Bump the gradle-version-updates group across 1 directory with 9 updates
Open
Number: #3299
Type: Pull Request
State: Open
Type: Pull Request
State: Open
Author:
![dependabot[bot]](https://github.com/dependabot.png)
dependabot[bot]
Association: Contributor
Comments: 3
dependabot[bot]Association: Contributor
Comments: 3
Created:
September 29, 2025 at 10:50 AM UTC
(3 months ago)
(3 months ago)
Updated:
October 01, 2025 at 04:50 PM UTC
(3 months ago)
(3 months ago)
Labels:
dependencies java
dependencies java
Description:
Bumps the gradle-version-updates group with 6 updates in the /hooks/persistence-defectdojo/hook directory:
| Package | From | To |
|---|---|---|
| org.springframework:spring-web | 6.2.10 |
6.2.11 |
| com.fasterxml.jackson.core:jackson-core | 2.19.2 |
2.20.0 |
| com.fasterxml.jackson.datatype:jackson-datatype-jsr310 | 2.19.2 |
2.20.0 |
| org.mockito:mockito-core | 5.19.0 |
5.20.0 |
| io.freefair.lombok | 8.14.2 |
9.0.0 |
| com.github.ben-manes.versions | 0.52.0 |
0.53.0 |
Updates org.springframework:spring-web from 6.2.10 to 6.2.11
Release notes
Sourced from org.springframework:spring-web's releases.
v6.2.11
:star: New Features
- Missing
@Nullableon JsonPathAssertions.isEqualTo #35445- Graceful fallback for non-default NIO.2 FileSystems #35443
- Avoid thread pinning in SseEmitter, ResponseBodyEmitter #35423
- Detect Informix error codes as
DuplicateKeyException#35400- Inconsistent nullability for
String valuearguments inResponseCookiefrom*()factory methods #35377- Revisit
taskTerminationTimeoutsemantics onSimpleAsyncTaskExecutor/Scheduler#35372StandardEvaluationContext.setBeanResolvershould allow@Nullable BeanResolver#35371:lady_beetle: Bug Fixes
- "mainThreadPrefix = null " Causing multiple background bean locks to be blocked #35409
- Annotation not found on parameter in overridden method unless method is public #35349
- Annotations on overridden methods not found in type hierarchy with unresolved generics #35342
- Performance degradation when using singleton beans with Provider #35330
- JettyClientHttpConnector buffer leak in Spring Framework 6.2 #35319
- Spring application hangs on shutdown with
@Scheduled(cron=…) when custom ScheduledExecutorService bean is defined (Java 19+) #35316:notebook_with_decorative_cover: Documentation
- Document potential need to use
Mockito.doXxx()to stub a@MockitoSpyBean#35410- Fix links to Reactive Libraries and RestTemplate #35392
- Fix broken link in WebDriver docs #35374
- Document Web DataBinder support for RouterFunction #35367
- Improve documentation for
ApplicationEventsto clarify recommended usage #35335- Document terms and units in
DataSize.parse()#35298- Refine
@ContractJavadoc #35285- Correct the default value of nestedTransactionAllowed in JpaTransactionManager javadoc #35212
:hammer: Dependency Upgrades
:heart: Contributors
Thank you to all the contributors who worked on this release:
@Dockerel,@Kehrlann,@acktsap,@khj68,@ngocnhan-tran1996,@scordio, and@sgflt
Commits
4c13425Release v6.2.11d17601eUpgrade to Undertow 2.3.19, RxJava 3.1.11, Aalto 1.3.35b38761Clarify intended nestedTransactionAllowed default in JpaTransactionManager0e3e34bFind annotations on parameters in overridden non-public methods4745c7cName local variables consistently275fb52Upgrade to Reactor 2024.0.10 and Micrometer 1.14.117f9aa39Polishingc788554Avoid thread pinning in SseEmitter, ResponseBodyEmitter9e8c640Make JsonPathAssertions#isEqualTo parameter nullableebb8e34Upgrade to Jetty 12.0.26, Jetty Reactive HttpClient 4.0.11, Netty 4.1.127, Ht...- Additional commits viewable in compare view
