[11.0.x] Bump the dev-dependencies group across 1 directory with 37 updates

[dependabot[bot]]

Bumps the dev-dependencies group with 37 updates in the / directory:

Package	From	To
com.fasterxml.jackson:jackson-bom	2.17.2	2.18.0
org.junit:junit-bom	5.11.0	5.11.2
org.ow2.asm:asm-bom	9.7	9.7.1
org.ow2.asm:asm-commons	9.7	9.7.1
org.ow2.asm:asm	9.7	9.7.1
org.ow2.asm:asm-analysis	9.7	9.7.1
org.ow2.asm:asm-tree	9.7	9.7.1
org.ow2.asm:asm-util	9.7	9.7.1
org.testcontainers:testcontainers-bom	1.20.1	1.20.2
ch.qos.logback:logback-core	1.5.6	1.5.9
com.google.errorprone:error_prone_annotations	2.31.0	2.33.0
com.google.errorprone:error_prone_core	2.31.0	2.33.0
com.google.guava:guava	33.3.0-jre	33.3.1-jre
commons-io:commons-io	2.16.1	2.17.0
io.grpc:grpc-core	1.66.0	1.68.0
jakarta.servlet.jsp:jakarta.servlet.jsp-api	3.0.0	3.1.0
net.java.dev.jna:jna-jpms	5.14.0	5.15.0
org.apache.kerby:kerb-simplekdc	2.0.3	2.1.0
org.apache.logging.log4j:log4j-api	2.24.0	2.24.1
org.codehaus.plexus:plexus-utils	4.0.1	4.0.2
org.jboss.logging:jboss-logging	3.6.0.Final	3.6.1.Final
org.jboss.threads:jboss-threads	3.6.1.Final	3.8.0.Final
org.wildfly.security:wildfly-elytron	2.5.2.Final	2.6.0.Final
com.puppycrawl.tools:checkstyle	10.18.1	10.18.2
com.mycila:license-maven-plugin	4.5	4.6
org.apache.maven.plugins:maven-failsafe-plugin	3.5.0	3.5.1
org.apache.maven.plugins:maven-surefire-plugin	3.5.0	3.5.1
org.apache.maven.surefire:surefire-junit47	3.5.0	3.5.1
org.apache.maven.plugins:maven-javadoc-plugin	3.10.0	3.10.1
org.mortbay.jetty:h2spec-maven-plugin	1.0.12	1.0.13
org.apache.maven.plugins:maven-gpg-plugin	3.2.5	3.2.7
com.github.spotbugs:spotbugs-maven-plugin	4.8.6.3	4.8.6.4
org.eclipse.cbi.maven.plugins:eclipse-jarsigner-plugin	1.5.0	1.5.2
com.google.cloud:google-cloud-datastore	2.21.2	2.22.0
com.hazelcast:hazelcast	5.3.7	5.5.0
org.eclipse.platform:org.eclipse.osgi	3.20.0	3.21.0
org.eclipse.tycho:tycho-p2-repository-plugin	4.0.8	4.0.9

Updates com.fasterxml.jackson:jackson-bom from 2.17.2 to 2.18.0

Commits

• 7236550 [maven-release-plugin] prepare release jackson-bom-2.18.0
• 58c2791 Prepare for 2.18.0 release
• 3775318 Merge pull request #73 from FasterXML/dependabot/github_actions/github-action...
• 540b7e7 Bump actions/setup-java from 4.2.1 to 4.2.2 in the github-actions group
• 6cc8c64 Back to snapshot deps
• 3c90e0e [maven-release-plugin] prepare for next development iteration
• 7b9cf20 [maven-release-plugin] prepare release jackson-bom-2.18.0-rc1
• f2d90ac Prepare for 2.18.0-rc1 release
• e910a1e Update deps to 2.18.0-rc1-SNAPSHOT
• b35d27c Merge branch '2.17' into 2.18
• Additional commits viewable in compare view

Updates org.junit:junit-bom from 5.11.0 to 5.11.2

Release notes

Sourced from org.junit:junit-bom's releases.

JUnit 5.11.2 = Platform 1.11.2 + Jupiter 5.11.2 + Vintage 5.11.2

See Release Notes.

Full Changelog: https://github.com/junit-team/junit5/compare/r5.11.1...r5.11.2

JUnit 5.11.1 = Platform 1.11.1 + Jupiter 5.11.1 + Vintage 5.11.1

See Release Notes.

