fix(deps): bump the prod-deps group across 1 directory with 9 updates

[dependabot]

Bumps the prod-deps group with 9 updates in the / directory:

Package	From	To
org.apache.maven:maven-plugin-api	3.9.6	3.9.9
org.apache.maven.plugin-tools:maven-plugin-annotations	3.11.0	3.15.1
com.fasterxml.jackson.core:jackson-databind	2.17.0	2.18.1
org.folio:folio-permission-utils	1.5.5	2.0.0
org.projectlombok:lombok	1.18.30	1.18.34
com.puppycrawl.tools:checkstyle	10.14.2	10.20.0
org.apache.maven.plugins:maven-plugin-plugin	3.14.0	3.15.1
org.apache.maven.plugins:maven-surefire-plugin	3.2.5	3.5.2
org.apache.maven.plugins:maven-checkstyle-plugin	3.3.1	3.6.0

Updates org.apache.maven:maven-plugin-api from 3.9.6 to 3.9.9

Release notes

Sourced from org.apache.maven:maven-plugin-api's releases.

3.9.9

Release Notes - Maven - Version 3.9.9

What's Changed

• [MNG-8159] Fix search for topDirectory when using -f / --file by @​gzm55 in apache/maven#1589
• [MNG-7194] Test missing property evaluation by @​pzygielo in apache/maven#1570
• [3.9.x] [MNG-8175] Update Resolver to 1.9.21 by @​cstamas in apache/maven#1598
• [MNG-8178] Fall back to system properties for missing profile activation context properties by @​kohlschuetter in apache/maven#1603
• [MNG-8179] Upgrade Parent to 43 by @​slawekjaranowski in apache/maven#1610

... (truncated)

Commits

• 8e8579a [maven-release-plugin] prepare release maven-3.9.9
• 7185b0a [MNG-8165] Get rid of bashism creeped in (#1653)
• ba05e6a [maven-release-plugin] prepare for next development iteration
• 476642f [maven-release-plugin] prepare release maven-3.9.9
• 274f1e3 [MNG-8165] Align mvn.sh script with mvn.cmd (#1647)
• 1a787b0 [MNG-8188] Profile properties are not interpolated (#1634)
• ecd577b [MNG-8177] Add contextual info for model warnings (#1633)
• 42fc90e [MNG-8206] Remove bad plugin.xml in maven-compat (#1646)
• 38a128f [MNG-8180] Back out from failing the build (#1642)
• f2135c1 [MNG-8180] Handle NPE due non-existent tags (#1641)
• Additional commits viewable in compare view

Updates org.apache.maven.plugin-tools:maven-plugin-annotations from 3.11.0 to 3.15.1

Release notes

Sourced from org.apache.maven.plugin-tools:maven-plugin-annotations's releases.

3.13.1

Release Notes - Maven Plugin Tools - Version 3.13.1

Task

• [MPLUGIN-526] - Clean up dependencies reported by dependencies:analyze

3.13.0

Release Notes - Maven Plugin Tools - Version 3.13.0

Bug

• [MPLUGIN-517] - GoalRenderer renderParameterDetails() renders in wrong order
• [MPLUGIN-521] - Nested types not properly extracted cause exception while generating Javadoc URLs

Improvement

• [MPLUGIN-520] - Get rid of maven-compat classes use

Dependency upgrade

• [MPLUGIN-516] - Upgrade asmVersion from 9.6 to 9.7
• [MPLUGIN-519] - Update to Parent POM 42, prerequisite 3.6.3

3.12.0

Release Notes - Maven Plugin Tools - Version 3.12.0

Commits

• bc2daa4 [maven-release-plugin] prepare release maven-plugin-tools-3.15.1
• 08c9597 Bump asmVersion from 9.7 to 9.7.1
• 578637b Bump org.junit:junit-bom from 5.11.0 to 5.11.3
• a6c9b9c [MPLUGIN-538] Upgrade to Doxia 2.0.0 GA Stack
• 5d8b615 Bump net.bytebuddy:byte-buddy from 1.14.18 to 1.15.5
• 9888c96 Bump org.codehaus.plexus:plexus-java from 1.2.0 to 1.3.0
• d2adc90 Bump org.apache.commons:commons-lang3 from 3.16.0 to 3.17.0
• 18c156b Bump maven3Version from 3.9.8 to 3.9.9 (#321)
• 306fabe Bump org.junit:junit-bom from 5.10.3 to 5.11.0
• 93604a3 [maven-release-plugin] prepare for next development iteration
• Additional commits viewable in compare view