Updates com.fasterxml.jackson.core:jackson-core from 2.19.2 to 2.20.0
Commits
ea0830a[maven-release-plugin] prepare release jackson-core-2.20.0e16733aPrep for 2.20.093deb38Drop RC from version pre-2.20.0 releasef0bcc3cHandle deprecation warnings6e70d08Fix #1462: deprecateJsonFactory.createParser(URL)(#1464)588cc76Post release version bump018f9e1[maven-release-plugin] prepare for next development iteration360e498[maven-release-plugin] prepare release jackson-core-2.20.0-rc1538ac44Prep for 2.20.0-rc1dfbf47bMerge branch '2.19' into 2.x- Additional commits viewable in compare view
Updates com.fasterxml.jackson.core:jackson-annotations from 2.19.2 to 2.20.0
Updates com.fasterxml.jackson.core:jackson-databind from 2.19.2 to 2.20.0
Commits
- See full diff in compare view
Updates com.fasterxml.jackson.datatype:jackson-datatype-jsr310 from 2.19.2 to 2.20.0
Updates org.mockito:mockito-core from 5.19.0 to 5.20.0
Release notes
Sourced from org.mockito:mockito-core's releases.
v5.20.0
Changelog generated by Shipkit Changelog Gradle Plugin
5.20.0
- 2025-09-20 - 11 commit(s) by Adrian-Kim, Giulio Longfils, Rafael Winterhalter, dependabot[bot]
- Bump org.assertj:assertj-core from 3.27.4 to 3.27.5 [(#3730)](mockito/mockito#3730)
- Introducing the Ability to Mock Construction of Generic Types (#2401) [(#3729)](mockito/mockito#3729)
- Bump com.gradle.develocity from 4.1.1 to 4.2 [(#3726)](mockito/mockito#3726)
- Bump graalvm/setup-graalvm from 1.3.6 to 1.3.7 [(#3725)](mockito/mockito#3725)
- Bump org.eclipse.platform:org.eclipse.osgi from 3.23.100 to 3.23.200 [(#3720)](mockito/mockito#3720)
- Bump graalvm/setup-graalvm from 1.3.5 to 1.3.6 [(#3719)](mockito/mockito#3719)
- Bump actions/setup-java from 4 to 5 [(#3715)](mockito/mockito#3715)
- Bump com.gradle.develocity from 4.1 to 4.1.1 [(#3713)](mockito/mockito#3713)
- Bump bytebuddy from 1.17.6 to 1.17.7 [(#3712)](mockito/mockito#3712)
- test: Use Assume.assumeThat for SequencedCollection tests [(#3711)](mockito/mockito#3711)
- Fix #3709 [(#3710)](mockito/mockito#3710)
- feat: Add support for JDK21 Sequenced Collections. [(#3708)](mockito/mockito#3708)
- Introducing the Ability to Mock Construction of Generic Types [(#2401)](mockito/mockito#2401)
Commits
3a1a19eAdd support for generic types inMockedConstructionandMockedStatic(#3729)f3c957aBump org.assertj:assertj-core from 3.27.4 to 3.27.5 (#3730)3cfbd42Bump graalvm/setup-graalvm from 1.3.6 to 1.3.7 (#3725)6f9a04bBump com.gradle.develocity from 4.1.1 to 4.2 (#3726)c75dfb8Bump org.eclipse.platform:org.eclipse.osgi from 3.23.100 to 3.23.200 (#3720)54474faBump graalvm/setup-graalvm from 1.3.5 to 1.3.6 (#3719)bc06f21Use Assume.assumeThat for SequencedCollection tests (#3711)a10aed0Bump actions/setup-java from 4 to 5 (#3715)37bb3e5Fix metadata generation on GraalVM (#3710)ef2fd6fBump com.gradle.develocity from 4.1 to 4.1.1 (#3713)- Additional commits viewable in compare view
Updates org.mockito:mockito-junit-jupiter from 5.19.0 to 5.20.0
Release notes
Sourced from org.mockito:mockito-junit-jupiter's releases.
v5.20.0
Changelog generated by Shipkit Changelog Gradle Plugin
5.20.0
- 2025-09-20 - 11 commit(s) by Adrian-Kim, Giulio Longfils, Rafael Winterhalter, dependabot[bot]
- Bump org.assertj:assertj-core from 3.27.4 to 3.27.5 [(#3730)](mockito/mockito#3730)
- Introducing the Ability to Mock Construction of Generic Types (#2401) [(#3729)](mockito/mockito#3729)
- Bump com.gradle.develocity from 4.1.1 to 4.2 [(#3726)](mockito/mockito#3726)
- Bump graalvm/setup-graalvm from 1.3.6 to 1.3.7 [(#3725)](mockito/mockito#3725)
- Bump org.eclipse.platform:org.eclipse.osgi from 3.23.100 to 3.23.200 [(#3720)](mockito/mockito#3720)
- Bump graalvm/setup-graalvm from 1.3.5 to 1.3.6 [(#3719)](mockito/mockito#3719)
- Bump actions/setup-java from 4 to 5 [(#3715)](mockito/mockito#3715)
- Bump com.gradle.develocity from 4.1 to 4.1.1 [(#3713)](mockito/mockito#3713)
- Bump bytebuddy from 1.17.6 to 1.17.7 [(#3712)](mockito/mockito#3712)
- test: Use Assume.assumeThat for SequencedCollection tests [(#3711)](mockito/mockito#3711)
- Fix #3709 [(#3710)](mockito/mockito#3710)
- feat: Add support for JDK21 Sequenced Collections. [(#3708)](mockito/mockito#3708)
- Introducing the Ability to Mock Construction of Generic Types [(#2401)](mockito/mockito#2401)
Commits
3a1a19eAdd support for generic types inMockedConstructionandMockedStatic(#3729)f3c957aBump org.assertj:assertj-core from 3.27.4 to 3.27.5 (#3730)3cfbd42Bump graalvm/setup-graalvm from 1.3.6 to 1.3.7 (#3725)6f9a04bBump com.gradle.develocity from 4.1.1 to 4.2 (#3726)c75dfb8Bump org.eclipse.platform:org.eclipse.osgi from 3.23.100 to 3.23.200 (#3720)54474faBump graalvm/setup-graalvm from 1.3.5 to 1.3.6 (#3719)bc06f21Use Assume.assumeThat for SequencedCollection tests (#3711)a10aed0Bump actions/setup-java from 4 to 5 (#3715)37bb3e5Fix metadata generation on GraalVM (#3710)ef2fd6fBump com.gradle.develocity from 4.1 to 4.1.1 (#3713)- Additional commits viewable in compare view
Updates io.freefair.lombok from 8.14.2 to 9.0.0
Release notes
Sourced from io.freefair.lombok's releases.
9.0.0
What's Changed
- Bump actions/setup-java from 4 to 5 by
@dependabot[bot] in freefair/gradle-plugins#1425- Bump io.github.classgraph:classgraph from 4.8.180 to 4.8.181 in /examples by
@dependabot[bot] in freefair/gradle-plugins#1424- Bump org.apache.commons:commons-compress from 1.27.1 to 1.28.0 in /examples by
@dependabot[bot] in freefair/gradle-plugins#1422- Bump com.gradle.develocity from 4.1 to 4.1.1 in /examples by
@dependabot[bot] in freefair/gradle-plugins#1431- Bump org.mockito:mockito-core from 5.18.0 to 5.19.0 in /examples by
@dependabot[bot] in freefair/gradle-plugins#1423- Bump org.apache.maven:maven-artifact from 3.9.10 to 3.9.11 in /examples by
@dependabot[bot] in freefair/gradle-plugins#1446- Bump com.gradle.develocity from 4.1 to 4.1.1 by
@dependabot[bot] in freefair/gradle-plugins#1445- Bump org.apache.maven:maven-core from 3.9.10 to 3.9.11 in /examples by
@dependabot[bot] in freefair/gradle-plugins#1444- Bump com.gradle.develocity from 4.1 to 4.1.1 by
@dependabot[bot] in freefair/gradle-plugins#1434- Bump de.larsgrefer.sass:sass-embedded-host from 4.2.0 to 4.3.0 by
@dependabot[bot] in freefair/gradle-plugins#1433- Bump actions/setup-java from 4 to 5 by
@dependabot[bot] in freefair/gradle-plugins#1441- Bump com.squareup.okhttp3:okhttp-bom from 5.0.0 to 5.1.0 by
@dependabot[bot] in freefair/gradle-plugins#1453- switch default lombok version to 1.18.40 by
@danishnawabin freefair/gradle-plugins#1467- Bump org.asciidoctor.jvm.convert from 4.0.4 to 4.0.5 by
@dependabot[bot] in freefair/gradle-plugins#1463- Bump org.assertj:assertj-core from 3.27.3 to 3.27.4 by
@dependabot[bot] in freefair/gradle-plugins#1451- Bump org.asciidoctor.jvm.convert from 4.0.4 to 4.0.5 by
@dependabot[bot] in freefair/gradle-plugins#1452- Bump org.apache.commons:commons-compress from 1.27.1 to 1.28.0 by
@dependabot[bot] in freefair/gradle-plugins#1460- Bump org.assertj:assertj-core from 3.27.3 to 3.27.4 by
@dependabot[bot] in freefair/gradle-plugins#1461- Bump org.sonarsource.scanner.gradle:sonarqube-gradle-plugin from 6.2.0.5505 to 6.3.1.5724 by
@dependabot[bot] in freefair/gradle-plugins#1448- Bump com.squareup.okhttp3:okhttp-bom from 4.12.0 to 5.1.0 in /examples by
@dependabot[bot] in freefair/gradle-plugins#1412- Bump com.github.spotbugs from 6.2.4 to 6.3.0 in /examples by
@dependabot[bot] in freefair/gradle-plugins#1430- Bump org.sonarqube from 6.2.0.5505 to 6.3.1.5724 in /examples by
@dependabot[bot] in freefair/gradle-plugins#1440- Bump org.springframework.boot:spring-boot-starter from 3.5.4 to 3.5.5 in /examples by
@dependabot[bot] in freefair/gradle-plugins#1454- Bump io.github.classgraph:classgraph from 4.8.180 to 4.8.181 by
@dependabot[bot] in freefair/gradle-plugins#1473- Bump com.gradle.plugin-publish from 1.3.1 to 2.0.0 by
@dependabot[bot] in freefair/gradle-plugins#1471- Bump com.gradle.develocity from 4.1.1 to 4.2 by
@dependabot[bot] in freefair/gradle-plugins#1475- Bump com.gradle.plugin-publish from 1.3.1 to 2.0.0 by
@dependabot[bot] in freefair/gradle-plugins#1456- Bump org.mockito:mockito-core from 5.18.0 to 5.19.0 in /examples by
