{"id":2851,"name":"log4j.version","ecosystem":"maven","repository_url":null,"issues_count":273,"created_at":"2025-06-06T15:02:13.755Z","updated_at":"2025-06-06T15:02:13.755Z","purl":"pkg:maven/log4j.version","unique_repositories_count":108,"unique_repositories_count_past_30_days":4,"recent_issues":[{"uuid":"4434612584","node_id":"PR_kwDOAEwvis7a8q1p","number":6665,"state":"open","title":"chore(deps-dev): bump log4j.version from 2.25.4 to 2.26.0","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-13T03:52:51.000Z","updated_at":"2026-05-13T04:16:24.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps-dev)","packages":[{"name":"log4j.version","old_version":"2.25.4","new_version":"2.26.0","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.25.4 to 2.26.0.\nUpdates `org.apache.logging.log4j:log4j-api` from 2.25.4 to 2.26.0\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.25.4 to 2.26.0\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/pmd/pmd/pull/6665","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/pmd%2Fpmd/issues/6665","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/6665/packages"},{"uuid":"4409322038","node_id":"PR_kwDOARp3R87Zrujk","number":3324,"state":"closed","title":"OF-3275: chore(deps): bump log4j.version from 2.25.4 to 2.26.0","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-05-09T08:34:38.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-08T20:52:54.000Z","updated_at":"2026-05-09T08:36:11.000Z","time_to_close":42104,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"OF-3275: chore(deps)","packages":[{"name":"log4j.version","old_version":"2.25.4","new_version":"2.26.0","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.25.4 to 2.26.0.\nUpdates `org.apache.logging.log4j:log4j-api` from 2.25.4 to 2.26.0\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.25.4 to 2.26.0\n\nUpdates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.25.4 to 2.26.0\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/igniterealtime/Openfire/pull/3324","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/igniterealtime%2FOpenfire/issues/3324","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/3324/packages"},{"uuid":"4402939327","node_id":"PR_kwDOBnzeYs7ZWskT","number":349,"state":"closed","title":"chore(deps-dev): bump log4j.version from 2.25.4 to 2.26.0","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-05-12T09:13:04.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-08T00:52:52.000Z","updated_at":"2026-05-12T09:13:09.000Z","time_to_close":375612,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps-dev)","packages":[{"name":"log4j.version","old_version":"2.25.4","new_version":"2.26.0","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.25.4 to 2.26.0.\nUpdates `org.apache.logging.log4j:log4j-api` from 2.25.4 to 2.26.0\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.25.4 to 2.26.0\n\nUpdates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.25.4 to 2.26.0\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/camunda/dmn-scala/pull/349","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/camunda%2Fdmn-scala/issues/349","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/349/packages"},{"uuid":"4402421777","node_id":"PR_kwDOCKk-dM7ZVCMJ","number":681,"state":"open","title":"build(deps): bump log4j.version from 2.25.4 to 2.26.0","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-07T22:32:24.000Z","updated_at":"2026-05-07T22:34:11.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"log4j.version","old_version":"2.25.4","new_version":"2.26.0","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.25.4 to 2.26.0.\nUpdates `org.apache.logging.log4j:log4j-api` from 2.25.4 to 2.26.0\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.25.4 to 2.26.0\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/jiangxincode/ApkToolBoxGUI/pull/681","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/jiangxincode%2FApkToolBoxGUI/issues/681","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/681/packages"},{"uuid":"4231584620","node_id":"PR_kwDOEnX34s7RGfkd","number":13688,"state":"open","title":"chore(deps): bump log4j.version from 2.25.3 to 2.25.4 in /jans-casa","user":"dependabot[bot]","labels":["java","dependencies"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-09T10:53:50.000Z","updated_at":"2026-04-09T17:05:41.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"log4j.version","old_version":"2.25.3","new_version":"2.25.4","repository_url":null}],"path":"/jans-casa","ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.25.3 to 2.25.4.\nUpdates `org.apache.logging.log4j:log4j-slf4j-impl` from 2.25.3 to 2.25.4\n\nUpdates `org.apache.logging.log4j:log4j-api` from 2.25.3 to 2.25.4\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.25.3 to 2.25.4\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/JanssenProject/jans/pull/13688","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/JanssenProject%2Fjans/issues/13688","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/13688/packages"},{"uuid":"4174260692","node_id":"PR_kwDOAAy0pM7Ow9hW","number":2497,"state":"open","title":"Bump log4j.version from 2.24.3 to 2.25.4","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-03-30T21:43:48.000Z","updated_at":"2026-03-30T22:53:52.