Full Changelog: https://github.com/junit-team/junit5/compare/r5.11.0...r5.11.1

Commits

• 5b1a6d1 Release 5.11.2
• b7816b6 Finalize 5.11.2 release notes
• f8e22c7 Finalize 5.10.5 release notes
• 8e63938 Remove reference to 5.10.4 in 5.11.2 release notes
• 7e9d728 Document #4043 in 5.10.5 release notes
• c11f224 Create initial 5.10.5 release notes from template
• ab94140 Fix global read-write lock handling when not declared on top level
• 9658fac Add initial 5.11.2 release notes from template
• 5f52ced Fix link to milestone page
• 558f480 Back to snapshots for further development
• Additional commits viewable in compare view

Updates org.ow2.asm:asm-bom from 9.7 to 9.7.1

Updates org.ow2.asm:asm-commons from 9.7 to 9.7.1

Updates org.ow2.asm:asm from 9.7 to 9.7.1

Updates org.ow2.asm:asm-analysis from 9.7 to 9.7.1

Updates org.ow2.asm:asm-tree from 9.7 to 9.7.1

Updates org.ow2.asm:asm-util from 9.7 to 9.7.1

Updates org.testcontainers:testcontainers-bom from 1.20.1 to 1.20.2

Release notes

Sourced from org.testcontainers:testcontainers-bom's releases.

1.20.2

What's Changed

• Update ryuk version to 0.9.0 (#9169) @​eddumelendez
• Add on-demand execution on windows (#9138) @​eddumelendez
• Add workflow to test Docker Desktop for Windows (#9076) @​eddumelendez
• Check if docker is available (#9069) @​eddumelendez
• Check if docker-compose is available (#9060) @​eddumelendez
• Log docker daemon labels (#9054) @​eddumelendez
• Update testcontainers version to ${GITHUB_REF##*/} (#9052) @​github-actions
• Update docs version to ${GITHUB_REF##*/} (#9051) @​github-actions

🚀 Features & Enhancements

• Add MongoDB Atlas implementation (#9290) @​eddumelendez
• Fix register listeners in RedpandaContainer (#9247) @​eddumelendez
• Add Databend module (#9148) @​hantmac
• Support adding new listeners to Apache Kafka (#9142) @​eddumelendez
• Add Timeplus module (#8779) @​lizhou1111
• Add new CassandraContainer implementation (#8616) @​maximevw

🐛 Bug Fixes

• fix: no match for platform in manifest when containerd is enabled (#9200) @​monosoul
• Do not use network aliases in KAFKA_CONTROLLER_QUORUM_VOTERS (#9144) @​eddumelendez
• Fix missing null check for JDBC init script (#9118) @​mmorshedi
• Set MariaDB user when is not root (#9077) @​eddumelendez

📖 Documentation

• Fix gcloud docs (#9246) @​jiakuan
• Add ConfluentKafkaContainer (#9139) @​eddumelendez
• Improve GitLab docs (#8775) @​JapuDCret
• [docs] Update localstack version (#8515) @​sullis
• Improve docs for Elasticsearch 8 (#8870) @​philipp94831

🧹 Housekeeping

• Update MSSQL images to execute in ubuntu-22.04 (#9254) @​eddumelendez
• Update redis version to 5.1.3 (#9250) @​eddumelendez
• Use awaitility in Kafka module (#9248) @​eddumelendez
• Improve test logging in examples and smoke-test (#9145) @​eddumelendez

📦 Dependency updates

• Combined dependencies PR (#9286) @​eddumelendez
• Combined dependencies PR (#9285) @​eddumelendez
• Combined dependencies PR (#9284) @​eddumelendez
• Update redis version to 5.1.3 (#9250) @​eddumelendez

Commits

• 8b36391 [mongodb] Remove incubating note
• 8921a5a Add MongoDB Atlas implementation (#9290)
• 04206d9 Remove exclusions from milvus-sdk-java dependency
• 41b5786 Merge pull request #9286 from testcontainers/combined-pr-branch
• d754435 Merge remote-tracking branch 'origin/dependabot/gradle/core/redis.clients-jed...
• 38e73ad Merge remote-tracking branch 'origin/dependabot/gradle/modules/jdbc-test/org....
• 193e842 Merge remote-tracking branch 'origin/dependabot/gradle/modules/hivemq/org.apa...
• 61fe2a8 Merge remote-tracking branch 'origin/dependabot/gradle/modules/elasticsearch/...
• b175776 Merge pull request #9285 from testcontainers/combined-pr-branch
• 84cc17f Merge remote-tracking branch 'origin/dependabot/gradle/modules/cratedb/org.po...
• Additional commits viewable in compare view

