chore(deps): bump com.nimbusds:nimbus-jose-jwt from 9.41 to 9.41.1

[dependabot[bot]]

Bumps com.nimbusds:nimbus-jose-jwt from 9.41 to 9.41.1.

Changelog

Sourced from com.nimbusds:nimbus-jose-jwt's changelog.

9.41 (2024-09-10) * JWEHeader receives typed support for the "iss" (issuer), "sub" (subject) and "aud" (audience) claims as replicated JWE header parameters. * Updates the JWE encryption with "PBES2-HS256+A128KW", "PBES2-HS384+A192KW" and "PBES2-HS512+A256KW" to use a JCA provider instead of a local PBKDF2 implementation. "PBKDF2WithHmacSHA256" support is available since Java 8 and Android API level 26 (iss #561). * For "RSA-OAEP" and "RSA-OAEP-256" the cipher mode should be either WRAP or UNWRAP, not ENCRYPT or DECRYPT. Otherwise it will throw an exception when used with a FIPS provider (iss #564).

9.41.1 (2024-09-12) * Fixes JSONObjectUtils.parse((String)null) regression, must throw ParseException, not NullPointerException. Regression introduced in 9.24 after dependency switch from JSON Smart to Gson (iss #557). * Fixes JWKSet.parse((String)null) regression, must throw ParseException, not NullPointerException (iss #557). * The ParseException thrown by X509CertChainUtils.parse(List) must include the message from the underlying java.security.cert.CertificateException (iss #565).

Commits

• 70b16ac [maven-release-plugin] prepare for next development iteration
• a6eefbf Adds BC provider test to PBKDF2Test
• b2e803c The ParseException thrown by X509CertChainUtils.parse(List<Base64>) must incl...
• 9c05365 Fixes X509CertChainUtilsTest.testParse_includeUnderlyingCertificateException ...
• 91c2326 Adds JWKSetTest.testParseNullString test (iss #557)
• 04bd9c1 Fixes JSONObjectUtils.parse((String)null) regression, must throw ParseExcepti...
• fa2cffe [maven-release-plugin] prepare release 9.41.1
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[sonarcloud[bot]]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

[github-actions[bot]]

Test Results

1 135 files  ± 0  1 135 suites  ±0   1h 28m 38s :stopwatch: + 1m 9s 7 393 tests ± 0  7 343 :white_check_mark: ± 0  50 :zzz: ±0  0 :x: ±0  7 729 runs   - 26  7 669 :white_check_mark:  - 26  60 :zzz: ±0  0 :x: ±0 

Results for commit fb0b5c92. ± Comparison against base commit 20623f59.