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"log4j.version","old_version":"2.24.3","new_version":"2.25.4","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.24.3 to 2.25.4.\nUpdates `org.apache.logging.log4j:log4j-core` from 2.24.3 to 2.25.4\n\nUpdates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.24.3 to 2.25.4\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/apache/karaf/pull/2497","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/apache%2Fkaraf/issues/2497","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2497/packages"},{"uuid":"4165996639","node_id":"PR_kwDOABJqR87ObxQQ","number":1435,"state":"open","title":"Bump log4j.version from 2.25.3 to 2.25.4","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-03-29T22:52:48.000Z","updated_at":"2026-04-27T03:30:15.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"log4j.version","old_version":"2.25.3","new_version":"2.25.4","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.25.3 to 2.25.4.\nUpdates `org.apache.logging.log4j:log4j-core` from 2.25.3 to 2.25.4\n\nUpdates `org.apache.logging.log4j:log4j-slf4j-impl` from 2.25.3 to 2.25.4\n","html_url":"https://github.com/wicketstuff/core/pull/1435","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/wicketstuff%2Fcore/issues/1435","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1435/packages"},{"uuid":"4079229894","node_id":"PR_kwDOAAy0pM7Kwqgj","number":2382,"state":"closed","title":"Bump log4j.version from 2.24.3 to 2.25.3","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-03-30T21:43:52.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-15T21:26:34.000Z","updated_at":"2026-03-30T21:43:54.000Z","time_to_close":1297038,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"log4j.version","old_version":"2.24.3","new_version":"2.25.3","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.24.3 to 2.25.3.\nUpdates `org.apache.logging.log4j:log4j-core` from 2.24.3 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.24.3 to 2.25.3\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/apache/karaf/pull/2382","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/apache%2Fkaraf/issues/2382","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2382/packages"},{"uuid":"3848059730","node_id":"PR_kwDOQ6bzDc6-9sRx","number":8,"state":"closed","title":"Bump log4j.version from 2.24.3 to 2.25.3","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-01-23T16:13:17.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-23T15:55:32.000Z","updated_at":"2026-01-23T16:13:19.000Z","time_to_close":1065,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"log4j.version","old_version":"2.24.3","new_version":"2.25.3","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.24.3 to 2.25.3.\nUpdates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.24.3 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.24.3 to 2.25.3\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/wanaku-ai/camel-code-execution-engine/pull/8","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/wanaku-ai%2Fcamel-code-execution-engine/issues/8","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/8/packages"},{"uuid":"3813758994","node_id":"PR_kwDOGAo80M69L3rZ","number":160,"state":"closed","title":"chore(deps): bump log4j.version from 2.19.0 to 2.25.3","user":"dependabot[bot]","labels":["dependencies","java","stale"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-05-02T04:43:15.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-14T15:43:17.000Z","updated_at":"2026-05-02T04:43:24.000Z","time_to_close":9291598,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"log4j.version","old_version":"2.19.0","new_version":"2.25.3","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.19.0 to 2.25.3.\nUpdates `org.apache.logging.log4j:log4j-slf4j-impl` from 2.19.0 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.19.0 to 2.25.3\n\n\nYou can trigger a rebase of this PR by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\n\u003e **Note**\n\u003e Automatic rebases have been disabled on this pull request as it has been open for over 30 days.\n","html_url":"https://github.com/adferrand/java-operator-sdk/pull/160","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/adferrand%2Fjava-operator-sdk/issues/160","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/160/packages"},{"uuid":"3774024434","node_id":"PR_kwDOADkekM67K1f2","number":11733,"state":"closed","title":"build(deps): bump log4j.version from 2.25.2 to 2.25.3","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-01-26T08:41:27.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-01T02:14:06.000Z","updated_at":"2026-01-26T08:41:29.000Z","time_to_close":2183241,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"log4j.version","old_version":"2.25.2","new_version":"2.25.3","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.25.2 to 2.25.3.