Updates ch.qos.logback:logback-core from 1.5.6 to 1.5.9

Commits

• 49663a8 disable flaky test
• 2756640 prepare release 1.5.9
• 81d8376 test for properties change detection from URL/http
• a496a04 adding http scan capability, had to move tests
• 67c24f6 minor changes in RollingFileAppenderTest
• 42caff8 fix writing the header for RollingFileAppender (#862)
• 91961ad add comments to OutputStreamAppender
• 6d11eff deprecate Level.ALL and javadocs for Level.OFF
• 895d92d clean comments
• 5dfbb61 fix issues/861
• Additional commits viewable in compare view

Updates com.google.errorprone:error_prone_annotations from 2.31.0 to 2.33.0

Release notes

Sourced from com.google.errorprone:error_prone_annotations's releases.

Error Prone 2.33.0

Similar to release 2.32.0, the minimum supported JDK version to run Error Prone is JDK 17 (#3803). Using Error Prone to compile code that is deployed to earlier versions is still fully supported, but will require using JDK 17 or newer for compilation and setting --release or -source/-target/-bootclasspath.

Changes:

• Update protobuf version for CVE-2024-7254

New checks:

• ArrayRecordComponent: Record components should not be arrays.

Full changelog: https://github.com/google/error-prone/compare/v2.32.0...v2.33.0

Error Prone 2.32.0

The minimum support JDK version to run Error Prone is now JDK 17 (#3803).

Using Error Prone to compile code that is deployed to earlier versions is still fully supported, but will requires using JDK 17 or newer for compilation and setting --release or -source/-target/-bootclasspath.

Full changelog: https://github.com/google/error-prone/compare/v2.31.0...v2.32.0

Commits

• 7a67f20 Release Error Prone 2.33.0
• f1f7955 Remove out of place .. Previously, the error message was:
• c885150 Add a regression test for b/369862572
• 2b78c1f Avoid a possible IndexOutOfBoundsException in MemberName.
• 47dd2a8 Suggest Splitter.on(Pattern.compile(...)) instead of Splitter.onPattern
• 50d0983 Add some missing testdata/ prefixes.
• f82fb66 Fix typos
• fb1a05b Update protobuf version
• be99217 Extend MissingOverride to require @​Override on "an explicitly declared access...
• 2c04ada Support toSeconds in DurationToLongTimeUnit
• Additional commits viewable in compare view

Updates com.google.errorprone:error_prone_core from 2.31.0 to 2.33.0

Release notes

Sourced from com.google.errorprone:error_prone_core's releases.

Error Prone 2.33.0

Similar to release 2.32.0, the minimum supported JDK version to run Error Prone is JDK 17 (#3803). Using Error Prone to compile code that is deployed to earlier versions is still fully supported, but will require using JDK 17 or newer for compilation and setting --release or -source/-target/-bootclasspath.

Changes:

• Update protobuf version for CVE-2024-7254

New checks:

• ArrayRecordComponent: Record components should not be arrays.

Full changelog: https://github.com/google/error-prone/compare/v2.32.0...v2.33.0

Error Prone 2.32.0

The minimum support JDK version to run Error Prone is now JDK 17 (#3803).

Using Error Prone to compile code that is deployed to earlier versions is still fully supported, but will requires using JDK 17 or newer for compilation and setting --release or -source/-target/-bootclasspath.

Full changelog: https://github.com/google/error-prone/compare/v2.31.0...v2.32.0

Commits

• 7a67f20 Release Error Prone 2.33.0
• f1f7955 Remove out of place .. Previously, the error message was:
• c885150 Add a regression test for b/369862572
• 2b78c1f Avoid a possible IndexOutOfBoundsException in MemberName.
• 47dd2a8 Suggest Splitter.on(Pattern.compile(...)) instead of Splitter.onPattern
• 50d0983 Add some missing testdata/ prefixes.
• f82fb66 Fix typos
• fb1a05b Update protobuf version
• be99217 Extend MissingOverride to require @​Override on "an explicitly declared access...
• 2c04ada Support toSeconds in DurationToLongTimeUnit
• Additional commits viewable in compare view

Updates com.google.guava:guava from 33.3.0-jre to 33.3.1-jre

Release notes

Sourced from com.google.guava:guava's releases.

