Title: Bump the gradle-version-updates group across 1 directory with 9 updates by dependabot[bot] · Pull Request #3299 · secureCodeBox/secureCodeBox · GitHub
Open Graph Title: Bump the gradle-version-updates group across 1 directory with 9 updates by dependabot[bot] · Pull Request #3299 · secureCodeBox/secureCodeBox
X Title: Bump the gradle-version-updates group across 1 directory with 9 updates by dependabot[bot] · Pull Request #3299 · secureCodeBox/secureCodeBox
Description: Bumps the gradle-version-updates group with 6 updates in the /hooks/persistence-defectdojo/hook directory:
Package
From
To
org.springframework:spring-web
6.2.10
6.2.11
com.fasterxml.jackson.core:jackson-core
2.19.2
2.20.0
com.fasterxml.jackson.datatype:jackson-datatype-jsr310
2.19.2
2.20.0
org.mockito:mockito-core
5.19.0
5.20.0
io.freefair.lombok
8.14.2
9.0.0
com.github.ben-manes.versions
0.52.0
0.53.0
Updates org.springframework:spring-web from 6.2.10 to 6.2.11
Release notes
Sourced from org.springframework:spring-web's releases.
v6.2.11
⭐ New Features
Missing @Nullable on JsonPathAssertions.isEqualTo #35445
Graceful fallback for non-default NIO.2 FileSystems #35443
Avoid thread pinning in SseEmitter, ResponseBodyEmitter #35423
Detect Informix error codes as DuplicateKeyException #35400
Inconsistent nullability for String value arguments in ResponseCookie from*() factory methods #35377
Revisit taskTerminationTimeout semantics on SimpleAsyncTaskExecutor/Scheduler #35372
StandardEvaluationContext.setBeanResolver should allow @Nullable BeanResolver #35371
🐞 Bug Fixes
"mainThreadPrefix = null " Causing multiple background bean locks to be blocked #35409
Annotation not found on parameter in overridden method unless method is public #35349
Annotations on overridden methods not found in type hierarchy with unresolved generics #35342
Performance degradation when using singleton beans with Provider #35330
JettyClientHttpConnector buffer leak in Spring Framework 6.2 #35319
Spring application hangs on shutdown with @Scheduled(cron=…) when custom ScheduledExecutorService bean is defined (Java 19+) #35316
📔 Documentation
Document potential need to use Mockito.doXxx() to stub a @MockitoSpyBean #35410
Fix links to Reactive Libraries and RestTemplate #35392
Fix broken link in WebDriver docs #35374
Document Web DataBinder support for RouterFunction #35367
Improve documentation for ApplicationEvents to clarify recommended usage #35335
Document terms and units in DataSize.parse() #35298
Refine @Contract Javadoc #35285
Correct the default value of nestedTransactionAllowed in JpaTransactionManager javadoc #35212
🔨 Dependency Upgrades
Upgrade to Micrometer 1.14.11 #35455
Upgrade to Reactor 2024.0.10 #35454
❤️ Contributors
Thank you to all the contributors who worked on this release:
@Dockerel, @Kehrlann, @acktsap, @khj68, @ngocnhan-tran1996, @scordio, and @sgflt
Commits
4c13425 Release v6.2.11
d17601e Upgrade to Undertow 2.3.19, RxJava 3.1.11, Aalto 1.3.3
5b38761 Clarify intended nestedTransactionAllowed default in JpaTransactionManager
0e3e34b Find annotations on parameters in overridden non-public methods
4745c7c Name local variables consistently
275fb52 Upgrade to Reactor 2024.0.10 and Micrometer 1.14.11
7f9aa39 Polishing
c788554 Avoid thread pinning in SseEmitter, ResponseBodyEmitter
9e8c640 Make JsonPathAssertions#isEqualTo parameter nullable
ebb8e34 Upgrade to Jetty 12.0.26, Jetty Reactive HttpClient 4.0.11, Netty 4.1.127, Ht...
Additional commits viewable in compare view
Updates com.fasterxml.jackson.core:jackson-core from 2.19.2 to 2.20.0
Commits
ea0830a [maven-release-plugin] prepare release jackson-core-2.20.0
e16733a Prep for 2.20.0
93deb38 Drop RC from version pre-2.20.0 release
f0bcc3c Handle deprecation warnings
6e70d08 Fix #1462: deprecate JsonFactory.createParser(URL) (#1464)
588cc76 Post release version bump
018f9e1 [maven-release-plugin] prepare for next development iteration
360e498 [maven-release-plugin] prepare release jackson-core-2.20.0-rc1
538ac44 Prep for 2.20.0-rc1
dfbf47b Merge branch '2.19' into 2.x
Additional commits viewable in compare view
Updates com.fasterxml.jackson.core:jackson-annotations from 2.19.2 to 2.20.0
Updates com.fasterxml.jackson.core:jackson-databind from 2.19.2 to 2.20.0
Commits
See full diff in compare view
Updates com.fasterxml.jackson.datatype:jackson-datatype-jsr310 from 2.19.2 to 2.20.0
Updates org.mockito:mockito-core from 5.19.0 to 5.20.0
Release notes
Sourced from org.mockito:mockito-core's releases.
v5.20.0
Changelog generated by Shipkit Changelog Gradle Plugin
5.20.0
2025-09-20 - 11 commit(s) by Adrian-Kim, Giulio Longfils, Rafael Winterhalter, dependabot[bot]
Bump org.assertj:assertj-core from 3.27.4 to 3.27.5 [(#3730)](mockito/mockito#3730)
Introducing the Ability to Mock Construction of Generic Types (#2401) [(#3729)](mockito/mockito#3729)
Bump com.gradle.develocity from 4.1.1 to 4.2 [(#3726)](mockito/mockito#3726)
Bump graalvm/setup-graalvm from 1.3.6 to 1.3.7 [(#3725)](mockito/mockito#3725)
Bump org.eclipse.platform:org.eclipse.osgi from 3.23.100 to 3.23.200 [(#3720)](mockito/mockito#3720)
Bump graalvm/setup-graalvm from 1.3.5 to 1.3.6 [(#3719)](mockito/mockito#3719)
Bump actions/setup-java from 4 to 5 [(#3715)](mockito/mockito#3715)
Bump com.gradle.develocity from 4.1 to 4.1.1 [(#3713)](mockito/mockito#3713)
Bump bytebuddy from 1.17.6 to 1.17.7 [(#3712)](mockito/mockito#3712)
test: Use Assume.assumeThat for SequencedCollection tests [(#3711)](mockito/mockito#3711)
Fix #3709 [(#3710)](mockito/mockito#3710)
feat: Add support for JDK21 Sequenced Collections. [(#3708)](mockito/mockito#3708)
Introducing the Ability to Mock Construction of Generic Types [(#2401)](mockito/mockito#2401)
Commits
3a1a19e Add support for generic types in MockedConstruction and MockedStatic (#3729)
f3c957a Bump org.assertj:assertj-core from 3.27.4 to 3.27.5 (#3730)
3cfbd42 Bump graalvm/setup-graalvm from 1.3.6 to 1.3.7 (#3725)
6f9a04b Bump com.gradle.develocity from 4.1.1 to 4.2 (#3726)
c75dfb8 Bump org.eclipse.platform:org.eclipse.osgi from 3.23.100 to 3.23.200 (#3720)
54474fa Bump graalvm/setup-graalvm from 1.3.5 to 1.3.6 (#3719)
bc06f21 Use Assume.assumeThat for SequencedCollection tests (#3711)
a10aed0 Bump actions/setup-java from 4 to 5 (#3715)
37bb3e5 Fix metadata generation on GraalVM (#3710)
ef2fd6f Bump com.gradle.develocity from 4.1 to 4.1.1 (#3713)
Additional commits viewable in compare view
Updates org.mockito:mockito-junit-jupiter from 5.19.0 to 5.20.0
Release notes
Sourced from org.mockito:mockito-junit-jupiter's releases.
v5.20.0
Changelog generated by Shipkit Changelog Gradle Plugin
5.20.0
2025-09-20 - 11 commit(s) by Adrian-Kim, Giulio Longfils, Rafael Winterhalter, dependabot[bot]
Bump org.assertj:assertj-core from 3.27.4 to 3.27.5 [(#3730)](mockito/mockito#3730)
Introducing the Ability to Mock Construction of Generic Types (#2401) [(#3729)](mockito/mockito#3729)
Bump com.gradle.develocity from 4.1.1 to 4.2 [(#3726)](mockito/mockito#3726)
Bump graalvm/setup-graalvm from 1.3.6 to 1.3.7 [(#3725)](mockito/mockito#3725)
Bump org.eclipse.platform:org.eclipse.osgi from 3.23.100 to 3.23.200 [(#3720)](mockito/mockito#3720)
Bump graalvm/setup-graalvm from 1.3.5 to 1.3.6 [(#3719)](mockito/mockito#3719)
Bump actions/setup-java from 4 to 5 [(#3715)](mockito/mockito#3715)
Bump com.gradle.develocity from 4.1 to 4.1.1 [(#3713)](mockito/mockito#3713)
Bump bytebuddy from 1.17.6 to 1.17.7 [(#3712)](mockito/mockito#3712)
test: Use Assume.assumeThat for SequencedCollection tests [(#3711)](mockito/mockito#3711)
Fix #3709 [(#3710)](mockito/mockito#3710)
feat: Add support for JDK21 Sequenced Collections. [(#3708)](mockito/mockito#3708)
Introducing the Ability to Mock Construction of Generic Types [(#2401)](mockito/mockito#2401)
Commits
3a1a19e Add support for generic types in MockedConstruction and MockedStatic (#3729)
f3c957a Bump org.assertj:assertj-core from 3.27.4 to 3.27.5 (#3730)
3cfbd42 Bump graalvm/setup-graalvm from 1.3.6 to 1.3.7 (#3725)
6f9a04b Bump com.gradle.develocity from 4.1.1 to 4.2 (#3726)
c75dfb8 Bump org.eclipse.platform:org.eclipse.osgi from 3.23.100 to 3.23.200 (#3720)
54474fa Bump graalvm/setup-graalvm from 1.3.5 to 1.3.6 (#3719)
bc06f21 Use Assume.assumeThat for SequencedCollection tests (#3711)
a10aed0 Bump actions/setup-java from 4 to 5 (#3715)
37bb3e5 Fix metadata generation on GraalVM (#3710)
ef2fd6f Bump com.gradle.develocity from 4.1 to 4.1.1 (#3713)
Additional commits viewable in compare view
Updates io.freefair.lombok from 8.14.2 to 9.0.0
Release notes
Sourced from io.freefair.lombok's releases.
9.0.0
What's Changed
Bump actions/setup-java from 4 to 5 by @dependabot[bot] in freefair/gradle-plugins#1425
Bump io.github.classgraph:classgraph from 4.8.180 to 4.8.181 in /examples by @dependabot[bot] in freefair/gradle-plugins#1424
Bump org.apache.commons:commons-compress from 1.27.1 to 1.28.0 in /examples by @dependabot[bot] in freefair/gradle-plugins#1422
Bump com.gradle.develocity from 4.1 to 4.1.1 in /examples by @dependabot[bot] in freefair/gradle-plugins#1431
Bump org.mockito:mockito-core from 5.18.0 to 5.19.0 in /examples by @dependabot[bot] in freefair/gradle-plugins#1423
Bump org.apache.maven:maven-artifact from 3.9.10 to 3.9.11 in /examples by @dependabot[bot] in freefair/gradle-plugins#1446
Bump com.gradle.develocity from 4.1 to 4.1.1 by @dependabot[bot] in freefair/gradle-plugins#1445
Bump org.apache.maven:maven-core from 3.9.10 to 3.9.11 in /examples by @dependabot[bot] in freefair/gradle-plugins#1444
Bump com.gradle.develocity from 4.1 to 4.1.1 by @dependabot[bot] in freefair/gradle-plugins#1434
Bump de.larsgrefer.sass:sass-embedded-host from 4.2.0 to 4.3.0 by @dependabot[bot] in freefair/gradle-plugins#1433
Bump actions/setup-java from 4 to 5 by @dependabot[bot] in freefair/gradle-plugins#1441
Bump com.squareup.okhttp3:okhttp-bom from 5.0.0 to 5.1.0 by @dependabot[bot] in freefair/gradle-plugins#1453
switch default lombok version to 1.18.40 by @danishnawab in freefair/gradle-plugins#1467
Bump org.asciidoctor.jvm.convert from 4.0.4 to 4.0.5 by @dependabot[bot] in freefair/gradle-plugins#1463
Bump org.assertj:assertj-core from 3.27.3 to 3.27.4 by @dependabot[bot] in freefair/gradle-plugins#1451
Bump org.asciidoctor.jvm.convert from 4.0.4 to 4.0.5 by @dependabot[bot] in freefair/gradle-plugins#1452
Bump org.apache.commons:commons-compress from 1.27.1 to 1.28.0 by @dependabot[bot] in freefair/gradle-plugins#1460
Bump org.assertj:assertj-core from 3.27.3 to 3.27.4 by @dependabot[bot] in freefair/gradle-plugins#1461
Bump org.sonarsource.scanner.gradle:sonarqube-gradle-plugin from 6.2.0.5505 to 6.3.1.5724 by @dependabot[bot] in freefair/gradle-plugins#1448
Bump com.squareup.okhttp3:okhttp-bom from 4.12.0 to 5.1.0 in /examples by @dependabot[bot] in freefair/gradle-plugins#1412
Bump com.github.spotbugs from 6.2.4 to 6.3.0 in /examples by @dependabot[bot] in freefair/gradle-plugins#1430
Bump org.sonarqube from 6.2.0.5505 to 6.3.1.5724 in /examples by @dependabot[bot] in freefair/gradle-plugins#1440
Bump org.springframework.boot:spring-boot-starter from 3.5.4 to 3.5.5 in /examples by @dependabot[bot] in freefair/gradle-plugins#1454
Bump io.github.classgraph:classgraph from 4.8.180 to 4.8.181 by @dependabot[bot] in freefair/gradle-plugins#1473
Bump com.gradle.plugin-publish from 1.3.1 to 2.0.0 by @dependabot[bot] in freefair/gradle-plugins#1471
Bump com.gradle.develocity from 4.1.1 to 4.2 by @dependabot[bot] in freefair/gradle-plugins#1475
Bump com.gradle.plugin-publish from 1.3.1 to 2.0.0 by @dependabot[bot] in freefair/gradle-plugins#1456
Bump org.mockito:mockito-core from 5.18.0 to 5.19.0 in /examples by @dependabot[bot] in freefair/gradle-plugins#1470
Bump com.gradle.develocity from 4.1.1 to 4.2 in /examples by @dependabot[bot] in freefair/gradle-plugins#1472
Bump org.assertj:assertj-core from 3.27.4 to 3.27.5 by @dependabot[bot] in freefair/gradle-plugins#1483
Bump org.projectlombok:lombok from 1.18.40 to 1.18.42 by @dependabot[bot] in freefair/gradle-plugins#1482
Bump org.projectlombok:lombok from 1.18.38 to 1.18.42 by @dependabot[bot] in freefair/gradle-plugins#1477
Bump org.webjars:bootstrap from 5.3.7 to 5.3.8 in /examples by @dependabot[bot] in freefair/gradle-plugins#1479
Bump org.assertj:assertj-core from 3.27.5 to 3.27.6 by @dependabot[bot] in freefair/gradle-plugins#1490
Bump org.springframework.boot:spring-boot-starter from 3.5.5 to 3.5.6 in /examples by @dependabot[bot] in freefair/gradle-plugins#1489
Bump org.assertj:assertj-core from 3.27.3 to 3.27.6 in /examples by @dependabot[bot] in freefair/gradle-plugins#1492
Bump org.assertj:assertj-core from 3.27.3 to 3.27.6 in /examples by @dependabot[bot] in freefair/gradle-plugins#1491
Bump org.sonarsource.scanner.gradle:sonarqube-gradle-plugin from 6.2.0.5505 to 6.3.1.5724 by @dependabot[bot] in freefair/gradle-plugins#1488
Bump org.mockito:mockito-core from 5.19.0 to 5.20.0 by @dependabot[bot] in freefair/gradle-plugins#1487
Bump org.mockito.kotlin:mockito-kotlin from 5.4.0 to 6.0.0 by @dependabot[bot] in freefair/gradle-plugins#1469
Full Changelog: freefair/gradle-plugins@8.14.2...9.0.0
9.0.0-rc2
Full Changelog: freefair/gradle-plugins@9.0.0-rc1...9.0.0-rc2
9.0.0-rc1
... (truncated)
Commits
786f564 Update to Spring Boot 3.5.6
fe43572 Merge branch '8.x' of github.com:freefair/gradle-plugins
3da1f86 Bump org.mockito.kotlin:mockito-kotlin from 5.4.0 to 6.0.0 (#1469)
b39aef5 Bump org.mockito:mockito-core from 5.19.0 to 5.20.0 (#1487)
4b0917a Merge branch '8.x' of github.com:freefair/gradle-plugins
d413a0a remove gradle build cache
f5e37df Update to Gradle 9.1.0
10d1d3a Merge branch '8.x' of github.com:freefair/gradle-plugins
047a17d Bump org.sonarsource.scanner.gradle:sonarqube-gradle-plugin (#1488)
fd0b3fa Bump org.assertj:assertj-core from 3.27.3 to 3.27.6 in /examples (#1491)
Additional commits viewable in compare view
Updates com.github.ben-manes.versions from 0.52.0 to 0.53.0
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show
Open Graph Description: Bumps the gradle-version-updates group with 6 updates in the /hooks/persistence-defectdojo/hook directory: Package From To org.springframework:spring-web 6.2.10 6.2.11 com.fasterxml.jackso...
X Description: Bumps the gradle-version-updates group with 6 updates in the /hooks/persistence-defectdojo/hook directory: Package From To org.springframework:spring-web 6.2.10 6.2.11 com.fasterxml.jackso...
Opengraph URL: https://github.com/secureCodeBox/secureCodeBox/pull/3299
X: @github
Domain: github.com
| route-pattern | /:user_id/:repository/pull/:id/files(.:format) |
| route-controller | pull_requests |
| route-action | files |
| fetch-nonce | v2:0b76282c-e948-29e0-f4a9-edfbdd8ad636 |
| current-catalog-service-hash | ae870bc5e265a340912cde392f23dad3671a0a881730ffdadd82f2f57d81641b |
| request-id | 8312:3CECC8:B5BA870:ECF7B1B:69762822 |
| html-safe-nonce | 050bba84278b7969214e7119ba312bd6d31b1ecacb973f306b239de1916d00e1 |
| visitor-payload | eyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiI4MzEyOjNDRUNDODpCNUJBODcwOkVDRjdCMUI6Njk3NjI4MjIiLCJ2aXNpdG9yX2lkIjoiNTgyMDYyOTI2NTczNjQxMTE3MCIsInJlZ2lvbl9lZGdlIjoiaWFkIiwicmVnaW9uX3JlbmRlciI6ImlhZCJ9 |
| visitor-hmac | 98b10f5a7d903b90ca35fad3d9d9b7e2990d3a21a06b802633515ba04a4f5211 |
| hovercard-subject-tag | pull_request:2870044552 |
| github-keyboard-shortcuts | repository,pull-request-list,pull-request-conversation,pull-request-files-changed,copilot |
| google-site-verification | Apib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I |
| octolytics-url | https://collector.github.com/github/collect |
| analytics-location | / |
| fb:app_id | 1401488693436528 |
| apple-itunes-app | app-id=1477376905, app-argument=https://github.com/secureCodeBox/secureCodeBox/pull/3299/files |
| twitter:image | https://avatars.githubusercontent.com/in/29110?s=400&v=4 |
| twitter:card | summary_large_image |
| og:image | https://avatars.githubusercontent.com/in/29110?s=400&v=4 |
| og:image:alt | Bumps the gradle-version-updates group with 6 updates in the /hooks/persistence-defectdojo/hook directory: Package From To org.springframework:spring-web 6.2.10 6.2.11 com.fasterxml.jackso... |
| og:site_name | GitHub |
| og:type | object |
| hostname | github.com |
| expected-hostname | github.com |
| None | c6814b4cc7afd45cd6e64525d0cff0e76dd802f315a5b0e55a7abda1d1d070d0 |
| turbo-cache-control | no-preview |
| diff-view | unified |
| go-import | github.com/secureCodeBox/secureCodeBox git https://github.com/secureCodeBox/secureCodeBox.git |
| octolytics-dimension-user_id | 34573705 |
| octolytics-dimension-user_login | secureCodeBox |
| octolytics-dimension-repository_id | 80711933 |
| octolytics-dimension-repository_nwo | secureCodeBox/secureCodeBox |
| octolytics-dimension-repository_public | true |
| octolytics-dimension-repository_is_fork | false |
| octolytics-dimension-repository_network_root_id | 80711933 |
| octolytics-dimension-repository_network_root_nwo | secureCodeBox/secureCodeBox |
| turbo-body-classes | logged-out env-production page-responsive |
| disable-turbo | true |
| browser-stats-url | https://api.github.com/_private/browser/stats |
| browser-errors-url | https://api.github.com/_private/browser/errors |
| release | 4ea235bfed58ef16c8a5642b3ac64b74f10c9f52 |
| ui-target | full |
| theme-color | #1e2327 |
| color-scheme | light dark |
Links:
Viewport: width=device-width