Updates com.fasterxml.jackson.core:jackson-databind from 2.17.0 to 2.18.1

Commits

• See full diff in compare view

Updates org.folio:folio-permission-utils from 1.5.5 to 2.0.0

Release notes

Sourced from org.folio:folio-permission-utils's releases.

v2.0.0

What's Changed

• Release 1.5.7 by @​yauhen-vavilkin in folio-org/applications-poc-tools#155
• fix(deps): bump the prod-deps group with 3 updates by @​dependabot in folio-org/applications-poc-tools#156
• APPPOCTOOL-28 Increase keycloak test container to v25.0.6 by @​pfilippov-epam in folio-org/applications-poc-tools#157
• fix(deps): bump the prod-deps group with 7 updates by @​dependabot in folio-org/applications-poc-tools#158
• fix(deps): bump the prod-deps group across 1 directory with 5 updates by @​dependabot in folio-org/applications-poc-tools#160

Full Changelog: folio-org/applications-poc-tools@v1.5.7...v2.0.0

v1.5.7

What's Changed

• Release 1.5.6 by @​OleksiiKuzminov in folio-org/applications-poc-tools#146
• MODOKAPFAC-4 Add App Descriptor to common model by @​dmtkachenko in folio-org/applications-poc-tools#145
• APPPOCTOOL-27 Remove tenant matching validation by @​pfilippov-epam in folio-org/applications-poc-tools#147
• fix(deps): bump the prod-deps group with 2 updates by @​dependabot in folio-org/applications-poc-tools#149
• APPPOCTOOL-32: resteasy-multipart-provider 6.2.10 fixing CVE-2024-21742 by @​julianladisch in folio-org/applications-poc-tools#148
• APPPOCTOOL-34: Cleanup testcontainers dependencies by @​julianladisch in folio-org/applications-poc-tools#150
• APPPOCTOOL-28 Externalize JWT Parsing to a dedicated library by @​pfilippov-epam in folio-org/applications-poc-tools#152
• fix(deps): bump the prod-deps group with 5 updates by @​dependabot in folio-org/applications-poc-tools#153
• fix(deps): bump the prod-deps group with 7 updates by @​dependabot in folio-org/applications-poc-tools#154

New Contributors

• @​julianladisch made their first contribution in folio-org/applications-poc-tools#148

Full Changelog: folio-org/applications-poc-tools@v1.5.6...v1.5.7

v1.5.6

What's Changed

• fix(deps): bump the prod-deps group with 2 updates by @​dependabot in folio-org/applications-poc-tools#141
• chore(deps-dev): bump the dev-deps group with 2 updates by @​dependabot in folio-org/applications-poc-tools#140
• fix(deps): bump the prod-deps group with 7 updates by @​dependabot in folio-org/applications-poc-tools#142
• APPPOCTOOL-29: Hostname verification enabled for Http Clients by @​TarasSpashchenko in folio-org/applications-poc-tools#143
• fix(deps): bump the prod-deps group with 4 updates by @​dependabot in folio-org/applications-poc-tools#144

Full Changelog: folio-org/applications-poc-tools@v1.5.5...v1.5.6

Commits

• 1a960c2 [maven-release-plugin] prepare release v2.0.0
• 75cc554 fix(deps): bump the prod-deps group across 1 directory with 5 updates (#160)
• 29fc08e fix(deps): bump the prod-deps group with 7 updates (#158)
• 12e89a1 APPPOCTOOL-28 Increase keycloak test container to v25.0.6 (#157)
• 73c1b8e fix(deps): bump the prod-deps group with 3 updates (#156)
• 813c200 Release 1.5.7 (#155)
• ccd93ed fix(deps): bump the prod-deps group with 7 updates (#154)
• 2f864b7 fix(deps): bump the prod-deps group with 5 updates (#153)
• ab46807 APPPOCTOOL-28 Externalize JWT Parsing to a dedicated library (#152)
• ca2d54f Merge pull request #150 from folio-org/APPPOCTOOL-34-testcontainers
• Additional commits viewable in compare view