33.3.1

Maven

<dependency>
  <groupId>com.google.guava</groupId>
  <artifactId>guava</artifactId>
  <version>33.3.1-jre</version>
  <!-- or, for Android: -->
  <version>33.3.1-android</version>
</dependency>

Jar files

• 33.3.1-jre.jar
• 33.3.1-android.jar

Guava requires one runtime dependency, which you can download here:

• failureaccess-1.0.1.jar

Javadoc

• 33.3.1-jre
• 33.3.1-android

JDiff

• 33.3.1-jre vs. 33.3.0-jre
• 33.3.1-android vs. 33.3.0-android
• 33.3.1-android vs. 33.3.1-jre

Changelog

• Added j2objc-annotations to the Gradle runtime classpath to stop producing an Android Gradle Plugin error. (a3b51888c2)

Commits

• See full diff in compare view

Updates commons-io:commons-io from 2.16.1 to 2.17.0

Updates io.grpc:grpc-core from 1.66.0 to 1.68.0

Release notes

Sourced from io.grpc:grpc-core's releases.

v1.68.0 MISTAKE

This was supposed to be v1.67.0, but there was a mistake during the release process. This has everything in v1.67.1, except for:

• xds: Fix NullPointerException introduced in "Fix load reporting when pick first is used for locality-routing" (grpc/grpc-java#11553)

v1.67.1

gRPC Java 1.67.1 Release Notes

There was no 1.67.0 release. There was a problem making the release and it went to Maven Central as 1.68.0 instead. This is a version-corrected release.

Improvements

• Petiole load balancing policies (e.g., round_robin, weighted_round_robin, ring_hash, least_request) had internal refactorings. This should not have changed their behavior
• api: Introduce onResult2 in NameResolver Listener2 that returns Status (90d0fabb1)
• core: touch() buffer when detach()ing (e821d5e15). This makes it clearer whether a leak is a gRPC leak or an application leak when the Detachable API is being used
• example: delete duplicate and unused code in KeepAliveClient.java (6a9bc3ba1)
• example: Added Dualstack example (#11451) (72a977bf7)
• stub: Add newAttachMetadataServerInterceptor() MetadataUtil (#11458) (6dbd1b9d5)
• xds: Separate xds clients for each channel target, each with its own connection to an xds server. (#11484) (d034a56cb)
• xds: Envoy proto sync to 2024-07-06 (#11401) (96a788a34)
• xds: cncf/xds proto sync to 2024-07-24 (#11417) (0017c98f6)
• xds: Import RLQS protos (#11418) (c29763d88)
• xds: ClusterManagerLB must update child configuration (10d6002cb). Previously, RLS configuration would not have been updated

Bug Fixes

• core: Revert "Enable new PickFirst LB (#11348)" (#11425) (cc1cbe987)
• rls: Fix log statements incorrectly referring to "LRS" (#11497) (c63e35488)
• util: Stop using SocketAddress.toString() for checking address equality (f866c805c). This change applies to all petiole load balancing policies. For regular usages that use dns name resolution, this is unlikely to matter as the default dns name resolver returns consistent addresses. But this might improve LB behavior for some custom load balancers
• xds: Fix load reporting when pick first is used for locality-routing. (#11495) (1dae144f0)
• xds: Fix NullPointerException introduced in "Fix load reporting when pick first is used for locality-routing" (#11553). This change is not present in 1.68.0
• xds: XdsClient should unsubscribe on last resource (#11264) (448ec4f37)

Dependencies

• Upgrade Netty to 4.1.110 and tcnative to 2.0.65 (#11444) (70ae83288)
• examples: Upgrade Maven plugin versions (75012a5be)
• Remove direct dependency on j2objc (ff8e41376)

