Bump the all-minor-patch group across 1 directory with 15 updates

[dependabot]

Bumps the all-minor-patch group with 15 updates in the / directory:

Package	From	To
org.apache.maven.plugins:maven-javadoc-plugin	3.11.3	3.12.0
org.apache.maven.plugins:maven-enforcer-plugin	3.6.1	3.6.2
org.jacoco:jacoco-maven-plugin	0.8.13	0.8.14
org.sonatype.central:central-publishing-maven-plugin	0.8.0	0.9.0
com.fasterxml.jackson:jackson-bom	2.19.2	2.20.0
io.github.classgraph:classgraph	4.8.181	4.8.184
org.apache.commons:commons-lang3	3.18.0	3.19.0
org.mockito:mockito-core	5.19.0	5.20.0
com.google.guava:guava	33.4.8-jre	33.5.0-jre
org.assertj:assertj-core	3.27.4	3.27.6
org.junit:junit-bom	5.13.4	5.14.0
org.springframework:spring-core	6.2.11	6.2.12
org.apache.maven.plugins:maven-dependency-plugin	3.8.1	3.9.0
org.apache.maven.plugin-tools:maven-plugin-annotations	3.15.1	3.15.2
org.apache.maven.plugins:maven-plugin-plugin	3.15.1	3.15.2

Updates org.apache.maven.plugins:maven-javadoc-plugin from 3.11.3 to 3.12.0

Release notes

Sourced from org.apache.maven.plugins:maven-javadoc-plugin's releases.

3.12.0

💥 Breaking changes

• remove fix mojo (#1263) @​elharo
• detectOfflineLinks is now false per default for all jar mojo issue #1258 (#1259) @​olamy

🐛 Bug Fixes

• Fix legacyMode (#1265) @​fridrich
• Fix package {...} does not exist in legacyMode (#1243) @​JackPGreen
• Ensure UTF-8 charset is used to avoid IllegalArgumentException: Null charset name (#1245) @​elharo
• Remove Javadoc 1.4+ / -1.1 switch related warning (#1240) @​perceptron8

👻 Maintenance

• protect 3.8.x branch (#1238) @​hboutemy
• feat: enable prevent branch protection rules (#1228) @​sparsick

📦 Dependency updates

• Bump org.codehaus.mojo:mrm-maven-plugin from 1.6.0 to 1.7.0 (#1257) @dependabot[bot]

Commits

• 2a06bed [maven-release-plugin] prepare release maven-javadoc-plugin-3.12.0
• a71ecf9 bump version 3.12.0-SNAPSHOT
• 88f2b71 [maven-release-plugin] prepare for next development iteration
• 7e18956 [maven-release-plugin] prepare release maven-javadoc-plugin-3.11.4
• c11b76c In legacyMode, don't use -sourcepath, unless excludePackageNames is not empty...
• bc9904b remove fix mojo (#1263)
• f310135 Fix package {...} does not exist in legacyMode (#1243)
• c8270f9 detectOfflineLinks is now false per default for all jar mojo issue #1258 ...
• 953e609 Delete flaky test (#1260)
• 2bba7a4 Bump org.codehaus.mojo:mrm-maven-plugin from 1.6.0 to 1.7.0
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-enforcer-plugin from 3.6.1 to 3.6.2

Release notes

Sourced from org.apache.maven.plugins:maven-enforcer-plugin's releases.

3.6.2

🐛 Bug Fixes

• Use SessionData for cache storage (#930) @​slawekjaranowski

📝 Documentation updates

• Update Version Ranges link in site.xml (#926) @​ctubbsii
• Fix formatting typo in dependencyConvergence.apt.vm (#928) @​ascopes
• Correct support parameters documentation for banned repositories rule (#922) @​Harmelodic

👻 Maintenance

• Fixes #920 - Remove usage of Stack (#921) @​khmarbaise
• feat: enable prevent branch protection rules (#925) @​sebtiem
• Fixes #917 - Remove usage of Hashtable (#918) @​khmarbaise

📦 Dependency updates

• Bump m-invoker-p to 3.9.1 (#935) @​slawekjaranowski
• Bump org.apache.commons:commons-lang3 from 3.18.0 to 3.19.0 (#933) @dependabot[bot]
• Bump org.assertj:assertj-core from 3.27.5 to 3.27.6 (#932) @dependabot[bot]
• Bump org.assertj:assertj-core from 3.27.4 to 3.27.5 (#931) @dependabot[bot]
• Bump org.codehaus.mojo:mrm-maven-plugin from 1.6.0 to 1.7.0 (#923) @dependabot[bot]
• Bump org.assertj:assertj-core from 3.27.3 to 3.27.4 (#919) @dependabot[bot]
• Bump commons-codec:commons-codec from 1.18.0 to 1.19.0 (#915) @dependabot[bot]
• Bump commons-io:commons-io from 2.19.0 to 2.20.0 (#914) @dependabot[bot]
• Bump mavenVersion from 3.9.10 to 3.9.11 (#912) @dependabot[bot]

Commits

• 82ba770 [maven-release-plugin] prepare release enforcer-3.6.2
• 5313c70 Bump m-invoker-p to 3.9.1
• ee5abee Bump org.apache.commons:commons-lang3 from 3.18.0 to 3.19.0
• 6c5a152 Bump org.assertj:assertj-core from 3.27.5 to 3.27.6
• 89ccb70 Bump org.assertj:assertj-core from 3.27.4 to 3.27.5 (#931)
• 03ed82d Update Version Ranges link in site.xml (#926)
• d282dc4 Fixes #920 - Remove usage of Stack
• 27e1f46 Use SessionData for cache storage (#930)
• a1bac9b Fix formatting typo in dependencyConvergence.apt.vm
• 870a1ed Correct support parameters documentation for banned repositories rule
• Additional commits viewable in compare view

Updates org.jacoco:jacoco-maven-plugin from 0.8.13 to 0.8.14

Release notes

Sourced from org.jacoco:jacoco-maven-plugin's releases.

0.8.14

New Features

• JaCoCo now officially supports Java 25 (GitHub #1950).
• Experimental support for Java 26 class files (GitHub #1870).
• Branches added by the Kotlin compiler for default argument number 33 or higher are filtered out during generation of report (GitHub #1655).
• Part of bytecode generated by the Kotlin compiler for elvis operator that follows safe call operator is filtered out during generation of report (GitHub #1814, #1954).
• Part of bytecode generated by the Kotlin compiler for more cases of chained safe call operators is filtered out during generation of report (GitHub #1956).
• Part of bytecode generated by the Kotlin compiler for invocations of suspendCoroutineUninterceptedOrReturn intrinsic is filtered out during generation of report (GitHub #1929).
• Part of bytecode generated by the Kotlin compiler for suspending lambdas with parameters is filtered out during generation of report (GitHub #1945).
• Part of bytecode generated by the Kotlin compiler for suspending functions and lambdas with suspension points that return inline value class is filtered out during generation of report (GitHub #1871).
• Part of bytecode generated by the Kotlin Compose compiler plugin for pausable composition is filtered out during generation of report (GitHub #1911).
• Methods generated by the Kotlin serialization compiler plugin are filtered out (GitHub #1885, #1970, #1971).

Fixed bugs

• Fixed handling of implicit else clause of when with String subject in Kotlin (GitHub #1813, #1940).
• Fixed handling of implicit default clause of switch by String in Java when compiled by ECJ (GitHub #1813, #1940). Fixed handling of exceptions in chains of safe call operators in Kotlin (GitHub #1819).

Non-functional Changes

• JaCoCo now depends on ASM 9.9 (GitHub #1965).

Commits

• 2eb2483 Prepare release v0.8.14
• de76181 KotlinSerializableFilter should filter more methods (#1971)
• 89c4bd5 Fix NPE in KotlinSerializableFilter (#1970)
• 0981128 Migrate release staging to the Central Publisher Portal (#1968)
• d07bc6b Add filter for bytecode generated by Kotlin serialization compiler plugin (#1...
• 5e35fd5 Upgrade maven-dependency-plugin to 3.9.0 (#1966)
• c2fe5cc Upgrade ASM to 9.9 (#1965)
• b0f8e23 KotlinSafeCallOperatorFilter should filter "unoptimized" safe call followed b...
• c7bd3f4 Upgrade spotless-maven-plugin to 3.0.0 (#1961)
• faa289d KotlinSafeCallOperatorFilter should not be affected by presence of pseudo ins...
• Additional commits viewable in compare view

Updates org.sonatype.central:central-publishing-maven-plugin from 0.8.0 to 0.9.0

Commits

• See full diff in compare view

Updates com.fasterxml.jackson:jackson-bom from 2.19.2 to 2.20.0

Commits

• 54f854b [maven-release-plugin] prepare release jackson-bom-2.20.0
• 9cc68d4 Prep for 2.20.0
• cbef800 Version sync for 2.20.0 release (in near future)
• 79bc4ed Back to snapshot deps
• 94947a0 [maven-release-plugin] prepare for next development iteration
• 369dffe [maven-release-plugin] prepare release jackson-bom-2.20.0-rc1
• c5caaf2 Prep for 2.20.0-rc1
• 8ad6e0a Move to 2.20.0-rc1-SNAPSHOT
• 500ef4d Merge branch '2.19' into 2.x
• 274f228 Back to snapshot deps
• Additional commits viewable in compare view

Updates io.github.classgraph:classgraph from 4.8.181 to 4.8.184

Release notes

Sourced from io.github.classgraph:classgraph's releases.

classgraph-4.8.184

• Fix #919 -- thanks to @​aurimasniekis
• Fix #920 via #921 -- thanks to @​chubert-ch

classgraph-4.8.183

• Fixed some build issues.

classgraph-4.8.182

• Dropped support for JDK 7 (since JDK 7 is no longer supported by javac as of JDK 20).
• Dropped support for JVM-Driver for overcoming strong encapsulation in problematic classloaders (Narcissus is still supported).
• Fix broken module declaration (#923, #922, #911).

Commits

• 49a64e7 Bump version number
• ef5c888 Merge branch 'latest' of https://github.com/classgraph/classgraph into latest
• 11cd1aa Probably fix #916
• b42e9b8 Merge pull request #919 from aurimasniekis/latest
• 4024fbf Build fix
• 6f60747 Bump minimum JDK version to 8
• 1534463 Remove EOL JVM-Driver support (Narcissus is still supported)
• f329d65 Remove EOL JVM-Driver support (Narcissus is still supported)
• f1b1a4f Update version number
• 4d94192 feat(scan): propagate ScanResult to module and package annotations
• Additional commits viewable in compare view

Updates org.apache.commons:commons-lang3 from 3.18.0 to 3.19.0

Updates org.mockito:mockito-core from 5.19.0 to 5.20.0

Release notes

Sourced from org.mockito:mockito-core's releases.

v5.20.0

Changelog generated by Shipkit Changelog Gradle Plugin

5.20.0

• 2025-09-20 - 11 commit(s) by Adrian-Kim, Giulio Longfils, Rafael Winterhalter, dependabot[bot]
• Bump org.assertj:assertj-core from 3.27.4 to 3.27.5 [(#3730)](mockito/mockito#3730)
• Introducing the Ability to Mock Construction of Generic Types (#2401) [(#3729)](mockito/mockito#3729)
• Bump com.gradle.develocity from 4.1.1 to 4.2 [(#3726)](mockito/mockito#3726)
• Bump graalvm/setup-graalvm from 1.3.6 to 1.3.7 [(#3725)](mockito/mockito#3725)
• Bump org.eclipse.platform:org.eclipse.osgi from 3.23.100 to 3.23.200 [(#3720)](mockito/mockito#3720)
• Bump graalvm/setup-graalvm from 1.3.5 to 1.3.6 [(#3719)](mockito/mockito#3719)
• Bump actions/setup-java from 4 to 5 [(#3715)](mockito/mockito#3715)
• Bump com.gradle.develocity from 4.1 to 4.1.1 [(#3713)](mockito/mockito#3713)
• Bump bytebuddy from 1.17.6 to 1.17.7 [(#3712)](mockito/mockito#3712)
• test: Use Assume.assumeThat for SequencedCollection tests [(#3711)](mockito/mockito#3711)
• Fix #3709 [(#3710)](mockito/mockito#3710)
• feat: Add support for JDK21 Sequenced Collections. [(#3708)](mockito/mockito#3708)
• Introducing the Ability to Mock Construction of Generic Types [(#2401)](mockito/mockito#2401)

Commits

• 3a1a19e Add support for generic types in MockedConstruction and MockedStatic (#3729)
• f3c957a Bump org.assertj:assertj-core from 3.27.4 to 3.27.5 (#3730)
• 3cfbd42 Bump graalvm/setup-graalvm from 1.3.6 to 1.3.7 (#3725)
• 6f9a04b Bump com.gradle.develocity from 4.1.1 to 4.2 (#3726)
• c75dfb8 Bump org.eclipse.platform:org.eclipse.osgi from 3.23.100 to 3.23.200 (#3720)
• 54474fa Bump graalvm/setup-graalvm from 1.3.5 to 1.3.6 (#3719)
• bc06f21 Use Assume.assumeThat for SequencedCollection tests (#3711)
• a10aed0 Bump actions/setup-java from 4 to 5 (#3715)
• 37bb3e5 Fix metadata generation on GraalVM (#3710)
• ef2fd6f Bump com.gradle.develocity from 4.1 to 4.1.1 (#3713)
• Additional commits viewable in compare view

Updates com.google.guava:guava from 33.4.8-jre to 33.5.0-jre

Release notes

Sourced from com.google.guava:guava's releases.

33.5.0

Maven

<dependency>
  <groupId>com.google.guava</groupId>
  <artifactId>guava</artifactId>
  <version>33.5.0-jre</version>
  <!-- or, for Android: -->
  <version>33.5.0-android</version>
</dependency>

Jar files

• 33.5.0-jre.jar
• 33.5.0-android.jar

Guava requires one runtime dependency, which you can download here:

• failureaccess-1.0.3.jar

Javadoc

• 33.5.0-jre
• 33.5.0-android

JDiff

• 33.5.0-jre vs. 33.4.8-jre
• 33.5.0-android vs. 33.4.8-android
• 33.5.0-android vs. 33.5.0-jre

Changelog

• Restored the Automatic-Module-Name to guava-android. (It, unlike, guava-jre, is not a proper module.) (7a04a8a955)
• For users of guava-gwt: Google has moved off GWT internally. We plan to continue to release guava-gwt for users of GWT and J2CL, but the artifact is no longer tested for GWT-specific issues, and we have limited resources to fix any unexpected issues that might arise. While we do not anticipate any specific problems, we can't guarantee how long support will continue.
• Increased our Android minSdkVersion to 23 (Marshmallow). This follows the minimum of Google's foundational Android libraries, and we expect it to have no practical impact on users. (5c23347cc1)
• Listed the JSpecify annotations as an optional dependency in our OSGi metadata. (2dfd572981)
• cache: Improved the handling of exceptions from compute functions in Cache.asMap(). (We do still recommend using Caffeine rather than com.google.common.cache.) (087f2c4a80)
• collect: Improved Iterators.mergeSorted() to preserve stability for equal elements. (4dc93be9a8)
• math: Added saturatedAbs methods to IntMath and LongMath. (ed0e518f20)
• net: Added image/avif to MediaType. (53344caba6)
• testing: Made CollectorTester available to Android users. (294c251079)
• util.concurrent: Added Striped.custom. (1586eb271d)

Commits

• See full diff in compare view

Updates org.assertj:assertj-core from 3.27.4 to 3.27.6

Release notes

Sourced from org.assertj:assertj-core's releases.

v3.27.6

🐛 Bug Fixes

Core

• Add missing export for org.assertj.core.annotation #3951

❤️ Contributors

Thanks to all the contributors who worked on this release:

@​duponter

v3.27.5

⚡ Improvements

Core

• ByteBuddy in AssertJ 3.27.4 not compatible with Java 25 #3946

🔨 Dependency Upgrades

Core

• Upgrade to Byte Buddy 1.17.7 #3947
• Upgrade to JUnit BOM 5.13.4 #3947

Guava

• Upgrade to Guava 33.4.8-jre #3947

Commits

• 716b1e0 [maven-release-plugin] prepare release assertj-build-3.27.6
• e189652 Add missing export for org.assertj.core.annotation (#3951)
• 0cb489e Update Maven Central URL
• 7286309 [maven-release-plugin] prepare for next development iteration
• dd4cc1d [maven-release-plugin] prepare release assertj-build-3.27.5
• 1d0defc Add missing permission to release workflow
• 844d5d0 Add missing GitHub Actions pinning to CodeQL workflow
• bdd7106 Add CodeQL custom workflow
• a93d7e6 Remove EOL Java 24
• 26ea866 Update production dependencies (#3947)
• Additional commits viewable in compare view

Updates org.junit:junit-bom from 5.13.4 to 5.14.0

Release notes

Sourced from org.junit:junit-bom's releases.

JUnit 5.14.0 = Platform 1.14.0 + Jupiter 5.14.0 + Vintage 5.14.0

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.13.4...r5.14.0

JUnit 5.14.0-RC1 = Platform 1.14.0-RC1 + Jupiter 5.14.0-RC1 + Vintage 5.14.0-RC1

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.13.4...r5.14.0-RC1

Commits

• 8545c93 Release 5.14.0
• 1d405a0 Polish release notes for 5.14 GA
• c1f78f6 Prepare 5.14.0 release notes and link to migration guide
• a6f666c Allow new classes to be added
• f728dfa Disable compatibility checks for all aggregator projects
• 72b34aa Validate list of accepted breaking changes
• bc62d27 Only track module-specific lines in accepted-breaking-changes.txt
• 1d95a3c Clear custom initialize-at-build-time lists
• 513be32 Update plugin org.graalvm.buildtools.native to v0.11.1
• 174d8de Back to snapshots for further development
• Additional commits viewable in compare view

Updates org.springframework:spring-core from 6.2.11 to 6.2.12

Release notes

Sourced from org.springframework:spring-core's releases.

v6.2.12

⭐ New Features

• Add "forEachByte" variant to DataBuffer for efficient traversing #35623
• Nested transaction support via savepoints is broken in HSQLDB database [followup] #35618
• Improve exception handling in ConfigurationClassBeanDefinitionReader #35631
• Add MySQL/MariaDB to TableMetaDataProviderFactory for correct generated-keys support #35593
• Optimize state management in StompSubProtocolHandler #35591
• ServletServerHttpRequest.getRemoteAddress() may perform DNS lookup #35589
• Emit log message when multiple primary beans are detected #35550
• Duplicate key error is mapped to TransientDataAccessException by SQLStateSQLExceptionTranslator for BatchUpdateException #35547
• Remove redundant object allocation in cglib proxy method calls #35543
• Remove deprecation on CandidateComponentsIndex and CandidateComponentsIndexLoader #35472
• Processing response with no Content-Length header and no body raises EOFException #35361

🐞 Bug Fixes

• DefaultListableBeanFactory::getBeanNamesForType does not always return all bean names #35634
• Consider defaultCandidate for scoped proxies #35627
• Release data buffer in AbstractCharSequenceDecoder even when String creation fails #35625
• PathMatchingResourcePatternResolver is not able to resolve file in SpringBoot Packaged JAR #35617
• Prevent NoClassDefFoundError when Jetty Reactive HttpClient is not available #35608
• Performance regression with Property Placeholder Resolution #35594
• Retain order of produces media types in @ExceptionHandler #35587
• Nested transaction support via savepoints is broken in HSQLDB database #35564
• SpEL expression parser uses more CPU after upgrade to 6.2.9 #35556
• Thread race during FactoryBean instantiations starting with 6.2 due to lenient locks #35545
• Update parsed path handling in UrlHandlerFilter #35538
• ResourceHttpMessageWriter.write has unexpected error handling for invalid range requests (offset > content length) #35536
• AbstractTestNGSpringContextTests is not thread-safe regarding tracked exceptions #35528
• UrlHandlerFilter breaks RequestDispatcher.forward() on Tomcat #35509
• AbstractMockHttpServletRequestBuilder#buildRequest is not idempotent #35493
• Add support for JvmDefault (default in Kotlin 2.2.20+) #35487
• InstanceSupplierCodeGenerator fails to detect deprecated type on package private factory method #35486
• Fix synchronization in ResponseBodyEmitter #35466
• useCaches option in PathMatchingResourcePatternResolver not applied in special case #35465
• Deadlock during context initialization due to EntityManager lock #35398

📔 Documentation

• Improve guidance in WebFlux on how to join inbound and outbound streams in WebSocketHandler #35572
• Fix idref example in reference manual #35560
• Fix URI Patterns docs in WebMVC and WebFlux Request Mapping #35551
• Allow event listener method declared with multiple event classes to take a single parameter that is assignable from all of those event classes #35506
• Improve Task Javadoc about Runnable wrapping #35394

🔨 Dependency Upgrades

• Upgrade to Micrometer 1.14.12 #35640
• Upgrade to Reactor 2024.0.11 #35638

... (truncated)

Commits

• e354390 Release v6.2.12
• c53132e Polishing
• 03c3ec1 Fall back on remoteHost if remoteAddress is null
• c88bfc5 Refactor state management in StompSubProtocolHandler
• a96558c Revise commit 01acb805018da643a3c4320ff0e032aa998beda8
• 1612b7c Remove test prefixes
• 01acb80 Improve exception handling in ConfigurationClassBeanDefinitionReader
• f4438ce Upgrade to Reactor 2024.0.11 and Micrometer 1.14.12
• 5033b9d Reset by-type cache for Object after registering a new singleton
• d733023 Consistently apply fallback attribute to proxy definition as well
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-dependency-plugin from 3.8.1 to 3.9.0

Release notes

Sourced from org.apache.maven.plugins:maven-dependency-plugin's releases.

3.9.0

🚀 New features and improvements

• Use Resolver API in go-offline for dependencies resolving (#1533) @​slawekjaranowski
• Use Resolver API in go-offline for plugins resolving (#1532) @​slawekjaranowski
• Fixes #1522, add render-dependencies mojo (#1523) @​rmannibucau
• Use Resolver API in resolve-plugin (#1521) @​slawekjaranowski
• [MEDP-964] - unconditionally ignore dependencies known to be loaded by reflection (#1492) @​elharo
• Update maven-dependency-analyzer to support Java24 (#528) @​talios
• [MDEP-972] - copy-dependencies: copy signatures alongside artifacts (#514) @​Ndacyayisenga-droid
• [MDEP-776] - Warn when multiple dependencies have the same file name (#463) @​elharo
• [MDEP-966] - Migrate AnalyzeDepMgt to Sisu (#473) @​elharo
• [MDEP-957] - By default, don't report slf4j-simple as unused (#433) @​elharo

🐛 Bug Fixes

• ProjectBuildingRequest should not be modified (#1520) @​slawekjaranowski
• Fix - markersDirectory is not working when unpack goal is executed from command line (#537) @​vaibhavbatra15
• Fix broken link for analyze-exclusions-mojo on usage-page (#521) @​Bukama
• [MDEP-839] - Avoid extra blank lines in file (#495) @​elharo
• Update collect URL (#510) @​elharo
• [MDEP-689] - Fixes ignored dependency filtering in go-offline goal (#417) @​ldhardy
• [MDEP-960] - Repair silent logging (#447) @​elharo

📝 Documentation updates

• [MDEP-933] - Document dependency tree output formats (#535) @​Ndacyayisenga-droid
• Add additional comment to clarify the minimal supported version of ou… (#465) @​gluxhappy
• [MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#511) @​Bukama
• Unix file separators (#507) @​elharo

👻 Maintenance

• Simplify usage of RepositoryManager and DependencyResolver (#1518) @​slawekjaranowski
• Use Resolver API in copy and unpack (#1514) @​slawekjaranowski
• Update site descriptor to 2.0.0 (#1508) @​slawekjaranowski
• Enable prevent branch protection rules (#1503) @​slawekjaranowski
• Fix [MDEP-931] - Replace PrintWriter with Writer in AbstractSerializing Visitor and subclasses (#530) @​Ndacyayisenga-droid
• Cleanups dependencies (#1496) @​slawekjaranowski
• Copy edit parameter descriptions (#1488) @​elharo
• Small Javadoc clarifications (#533) @​elharo
• [MDEP-967] - Change info to debug logging in AbstractFromConfigurationMojo (#529) @​Ndacyayisenga-droid
• fix: remove duplicate maven-resolver-api and maven-resolver-util dependencies in pom.xml (#526) @​Ndacyayisenga-droid
• Enable GH issues (#522) @​Bukama
• Remove redundant/unneeded code (#519) @​elharo
• Add PR Automation and Stale actions (#513) @​slawekjaranowski
• Keep files in temporary directory to be deleted after test (#508) @​pzygielo
• Drop unnecessary call (#509) @​pzygielo
• Avoid deprecated ArtifactFactory (#489) @​elharo

... (truncated)

Commits

• 826e5f0 [maven-release-plugin] prepare release maven-dependency-plugin-3.9.0
• 0db1acc Use Resolver API in go-offline for dependencies resolving (#1533)
• e50031a Use Resolver API in go-offline for plugins resolving
• 6ed4b1a Bump org.apache.commons:commons-lang3 from 3.18.0 to 3.19.0
• 8776c61 Bump org.assertj:assertj-core from 3.27.5 to 3.27.6
• d2af78e Ignore Mockito 5.x and SLF4j 2.x by dependabot
• dcd4b7d Bump org.assertj:assertj-core from 3.27.4 to 3.27.5
• 7523948 Strict check of dependencies usage
• 23186d4 Fixes #1522, add render-dependencies mojo (#1523)
• bc1893f Use Resolver API in resolve-plugin
• Additional commits viewable in compare view

Updates org.apache.maven.plugin-tools:maven-plugin-annotations from 3.15.1 to 3.15.2

Release notes

Sourced from org.apache.maven.plugin-tools:maven-plugin-annotations's releases.

3.15.2

📝 Documentation updates

• Fix run-on sentence (#1003) @​slawekjaranowski
• Update document to use Guice constructor injection (#1001) @​slawekjaranowski
• [MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#354) @​Bukama

👻 Maintenance

• Update site descriptors to 2.0 (#1011) @​slawekjaranowski
• Add support for Maven 4 PluginDescriptor.getRequiredJavaVersion() method (#1005) @​slawekjaranowski
• Cleanups dependencies (#1009) @​slawekjaranowski
• Use injection instead of Component annotation (#1002) @​slawekjaranowski
• Begin converting this plugin to Guice constructor injection (#1000...

  Description has been truncated

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.