Updates org.projectlombok:lombok from 1.18.30 to 1.18.34

Changelog

Sourced from org.projectlombok:lombok's changelog.

v1.18.34 (June 28th, 2024)

• PLATFORM: Added support for Eclipse 2024-06; you'd get some NoSuchMethodError traces in your logs if using @Builder or @Singular prior to this fix. [Issue #3638](projectlombok/lombok#3638).
• IMPROBABLE BREAKING CHANGE: Lombok now adds @lombok.Generated by default to methods and types it generates. This may result in accidentally increasing your test coverage percentage. [Issue #3667](projectlombok/lombok#3667).
• IMPROBABLE BREAKING CHANGE: When lombok.config contains lombok.onX.flagUsage = WARNING, from now on warnings will actually be generated if onX is used.[Issue #2848](projectlombok/lombok#2848)
• BUGFIX: When @SuperBuilder was used on a type with an generic array type, it would error wrong number of type arguments. [Issue #3694](projectlombok/lombok#3694).
• FEATURE: Lombok generates javadoc for you for most of the methods it adds; with this release, javadoc is also added to generated constructors. [Issue #933](projectlombok/lombok#933).

v1.18.32 (March 20th, 2024)

• PLATFORM: Initial JDK22 support added.
• PLAFTORM Added support for Eclipse 2024-03. [Issue #3620](projectlombok/lombok#3620).
• PLATFORM: Added support for recent versions of eclipse (released Q4 2023 or later or so) which would cause failures in the eclipse logs such as java.lang.NoSuchMethodError: 'java.lang.StringBuffer org.eclipse.jdt…. [Issue #3564](projectlombok/lombok#3564).
• FEATURE: @Locked has been introduced. Like @Synchronized but with java.util.concurrent.locks locks instead of the synchronized primitive. Thanks, Pim van der Loos for the PR! [Issue #3506](projectlombok/lombok#3506).
• NECROMANCY: Inlining a generated getter in eclipse would result in eclipse incorrectly replacing calls with @Getter instead of the actual field's name. [Issue #562](projectlombok/lombok#562). This issue is almost old enough to drink. Points for dedication go to Rawi for fixing this one.
• BUGFIX: When @SuperBuilder was used on a type with an annotated generic type, it would error wrong number of type arguments. [Issue #3592](projectlombok/lombok#3592).
• BUGFIX: It was possible to create an infinite build loop using @ExtensionMethod. [Issue #3225](projectlombok/lombok#3225).
• BUGFIX: Using @Getter(lazy=true) would fail if the expression contained a variable called value. [Issue #2917](projectlombok/lombok#2917).
• BUGFIX: Many lombok features wouldn't work properly on records contained within an outer type unless you explicitly marked it static. [Issue #3497](projectlombok/lombok#3497) [Issue #3559](projectlombok/lombok#3559).
• BUGFIX: Eclipse projects using the com.pro-crafting.tools:jasperreports-plugin will now compile.
• BUGFIX: @FieldNameConstants now works when generated fields are involved. [Issue #3529](projectlombok/lombok#3529).
• IMPROBABLE BREAKING CHANGE: For JSpecify, the package name changed from org.jspecify.nullness to org.jspecify.annotations, which might lead to a different null analysis. [Issue #3608](projectlombok/lombok#3608).