Thanks to

@​Juneezee @​lujiajing1126 @​JarvisCraft @​sunpe

Commits

• b570d07 Bump version to 1.67.0
• 5d4fb8c Update README etc to reference 1.67.0
• da45ae5 Merge branch 'grpc:v1.67.x' into v1.67.x
• e821d5e core: touch() buffer when detach()ing
• 0ac607d Start 1.68.0 development cycle
• 1dae144 xds: Fix load reporting when pick first is used for locality-routing. (#11495)
• 421e237 add OpenTelemetryTracingModule (#11477)
• c63e354 rls: Fix log statements incorrectly referring to "LRS" (#11497)
• cfecc47 Focus MultiChildLB updates around ResolvedAddresses of children
• 4cb6465 util: MultiChildLB children know if they are active
• Additional commits viewable in compare view

Updates jakarta.servlet.jsp:jakarta.servlet.jsp-api from 3.0.0 to 3.1.0

Commits

• dffa39f Prepare release jakarta.servlet.jsp:jakarta.servlet.jsp-api:3.1.0
• 0350b8f Update copyright data for Javadoc
• 060a802 Fix copyright date
• 8fb5a8a Fix #224 - Update the link to the XML grammar notation
• d5186c4 Fix #226 - Deprecate jsp:plugin, jsp:params and jsp:fallback
• c84f58b OSGi bundle version should be consistent with project version
• 9d2ee4f Update EL to 5.0.0 and Servlet 6.0.0
• fdc4cad Copyright date fixes
• 4e01eef Fix module dependency for jakarta.servlet
• 320187a Add module-info and remove automatic module name from manifest
• Additional commits viewable in compare view

Updates net.java.dev.jna:jna-jpms from 5.14.0 to 5.15.0

Changelog

Sourced from net.java.dev.jna:jna-jpms's changelog.

Release 5.15.0

Features

• #1578: Add support for FreeBSD aarch64 - @​alexdupre.
• #1593: Add support for DragonFly BSD x86-64 - @​liweitianux.
• #1595: Add IsProcessorFeaturePresent to c.s.j.p.win32.Kernel32 - @​dbwiddis.
• #1602: Add XMoveWindow, XResizeWindow, XMoveResizeWindow, XRaiseWindow, XLowerWindow X11 calls to c.s.j.p.unix.X11 - @​vinceh121.
• #1613: Added static helper method `Native#getNativeLibrary' for getting the underlying NativeLibrary instance from a Library interface instance or from a "registered" class - @​matthiasblaesing.
• #1624: Enable linker build-id for android builds - @​mstyura.

Bug Fixes

• #1579: Fix analysis of ELF binary on arm systems running with a java ELF binary without section table headers (java8 on armv7 NAS) - @​matthiasblaesing.
• #1586: Fix free_callback JNI weak reference leak - @​xiezhaokun.
• 6486c90d913a413f247eef84742ce3c474738933: Check CallbackReference#cbstruct for null when checking existing Reference - @​matthiasblaesing.
• #1622: Add "linux-riscv64" entry to OSGI Bundle-NativeCode header in MANIFEST.MF - @​matthiasblaesing.

Commits

• fad4d1d Release 5.15.0
• 09e23cb maven-ant-task does not work correctly anymore, drop it and use mvn binary di...
• 078cc66 Rebuild android binaries after 7a5d9850a1ad8ab66836cea15fc67967bbe29006
• 7a5d985 Enable linker build-id for android builds.
• 58655f7 Merge pull request #1623 from matthiasblaesing/fix_osgi_header
• eda2969 Add "linux-riscv64" entry to OSGI Bundle-NativeCode header in MANIFEST.MF
• 209d199 Merge pull request #1620 from LightningReflex/patch-1
• da3b96e Fixed typo in GDI32.java
• ce88419 Bump the github-actions group with 1 update (#1601)
• a587921 Merge pull request #1615 from matthiasblaesing/issue-1613
• Additional commits viewable in compare view

Updates org.apache.kerby:kerb-simplekdc from 2.0.3 to 2.1.0

Updates org.apache.logging.log4j:log4j-api from 2.24.0 to 2.24.1

Updates org.codehaus.plexus:plexus-utils from 4.0.1 to 4.0.2

Release notes

Sourced from org.codehaus.plexus:plexus-utils's releases.

