Bump the maven-dependencies group with 15 updates

[dependabot]

Bumps the maven-dependencies group with 15 updates:

Package	From	To
org.cryptomator:integrations-api	1.2.0	1.3.0
org.eclipse.jetty:jetty-server	10.0.16	11.0.16
org.eclipse.jetty:jetty-servlet	10.0.16	11.0.16
org.jetbrains:annotations	23.0.0	24.0.1
org.slf4j:slf4j-api	2.0.7	2.0.9
org.slf4j:slf4j-simple	2.0.7	2.0.9
org.junit.jupiter:junit-jupiter	5.9.3	5.10.0
org.apache.maven.plugins:maven-compiler-plugin	3.10.1	3.11.0
org.apache.maven.plugins:maven-surefire-plugin	3.0.0-M7	3.1.2
org.apache.maven.plugins:maven-source-plugin	3.2.1	3.3.0
org.apache.maven.plugins:maven-javadoc-plugin	3.4.1	3.6.0
org.owasp:dependency-check-maven	8.1.2	8.4.0
org.jacoco:jacoco-maven-plugin	0.8.9	0.8.10
org.apache.maven.plugins:maven-gpg-plugin	3.0.1	3.1.0
org.apache.maven.plugins:maven-deploy-plugin	3.1.0	3.1.1

Updates org.cryptomator:integrations-api from 1.2.0 to 1.3.0

Release notes

Sourced from org.cryptomator:integrations-api's releases.

1.3.0

What's Changed

• libappindicator support by @​purejava in cryptomator/integrations-api#17
• polymorphic tray icon loading by @​overheadhunter in cryptomator/integrations-api#19
• removed experimental state of MountService

Full Changelog: cryptomator/integrations-api@1.2.0...1.3.0

Release 1.3.0-beta1

What's Changed

• Adjusted TrayMenuController API to support further tray icon types (#19) in preparation for libappindicator support (#17)
• Marked Mount API as stable

Full Changelog: cryptomator/integrations-api@1.2.0...1.3.0-beta1

Commits

• b58ecc6 Merge branch 'release/1.3.0'
• c463221 Merge branch 'develop' into release/1.3.0
• adda424 replace deprecated release action
• dff4e81 prepare 1.3.0
• 948faea updated .idea config for IDEA 2023.1+
• 5b43e50 Merge pull request #19 from cryptomator/feature/tray-icon-loader
• 9daf5f6 mark api as still being subject to change
• cdf313e polymorphic tray icon loading
• 90ad49c Merge pull request #17 from purejava/libappindicator
• 17fbf49 Change API to support svg icons
• Additional commits viewable in compare view

Updates org.eclipse.jetty:jetty-server from 10.0.16 to 11.0.16

Release notes

Sourced from org.eclipse.jetty:jetty-server's releases.

11.0.16

Security Updates

This release addresses:

• GHSA-58qw-p7qm-5rvh - provides a workaround for direct users of XmlParser
• CVE-2023-40167
• CVE-2023-36479
• CVE-2023-41900

Special Thanks to the following Eclipse Jetty community members

• @​strogiyotec (Almas Abdrazak)
• @​huisongma (huisongma)
• @​garydgregory (Gary Gregory)

Changelog

• #10397 - Iso88591StringBuilder.append seems to have a logic error
• #10388 - Jetty10 inetaccess mod started error
• #10352 - Jetty accepts "+" prefixed value in Content-Length (CVE-2023-40167)
• #10329 - Various cleanups in HttpParser
• #10271 - jetty.sh does not stop jetty anymore
• #10211 - NPE in ArrayByteBufferPool.findOldestEntry()
• #10176 - cleanups of DateCache
• #10160 - Verify PROXY_AUTHENTICATION is sent to forward proxies
• #10145 - WritePendingException over HTTP/2 tunnel
• #10143 - Startup fails due to IllegalArgumentException: Comparison method violates its general contract
• #10135 - Websocket: Using PerMessageDeflateExtension and flush in batchMode send FLUSH_FRAME to client.
• #10105 - Document that Request objects are not reusable
• #10086 - Revisiting ProxyConfiguration.getProxies()
• #10066 - Allow SAXParserFactory or SAXParser to be configured in Jetty's XmlParser class - Allows for GHSA-58qw-p7qm-5rvh workaround
• #9997 - No progress during Gzip Request Inflation results in bogus error
• #9947 - Cannot invoke "org.eclipse.jetty.io.ManagedSelector.getTotalKeys()" because "selector" is null (@​strogiyotec)
• #9938 - Bulletproof AbstractProxyServlet#destory() to make it easier to write (@​garydgregory)
• #9895 - A MessageTooLargeException doesn't close a WebSocket connection
• #9887 - Deprecate CGI Servlet (CVE-2023-36479)
• #9798 - review and cleanup of HTTP/3 QPACK Integer and String encoding
• #9777 - CrossOriginFilter does not return Vary header on no-cors mode
• #9761 - H3: Fix racy read from stream-less channel
• #9749 - HTTP/2 improvements.
• #9741 - Review of websocket parser, improve testing & comments.
• #9728 - Fixes to QPACK configuration from SETTINGS frames.
• #9715 - deprecate PushSessionCacheFilter
• #9685 - Jetty doesn't set the date header on error responses
• #9682 - RetainableByteBuffer buffer release bug in WebSocket
• #9554 - Move (qpack/hpack) HuffmanDecoder / HuffmanEncoder / NBitInteger* to common location
• #9476 - onCompleteFailure called multiple times
• #8926 - HttpClient GZIPContentDecoder should remove Content-Length and Content-Encoding: gzip
• #8556 - ServletContext.getSessionTimeout() incorrectly throws IllegalStateException

... (truncated)

Commits

• bedff45 Updating to version 11.0.16
• d3fbcaf Fixing release-jetty.sh script
• 99c049e Merge remote-tracking branch 'origin/jetty-10.0.x' into jetty-11.0.x
• c3cf256 Merge remote-tracking branch 'origin/jetty-10.0.x' into jetty-11.0.x
• cf97e58 Merged branch 'jetty-10.0.x' into 'jetty-11.0.x'.
• 5cc4a9d Merged branch 'jetty-10.0.x' into 'jetty-11.0.x'.
• b6a298f Merged branch 'jetty-10.0.x' into 'jetty-11.0.x'.
• 90aa433 Merged branch 'jetty-10.0.x' into 'jetty-11.0.x'.
• 1309c65 Merge branch 'jetty-10.0.x' into jetty-11.0.x
• 6588cc8 Merge branch 'jetty-10.0.x' into jetty-11.0.x
• Additional commits viewable in compare view

Updates org.eclipse.jetty:jetty-servlet from 10.0.16 to 11.0.16

Release notes

Sourced from org.eclipse.jetty:jetty-servlet's releases.

11.0.16

Security Updates

This release addresses:

• GHSA-58qw-p7qm-5rvh - provides a workaround for direct users of XmlParser
• CVE-2023-40167
• CVE-2023-36479
• CVE-2023-41900

Special Thanks to the following Eclipse Jetty community members

• @​strogiyotec (Almas Abdrazak)
• @​huisongma (huisongma)
• @​garydgregory (Gary Gregory)

Changelog

• #10397 - Iso88591StringBuilder.append seems to have a logic error
• #10388 - Jetty10 inetaccess mod started error
• #10352 - Jetty accepts "+" prefixed value in Content-Length (CVE-2023-40167)
• #10329 - Various cleanups in HttpParser
• #10271 - jetty.sh does not stop jetty anymore
• #10211 - NPE in ArrayByteBufferPool.findOldestEntry()
• #10176 - cleanups of DateCache
• #10160 - Verify PROXY_AUTHENTICATION is sent to forward proxies
• #10145 - WritePendingException over HTTP/2 tunnel
• #10143 - Startup fails due to IllegalArgumentException: Comparison method violates its general contract
• #10135 - Websocket: Using PerMessageDeflateExtension and flush in batchMode send FLUSH_FRAME to client.
• #10105 - Document that Request objects are not reusable
• #10086 - Revisiting ProxyConfiguration.getProxies()
• #10066 - Allow SAXParserFactory or SAXParser to be configured in Jetty's XmlParser class - Allows for GHSA-58qw-p7qm-5rvh workaround
• #9997 - No progress during Gzip Request Inflation results in bogus error
• #9947 - Cannot invoke "org.eclipse.jetty.io.ManagedSelector.getTotalKeys()" because "selector" is null (@​strogiyotec)
• #9938 - Bulletproof AbstractProxyServlet#destory() to make it easier to write (@​garydgregory)
• #9895 - A MessageTooLargeException doesn't close a WebSocket connection
• #9887 - Deprecate CGI Servlet (CVE-2023-36479)
• #9798 - review and cleanup of HTTP/3 QPACK Integer and String encoding
• #9777 - CrossOriginFilter does not return Vary header on no-cors mode
• #9761 - H3: Fix racy read from stream-less channel
• #9749 - HTTP/2 improvements.
• #9741 - Review of websocket parser, improve testing & comments.
• #9728 - Fixes to QPACK configuration from SETTINGS frames.
• #9715 - deprecate PushSessionCacheFilter
• #9685 - Jetty doesn't set the date header on error responses
• #9682 - RetainableByteBuffer buffer release bug in WebSocket
• #9554 - Move (qpack/hpack) HuffmanDecoder / HuffmanEncoder / NBitInteger* to common location
• #9476 - onCompleteFailure called multiple times
• #8926 - HttpClient GZIPContentDecoder should remove Content-Length and Content-Encoding: gzip
• #8556 - ServletContext.getSessionTimeout() incorrectly throws IllegalStateException

... (truncated)

Commits

• bedff45 Updating to version 11.0.16
• d3fbcaf Fixing release-jetty.sh script
• 99c049e Merge remote-tracking branch 'origin/jetty-10.0.x' into jetty-11.0.x
• c3cf256 Merge remote-tracking branch 'origin/jetty-10.0.x' into jetty-11.0.x
• cf97e58 Merged branch 'jetty-10.0.x' into 'jetty-11.0.x'.
• 5cc4a9d Merged branch 'jetty-10.0.x' into 'jetty-11.0.x'.
• b6a298f Merged branch 'jetty-10.0.x' into 'jetty-11.0.x'.
• 90aa433 Merged branch 'jetty-10.0.x' into 'jetty-11.0.x'.
• 1309c65 Merge branch 'jetty-10.0.x' into jetty-11.0.x
• 6588cc8 Merge branch 'jetty-10.0.x' into jetty-11.0.x
• Additional commits viewable in compare view

Updates org.jetbrains:annotations from 23.0.0 to 24.0.1

Release notes

Sourced from org.jetbrains:annotations's releases.

24.0.1

• Added @Documented annotation where it would be useful.

24.0.0

• Added new annotation: @CheckReturnValue

23.1.0

• Added new annotation: @ApiStatus.Obsolete

Changelog

Sourced from org.jetbrains:annotations's changelog.

Version 24.0.1

• Added @Documented annotation where it would be useful.

Version 24.0.0

• Added new annotation: @CheckReturnValue.

Version 23.1.0

• Added new annotation: @ApiStatus.Obsolete.

Commits

• 784429a Merge pull request #89 from Thijsiez/master
• bf298f2 Update version to 24.0.1
• 0d08bfd Merge pull request #86 from Thijsiez/master
• e575d98 Add @​Documented where it's currently missing
• f0a5f5c Fix typo
• d2b9ea9 Merge pull request #85 from JT122406/master
• cc01843 Add to README.md kotlin DSL
• c36487a Changelog updated
• 3ca2907 Update version to 24.0.0
• 503d198 Merge pull request #81 from rillig/roland.illig/CheckReturnValue
• Additional commits viewable in compare view

Updates org.slf4j:slf4j-api from 2.0.7 to 2.0.9

Updates org.slf4j:slf4j-simple from 2.0.7 to 2.0.9

Updates org.junit.jupiter:junit-jupiter from 5.9.3 to 5.10.0

Release notes

Sourced from org.junit.jupiter:junit-jupiter's releases.

JUnit 5.10.0 = Platform 1.10.0 + Jupiter 5.10.0 + Vintage 5.10.0

See Release Notes.

Full Changelog: junit-team/junit5@r5.10.0-RC2...r5.10.0

JUnit 5.10.0-RC2 = Platform 1.10.0-RC2+ Jupiter 5.10.0-RC2 + Vintage 5.10.0-RC2

See Release Notes.

JUnit 5.10.0-RC1 = Platform 1.10.0-RC1 + Jupiter 5.10.0-RC1 + Vintage 5.10.0-RC1

See Release Notes.

JUnit 5.10.0-M1 = Platform 1.10.0-M1 + Jupiter 5.10.0-M1 + Vintage 5.10.0-M1

See Release Notes.

Commits

• 7f619ca Release 5.10
• 9899de4 Update Gradle Enterprise plugin to 3.14
• 45b970f Replace soon-to-be-deprecated usages of project.buildDir
• 463ae36 Prune Release Notes for 5.10 GA
• 893c64b Back to snapshots for further development
• e6ff0c5 Release 5.10.0-RC2
• b08a76b Add 5.10.0-RC2 release notes
• 2c278c7 Revert "Prune Release Notes for 5.10 GA"
• acb6e65 Provide access to source element annotations for TempDirFactory
• 73818a1 Bump org.gradle.toolchains:foojay-resolver from 0.5.0 to 0.6.0
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-compiler-plugin from 3.10.1 to 3.11.0

Release notes

Sourced from org.apache.maven.plugins:maven-compiler-plugin's releases.

3.11.0

🚀 New features and improvements

• [MCOMPILER-494] - Add a useModulePath switch to the testCompile mojo (#119) @​dmlloyd
• [MCOMPILER-395] - Allow dependency exclusions for 'annotationProcessorPaths' (#173) @​psiroky
• [MCOMPILER-522] - Use maven-resolver to resolve 'annotationProcessorPaths' dependencies (#169) @​psiroky
• [MCOMPILER-516] - upgrade plexus-compiler to improve compiling message (#164) @​hboutemy
• [MCOMPILER-501] - compileSourceRoots parameter should be writable (#159) @​gnodet
• [MCOMPILER-457] - Change showWarnings to true by default (#157) @​pzygielo
• [MCOMPILER-457] - Warn about warn-config conflicting values (#153) @​pzygielo
• [MCOMPILER-505] - Update default source/target from 1.7 to 1.8 (#149) @​jorsol
• [MCOMPILER-499] - display recompilation causes (#143) @​olamy
• [MCOMPILER-500] - add some parameter to pattern from stale source calculation (#141) @​olamy
• [MCOMPILER-488] - dedicated option for implicit javac flag (#102) @​pzygielo

🐛 Bug Fixes

• [MCOMPILER-525] - Incorrect detection of dependency change (#172) @​jorsol
• [MCOMPILER-523] - Test with Maven 3.9.0 and fix the failing IT (#176) @​gnodet
• [MCOMPILER-503] - Resolve all annotation processor dependencies together (#170) @​psiroky
• [MCOMPILER-512] - Defining maven.compiler.release as empty string end… (#158) @​project25o1
• [MCOMPILER-495] - Fixes missing dirs in createMissingPackageInfoClasses (#121) @​jmax01
• [MCOMPILER-347] - Set Xcludes in config passed to actual compiler (#101) @​pzygielo

📦 Dependency updates

• Bump apache/maven-gh-actions-shared from 2 to 3 (#182) @​dependabot
• Bump maven-invoker-plugin from 3.4.0 to 3.5.0 (#179) @​dependabot
• [MCOMPILER-527] - Upgrade plexus-java to 1.1.2 (#177) @​gnodet
• [MCOMPILER-526] - Upgrade to parent 39 (#175) @​gnodet
• Bump junit from 4.12 to 4.13.1 in /src/it/multirelease-patterns/packaging-plugin (#115) @​dependabot
• [MCOMPILER-519] - Upgrade maven-invoker-plugin from 3.3.0 to 3.4.0 (#166) @​psiroky
• Bump qdox from 2.0.2 to 2.0.3 (#152) @​dependabot
• Bump maven-jxr-plugin from 3.2.0 to 3.3.0 (#146) @​dependabot
• Bump maven-jxr-plugin from 3.1.1 to 3.2.0 (#105) @​dependabot
• Bump junit from 4.10 to 4.13.1 in /src/it/MCOMPILER-203-processorpath/annotation-user (#114) @​dependabot
• Bump plexusCompilerVersion from 2.12.0 to 2.12.1 (#139) @​dependabot
• Bump maven-shared-utils from 0.1 to 3.3.3 in /src/it/MCOMPILER-157/annotation-verify (#127) @​dependabot
• Bump maven-shared-utils from 0.1 to 3.3.3 in /src/it/MCOMPILER-203-processorpath/annotation-verify (#128) @​dependabot
• Bump mockito-core from 4.6.0 to 4.6.1 (#132) @​dependabot
• Bump maven-release-plugin from 3.0.0-M5 to 3.0.0-M6 (#133) @​dependabot
• Bump mockito-core from 4.5.1 to 4.6.0 (#130) @​dependabot
• Bump maven-invoker-plugin from 3.2.2 to 3.3.0 (#131) @​dependabot
• Bump junit from 4.8.2 to 4.13.1 in /src/it/groovy-project-with-new-plexus-compiler (#124) @​dependabot
• Bump junit from 4.12 to 4.13.1 in /src/it/MCOMPILER-298 (#125) @​dependabot
• Bump plexusCompilerVersion from 2.11.2-SNAPSHOT to 2.12.0 (#122) @​dependabot
• Bump junit from 4.12 to 4.13.1 in /src/it/multirelease-patterns/singleproject-runtime (#110) @​dependabot
• Bump junit from 4.12 to 4.13.1 in /src/it/multirelease-patterns/multiproject/multirelease-nine (#112) @​dependabot
• Bump junit from 4.12 to 4.13.1 in /src/it/multirelease-patterns/multimodule/multirelease-base (#111) @​dependabot

... (truncated)

Commits

• eeda628 [maven-release-plugin] prepare release maven-compiler-plugin-3.11.0
• 82b799f [MCOMPILER-527] Upgrade plexus-java to 1.1.2 (#177)
• f9c2350 [MCOMPILER-526] Fix IT (#178)
• 4022bd0 [MCOMPILER-494] - Add a useModulePath switch to the testCompile mojo (#119)
• f4a8a54 [MCOMPILER-525] Incorrect detection of dependency change (#172)
• 86b9f59 [MCOMPILER-395] Allow dependency exclusions for 'annotationProcessorPaths' (#...
• e304ceb [MCOMPILER-526] Ignore reformat commit for git blame
• f7a4613 [MCOMPILER-526] Reformat
• cc78aee [MCOMPILER-526] Upgrade to parent 39
• 3dca82f [MCOMPILER-526] Add packages to please the formatter
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-surefire-plugin from 3.0.0-M7 to 3.1.2

Release notes

Sourced from org.apache.maven.plugins:maven-surefire-plugin's releases.

3.1.2

Release Notes - Maven Surefire - Version 3.1.2

• update commons compress to 1.23.0 (#655) @​elharo
• Drop unused commons-lang 2.6 from management (#661) @​elilja
• Remove old junittoolbox dependency no longer used (#658) @​elharo
• update test libraries (#657) @​elharo
• update commons-io to 2.12.0 (#653) @​elharo
• remove descriptions of Maven 2.x and very old versions (#647) @​elharo
• Remove more details about Maven 2 and old versions (#654) @​elharo
• Simplify method (#651) @​michael-o
• Update Sufefire (#646) @​michael-o
• Backport (#635) @​michael-o
• [SUREFIRE-2166] - Use ChoiceFormat to selective render percentage and elapsed time in SurefireReportRenderer (#639) @​michael-o
• Simplify serialization/deserialization of elapsed time (SUREFIRE-2164 + SUREFIRE-2167) (#645) @​michael-o
• [SUREFIRE-2169] - Potential NPE in WrappedReportEntry when #getElapsed(… (#643) @​michael-o
• fix SAX bug (#642) @​michael-o
• [MNG-6829] - Replace StringUtils#isEmpty(String) & #isNotEmpty(String) (#641) @​timtebeek
• Fixes (#636) @​michael-o

📦 Dependency updates

• Bump animal-sniffer-maven-plugin from 1.21 to 1.23 (#624) @​dependabot

👻 Maintenance

• [SUREFIRE-2173] - Pass build and tests with Java 20 (#648) @​slachiewicz

3.1.0

Release Notes - Maven Surefire - Version 3.1.0 Sub-task

• [SUREFIRE-2162] - Document upcoming mojo and file names change

Bug

• [SUREFIRE-2140] - Cannot release Surefire on Windows

Improvement

• [SUREFIRE-2153] - Replace SurefireReportGenerator with a new SurefireReportRenderer
• [SUREFIRE-2160] - Replace LocalizedProperties with (Custom)I18N approach from MPIR

Task

... (truncated)

Commits

• 5e097b5 [maven-release-plugin] prepare release surefire-3.1.2
• 255bb51 Update commons compress to 1.23.0
• a77dfb2 Drop unused commons-lang 2.6 from management (#661)
• 95e8e95 [SUREFIRE-2157] Upgrade junit-jupiter to 5.9.3/junit-platform to 1.9.2
• 9092b5e [SUREFIRE-2157] Upgrade surefire IT to 3.1.0
• 1af92f5 Remove old junittoolbox dependency no longer used (#658)
• 8878ed5 update test libraries (#657)
• a6613a8 Remove redundant space
• e0e89e4 update commons-io to 2.12.0
• d8ac134 [MNGSITE-393] remove descriptions of Maven 2.x and very old versions
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-source-plugin from 3.2.1 to 3.3.0

Commits

• 02a9847 [maven-release-plugin] prepare release maven-source-plugin-3.3.0
• f186993 [MSOURCES-135] Cleanup project code
• 021af55 [MSOURCES-134] Refresh download page
• b11a457 Use shared GitHub actions v3
• 7caf2b0 [MSOURCES-133] Upgrade Parent to 39 - ignore git blame
• dee4c10 [MSOURCES-133] Upgrade Parent to 39
• 452111f Add dependabot configuration
• e691ac3 s/MSOURCE/MSOURCES/
• 1ddffd8 Auto-link MSOURCE Jira
• 37ffefe Add pull request template
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-javadoc-plugin from 3.4.1 to 3.6.0

Release notes

Sourced from org.apache.maven.plugins:maven-javadoc-plugin's releases.

3.6.0

🚀 New features and improvements

• [MJAVADOC-642] - Make offline mode configurable (#238) @​hgschmie
• [MJAVADOC-642] - Make offline mode configurable (#232) @​hgschmie
• [MJAVADOC-770] - Implement legacy mode for Java 9+ (#228) @​hgschmie
• [MJAVADOC-743] - Drop deprecated mojo parameter (#185) @​cstamas

🐛 Bug Fixes

• [MJAVADOC-742] - Fix resolution of docletArtifacts (#186) @​cstamas
• [MJAVADOC-758] - correct exception in JavadocUtil (#230) @​hgschmie
• [MJAVADOC-769] - fix for transitive filename based modules (#227) @​hgschmie
• [MJAVADOC-767] - javadoc creates invalid --patch-module statements (#225) @​hgschmie
• [MJAVADOC-763] - remove test that doesn't test what it claims (#219) @​elharo
• [MJAVADOC-757] - fix Javadoc warnings (#212) @​elharo
• Fix UmlGraph link in site example (#198) @​ParkerM

📦 Dependency updates

• [JAVADOC-771] - Upgrade Parent to 40 (#234) @​hgschmie
• Bump org.apache.maven:maven-core from 3.6.0 to 3.8.1 in /src/it/projects/MJAVADOC-568_manifest-splitpackage/mojo (#226) @​dependabot
• Bump com.google.guava:guava from 31.1-jre to 32.0.0-jre in /src/it/projects/MJAVADOC-769 (#229) @​dependabot
• [MJAVADOC-766] - Bump org.codehaus.plexus:plexus-archiver from 4.7.1 to 4.8.0 (#222) @​dependabot
• Bump hamcrest-core from 1.3 to 2.2 (#221) @​dependabot
• Bump guava from 27.0.1-jre to 32.0.0-jre in /src/it/projects/MJAVADOC-555_link-automatic-modules (#207) @​dependabot
• Bump javax.servlet-api from 3.1.0 to 4.0.1 (test dependency) (#220) @​dependabot
• [MJAVADOC-761] - commons-io 2.13.0 (#215) @​elharo
• Bump plexus-utils from 3.5.0 to 3.5.1 (#201) @​dependabot
• Bump mockito-core from 4.4.0 to 4.11.0 (#196) @​dependabot

👻 Maintenance

• fix jenkins link (#237) @​hgschmie
• Fix build on jenkins (#236) @​slawekjaranowski
• [MJAVADOC-772] - Refresh download page (#235) @​slawekjaranowski
• Use 3.6.0 as release version (#233) @​hgschmie
• Remove superflous whitespace from PR template (#231) @​hgschmie
• Bump jetty from 9.4.50.v20221201 to 9.4.51.v20230217 (#224) @​slachiewicz
• [MJAVADOC-765] - Fix build with Java 20 (#223) @​slachiewicz
• [MJAVADOC-760] - declare test dependencies (#217) @​elharo
• [MJAVADOC-760] - explicitly declare shared utility dependencies (#216) @​elharo
• remove unused private method (#213) @​elharo
• replace plexus with maven shared utils (#211) @​elharo
• [MJAVADOC-755] - replace IOUtil.close with try with resources (#209) @​elharo
• [MJAVADOC-755] - Use java.lang.String instead of StringUtils (#208) @​elharo
• [MNG-6829] - Replace StringUtils#isEmpty(String) and #isNotEmpty(String) (#205) @​timtebeek
• Bump mockito-core from 4.4.0 to 4.11.0 (#196) @​dependabot
• [MNG-6825] - Replace Maven shared StringUtils with Commons Lang3 (#199) @​timtebeek

... (truncated)

Commits

• 7548066 [maven-release-plugin] prepare release maven-javadoc-plugin-3.6.0
• 77adc47 [MJAVADOC-642] Make offline mode configurable (#238)
• 24362d2 [MJAVADOC-742] Fix resolution of docletArtifacts (#186)
• bee4197 fix jenkins link (#237)
• 9830bdc Fix build on jenkins
• 6f30bed [MJAVADOC-642] Make offline mode configurable (#232)
• e4023d0 [JAVADOC-771] Upgrade Parent to 40 (#234)
• 7904e45 [MJAVADOC-772] Refresh download page
• 87c2424 Bump org.apache.maven:maven-core (#226)
• 83ab01b Use 3.6.0 as release version (#233)
• Additional commits viewable in compare view

Updates org.owasp:dependency-check-maven from 8.1.2 to 8.4.0

Release notes

Sourced from org.owasp:dependency-check-maven's releases.

Version 8.4.0

Added

• feat: Add support for Nexus v3 to NexusAnalyzer (#5849)

Fixed

• fix: Hint Analyzer should run before VersionFilter Analyzer (#5818)
• chore: switch to sha1-pinning as suggested by Semgrep
• fix: OSS Index Analyzer SocketTimeoutException exception handling based on warn only parameter (#5845)
• fix: use curl with -L to follow github redirect (#5808)
• fix: use curl with -L to follow github redirect
• fix: #5671 out of memory error (#5789)
• fix: #5671 Exit method as soon as we detect a loop to prevent an infinite loop leading to an OutOfMemoryError

Version 8.3.1

Re-release of 8.3.0 as 8.3.1.

v8.3.0

Added

• Add LibmanAnalyzer (#5652)
• Update HTML report Dependencies head...

  Description has been truncated

[overheadhunter]

@dependabot show org.eclipse.jetty:jetty-server ignore conditions

[dependabot]

No ignore conditions found for the dependency org.eclipse.jetty:jetty-server

[overheadhunter]

@dependabot rebase

[dependabot]

Looks like this PR is already up-to-date with develop! If you'd still like to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

[overheadhunter]

@dependabot recreate

[dependabot]

Looks like these dependencies are no longer being updated by Dependabot, so this is no longer needed.