@dependabot[bot] in freefair/gradle-plugins#1470- Bump com.gradle.develocity from 4.1.1 to 4.2 in /examples by
@dependabot[bot] in freefair/gradle-plugins#1472- Bump org.assertj:assertj-core from 3.27.4 to 3.27.5 by
@dependabot[bot] in freefair/gradle-plugins#1483- Bump org.projectlombok:lombok from 1.18.40 to 1.18.42 by
@dependabot[bot] in freefair/gradle-plugins#1482- Bump org.projectlombok:lombok from 1.18.38 to 1.18.42 by
@dependabot[bot] in freefair/gradle-plugins#1477- Bump org.webjars:bootstrap from 5.3.7 to 5.3.8 in /examples by
@dependabot[bot] in freefair/gradle-plugins#1479- Bump org.assertj:assertj-core from 3.27.5 to 3.27.6 by
@dependabot[bot] in freefair/gradle-plugins#1490- Bump org.springframework.boot:spring-boot-starter from 3.5.5 to 3.5.6 in /examples by
@dependabot[bot] in freefair/gradle-plugins#1489- Bump org.assertj:assertj-core from 3.27.3 to 3.27.6 in /examples by
@dependabot[bot] in freefair/gradle-plugins#1492- Bump org.assertj:assertj-core from 3.27.3 to 3.27.6 in /examples by
@dependabot[bot] in freefair/gradle-plugins#1491- Bump org.sonarsource.scanner.gradle:sonarqube-gradle-plugin from 6.2.0.5505 to 6.3.1.5724 by
@dependabot[bot] in freefair/gradle-plugins#1488- Bump org.mockito:mockito-core from 5.19.0 to 5.20.0 by
@dependabot[bot] in freefair/gradle-plugins#1487- Bump org.mockito.kotlin:mockito-kotlin from 5.4.0 to 6.0.0 by
@dependabot[bot] in freefair/gradle-plugins#1469Full Changelog: https://github.com/freefair/gradle-plugins/compare/8.14.2...9.0.0
9.0.0-rc2
Full Changelog: https://github.com/freefair/gradle-plugins/compare/9.0.0-rc1...9.0.0-rc2
9.0.0-rc1
... (truncated)
Commits
786f564Update to Spring Boot 3.5.6fe43572Merge branch '8.x' of github.com:freefair/gradle-plugins3da1f86Bump org.mockito.kotlin:mockito-kotlin from 5.4.0 to 6.0.0 (#1469)b39aef5Bump org.mockito:mockito-core from 5.19.0 to 5.20.0 (#1487)4b0917aMerge branch '8.x' of github.com:freefair/gradle-pluginsd413a0aremove gradle build cachef5e37dfUpdate to Gradle 9.1.010d1d3aMerge branch '8.x' of github.com:freefair/gradle-plugins047a17dBump org.sonarsource.scanner.gradle:sonarqube-gradle-plugin (#1488)fd0b3faBump org.assertj:assertj-core from 3.27.3 to 3.27.6 in /examples (#1491)- Additional commits viewable in compare view
Updates com.github.ben-manes.versions from 0.52.0 to 0.53.0
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditions
Pull Request Statistics
Commits:
0
0
Files Changed:
0
0
Additions:
+0
+0
Deletions:
-0
-0
Package Dependencies
Package:
org.springframework:spring-web
Ecosystem:
maven
maven
Version Change:
6.2.10 → 6.2.11
Update Type:
Patch
Patch
Ecosystem:
maven
maven
Version Change:
2.19.2 → 2.20.0
Update Type:
Minor
Minor
Package:
org.mockito:mockito-core
Ecosystem:
maven
maven
Version Change:
5.19.0 → 5.20.0
Update Type:
Minor
Minor
Ecosystem:
maven
maven
Version Change:
2.19.2 → 2.20.0
Update Type:
Minor
Minor
Package:
com.github.ben-manes.versions
Ecosystem:
maven
maven
Version Change:
0.52.0 → 0.53.0
Update Type:
Minor
Minor
Technical Details
| ID: | 8696948 |
| UUID: | 3464364019 |
| Node ID: | PR_kwDOBM-Q_c6rEWeI |
| Host: | GitHub |
| Repository: | secureCodeBox/secureCodeBox |