4.0.2

🐛 Bug Fixes

• Specify /D for cmd.exe to bypass the Command Processor Autorun folder (#272) @​sebthom

📦 Dependency updates

• Bump org.codehaus.plexus:plexus from 17 to 18 (#271) @​dependabot
• Bump org.codehaus.plexus:plexus-xml from 3.0.0 to 3.0.1 (#270) @​dependabot

Commits

• 4789f7a [maven-release-plugin] prepare release plexus-utils-4.0.2
• 9093271 Specify /D for cmd.exe to bypass the Command Processor Autorun directory
• a5d1ab2 fix Reproducible Central README link
• 1e90541 use new Reproducible Central badge endpoint
• 8ca1913 ---
• 4da33e1 ---
• 0d760ef [maven-release-plugin] prepare for next development iteration
• See full diff in compare view

Updates org.jboss.logging:jboss-logging from 3.6.0.Final to 3.6.1.Final

Release notes

Sourced from org.jboss.logging:jboss-logging's releases.

3.6.1.Final

What's Changed

• Bump org.junit:junit-bom from 5.10.2 to 5.11.0 by @​dependabot in jboss-logging/jboss-logging#115
• [JBLOGGING-190] When required, use a privileged action to find the cl… by @​jamezp in jboss-logging/jboss-logging#117
• [JBLOGGING-191] Bump ch.qos.logback:logback-classic from 1.5.6 to 1.5.8 by @​dependabot in jboss-logging/jboss-logging#118

Full Changelog: https://github.com/jboss-logging/jboss-logging/compare/3.6.0.Final...3.6.1.Final

Commits

• 086ff9f Prepare for 3.6.1.Final release
• 1be977b Merge pull request #118 from jboss-logging/dependabot/maven/ch.qos.logback-lo...
• 22763fa Merge pull request #117 from jamezp/JBLOGGING-190
• 3d2e02c [JBLOGGING-190] When required, use a privileged action to find the class in t...
• b1f2234 Bump ch.qos.logback:logback-classic from 1.5.6 to 1.5.8
• 51864b2 Merge pull request #115 from jboss-logging/dependabot/maven/org.junit-junit-b...
• be4e0ea Bump org.junit:junit-bom from 5.10.2 to 5.11.0
• 069b3b7 Next is 3.6.1.Final
• See full diff in compare view

Updates org.jboss.threads:jboss-threads from 3.6.1.Final to 3.8.0.Final

Commits

• 60a6d35 Prep 3.8.0.Final
• c2e1c42 Merge pull request #192 from dmlloyd/false-sharing
• 73b7213 Merge pull request #195 from dmlloyd/go-17
• c83731a Remove stack depth test
• 89b69fe Minor cleanups
• 4ab166b Remove more pointer chasing in tight loops
• 7099668 Remove one level of pointer-chasing from thread body
• c38841c Flatten queue processing to remove some redundant checks
• 958a3bb Defer creating new PoolThreadNode until after task is run
• 2cc0ffa Reverse if order
• Additional commits viewable in compare view

Updates org.wildfly.security:wildfly-elytron from 2.5.2.Final to 2.6.0.Final

Commits

• 05eab9e [ELY-2812] Release WildFly Elytron 2.6.0.Final
• 97a7a3a Merge pull request #2203 from fjuma/ELY-2738
• fdca5bc [ELY-2811] Add missing scope to dynamic-ssl pom.xml for wildfly-elytron-tests...
• 7780f81 Merge pull request #2201 from darranl/ELY-2741
• 3217ffb Merge pull request #2175 from lvydra/ELY-2704
• aefc98a [ELY-2704] Missing keystore password does not throw a meaningful exception
• fbd784f Merge pull request #2147 from rsearls/ELY-2738-DynamicSSLTestUtils
• 9d2d19b [ELY-2741] Enhance TRACE logging for the EXTERNAL HTTP mechanism
• b3ef480 Merge pull request #2159 from rsearls/ELY-2770-Fix-deprecation-links
• 5ecc563 [ELY-2770] update javadoc's @​link stmt to display fully qualified classname o...
• Additional commits viewable in compare view

Updates org.ow2.asm:asm-commons from 9.7 to 9.7.1

Updates com.puppycrawl.tools:checkstyle from 10.18.1 to 10.18.2

Release notes

Sourced from com.puppycrawl.tools:checkstyle's releases.

checkstyle-10.18.2

Checkstyle 10.18.2 - https://checkstyle.org/releasenotes.html#Release_10.18.2

Bug fixes:

