fix(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Type	Update	Change	Age	Confidence
github/codeql-action	action	patch	v4.31.0 -> v4.31.2
gradle (source)		minor	9.1.0 -> 9.2.0
io.quarkus	plugin	patch	3.29.0 -> 3.29.2
io.quarkus:quarkus-junit5	dependencies	patch	3.29.0 -> 3.29.2
io.quarkus:quarkus-arc	dependencies	patch	3.29.0 -> 3.29.2
io.quarkus:quarkus-bom	dependencies	patch	3.29.0 -> 3.29.2
org.junit:junit-bom (source)	dependencies	patch	5.14.0 -> 5.14.1

---

Release Notes

github/codeql-action (github/codeql-action)

v4.31.2

Compare Source

v4.31.1

Compare Source

gradle/gradle (gradle)

v9.2.0

Compare Source

quarkusio/quarkus (io.quarkus:quarkus-junit5)

v3.29.2

Compare Source

v3.29.1

Compare Source

Complete changelog

• #​49766 - OidcSecurity annotation breaks if TestSecurity annotation is used on Test Class instead of Method
• #​50301 - DevUI WorkspaceProcessor fails when files change during the processing
• #​50388 - Manually enforce platform constraints for conditional dependencies in QuarkusComponentVariants
• #​50452 - ArC: fix subclass generation with not visible decorators
• #​50606 - Bump com.microsoft.azure.functions:azure-functions-java-library from 3.2.0 to 3.2.1
• #​50617 - ClassCastException due to classloader mismatch with JDK 25
• #​50618 - Qute generator: incorrect resolver for multiple namespace extension methods
• #​50619 - FORMAT_FAILURE encountered in Camel logging from dev mode
• #​50631 - HQL console don't work when the project have both reactive and blocking hibernate extensions
• #​50633 - io.quarkus.websockets.next.deployment.WebSocketProcessor fails to validate injection endpoint when @WebSocketClient class in library
• #​50635 - Ensure that FJP threads can load resources in tests
• #​50636 - Improve error message for when websocket endpoint isn't a bean
• #​50637 - Refactor RemoteThread to improve section frame handling (#for, #each, #if)
• #​50652 - quarkus.rest-client."client".disable-default-mapper Ignored in Native Mode
• #​50665 - Qute generator: fix multiple namespace extension methods
• #​50668 - Hibernate HQL console: fix combo box for reactive/orm PUs with the same name
• #​50672 - Mask some HTTP headers in the HTTP access log
• #​50673 - Bump io.quarkus.gizmo:gizmo2 from 2.0.0.Beta6 to 2.0.0.Beta8
• #​50679 - Reduce footprint of wiring classes generated by Gizmo 2
• #​50683 - Disable warnings about unsafe usage of Unsafe in native
• #​50700 - Fix scenario that combines class-level @TestSecurity annotation with method-level @OidcSecurity annotation
• #​50701 - Make sure dev ui workspace don't prevent dev mode from starting up
• #​50705 - Make sure local quarkus-versions config are effective when the default registry provides its own
• #​50733 - Bump to Mutiny 3.0.1
• #​50745 - Record runtime configuration in its own ConfigSource
• #​50749 - Bump the hibernate group with 8 updates
• #​50755 - Bug for JAX-RS Sub-Resources - 405 Method Not Allowed
• #​50758 - Bump org.hibernate.tool:hibernate-tools-language from 7.1.4.Final to 7.1.5.Final in the hibernate group
• #​50760 - Redis Client: add sentinel topology cache TTL configuration
• #​50764 - Filter for client imports on class level only when discovering Endpoints
• #​50768 - Make REST client request filter used for the default OIDC client singleton
• #​50769 - Docker runtime not detected for Compose dev services
• #​50771 - Improve Docker and Podman CLI detection and error messages
• #​50772 - Registry client option to set a low boundary for recommended streams on the client side
• #​50776 - Update to slf4j-jboss-logmanager 2.0.2.Final
• #​50782 - Various improvements to our Azure Functions support
• #​50794 - Bump com.microsoft.azure.functions:azure-functions-java-library from 3.2.1 to 3.2.2
• #​50799 - Fix StreamingOutput connection reset on mid-stream errors
• #​50808 - Replace deprecated IsNormal in the guide for writing dev services
• #​50836 - Update JSON to 2025051
• #​50851 - Bump the hibernate group with 9 updates
• #​50852 - Bump com.fasterxml.jackson:jackson-bom from 2.20.0 to 2.20.1

---

Configuration

📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.