Dependency Dashboard #346
Description
This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.
Config Migration Needed
- Select this checkbox to let Renovate create an automated Config Migration PR.
Deprecations / Replacements
Warning
These dependencies are either deprecated or have replacements available:
| Datasource | Name | Replacement PR? |
|---|---|---|
| maven | com.atlassian.commonmark:commonmark |
 |
Rate-Limited
The following updates are currently rate-limited. To force their creation now, click on a checkbox below.
- Update dependency org.apache.maven.plugins:maven-gpg-plugin to v3.2.8
- Update dependency org.slf4j:slf4j-api to v1.7.36
- Update dependency maven to v3.9.12
- Update dependency maven-wrapper to v3.3.4
- Update dependency org.apache.maven.plugins:maven-source-plugin to v3.4.0
- Update dependency org.junit:junit-bom to v5.14.1
- Update dependency org.mockito:mockito-core to v4.11.0
- Update jackson monorepo to v2.20.1 (
com.fasterxml.jackson.core:jackson-databind,com.fasterxml.jackson.core:jackson-core) - Update jmh.version to v1.37 (
org.openjdk.jmh:jmh-generator-annprocess,org.openjdk.jmh:jmh-core) - Update actions/cache action to v5
- Update actions/checkout action to v6
- Update actions/setup-java action to v5
- Update dependency com.google.guava:guava to v33
- Update dependency org.apache.maven.plugins:maven-surefire-plugin to v3
- Update dependency org.junit:junit-bom to v6
- Update dependency org.mockito:mockito-core to v5
- Update dependency org.slf4j:slf4j-api to v2
- 🔐 Create all rate-limited PRs at once 🔐
Open
The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.
- Update dependency ch.qos.logback:logback-classic to v1.2.13 [SECURITY]
- Update dependency org.mozilla:rhino to v1.7.14.1 [SECURITY]
- Update dependency commons-io:commons-io to v2.14.0 [SECURITY]
- Update dependency org.apache.commons:commons-lang3 to v3.18.0 [SECURITY]
- Update dependency org.xmlunit:xmlunit-core to v2.10.0 [SECURITY]
- Replace commonmark.version with org.commonmark:commonmark
- Update dependency com.google.guava:guava to v32.1.3-jre
- Update dependency org.freemarker:freemarker to v2.3.34
- Update dependency org.jacoco:jacoco-maven-plugin to v0.8.14
- Update dependency org.projectlombok:lombok to v1.18.42
- Update dependency org.apache.maven.plugins:maven-javadoc-plugin to v3.12.0
- Click on this checkbox to rebase all open PRs at once
Detected Dependencies
github-actions (4)
.github/workflows/build.yml (3)
actions/checkout v3actions/cache v3actions/setup-java v3.github/workflows/cve-scanning.yml (2)
actions/checkout v3actions/setup-java v3.github/workflows/release.yml (3)
actions/checkout v3actions/cache v3actions/setup-java v3.github/workflows/semgrep.yml (1)
actions/checkout v3
maven (1)
pom.xml (23)
org.sonatype.central:central-publishing-maven-plugin 0.9.0org.junit:junit-bom 5.8.2org.projectlombok:lombok 1.18.22com.github.java-json-tools:json-schema-validator 2.2.14org.mozilla:rhino 1.7.13com.google.guava:guava 32.1.2-jrecom.fasterxml.jackson.core:jackson-core 2.15.2com.fasterxml.jackson.core:jackson-databind 2.15.2commons-io:commons-io 2.11.0org.apache.commons:commons-lang3 3.12.0org.freemarker:freemarker 2.3.31org.slf4j:slf4j-api 1.7.32com.atlassian.commonmark:commonmark 0.15.2org.mockito:mockito-core 4.0.0org.openjdk.jmh:jmh-core 1.33org.openjdk.jmh:jmh-generator-annprocess 1.33org.xmlunit:xmlunit-core 2.8.3ch.qos.logback:logback-classic 1.2.9org.jacoco:jacoco-maven-plugin 0.8.7org.apache.maven.plugins:maven-gpg-plugin 3.2.7org.apache.maven.plugins:maven-source-plugin 3.2.1org.apache.maven.plugins:maven-javadoc-plugin 3.3.2org.apache.maven.plugins:maven-surefire-plugin 2.22.2
maven-wrapper (1)
.mvn/wrapper/maven-wrapper.properties (2)
maven 3.8.4maven-wrapper 3.1.0
- Check this box to trigger a request for Renovate to run again on this repository