#15690 - JavadocParagraph: allowNewlineParagraph should allow '\n' after P tag and content start from new line #15642 - google_checks: Section 4.1.3 should not be covered by EmptyBlock and EmptyCatchBlock #15609 - google_checks SuppressionXpathSingleFilter for 'MethodName' check is too lenient in several ways #15434 - MissingJavadocMethod does not give warning for missing javadoc for protected methods in google_checks.xml #13553 - False positive in FallThroughCheck on last case #15233 - Suppression for long identifiers for 4.4 Column Limit: 100 rule of google java style guide #15414 - Google style: Javadoc is optional for "simple, obvious" members

Commits

• 3651c45 [maven-release-plugin] prepare release checkstyle-10.18.2
• ca569e6 doc: release notes for 10.18.2
• 4eec526 Issue #6207: add class data abstraction coupling xpath regression tests
• fe4fde1 infra: fix link in exclude for jdepend-maven-plugin to fix run of maven-linkc...
• 50cdde7 Issue #15456: Specify violation message for Nested Block (#11)
• b1d923e Issue #15690: fix allowNewlineParagraph at JavadocParagraphCheck
• b41666f dependency: bump org.apache.maven.plugins:maven-gpg-plugin
• 4c378dc supplemental: added violation messages in JavadocParagraph's input files
• 82bc795 dependency: bump junit.version from 5.11.0 to 5.11.1
• 4704b0f Issue #6207: Add XPath IT Regression Test for ModifiedControlVariable
• Additional commits viewable in compare view

Updates com.google.errorprone:error_prone_core from 2.31.0 to 2.33.0

Release notes

Sourced from com.google.errorprone:error_prone_core's releases.

Error Prone 2.33.0

Similar to release 2.32.0, the minimum supported JDK version to run Error Prone is JDK 17 (#3803). Using Error Prone to compile code that is deployed to earlier versions is still fully supported, but will require using JDK 17 or newer for compilation and setting --release or -source/-target/-bootclasspath.

Changes:

• Update protobuf version for CVE-2024-7254

New checks:

• ArrayRecordComponent: Record components should not be arrays.

Full changelog: https://github.com/google/error-prone/compare/v2.32.0...v2.33.0

Error Prone 2.32.0

The minimum support JDK version to run Error Prone is now JDK 17 (#3803).

Using Error Prone to compile code that is deployed to earlier versions is still fully supported, but will requires using JDK 17 or newer for compilation and setting --release or -source/-target/-bootclasspath.

Full changelog: https://github.com/google/error-prone/compare/v2.31.0...v2.32.0

Commits

• 7a67f20 Release Error Prone 2.33.0
• f1f7955 Remove out of place .. Previously, the error message was:
• c885150 Add a regression test for b/369862572
• 2b78c1f Avoid a possible IndexOutOfBoundsException in MemberName.
• 47dd2a8 Suggest Splitter.on(Pattern.compile(...)) instead of Splitter.onPattern
• 50d0983 Add some missing testdata/ prefixes.
• f82fb66 Fix typos
• fb1a05b Update protobuf version
• be99217 Extend MissingOverride to require @​Override on "an explicitly declared access...
• 2c04ada Support toSeconds in DurationToLongTimeUnit
• Additional commits viewable in compare view

Updates com.mycila:license-maven-plugin from 4.5 to 4.6

Release notes

Sourced from com.mycila:license-maven-plugin's releases.

license-maven-plugin-4.6

Release v4.6

• Add apache-2 no email support
• Use JSR330 inject rather than deprecated component
• Use try with resources
• Small api changes on java end (ie closeable exchanged to autocloseable)
• Require maven 3.6.3 per maven guildelines
• More lambdas
• Test cleanup
• Some logging level checks so it doesn't run expensive checks and then not log
• Better handling of filepath that was repeating path replacements
• Lots of library / plugin updates

WARNING

THIS IS THE LAST VERSION SUPPORTING JAVA 8

• From version 5.0.0 : Java 11 will be required
• From version 6.0.0 : Java 11 will be required

What's Changed

• Changed the double tab to one tab by @​nberlijn in mathieucarbou/license-maven-plugin#89
• normalize line ending by @​McFoggy

@dependabot ignore com.hazelcast:hazelcast minor version

The hazelcast 5.5.x series is not compatible with JDK 11.

[dependabot[bot]]

OK, I won't notify you about version 5.5.x of com.hazelcast:hazelcast again, unless you unignore it.

[olamy]

@dependabot recreate

[dependabot[bot]]

Looks like these dependencies are updatable in another way, so this is no longer needed.