\nUpdates `org.apache.logging.log4j:log4j-api` from 2.25.2 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.25.2 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.25.2 to 2.25.3\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/DSpace/DSpace/pull/11733","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/DSpace%2FDSpace/issues/11733","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/11733/packages"},{"uuid":"3752332257","node_id":"PR_kwDOEJE0E866ELxS","number":1530,"state":"closed","title":"Bump log4j.version from 2.25.2 to 2.25.3","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-01-05T19:22:32.000Z","author_association":null,"state_reason":null,"created_at":"2025-12-22T05:01:39.000Z","updated_at":"2026-01-05T19:22:33.000Z","time_to_close":1261253,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"log4j.version","old_version":"2.25.2","new_version":"2.25.3","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.25.2 to 2.25.3.\nUpdates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.25.2 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-api` from 2.25.2 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.25.2 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-layout-template-json` from 2.25.2 to 2.25.3\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/slackhq/astra/pull/1530","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/slackhq%2Fastra/issues/1530","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1530/packages"},{"uuid":"3737265721","node_id":"PR_kwDOOXycvs65SNrp","number":38,"state":"open","title":"Bump log4j.version from 2.24.3 to 2.25.3","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2025-12-17T04:16:49.000Z","updated_at":"2025-12-17T04:16:50.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"log4j.version","old_version":"2.24.3","new_version":"2.25.3","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.24.3 to 2.25.3.\nUpdates `org.apache.logging.log4j:log4j-api` from 2.24.3 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-slf4j-impl` from 2.24.3 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.24.3 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.24.3 to 2.25.3\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/jolly0603/elasticsearch-java-client-demo/pull/38","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/jolly0603%2Felasticsearch-java-client-demo/issues/38","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/38/packages"},{"uuid":"3737265527","node_id":"PR_kwDOOXgYgM65SNpG","number":38,"state":"open","title":"Bump log4j.version from 2.24.3 to 2.25.3","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2025-12-17T04:16:42.000Z","updated_at":"2025-12-17T04:16:43.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"log4j.version","old_version":"2.24.3","new_version":"2.25.3","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.24.3 to 2.25.3.\nUpdates `org.apache.logging.log4j:log4j-api` from 2.24.3 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-slf4j-impl` from 2.24.3 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.24.3 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.24.3 to 2.25.3\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/livebcdev0603/elasticsearch-java-client-demo/pull/38","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/livebcdev0603%2Felasticsearch-java-client-demo/issues/38","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/38/packages"},{"uuid":"3736490395","node_id":"PR_kwDOFbSD1c65PmW3","number":1783,"state":"open","title":"Bump log4j.version from 2.25.2 to 2.25.3","user":"dependabot[bot]","labels":["dependencies","java","triage/flaky-test"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2025-12-16T22:01:47.000Z","updated_at":"2025-12-17T00:38:45.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"log4j.version","old_version":"2.25.2","new_version":"2.25.3","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.25.2 to 2.25.3.\nUpdates `org.apache.logging.log4j:log4j-core` from 2.25.2 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-api` from 2.25.2 to 2.25.3\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/quarkus-qe/quarkus-test-framework/pull/1783","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/quarkus-qe%2Fquarkus-test-framework/issues/1783","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1783/packages"},{"uuid":"3735630039","node_id":"PR_kwDOBjhvI865MqQj","number":890,"state":"closed","title":"Bump log4j.version from 2.25.2 to 2.25.3","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-12-17T09:02:18.000Z","author_association":null,"state_reason":null,"created_at":"2025-12-16T17:09:45.000Z","updated_at":"2025-12-17T09:02:27.000Z","time_to_close":57153,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"log4j.version","old_version":"2.25.2","new_version":"2.25.3","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.25.2 to 2.25.3.\nUpdates `org.apache.logging.log4j:log4j-api` from 2.25.2 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.25.2 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.25.2 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-jul` from 2.25.2 to 2.25.3\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/KorAP/Kustvakt/pull/890","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/KorAP%2FKustvakt/issues/890","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/890/packages"},{"uuid":"2892967471","node_id":"PR_kwDOOrHUH86sby4v","number":1,"state":"open","title":"Bump log4j.version from 2.21.1 to 2.25.2","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"NONE","state_reason":null,"created_at":"2025-10-07T07:39:59.000Z","updated_at":"2025-10-07T07:39:59.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"log4j.version","old_version":"2.21.1","new_version":"2.25.2","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.21.1 to 2.25.2.\nUpdates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.21.1 to 2.25.2\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.21.1 to 2.25.2\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/wanaku-ai/camel-integration-capability/pull/1","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/wanaku-ai%2Fcamel-integration-capability/issues/1","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1/packages"},{"uuid":"2888644381","node_id":"PR_kwDOPJoL5s6sLTcd","number":11,"state":"closed","title":"Bump log4j.version from 2.25.1 to 2.25.2","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":"2025-10-08T11:12:28.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-10-06T02:34:34.000Z","updated_at":"2025-10-08T11:12:28.000Z","time_to_close":203874,"merged_at":"2025-10-08T11:12:28.000Z","merged_by":"orpiske","closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"log4j.version","old_version":"2.25.1","new_version":"2.25.2","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.25.1 to 2.25.2.\nUpdates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.25.1 to 2.25.2\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.25.1 to 2.25.2\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/wanaku-ai/wanaku-capabilities-java-sdk/pull/11","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/wanaku-ai%2Fwanaku-capabilities-java-sdk/issues/11","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/11/packages"},{"uuid":"2886810771","node_id":"PR_kwDOP7-RP86sETyT","number":13,"state":"open","title":"Bump log4j.version from 2.19.0 to 2.25.2","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-10-04T05:04:49.000Z","updated_at":"2025-10-04T05:04:50.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"log4j.version","old_version":"2.19.0","new_version":"2.25.2","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.19.0 to 2.25.2.\nUpdates `org.apache.logging.log4j:log4j-slf4j-impl` from 2.19.0 to 2.25.2\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.19.0 to 2.25.2\n\nUpdates `org.apache.logging.log4j:log4j-api` from 2.19.0 to 2.25.2\n\nUpdates `org.apache.logging.log4j:log4j-jul` from 2.19.0 to 2.25.2\n\nUpdates `org.apache.logging.log4j:log4j-to-slf4j` from 2.19.0 to 2.25.2\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/wangjiucheng123/shiro/pull/13","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/wangjiucheng123%2Fshiro/issues/13","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/13/packages"},{"uuid":"2882428881","node_id":"PR_kwDOAc2UZs6rzl_R","number":247,"state":"closed","title":"Bump log4j.version from 2.25.1 to 2.25.2","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":"2025-10-06T10:40:33.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-10-02T17:01:21.000Z","updated_at":"2025-10-06T10:40:33.000Z","time_to_close":322752,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"log4j.version","old_version":"2.25.1","new_version":"2.25.2","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.25.1 to 2.25.2.\nUpdates `org.apache.logging.log4j:log4j-api` from 2.25.1 to 2.25.2\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.25.1 to 2.25.2\n\nUpdates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.25.1 to 2.25.2\n\nUpdates `org.apache.logging.log4j:log4j-jul` from 2.25.1 to 2.25.2\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/KorAP/Koral/pull/247","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/KorAP%2FKoral/issues/247","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/247/packages"}],"issue_packages":[{"old_version":"2.25.4","new_version":"2.26.0","update_type":"minor","path":null,"pr_created_at":"2026-05-13T03:52:51.000Z","version_change":"2.25.4 → 2.26.0","issue":{"uuid":"4434612584","node_id":"PR_kwDOAEwvis7a8q1p","number":6665,"state":"open","title":"chore(deps-dev): bump log4j.version from 2.25.4 to 2.26.0","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-13T03:52:51.000Z","updated_at":"2026-05-13T04:16:24.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps-dev)","packages":[{"name":"log4j.version","old_version":"2.25.4","new_version":"2.26.0","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.25.4 to 2.26.0.\nUpdates `org.apache.logging.log4j:log4j-api` from 2.25.4 to 2.26.0\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.25.4 to 2.26.0\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/pmd/pmd/pull/6665","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/pmd%2Fpmd/issues/6665","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/6665/packages"}},{"old_version":"2.25.4","new_version":"2.26.0","update_type":"minor","path":null,"pr_created_at":"2026-05-08T20:52:54.000Z","version_change":"2.25.4 → 2.26.0","issue":{"uuid":"4409322038","node_id":"PR_kwDOARp3R87Zrujk","number":3324,"state":"closed","title":"OF-3275: chore(deps): bump log4j.version from 2.25.4 to 2.26.0","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-05-09T08:34:38.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-08T20:52:54.000Z","updated_at":"2026-05-09T08:36:11.000Z","time_to_close":42104,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"OF-3275: chore(deps)","packages":[{"name":"log4j.version","old_version":"2.25.4","new_version":"2.26.0","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.25.4 to 2.26.0.\nUpdates `org.apache.logging.log4j:log4j-api` from 2.25.4 to 2.26.0\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.25.4 to 2.26.0\n\nUpdates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.25.4 to 2.26.0\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/igniterealtime/Openfire/pull/3324","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/igniterealtime%2FOpenfire/issues/3324","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/3324/packages"}},{"old_version":"2.25.4","new_version":"2.26.0","update_type":"minor","path":null,"pr_created_at":"2026-05-08T00:52:52.000Z","version_change":"2.25.4 → 2.26.0","issue":{"uuid":"4402939327","node_id":"PR_kwDOBnzeYs7ZWskT","number":349,"state":"closed","title":"chore(deps-dev): bump log4j.version from 2.25.4 to 2.26.0","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-05-12T09:13:04.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-08T00:52:52.000Z","updated_at":"2026-05-12T09:13:09.000Z","time_to_close":375612,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps-dev)","packages":[{"name":"log4j.version","old_version":"2.25.4","new_version":"2.26.0","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.25.4 to 2.26.0.\nUpdates `org.apache.logging.log4j:log4j-api` from 2.25.4 to 2.26.0\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.25.4 to 2.26.0\n\nUpdates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.25.4 to 2.26.0\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/camunda/dmn-scala/pull/349","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/camunda%2Fdmn-scala/issues/349","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/349/packages"}},{"old_version":"2.25.4","new_version":"2.26.0","update_type":"minor","path":null,"pr_created_at":"2026-05-07T22:32:24.000Z","version_change":"2.25.4 → 2.26.0","issue":{"uuid":"4402421777","node_id":"PR_kwDOCKk-dM7ZVCMJ","number":681,"state":"open","title":"build(deps): bump log4j.version from 2.25.4 to 2.26.0","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-07T22:32:24.000Z","updated_at":"2026-05-07T22:34:11.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"log4j.version","old_version":"2.25.4","new_version":"2.26.0","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.25.4 to 2.26.0.\nUpdates `org.apache.logging.log4j:log4j-api` from 2.25.4 to 2.26.0\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.25.4 to 2.26.0\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/jiangxincode/ApkToolBoxGUI/pull/681","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/jiangxincode%2FApkToolBoxGUI/issues/681","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/681/packages"}},{"old_version":"2.25.3","new_version":"2.25.4","update_type":"patch","path":"/jans-casa","pr_created_at":"2026-04-09T10:53:50.000Z","version_change":"2.25.3 → 2.25.4","issue":{"uuid":"4231584620","node_id":"PR_kwDOEnX34s7RGfkd","number":13688,"state":"open","title":"chore(deps): bump log4j.version from 2.25.3 to 2.25.4 in /jans-casa","user":"dependabot[bot]","labels":["java","dependencies"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-09T10:53:50.000Z","updated_at":"2026-04-09T17:05:41.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"log4j.version","old_version":"2.25.3","new_version":"2.25.4","repository_url":null}],"path":"/jans-casa","ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.25.3 to 2.25.4.\nUpdates `org.apache.logging.log4j:log4j-slf4j-impl` from 2.25.3 to 2.25.4\n\nUpdates `org.apache.logging.log4j:log4j-api` from 2.25.3 to 2.25.4\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.25.3 to 2.25.4\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/JanssenProject/jans/pull/13688","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/JanssenProject%2Fjans/issues/13688","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/13688/packages"}},{"old_version":"2.24.3","new_version":"2.25.4","update_type":"minor","path":null,"pr_created_at":"2026-03-30T21:43:48.000Z","version_change":"2.24.3 → 2.25.4","issue":{"uuid":"4174260692","node_id":"PR_kwDOAAy0pM7Ow9hW","number":2497,"state":"open","title":"Bump log4j.version from 2.24.3 to 2.25.4","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-03-30T21:43:48.000Z","updated_at":"2026-03-30T22:53:52.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"log4j.version","old_version":"2.24.3","new_version":"2.25.4","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.24.3 to 2.25.4.\nUpdates `org.apache.logging.log4j:log4j-core` from 2.24.3 to 2.25.4\n\nUpdates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.24.3 to 2.25.4\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/apache/karaf/pull/2497","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/apache%2Fkaraf/issues/2497","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2497/packages"}},{"old_version":"2.25.3","new_version":"2.25.4","update_type":"patch","path":null,"pr_created_at":"2026-03-29T22:52:48.000Z","version_change":"2.25.3 → 2.25.4","issue":{"uuid":"4165996639","node_id":"PR_kwDOABJqR87ObxQQ","number":1435,"state":"open","title":"Bump log4j.version from 2.25.3 to 2.25.4","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-03-29T22:52:48.000Z","updated_at":"2026-04-27T03:30:15.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"log4j.version","old_version":"2.25.3","new_version":"2.25.4","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.25.3 to 2.25.4.\nUpdates `org.apache.logging.log4j:log4j-core` from 2.25.3 to 2.25.4\n\nUpdates `org.apache.logging.log4j:log4j-slf4j-impl` from 2.25.3 to 2.25.4\n","html_url":"https://github.com/wicketstuff/core/pull/1435","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/wicketstuff%2Fcore/issues/1435","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1435/packages"}},{"old_version":"2.24.3","new_version":"2.25.3","update_type":"minor","path":null,"pr_created_at":"2026-03-15T21:26:34.000Z","version_change":"2.24.3 → 2.25.3","issue":{"uuid":"4079229894","node_id":"PR_kwDOAAy0pM7Kwqgj","number":2382,"state":"closed","title":"Bump log4j.version from 2.24.3 to 2.25.3","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-03-30T21:43:52.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-15T21:26:34.000Z","updated_at":"2026-03-30T21:43:54.000Z","time_to_close":1297038,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"log4j.version","old_version":"2.24.3","new_version":"2.25.3","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.24.3 to 2.25.3.\nUpdates `org.apache.logging.log4j:log4j-core` from 2.24.3 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.24.3 to 2.25.3\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/apache/karaf/pull/2382","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/apache%2Fkaraf/issues/2382","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2382/packages"}},{"old_version":"2.24.3","new_version":"2.25.3","update_type":"minor","path":null,"pr_created_at":"2026-01-23T15:55:32.000Z","version_change":"2.24.3 → 2.25.3","issue":{"uuid":"3848059730","node_id":"PR_kwDOQ6bzDc6-9sRx","number":8,"state":"closed","title":"Bump log4j.version from 2.24.3 to 2.25.3","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-01-23T16:13:17.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-23T15:55:32.000Z","updated_at":"2026-01-23T16:13:19.000Z","time_to_close":1065,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"log4j.version","old_version":"2.24.3","new_version":"2.25.3","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.24.3 to 2.25.3.\nUpdates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.24.3 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.24.3 to 2.25.3\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/wanaku-ai/camel-code-execution-engine/pull/8","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/wanaku-ai%2Fcamel-code-execution-engine/issues/8","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/8/packages"}},{"old_version":"2.19.0","new_version":"2.25.3","update_type":"minor","path":null,"pr_created_at":"2026-01-14T15:43:17.000Z","version_change":"2.19.0 → 2.25.3","issue":{"uuid":"3813758994","node_id":"PR_kwDOGAo80M69L3rZ","number":160,"state":"closed","title":"chore(deps): bump log4j.version from 2.19.0 to 2.25.3","user":"dependabot[bot]","labels":["dependencies","java","stale"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-05-02T04:43:15.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-14T15:43:17.000Z","updated_at":"2026-05-02T04:43:24.000Z","time_to_close":9291598,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"log4j.version","old_version":"2.19.0","new_version":"2.25.3","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.19.0 to 2.25.3.\nUpdates `org.apache.logging.log4j:log4j-slf4j-impl` from 2.19.0 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.19.0 to 2.25.3\n\n\nYou can trigger a rebase of this PR by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\n\u003e **Note**\n\u003e Automatic rebases have been disabled on this pull request as it has been open for over 30 days.\n","html_url":"https://github.com/adferrand/java-operator-sdk/pull/160","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/adferrand%2Fjava-operator-sdk/issues/160","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/160/packages"}},{"old_version":"2.25.2","new_version":"2.25.3","update_type":"patch","path":null,"pr_created_at":"2026-01-01T02:14:06.000Z","version_change":"2.25.2 → 2.25.3","issue":{"uuid":"3774024434","node_id":"PR_kwDOADkekM67K1f2","number":11733,"state":"closed","title":"build(deps): bump log4j.version from 2.25.2 to 2.25.3","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-01-26T08:41:27.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-01T02:14:06.000Z","updated_at":"2026-01-26T08:41:29.000Z","time_to_close":2183241,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"log4j.version","old_version":"2.25.2","new_version":"2.25.3","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.25.2 to 2.25.3.\nUpdates `org.apache.logging.log4j:log4j-api` from 2.25.2 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.25.2 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.25.2 to 2.25.3\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/DSpace/DSpace/pull/11733","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/DSpace%2FDSpace/issues/11733","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/11733/packages"}},{"old_version":"2.25.2","new_version":"2.25.3","update_type":"patch","path":null,"pr_created_at":"2025-12-22T05:01:39.000Z","version_change":"2.25.2 → 2.25.3","issue":{"uuid":"3752332257","node_id":"PR_kwDOEJE0E866ELxS","number":1530,"state":"closed","title":"Bump log4j.version from 2.25.2 to 2.25.3","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-01-05T19:22:32.000Z","author_association":null,"state_reason":null,"created_at":"2025-12-22T05:01:39.000Z","updated_at":"2026-01-05T19:22:33.000Z","time_to_close":1261253,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"log4j.version","old_version":"2.25.2","new_version":"2.25.3","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.25.2 to 2.25.3.\nUpdates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.25.2 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-api` from 2.25.2 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.25.2 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-layout-template-json` from 2.25.2 to 2.25.3\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/slackhq/astra/pull/1530","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/slackhq%2Fastra/issues/1530","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1530/packages"}},{"old_version":"2.24.3","new_version":"2.25.3","update_type":"minor","path":null,"pr_created_at":"2025-12-17T04:16:49.000Z","version_change":"2.24.3 → 2.25.3","issue":{"uuid":"3737265721","node_id":"PR_kwDOOXycvs65SNrp","number":38,"state":"open","title":"Bump log4j.version from 2.24.3 to 2.25.3","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2025-12-17T04:16:49.000Z","updated_at":"2025-12-17T04:16:50.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"log4j.version","old_version":"2.24.3","new_version":"2.25.3","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.24.3 to 2.25.3.\nUpdates `org.apache.logging.log4j:log4j-api` from 2.24.3 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-slf4j-impl` from 2.24.3 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.24.3 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.24.3 to 2.25.3\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/jolly0603/elasticsearch-java-client-demo/pull/38","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/jolly0603%2Felasticsearch-java-client-demo/issues/38","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/38/packages"}},{"old_version":"2.24.3","new_version":"2.25.3","update_type":"minor","path":null,"pr_created_at":"2025-12-17T04:16:42.000Z","version_change":"2.24.3 → 2.25.3","issue":{"uuid":"3737265527","node_id":"PR_kwDOOXgYgM65SNpG","number":38,"state":"open","title":"Bump log4j.version from 2.24.3 to 2.25.3","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2025-12-17T04:16:42.000Z","updated_at":"2025-12-17T04:16:43.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"log4j.version","old_version":"2.24.3","new_version":"2.25.3","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.24.3 to 2.25.3.\nUpdates `org.apache.logging.log4j:log4j-api` from 2.24.3 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-slf4j-impl` from 2.24.3 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.24.3 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.24.3 to 2.25.3\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/livebcdev0603/elasticsearch-java-client-demo/pull/38","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/livebcdev0603%2Felasticsearch-java-client-demo/issues/38","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/38/packages"}},{"old_version":"2.25.2","new_version":"2.25.3","update_type":"patch","path":null,"pr_created_at":"2025-12-16T22:01:47.000Z","version_change":"2.25.2 → 2.25.3","issue":{"uuid":"3736490395","node_id":"PR_kwDOFbSD1c65PmW3","number":1783,"state":"open","title":"Bump log4j.version from 2.25.2 to 2.25.3","user":"dependabot[bot]","labels":["dependencies","java","triage/flaky-test"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2025-12-16T22:01:47.000Z","updated_at":"2025-12-17T00:38:45.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"log4j.version","old_version":"2.25.2","new_version":"2.25.3","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.25.2 to 2.25.3.\nUpdates `org.apache.logging.log4j:log4j-core` from 2.25.2 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-api` from 2.25.2 to 2.25.3\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/quarkus-qe/quarkus-test-framework/pull/1783","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/quarkus-qe%2Fquarkus-test-framework/issues/1783","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1783/packages"}},{"old_version":"2.25.2","new_version":"2.25.3","update_type":"patch","path":null,"pr_created_at":"2025-12-16T17:09:45.000Z","version_change":"2.25.2 → 2.25.3","issue":{"uuid":"3735630039","node_id":"PR_kwDOBjhvI865MqQj","number":890,"state":"closed","title":"Bump log4j.version from 2.25.2 to 2.25.3","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-12-17T09:02:18.000Z","author_association":null,"state_reason":null,"created_at":"2025-12-16T17:09:45.000Z","updated_at":"2025-12-17T09:02:27.000Z","time_to_close":57153,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"log4j.version","old_version":"2.25.2","new_version":"2.25.3","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.25.2 to 2.25.3.\nUpdates `org.apache.logging.log4j:log4j-api` from 2.25.2 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.25.2 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.25.2 to 2.25.3\n\nUpdates `org.apache.logging.log4j:log4j-jul` from 2.25.2 to 2.25.3\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/KorAP/Kustvakt/pull/890","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/KorAP%2FKustvakt/issues/890","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/890/packages"}},{"old_version":"2.21.1","new_version":"2.25.2","update_type":"minor","path":null,"pr_created_at":"2025-10-07T07:39:59.000Z","version_change":"2.21.1 → 2.25.2","issue":{"uuid":"2892967471","node_id":"PR_kwDOOrHUH86sby4v","number":1,"state":"open","title":"Bump log4j.version from 2.21.1 to 2.25.2","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"NONE","state_reason":null,"created_at":"2025-10-07T07:39:59.000Z","updated_at":"2025-10-07T07:39:59.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"log4j.version","old_version":"2.21.1","new_version":"2.25.2","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.21.1 to 2.25.2.\nUpdates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.21.1 to 2.25.2\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.21.1 to 2.25.2\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/wanaku-ai/camel-integration-capability/pull/1","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/wanaku-ai%2Fcamel-integration-capability/issues/1","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1/packages"}},{"old_version":"2.25.1","new_version":"2.25.2","update_type":"patch","path":null,"pr_created_at":"2025-10-06T02:34:34.000Z","version_change":"2.25.1 → 2.25.2","issue":{"uuid":"2888644381","node_id":"PR_kwDOPJoL5s6sLTcd","number":11,"state":"closed","title":"Bump log4j.version from 2.25.1 to 2.25.2","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":"2025-10-08T11:12:28.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-10-06T02:34:34.000Z","updated_at":"2025-10-08T11:12:28.000Z","time_to_close":203874,"merged_at":"2025-10-08T11:12:28.000Z","merged_by":"orpiske","closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"log4j.version","old_version":"2.25.1","new_version":"2.25.2","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.25.1 to 2.25.2.\nUpdates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.25.1 to 2.25.2\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.25.1 to 2.25.2\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/wanaku-ai/wanaku-capabilities-java-sdk/pull/11","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/wanaku-ai%2Fwanaku-capabilities-java-sdk/issues/11","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/11/packages"}},{"old_version":"2.19.0","new_version":"2.25.2","update_type":"minor","path":null,"pr_created_at":"2025-10-04T05:04:49.000Z","version_change":"2.19.0 → 2.25.2","issue":{"uuid":"2886810771","node_id":"PR_kwDOP7-RP86sETyT","number":13,"state":"open","title":"Bump log4j.version from 2.19.0 to 2.25.2","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-10-04T05:04:49.000Z","updated_at":"2025-10-04T05:04:50.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"log4j.version","old_version":"2.19.0","new_version":"2.25.2","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.19.0 to 2.25.2.\nUpdates `org.apache.logging.log4j:log4j-slf4j-impl` from 2.19.0 to 2.25.2\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.19.0 to 2.25.2\n\nUpdates `org.apache.logging.log4j:log4j-api` from 2.19.0 to 2.25.2\n\nUpdates `org.apache.logging.log4j:log4j-jul` from 2.19.0 to 2.25.2\n\nUpdates `org.apache.logging.log4j:log4j-to-slf4j` from 2.19.0 to 2.25.2\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/wangjiucheng123/shiro/pull/13","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/wangjiucheng123%2Fshiro/issues/13","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/13/packages"}},{"old_version":"2.25.1","new_version":"2.25.2","update_type":"patch","path":null,"pr_created_at":"2025-10-02T17:01:21.000Z","version_change":"2.25.1 → 2.25.2","issue":{"uuid":"2882428881","node_id":"PR_kwDOAc2UZs6rzl_R","number":247,"state":"closed","title":"Bump log4j.version from 2.25.1 to 2.25.2","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":"2025-10-06T10:40:33.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-10-02T17:01:21.000Z","updated_at":"2025-10-06T10:40:33.000Z","time_to_close":322752,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"log4j.version","old_version":"2.25.1","new_version":"2.25.2","repository_url":null}],"path":null,"ecosystem":"maven"},"body":"Bumps `log4j.version` from 2.25.1 to 2.25.2.\nUpdates `org.apache.logging.log4j:log4j-api` from 2.25.1 to 2.25.2\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.25.1 to 2.25.2\n\nUpdates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.25.1 to 2.25.2\n\nUpdates `org.apache.logging.log4j:log4j-jul` from 2.25.1 to 2.25.2\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/KorAP/Koral/pull/247","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/KorAP%2FKoral/issues/247","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/247/packages"}}]}