin/releases) - [Commits](mojohaus/build-helper-maven-plugin@3.6.0...3.6.1) Updates `org.apache.felix:maven-bundle-plugin` from 6.0.0 to 6.0.2 Updates `org.jacoco:jacoco-maven-plugin` from 0.8.12 to 0.8.15 - [Release notes](https://github.com/jacoco/jacoco/releases) - [Commits](jacoco/jacoco@v0.8.12...v0.8.15) Updates `joda-time:joda-time` from 2.14.0 to 2.14.2 - [Release notes](https://github.com/JodaOrg/joda-time/releases) - [Changelog](https://github.com/JodaOrg/joda-time/blob/main/RELEASE-NOTES.txt) - [Commits](JodaOrg/joda-time@v2.14.0...v2.14.2) Updates `com.google.guava:guava` from 33.4.6-jre to 33.6.0-jre - [Release notes](https://github.com/google/guava/releases) - [Commits](https://github.com/google/guava/commits) Updates `com.github.ben-manes.caffeine:caffeine` from 3.2.0 to 3.2.4 - [Release notes](https://github.com/ben-manes/caffeine/releases) - [Commits](ben-manes/caffeine@v3.2.0...v3.2.4) Updates `org.apache.maven:maven-plugin-api` from 3.9.9 to 3.9.16 - [Release notes](https://github.com/apache/maven/releases) - [Commits](apache/maven@maven-3.9.9...maven-3.9.16) Updates `org.apache.maven:maven-core` from 3.9.9 to 3.9.16 Updates `org.apache.maven.plugin-tools:maven-plugin-annotations` from 3.15.1 to 3.15.2 - [Release notes](https://github.com/apache/maven-plugin-tools/releases) - [Commits](apache/maven-plugin-tools@maven-plugin-tools-3.15.1...maven-plugin-tools-3.15.2) Updates `org.codehaus.plexus:plexus-utils` from 4.0.2 to 4.0.3 - [Release notes](https://github.com/codehaus-plexus/plexus-utils/releases) - [Commits](codehaus-plexus/plexus-utils@plexus-utils-4.0.2...plexus-utils-4.0.3) Updates `org.codehaus.plexus:plexus-xml` from 4.1.0 to 4.1.1 - [Release notes](https://github.com/codehaus-plexus/plexus-xml/releases) - [Commits](codehaus-plexus/plexus-xml@plexus-xml-4.1.0...plexus-xml-4.1.1) Updates `org.apache.maven.plugins:maven-plugin-plugin` from 3.15.1 to 3.15.2 - [Release notes](https://github.com/apache/maven-plugin-tools/releases) - [Commits](apache/maven-plugin-tools@maven-plugin-tools-3.15.1...maven-plugin-tools-3.15.2) Updates `org.apache.maven.plugins:maven-war-plugin` from 3.4.0 to 3.5.1 - [Release notes](https://github.com/apache/maven-war-plugin/releases) - [Commits](apache/maven-war-plugin@maven-war-plugin-3.4.0...maven-war-plugin-3.5.1) --- updated-dependencies: - dependency-name: org.apache.commons:commons-lang3 dependency-version: 3.20.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.apache.commons:commons-text dependency-version: 1.15.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.springframework:spring-webmvc dependency-version: 7.0.8 dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies - dependency-name: org.springframework:spring-test dependency-version: 7.0.8 dependency-type: direct:development update-type: version-update:semver-major dependency-group: dependencies - dependency-name: org.springframework:spring-test dependency-version: 7.0.8 dependency-type: direct:development update-type: version-update:semver-major dependency-group: dependencies - dependency-name: org.slf4j:slf4j-api dependency-version: 2.0.18 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: com.fasterxml.jackson.core:jackson-databind dependency-version: 2.22.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: ch.qos.logback:logback-classic dependency-version: 1.5.34 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.junit.jupiter:junit-jupiter-api dependency-version: 6.1.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies - dependency-name: org.junit.jupiter:junit-jupiter-params dependency-version: 6.1.0 dependency-type: direct:development update-type: version-update:semver-major dependency-group: dependencies - dependency-name: org.junit.jupiter:junit-jupiter-engine dependency-version: 6.1.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies - dependency-name: org.junit.jupiter:junit-jupiter-params dependency-version: 6.1.0 dependency-type: direct:development update-type: version-update:semver-major dependency-group: dependencies - dependency-name: org.junit.jupiter:junit-jupiter-engine dependency-version: 6.1.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies - dependency-name: org.yaml:snakeyaml dependency-version: '2.6' dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.mockito:mockito-core dependency-version: 5.23.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.sonatype.central:central-publishing-maven-plugin dependency-version: 0.11.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.apache.maven.plugins:maven-compiler-plugin dependency-version: 3.15.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.apache.maven.plugins:maven-jar-plugin dependency-version: 3.5.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.apache.maven.plugins:maven-javadoc-plugin dependency-version: 3.12.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.apache.maven.plugins:maven-surefire-plugin dependency-version: 3.5.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: com.diffplug.spotless:spotless-maven-plugin dependency-version: 3.7.0 dependency-type: direct:development update-type: version-update:semver-major dependency-group: dependencies - dependency-name: org.codehaus.mojo:exec-maven-plugin dependency-version: 3.6.3 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.apache.maven.plugins:maven-antrun-plugin dependency-version: 3.2.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: com.rudikershaw.gitbuildhook:git-build-hook-maven-plugin dependency-version: 3.6.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.apache.maven.plugins:maven-source-plugin dependency-version: 3.4.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.apache.maven.plugins:maven-gpg-plugin dependency-version: 3.2.8 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.moditect:moditect-maven-plugin dependency-version: 1.3.0.Final dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.antlr:antlr4-runtime dependency-version: 4.13.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.antlr:antlr4-maven-plugin dependency-version: 4.13.2 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.openjdk.nashorn:nashorn-core dependency-version: '15.7' dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.jacoco:org.jacoco.agent dependency-version: 0.8.15 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.jacoco:jacoco-maven-plugin dependency-version: 0.8.15 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.junit.platform:junit-platform-suite dependency-version: 6.1.0 dependency-type: direct:development update-type: version-update:semver-major dependency-group: dependencies - dependency-name: commons-io:commons-io dependency-version: 2.22.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.apache.maven.plugins:maven-shade-plugin dependency-version: 3.6.2 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.antlr:antlr4-maven-plugin dependency-version: 4.13.2 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.codehaus.mojo:build-helper-maven-plugin dependency-version: 3.6.1 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.apache.felix:maven-bundle-plugin dependency-version: 6.0.2 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.jacoco:jacoco-maven-plugin dependency-version: 0.8.15 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: joda-time:joda-time dependency-version: 2.14.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: com.google.guava:guava dependency-version: 33.6.0-jre dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: com.github.ben-manes.caffeine:caffeine dependency-version: 3.2.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.apache.maven:maven-plugin-api dependency-version: 3.9.16 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.apache.maven:maven-core dependency-version: 3.9.16 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.apache.maven.plugin-tools:maven-plugin-annotations dependency-version: 3.15.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.codehaus.plexus:plexus-utils dependency-version: 4.0.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.codehaus.plexus:plexus-xml dependency-version: 4.1.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.apache.maven.plugins:maven-plugin-plugin dependency-version: 3.15.2 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.apache.maven.plugins:maven-war-plugin dependency-version: 3.5.1 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Jun 17, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

build(deps): bump the dependencies group across 1 directory with 44 updates#10

build(deps): bump the dependencies group across 1 directory with 44 updates#10
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/maven/dependencies-dd5b8e3e4d

dependabot Bot commented on behalf of github Jun 17, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github Jun 17, 2026

Apache Commons Text 1.15.0 Release Notes

New features

Fixed Bugs

Changes

v7.0.8

⚠️ Security Fixes

⭐ New Features

v7.0.8

⚠️ Security Fixes

⭐ New Features

v7.0.8

⚠️ Security Fixes

⭐ New Features

Logback 1.5.34

Logback 1.5.33

Logback 1.5.32

Logback 1.5.31

Logback 1.5.30

Logback 1.5.29

New Contributors

New Contributors

New Contributors

New Contributors

New Contributors

New Contributors

New Contributors

New Contributors

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants