Bump the dependencies group across 1 directory with 12 updates

[dependabot]

Bumps the dependencies group with 12 updates in the / directory:

Package	From	To
software.amazon.awssdk:secretsmanager	2.20.93	2.30.2
org.projectlombok:lombok	1.18.28	1.18.36
com.fasterxml.jackson.core:jackson-databind	2.15.2	2.18.2
com.github.spotbugs:spotbugs-annotations	4.7.3	4.9.0
org.apache.maven.plugins:maven-compiler-plugin	3.11.0	3.13.0
org.apache.maven.plugins:maven-source-plugin	3.3.0	3.3.1
org.apache.maven.plugins:maven-javadoc-plugin	3.5.0	3.11.2
org.apache.maven.plugins:maven-checkstyle-plugin	3.3.0	3.6.0
com.github.spotbugs:spotbugs-maven-plugin	4.7.3.5	4.8.6.6
org.jacoco:jacoco-maven-plugin	0.8.10	0.8.12
org.apache.maven.plugins:maven-gpg-plugin	3.1.0	3.2.7
org.sonatype.plugins:nexus-staging-maven-plugin	1.6.13	1.7.0

Updates software.amazon.awssdk:secretsmanager from 2.20.93 to 2.30.2

Updates org.projectlombok:lombok from 1.18.28 to 1.18.36

Changelog

Sourced from org.projectlombok:lombok's changelog.

v1.18.36 (November 15th, 2024)

• PLATFORM: JDK23 support added.
• BUGFIX: Eclipse projects using the com.pro-crafting.tools:jasperreports-maven-plugin will now compile.

v1.18.34 (June 28th, 2024)

• PLATFORM: Added support for Eclipse 2024-06; you'd get some NoSuchMethodError traces in your logs if using @Builder or @Singular prior to this fix. [Issue #3638](projectlombok/lombok#3638).
• IMPROBABLE BREAKING CHANGE: Lombok now adds @lombok.Generated by default to methods and types it generates. This may result in accidentally increasing your test coverage percentage. [Issue #3667](projectlombok/lombok#3667).
• IMPROBABLE BREAKING CHANGE: When lombok.config contains lombok.onX.flagUsage = WARNING, from now on warnings will actually be generated if onX is used.[Issue #2848](projectlombok/lombok#2848)
• BUGFIX: When @SuperBuilder was used on a type with an generic array type, it would error wrong number of type arguments. [Issue #3694](projectlombok/lombok#3694).
• FEATURE: Lombok generates javadoc for you for most of the methods it adds; with this release, javadoc is also added to generated constructors. [Issue #933](projectlombok/lombok#933).

v1.18.32 (March 20th, 2024)

• PLATFORM: Initial JDK22 support added.
• PLAFTORM Added support for Eclipse 2024-03. [Issue #3620](projectlombok/lombok#3620).
• PLATFORM: Added support for recent versions of eclipse (released Q4 2023 or later or so) which would cause failures in the eclipse logs such as java.lang.NoSuchMethodError: 'java.lang.StringBuffer org.eclipse.jdt…. [Issue #3564](projectlombok/lombok#3564).
• FEATURE: @Locked has been introduced. Like @Synchronized but with java.util.concurrent.locks locks instead of the synchronized primitive. Thanks, Pim van der Loos for the PR! [Issue #3506](projectlombok/lombok#3506).
• NECROMANCY: Inlining a generated getter in eclipse would result in eclipse incorrectly replacing calls with @Getter instead of the actual field's name. [Issue #562](projectlombok/lombok#562). This issue is almost old enough to drink. Points for dedication go to Rawi for fixing this one.
• BUGFIX: When @SuperBuilder was used on a type with an annotated generic type, it would error wrong number of type arguments. [Issue #3592](projectlombok/lombok#3592).
• BUGFIX: It was possible to create an infinite build loop using @ExtensionMethod. [Issue #3225](projectlombok/lombok#3225).
• BUGFIX: Using @Getter(lazy=true) would fail if the expression contained a variable called value. [Issue #2917](projectlombok/lombok#2917).
• BUGFIX: Many lombok features wouldn't work properly on records contained within an outer type unless you explicitly marked it static. [Issue #3497](projectlombok/lombok#3497) [Issue #3559](projectlombok/lombok#3559).
• BUGFIX: Eclipse projects using the com.pro-crafting.tools:jasperreports-plugin will now compile.
• BUGFIX: @FieldNameConstants now works when generated fields are involved. [Issue #3529](projectlombok/lombok#3529).
• IMPROBABLE BREAKING CHANGE: For JSpecify, the package name changed from org.jspecify.nullness to org.jspecify.annotations, which might lead to a different null analysis. [Issue #3608](projectlombok/lombok#3608).

v1.18.30 (September 20th, 2023)

• PLATFORM: Initial JDK21 support added. [Issue #3393](projectlombok/lombok#3393).
• BUGFIX: Any @Helper class directly in a method (and not nested more deeply) wouldn't work. [Issue #3370](projectlombok/lombok#3370).
• BUGFIX: If using the module system and lombok is on the runtime classpath (shouldn't be, but happens), you'd get a split package error: Package org.objectweb.asm in both module lombok and module org.objectweb.asm. [Issue #3474](projectlombok/lombok#3474).
• BUGFIX: Lombok wasn't properly copying the annotations it should be copying when generating methods in records. [Issue #3315](projectlombok/lombok#3315).
• BUGFIX: Delomboking anything with @lombok.Singular in it wouldn't remove that annotation. [Issue #1377](projectlombok/lombok#1377).
• BUGFIX: Calling extension methods such that automatic widening is applied (i.e. calling void ext(long arg) with an int) would fail at runtime. [Issue #3463](projectlombok/lombok#3463).
• BUGFIX: Extension methods can now be used in records. [Issue #3450](projectlombok/lombok#3450).
• BUGFIX: @Getter(lazy=true) with complicated initialization expressions would fail on javac. [Issue #3314](projectlombok/lombok#3314).
• BUGFIX: Using the maven surefire plugin with a module-info.java based project would fail with a SurefireBooterForkException. [Issue #3474](projectlombok/lombok#3474).

Commits

• 91d79ff [release] pre-release version bump
• e8db33a Merge pull request #3768 from tamila-krashtan/fix/with-html
• 0338705 Revert "[fixes #3116] Add multi round support for mapstruct":
• 9af596e Fix typo in With.html
• 3394b6e eclipse downloader: When downloading sources, accept failure.
• 03cd61a Merge branch 'eclipse-tests-fix'
• 7a9f3a8 Fix resource management in the eclipse downloader:
• 87bc91a Merge pull request #3764 from Rawi01/update-index
• d21d551 Close ZipOutputStream in eclipse dependency downloader
• 5caea32 [fixes #3761] Update annotation value index
• Additional commits viewable in compare view

Updates com.fasterxml.jackson.core:jackson-databind from 2.15.2 to 2.18.2

Commits

• See full diff in compare view

Updates com.github.spotbugs:spotbugs-annotations from 4.7.3 to 4.9.0

Release notes

Sourced from com.github.spotbugs:spotbugs-annotations's releases.

SpotBugs 4.9.0

CHANGELOG

Added

• Updated the SuppressFBWarnings annotation to support finer grained bug suppressions (#3102)
• SimpleDateFormat, DateTimeFormatter, FastDateFormat string check for bad combinations of flag formatting (#637)
• New detector ResourceInMultipleThreadsDetector and introduced new bug type:
  • AT_UNSAFE_RESOURCE_ACCESS_IN_THREAD is reported in case of unsafe resource access in multiple threads.

Fixed

• Do not consider Records as Singletons (#2981)
• Keep a maximum of 10000 cached analysis entries for plugin's analysis engines (#3025)
• Only report MC_OVERRIDABLE_METHOD_CALL_IN_READ_OBJECT when calling own methods (#2957)
• Check the actual caught exceptions (instead of their common type) when analyzing multi-catch blocks (#2968)
• System property findbugs.refcomp.reportAll is now being used. For some new conditions, it will emit an experimental warning (#2988)
• -version flag prints the version to the standard output (#2797)
• Revert the changes from (#2894) to get HTML stylesheets to work again (#2969)
• Fix FP SING_SINGLETON_GETTER_NOT_SYNCHRONIZED report when the synchronization is in a called method (#3045)
• Let BetterCFGBuilder2.isPEI handle dup2 bytecode used by Spring AOT (#3059)
• Detect failure to close RocksDB's ReadOptions (#3069)
• Fix FP EI_EXPOSE_REP when there are multiple immutable assignments (#3023)
• Fixed false positive NP_NONNULL_FIELD_NOT_INITIALIZED_IN_CONSTRUCTOR for Kotlin, handle Kotlin's Intrinsics.checkNotNullParameter() (#3094)
• Fixed some CWE mappings (#3124)
• Recognize some classes as immutable, fixing EI_EXPOSE and MS_EXPOSE FPs (#3137)
• Do not report UWF_FIELD_NOT_INITIALIZED_IN_CONSTRUCTOR for fields initialized in method annotated with TestNG's @​BeforeClass. (#3152)
• Fixed detector FindReturnRef not finding references exposed from nested and inner classes (#2042)
• Fix call graph, include non-parametric void methods (#3160)
• Fix multiple reporting of identical bugs messing up statistics (#3185)
• Added missing comma between line number and confidence when describing matching and mismatching bugs for tests (#3187)
• Fixed method matchers with array types (#3203)
• Fix SARIF report's message property in Exception to meet the standard (#3197)
• Fixed FI_FINALIZER_NULLS_FIELDS FPs for functions called finalize() but not with the correct signature. (#3207)
• Fixed an error in the detection of bridge methods causing analysis crashes (#3208)
• Fixed detector ThrowingExceptions by removing false positive reports, such as synthetic methods (lambdas), methods which inherited their exception specifications and methods which call throwing methods (#2040)
• Do not report DP_DO_INSIDE_DO_PRIVILEGED, DP_CREATE_CLASSLOADER_INSIDE_DO_PRIVILEGED and USC_POTENTIAL_SECURITY_CHECK_BASED_ON_UNTRUSTED_SOURCE in code targeting Java 17 and above, since it advises the usage of deprecated method (#1515).
• Fixed a RV_RETURN_VALUE_IGNORED_NO_SIDE_EFFECT false positive for a builder delegating to another builder (#3235)

Cleanup

• Cleanup thread issue and regex issue in test-harness (#3130)
• Remove extra blank lines and remove public from interface objects as inherently already public (#3131)
• Fix order of modifiers on properties/methods and ensure correct location in file (#3132, #3177)
• Return objects directly instead of creating more garbage collection by defining them (#3133, #3175)
• Restrict the constructor of abstract classes visibility to protected (#3178)
• Cleanup double initialization and fix comments referring to findbugs instead of spotbugs(#3134)
• Use diamond operator in constructor calls of Collections (#3176)
• Use Collection.isEmpty() or String.isEmpty() to test for emptiness (#3180, #3219)
• Use method references instead of lambdas where possible (#3179)
• Move default clauses to the end of switches (#3222)
• Remove unnecessary throws declarations (#3220)
• Use Boolean.parseBoolean() for string-to-boolean conversion. (#3217)
• Rename shadowing fields (#3221)

... (truncated)

Changelog

Sourced from com.github.spotbugs:spotbugs-annotations's changelog.

4.9.0 - 2025-01-15

Added

• Updated the SuppressFBWarnings annotation to support finer grained bug suppressions (#3102)
• SimpleDateFormat, DateTimeFormatter, FastDateFormat string check for bad combinations of flag formatting (#637)
• New detector ResourceInMultipleThreadsDetector and introduced new bug type:
  • AT_UNSAFE_RESOURCE_ACCESS_IN_THREAD is reported in case of unsafe resource access in multiple threads.

Fixed

• Do not consider Records as Singletons (#2981)
• Keep a maximum of 10000 cached analysis entries for plugin's analysis engines (#3025)
• Only report MC_OVERRIDABLE_METHOD_CALL_IN_READ_OBJECT when calling own methods (#2957)
• Check the actual caught exceptions (instead of their common type) when analyzing multi-catch blocks (#2968)
• System property findbugs.refcomp.reportAll is now being used. For some new conditions, it will emit an experimental warning (#2988)
• -version flag prints the version to the standard output (#2797)
• Revert the changes from (#2894) to get HTML stylesheets to work again (#2969)
• Fix FP SING_SINGLETON_GETTER_NOT_SYNCHRONIZED report when the synchronization is in a called method (#3045)
• Let BetterCFGBuilder2.isPEI handle dup2 bytecode used by Spring AOT (#3059)
• Detect failure to close RocksDB's ReadOptions (#3069)
• Fix FP EI_EXPOSE_REP when there are multiple immutable assignments (#3023)
• Fixed false positive NP_NONNULL_FIELD_NOT_INITIALIZED_IN_CONSTRUCTOR for Kotlin, handle Kotlin's Intrinsics.checkNotNullParameter() (#3094)
• Fixed some CWE mappings (#3124)
• Recognize some classes as immutable, fixing EI_EXPOSE and MS_EXPOSE FPs (#3137)
• Do not report UWF_FIELD_NOT_INITIALIZED_IN_CONSTRUCTOR for fields initialized in method annotated with TestNG's @​BeforeClass. (#3152)
• Fixed detector FindReturnRef not finding references exposed from nested and inner classes (#2042)
• Fix call graph, include non-parametric void methods (#3160)
• Fix multiple reporting of identical bugs messing up statistics (#3185)
• Added missing comma between line number and confidence when describing matching and mismatching bugs for tests (#3187)
• Fixed method matchers with array types (#3203)
• Fix SARIF report's message property in Exception to meet the standard (#3197)
• Fixed FI_FINALIZER_NULLS_FIELDS FPs for functions called finalize() but not with the correct signature. (#3207)
• Fixed an error in the detection of bridge methods causing analysis crashes (#3208)
• Fixed detector ThrowingExceptions by removing false positive reports, such as synthetic methods (lambdas), methods which inherited their exception specifications and methods which call throwing methods (#2040)
• Do not report DP_DO_INSIDE_DO_PRIVILEGED, DP_CREATE_CLASSLOADER_INSIDE_DO_PRIVILEGED and USC_POTENTIAL_SECURITY_CHECK_BASED_ON_UNTRUSTED_SOURCE in code targeting Java 17 and above, since it advises the usage of deprecated method (#1515).
• Fixed a RV_RETURN_VALUE_IGNORED_NO_SIDE_EFFECT false positive for a builder delegating to another builder (#3235)

Cleanup

• Cleanup thread issue and regex issue in test-harness (#3130)
• Remove extra blank lines and remove public from interface objects as inherently already public (#3131)
• Fix order of modifiers on properties/methods and ensure correct location in file (#3132, #3177)
• Return objects directly instead of creating more garbage collection by defining them (#3133, #3175)
• Restrict the constructor of abstract classes visibility to protected (#3178)
• Cleanup double initialization and fix comments referring to findbugs instead of spotbugs(#3134)
• Use diamond operator in constructor calls of Collections (#3176)
• Use Collection.isEmpty() or String.isEmpty() to test for emptiness (#3180, #3219)
• Use method references instead of lambdas where possible (#3179)
• Move default clauses to the end of switches (#3222)
• Remove unnecessary throws declarations (#3220)
• Use Boolean.parseBoolean() for string-to-boolean conversion. (#3217)
• Rename shadowing fields (#3221)
• Combine catch blocks with the same body (#3223)

... (truncated)

Commits

• ef76e9b release v4.9.0
• d64bfd2 Remove legacy cvs / svn revision data as git doesn't use that (#3262)
• 3d80c80 Move documentation items and other build items to java 11 (#3260)
• ab2a9f7 Fix map container to use interface, few missed double initialization, and mis...
• b7f48c9 [tests] Cleanup code within tests (#3259)
• 8bc2966 Move Eclipse to java 11 to match rest of the project (#3258)
• d3f97b3 Correct object creation for object to contain array marker not the variable n...
• ce7eac9 Use try with resources where possible (#3253)
• 97ac6b6 chore(deps): update plugin com.diffplug.spotless to v7.0.2 (#3255)
• 9f652a4 chore(deps): update dependency com.diffplug.spotless:spotless-plugin-gradle t...
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-compiler-plugin from 3.11.0 to 3.13.0

Release notes

Sourced from org.apache.maven.plugins:maven-compiler-plugin's releases.

3.13.0

🚀 New features and improvements

• [MCOMPILER-574] - Propagate cause of exception in AbstractCompilerMojo (#232) @​slawekjaranowski
• [MCOMPILER-582] - Automatic detection of release option for JDK < 9 (#228) @​slawekjaranowski
• [MCOMPILER-583] - Require Maven 3.6.3 (#229) @​slawekjaranowski
• [MCOMPILER-577] - Rename parameter "forceJavacCompilerUse" (#225) @​kwin
• [MCOMPILER-570] - Add links to javac documentation of JDK17 (#224) @​kwin
• [MCOMPILER-576] - Deprecate parameter "compilerVersion" (#223) @​kwin

📦 Dependency updates

• [MCOMPILER-575] - Bump plexusCompilerVersion from 2.14.2 to 2.15.0 (#227) @​dependabot
• Bump apache/maven-gh-actions-shared from 3 to 4 (#226) @​dependabot

📝 Documentation updates

• [MCOMPILER-548] - JDK 21 throws annotations processing warning that can not be turned off (#200) @​hgschmie

👻 Maintenance

• [MCOMPILER-584] - Refresh page - Using Non-Javac Compilers (#231) @​slawekjaranowski
• [MCOMPILER-585] - Refresh plugins versions in ITs (#230) @​slawekjaranowski
• subject verb agreement (#221) @​elharo

3.12.1

🐛 Bug Fixes

• [MCOMPILER-567] - Fail to compile if the generated-sources/annotation… (#218) @​jorsol

📦 Dependency updates

• [MCOMPILER-568] - Bump plexusCompilerVersion from 2.14.1 to 2.14.2 (#220) @​dependabot

3.12.0

🚀 New features and improvements

• [MCOMPILER-562] - Add property maven.compiler.outputDirectory to CompilerMojo (#213) @​jGauravGupta
• [MCOMPILER-381] - Refactor incremental detection (#181) @​jorsol
• [MCOMPILER-542] - Clean JDK patch version in module-info.class (#208) @​jorsol
• [MCOMPILER-558] - compileSourceRoots in testCompile should be writable (#209) @​lorenzsimon
• [MCOMPILER-559] - Warn if overwriting the project's artifact's file to a different value (#211) @​gnodet
• [MCOMPILER-550] - make outputDirectory writable (#202) @​bmarwell
• [MCOMPILER-549] - Improve log message in case of recompilation - fix jenkins build (#203) @​slawekjaranowski
• [MCOMPILER-549] - Improve log message in case of recompilation (#201) @​BrowneMonke
• [MCOMPILER-391] - Use dep mgmt when resolving annotation processors and their deps (#180) @​psiroky
• [MCOMPILER-531] - Prepare for Java 20(-ea) (#184) @​slachiewicz

... (truncated)

Commits

• a1415aa [maven-release-plugin] prepare release maven-compiler-plugin-3.13.0
• b2b9196 [MCOMPILER-574] Propagate cause of exception in AbstractCompilerMojo
• 6d2ce5a [MCOMPILER-584] Refresh page - Using Non-Javac Compilers
• eebad60 [MCOMPILER-585] Refresh plugins versions in ITs
• ceacf68 [MCOMPILER-582] Automatic detection of release option for JDK < 9
• 110293f [MCOMPILER-583] Require Maven 3.6.3
• 90131df [MCOMPILER-575] Bump plexusCompilerVersion from 2.14.2 to 2.15.0 (#227)
• 74cfc72 [MCOMPILER-548] JDK 21 throws annotations processing warning that can not be ...
• f85aa27 Bump apache/maven-gh-actions-shared from 3 to 4
• d59ef49 extract Maven 3.3.1 specific method call
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-source-plugin from 3.3.0 to 3.3.1

Commits

• f80596e [maven-release-plugin] prepare release maven-source-plugin-3.3.1
• 7626998 Bump apache/maven-gh-actions-shared from 3 to 4
• 83c963c Bump org.apache.maven.plugins:maven-plugins from 39 to 41 (#18)
• 40ae495 Bump org.codehaus.plexus:plexus-archiver from 4.8.0 to 4.9.1 (#20)
• 073462b Bump org.apache.maven:maven-archiver from 3.6.0 to 3.6.1 (#21)
• 0b1c823 Fix typos in AbstractSourceJarMojo exception
• 099c65a [MSOURCES-142] Bump org.codehaus.plexus:plexus-archiver from 4.7.1 to 4.8.0 (...
• 1edeea4 [MSOURCES-139] Fix typo in AbstractSourceJarMojo exception
• 436966e [maven-release-plugin] prepare for next development iteration
• See full diff in compare view

Updates org.apache.maven.plugins:maven-javadoc-plugin from 3.5.0 to 3.11.2

Release notes

Sourced from org.apache.maven.plugins:maven-javadoc-plugin's releases.

3.11.2

🚀 New features and improvements

• [MJAVADOC-823] - legacyMode keeps using module-info.java (-sourcedirectory still use as well as java files input) (#343) @​olamy
• [MJAVADOC-814] - handle parameters such packages with multi lines (#337) @​olamy
• [MJAVADOC-822] - skippedModules should be more scalable and support regex (#336) @​olamy

📦 Dependency updates

• Bump com.thoughtworks.qdox:qdox from 2.1.0 to 2.2.0 (#344) @​dependabot
• Bump commons-io:commons-io from 2.17.0 to 2.18.0 (#342) @​dependabot
• Bump org.codehaus.mojo:l10n-maven-plugin from 1.0.0 to 1.1.0 (#335) @​dependabot

👻 Maintenance

• refactor: Replace Plexus AbstractLogEnabled with SLF4J (#338) @​timtebeek

maven-javadoc-plugin-3.11.1

What's Changed

• [MJAVADOC-821] Align toolchain discovery code with Maven Compiler Plugin by @​michael-o in apache/maven-javadoc-plugin#334

Full Changelog: apache/maven-javadoc-plugin@maven-javadoc-plugin-3.11.0...maven-javadoc-plugin-3.11.1

maven-javadoc-plugin-3.10.1

What's Changed

• [MJAVADOC-810] [REGRESSION] MJAVADOC-791 causes forked Maven execution fail if any toolchains or settings file isn't present by @​cstamas in apache/maven-javadoc-plugin#313
• Bump org.apache.commons:commons-lang3 from 3.16.0 to 3.17.0 by @​dependabot in apache/maven-javadoc-plugin#314
• Bump org.codehaus.plexus:plexus-io from 3.5.0 to 3.5.1 by @​dependabot in apache/maven-javadoc-plugin#315
• Bump commons-io:commons-io from 2.16.1 to 2.17.0 by @​dependabot in apache/maven-javadoc-plugin#319
• [MJAVADOC-812] [REGRESSION] maven-javadoc-plugin 3.10.0 creates empty… by @​michael-o in apache/maven-javadoc-plugin#320

Full Changelog: apache/maven-javadoc-plugin@maven-javadoc-plugin-3.10.0...maven-javadoc-plugin-3.10.1

maven-javadoc-plugin-3.10.0

❗ NOTICE

Due to Doxia 2.x stack maven-site-plugin 3.20+ is requred.

What's Changed

• Add test for custom FixJavadocMojo#defaultVersion by @​Marcono1234 in apache/maven-javadoc-plugin#305
• Bump org.apache.commons:commons-lang3 from 3.14.0 to 3.15.0 by @​dependabot in apache/maven-javadoc-plugin#304
• Improve URL handling by @​michael-o in apache/maven-javadoc-plugin#310
• Bump org.apache.commons:commons-lang3 from 3.15.0 to 3.16.0 by @​dependabot in apache/maven-javadoc-plugin#307
• Bump org.hamcrest:hamcrest-core from 2.2 to 3.0 by @​dependabot in apache/maven-javadoc-plugin#306
• Improve ITs by @​michael-o in apache/maven-javadoc-plugin#311
• Bump org.apache.maven.plugins:maven-plugins from 42 to 43 by @​dependabot in apache/maven-javadoc-plugin#294
• [MJAVADOC-809] Align Mojo class names by @​michael-o in apache/maven-javadoc-plugin#312

... (truncated)

Commits

• 44cbab7 [maven-release-plugin] prepare release maven-javadoc-plugin-3.11.2
• 3de45d8 use github for scm
• 45ccf06 Bump com.thoughtworks.qdox:qdox from 2.1.0 to 2.2.0
• 530fa01 [MJAVADOC-823] legacyMode keeps using module-info.java (-sourcedirectory stil...
• 3a16d92 Bump commons-io:commons-io from 2.17.0 to 2.18.0
• 69c1ba7 Migrate from Plexus to Sisu Guice (#341)
• 39857ea Remove usages of deprecated ReaderFactory class (#339)
• 314203a [MJAVADOC-814] handle parameters such packages with multi lines (#337)
• 3bb982d refactor: Replace Plexus AbstractLogEnabled with SLF4J (#338)
• 76826c8 [MJAVADOC-822] skippedModules should be more scalable and support regex (#336)
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-checkstyle-plugin from 3.3.0 to 3.6.0

Commits

• dd1abd9 [maven-release-plugin] prepare release maven-checkstyle-plugin-3.6.0
• 9ccb06e fix
• 6ac89b8 [MCHECKSTYLE-452] Upgrade to Doxia 2.0.0 GA Stack
• ff1a1b7 Bump org.apache.commons:commons-lang3 from 3.16.0 to 3.17.0
• 13e16c5 Remove unecessary test dependency on plexus-container-default
• a7c962a [maven-release-plugin] prepare for next development iteration
• 868abc9 [maven-release-plugin] prepare release maven-checkstyle-plugin-3.5.0
• 9043f8a [MCHECKSTYLE-446] Dynamically calculate xrefLocation/xrefTestLocation
• 0e7bd00 [MCHECKSTYLE-445] Upgrade to Doxia 2.0.0 Milestone Stack
• b92666d Bump org.apache.maven.plugins:maven-plugins from 42 to 43
• Additional commits viewable in compare view

Updates com.github.spotbugs:spotbugs-maven-plugin from 4.7.3.5 to 4.8.6.6

Release notes

Sourced from com.github.spotbugs:spotbugs-maven-plugin's releases.

Spotbugs Maven Plugin 4.8.6.6

• Cleanup groovy code
• Cleanup character encoding
• Update deprecated maven calls
• Groovy moved to 4.0.24

Compatibility remains with 4.8.6 of spotbugs

Spotbugs Maven Plugin 4.8.6.5

• Moved most 'read' only maven injections to read data from maven session instead to overcome many deprecated usage. This puts it on their api and thus if things are internally deprecated, its then maven's issue rather than this plugin to figure out.
• remove obsolete script source roots as no longer support in maven 4 and technically I've never seen them used. Please let me know if this negatively affects you as there are other manually coded items like kotlin / groovy that are in the code there so scripts could be manually added back.
• Remove some of the read only attributes for maven injection that were not actually used.
• More def to object type
• Various lib / plugin updates
• Enable partial formatting (mostly removing trailing whitespace)

Compatibility remains with 4.8.6 of spotbugs

Spotbugs Maven Plugin 4.8.6.4

• Groovy set to 4.0.23
• Drop maven site plugin 3.6 and before support.

Spotbugs Maven Plugin 4.8.6.3

• Ability to disable logs in quite mode (spotbugs.quiet) #842
• Fix output directory per #807
• Update plugins / dependencies
• Fix tag used to build spotbugs during GHA
• Use inject annotation from jsr330 instead of deprecated component annotation

Build

• Remove old overrides from pom as addressed
• Cleanup javadocs
• Remove snapshot from javadocs at 2.1 as non existent
• Order attribute order of annotations
• Use log commonly throughout (newer coded used getLog in one place)
• Sort imports
• Add opens for java.lang and java.util for site build as needed on newer jdks
• Correct GHA for site distribution
• Delete duplicate codeql github action
• Speed up github actions

Spotbugs Maven Plugin 4.8.6.2

• Supports spotbugs 4.8.6
• Uses groovy 4.0.22

Spotbugs Maven Plugin 4.8.6.1

• Supports spotbugs 4.8.6
• Restore java 8 support

Spotbugs Maven Plugin 4.8.6.0

... (truncated)

Commits

• 9895d2e [maven-release-plugin] prepare release spotbugs-maven-plugin-4.8.6.6
• 028a1a3 Merge pull request #924 from hazendaz/next-up
• 1b6f4bf [ci] Gstring to string
• cf9ebd1 [ci] Run eclipse formatter against the code
• 62ddea0 Merge pull request #923 from hazendaz/charset
• 559b0ca [logging] Use correct quoting in log line
• f2baf85 [maven] Update deprecated code from current project call for reports plugin
• e5fd7e7 [groovy] Use less gstrings when not needed and sort parameter attributes
• 260a4da Merge pull request #922 from hazendaz/charset
• 192e8f2 Revert "[github] Bump to maven 4.0.0-beta-5"
• Additional commits viewable in compare view

Updates org.jacoco:jacoco-maven-plugin from 0.8.10 to 0.8.12

Release notes

Sourced from org.jacoco:jacoco-maven-plugin's releases.

0.8.12

New Features

• JaCoCo now officially supports Java 22 (GitHub #1596).
• Experimental support for Java 23 class files (GitHub #1553).

Fixed bugs

• Branches added by the Kotlin compiler for functions with default arguments and having more than 32 parameters are filtered out during generation of report (GitHub #1556).
• Branch added by the Kotlin compiler version 1.5.0 and above for reading from lateinit property is filtered out during generation of report (GitHub #1568).

Non-functional Changes

• JaCoCo now depends on ASM 9.7 (GitHub #1600).

0.8.11

New Features

• JaCoCo now officially supports Java 21 (GitHub #1520).
• Experimental support for Java 22 class files (GitHub #1479).
• Part of bytecode generated by the Java compilers for exhaustive switch expressions is filtered out during generation of report (GitHub #1472).
• Part of bytecode generated by the Java compilers for record patterns is filtered out during generation of report (GitHub #1473).

Fixed bugs

• Instrumentation should not cause VerifyError when the last local variable of method parameters is overridden in the method body to store a value of type long or double (GitHub #893).
• Restore exec file compatibility with versions from 0.7.5 to 0.8.8 in case of class files with zero line numbers (GitHub #1492).

Non-functional Changes

• jacoco-maven-plugin now requires at least Java 8 (GitHub #1466, #1468).
• JaCoCo build now requires at least Maven 3.5.4 (GitHub #1467).
• Maven 3.9.2 should not produce warnings for jacoco-maven-plugin (GitHub #1468).
• JaCoCo build now requires JDK 17 (GitHub #1482).
• JaCoCo now depends on ASM 9.6 (GitHub #1518).

Commits

• dbfb6f2 Prepare release 0.8.12
• a50585b Upgrade maven-plugin-p...

  Description has been truncated

[dependabot]

Superseded by #264.