Commits

• fbbe7f0 [release] pre-release version bump
• 3cd41e8 [trivial] some test cases were failing (due to the constructor-javadoc update...
• 1384244 Merge pull request #3698 from stevebosman/fix-sneaky-throws-doc
• d90ec73 [trivial] [style]
• 3b68e39 Merge pull request #3697 from janrieke/superbuilder-fix-array-type-param
• fdafa9a Merge pull request #3690 from Rawi01/eclipse_2024_06
• 78c1f47 Merge pull request #3689 from Rawi01/nested-javadoc
• da815a6 Merge pull request #3674 from Rawi01/standardexception-fields
• c61a404 [trivial]
• 6cf6caf Merge pull request #3673 from Rawi01/eclipse_field_generated
• Additional commits viewable in compare view

Updates com.puppycrawl.tools:checkstyle from 10.14.2 to 10.20.0

Release notes

Sourced from com.puppycrawl.tools:checkstyle's releases.

checkstyle-10.20.0

Checkstyle 10.20.0 - https://checkstyle.org/releasenotes.html#Release_10.20.0

Breaking backward compatibility:

#15687 - JavadocMethodCheck: removed unnecessary tokens from acceptable

New:

#14424 - HideUtilityClassConstructor - Add option to skip validation based on list of annotations

Bug fixes:

#15831 - google_checks.xml not allowing eol left curly for switch statement with lambda-like construct

checkstyle-10.19.0

Checkstyle 10.19.0 - https://checkstyle.org/releasenotes.html#Release_10.19.0

New:

#9540 - WhitespaceAround: new property allowEmptySwitchBlockStatements #15263 - UnnecessaryParenthesesCheck does not flag unnecessary parentheses in conditional expression

Bug fixes:

#15664 - false-negative in google_checks.xml for not being able to detect requirement of K & R style for FINALLY #15769 - google_checks.xml: remove xpath suppression and false-positive indentation violations for block codes #15685 - JavadocParagraph does not work when paragraphs have their corresponding closing tag #15324 - Enforce preceding line break for opening braces of a case/default under switch in google_checks.xml #15733 - JavadocParagraph: report violation with column #15503 - JavadocParagraph: violate preceding P tag before block-level HTML tags #15716 - google_checks.xml: JavadocParagraph should have allowNewlineParagraph as false

... (truncated)

Commits

• 41e15b3 [maven-release-plugin] prepare release checkstyle-10.20.0
• 719ae40 doc: release notes for 10.20.0
• 4c67922 Issue #15831: enabled allowEmptySwitchBlockStatements property of WhitespaceA...
• 67b98ab Issue #14814: refactor checkline into iterative method
• 9db3909 Issue #14814: refactor findmatch into iteration method
• 853e2ba Issue #13345: Enable examples tests for ExplicitInitializationCheck
• 8e8df58 Issue #13345: Enable examples tests for CovariantEqualsCheck
• ca693c7 Issue #15829: Added test class for ConstructorsDeclarationGrouping
• c256c10 Issue #6207: Added XPath regression test for ClassTypeParameterName
• 42cf0ad Issue #15456: Specify violation messages for ArrayTrailingComma
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-plugin-plugin from 3.14.0 to 3.15.1

Commits

• bc2daa4 [maven-release-plugin] prepare release maven-plugin-tools-3.15.1
• 08c9597 Bump asmVersion from 9.7 to 9.7.1
• 578637b Bump org.junit:junit-bom from 5.11.0 to 5.11.3
• a6c9b9c [MPLUGIN-538] Upgrade to Doxia 2.0.0 GA Stack
• 5d8b615 Bump net.bytebuddy:byte-buddy from 1.14.18 to 1.15.5
• 9888c96 Bump org.codehaus.plexus:plexus-java from 1.2.0 to 1.3.0
• d2adc90 Bump org.apache.commons:commons-lang3 from 3.16.0 to 3.17.0
• 18c156b Bump maven3Version from 3.9.8 to 3.9.9 (#321)
• 306fabe Bump org.junit:junit-bom from 5.10.3 to 5.11.0
• 93604a3 [maven-release-plugin] prepare for next development iteration
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-surefire-plugin from 3.2.5 to 3.5.2

Release notes

Sourced from org.apache.maven.plugins:maven-surefire-plugin's releases.

