fix: update pmd version to resolve CVE

[stevecl5]

Summary of Changes

Updates PMD plugin from 7.16.0 to 7.22.0. This resolves the following snyk vulnerabilities:

  Upgrade net.sourceforge.pmd:pmd-ant@7.16.0 to net.sourceforge.pmd:pmd-ant@7.22.0 to fix
  ✗ Cross-site Scripting (XSS) (new) [Low Severity][https://security.snyk.io/vuln/SNYK-JAVA-NETSOURCEFORGEPMD-15365925] in net.sourceforge.pmd:pmd-core@7.16.0
    introduced by net.sourceforge.pmd:pmd-ant@7.16.0 > net.sourceforge.pmd:pmd-core@7.16.0 and 1 other path(s)

  Upgrade net.sourceforge.pmd:pmd-java@7.16.0 to net.sourceforge.pmd:pmd-java@7.22.0 to fix
  ✗ Cross-site Scripting (XSS) (new) [Low Severity][https://security.snyk.io/vuln/SNYK-JAVA-NETSOURCEFORGEPMD-15365925] in net.sourceforge.pmd:pmd-core@7.16.0
    introduced by net.sourceforge.pmd:pmd-ant@7.16.0 > net.sourceforge.pmd:pmd-core@7.16.0 and 1 other path(s)

Public API Additions/Changes

N/A

Downstream Consumer Impact

Downstream consumers pmd dependencies will automatically be updated to 7.22.0 to resolve the vulnerability.

How Has This Been Tested?

I pulled a snapshot version into path-core and ran ./gradlew dependencies --write-locks, verifying that the pmd dependencies were updated to 7.22.0 as expected.

Checklist:

• My code follows the style guidelines of this project
• I have performed a self-review of my code
• I have made corresponding changes to the documentation
• My changes generate no new warnings
• I have added tests that prove my fix is effective or that my feature works