3.5.2

🚀 New features and improvements

• [SUREFIRE-2278] - Don't say please. (#792) @​elharo

📦 Dependency updates

• [SUREFIRE-2281] - Doxia 2.0.0 ga (#794) @​michael-o
• Bump commons-io:commons-io from 2.2 to 2.14.0 in /surefire-its/src/test/resources/surefire-979-smartStackTrace-wrongClassloader/module1 (#789) @​dependabot

👻 Maintenance

• [SUREFIRE-2282] - surefire-report-plugin: Update Introduction documenta… (#796) @​michael-o
• Reduce cyclomatic complexity (#793) @​elharo

Full Changelog: apache/maven-surefire@surefire-3.5.1...surefire-3.5.2

3.5.1

🚀 New features and improvements

• [SUREFIRE-2270] - Use JUnit5 in surefire-shadefire (#783) @​slawekjaranowski
• [SUREFIRE-2266] - Execute ITs in parallel (#781) @​slawekjaranowski
• [SUREFIRE-2264] - Limit usage of commons-io from surefire-shared-utils (#777) @​slawekjaranowski

🐛 Bug Fixes

• [SUREFIRE-2267] - Packages for commons-codec should be relocated in surefire-shared-utils (#782) @​slawekjaranowski
• [SUREFIRE-1737] - Fix disable in statelessTestsetReporter (#780) @​slawekjaranowski
• [SUREFIRE-2257] - [REGRESSION] NPEx: Cannot invoke "Object.toString()" … (#774) @​michael-o

📦 Dependency updates

• [SUREFIRE-2273] - Bump org.hamcrest:hamcrest from 2.2 to 3.0 (#784) @​dependabot
• [SUREFIRE-2272] - Bump org.codehaus.plexus:plexus-java from 1.2.0 to 1.3.0 - JDK 23 support (#786) @​dependabot
• [SUREFIRE-2226] - Upgrade to Maven Verifier 2.0.0-M1 (#706) @​michael-o
• [SUREFIRE-2265] - Bump commons-io:commons-io from 2.16.1 to 2.17.0 (#779) @​dependabot
• [SUREFIRE-2263] - Use the latest version of surefire for self build (#776) @​slawekjaranowski
• [SUREFIRE-2262] - Bump org.apache.commons:commons-lang3 from 3.16.0 to 3.17.0 (#775) @​dependabot

👻 Maintenance

• [SUREFIRE-2269] - Allow fail during clean in surefire-its (#785) @​slawekjaranowski

3.5.0

... (truncated)

Commits

• ea9f049 [maven-release-plugin] prepare release surefire-3.5.2
• e1f94a0 [SUREFIRE-2276] JUnit5's TestTemplate failures treated as flakes with retries
• d24adb4 [SUREFIRE-2277] RunResult#getFlakes() is lost during serialisation/deserialis...
• 4385e94 Remove links to non-existing report
• 8881971 Remove outdated FAQ
• 0121834 [SUREFIRE-2283] FAQ site contains broken link to failsafe-plugin
• 91d16c3 Fix formatting of XML schema files
• 6cb417a Add .xsd to .gitattributes
• 9ce5221 [SUREFIRE-2282] surefire-report-plugin: Update Introduction documentation page
• 620b983 [SUREFIRE-2281] Upgrade to Doxia 2.0.0 GA Stack
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-checkstyle-plugin from 3.3.1 to 3.6.0

Commits

• dd1abd9 [maven-release-plugin] prepare release maven-checkstyle-plugin-3.6.0
• 9ccb06e fix
• 6ac89b8 [MCHECKSTYLE-452] Upgrade to Doxia 2.0.0 GA Stack
• ff1a1b7 Bump org.apache.commons:commons-lang3 from 3.16.0 to 3.17.0
• 13e16c5 Remove unecessary test dependency on plexus-container-default
• a7c962a [maven-release-plugin] prepare for next development iteration
• 868abc9 [maven-release-plugin] prepare release maven-checkstyle-plugin-3.5.0
• 9043f8a [MCHECKSTYLE-446] Dynamically calculate xrefLocation/xrefTestLocation
• 0e7bd00 [MCHECKSTYLE-445] Upgrade to Doxia 2.0.0 Milestone Stack
• b92666d Bump org.apache.maven.plugins:maven-plugins from 42 to 43
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dmtkachenko]

@dependabot rebase

[dependabot]

Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry!

If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud