ben-manes
diff --git a/‎.github/actions/run-gradle/action.yml
+3-1 b/‎.github/actions/run-gradle/action.yml
+3-1
diff --git a/‎.github/workflows/actionlint.yml
+3-3 b/‎.github/workflows/actionlint.yml
+3-3
diff --git a/‎.github/workflows/analysis.yml
+2-2 b/‎.github/workflows/analysis.yml
+2-2
diff --git a/‎.github/workflows/build.yml
+5-5 b/‎.github/workflows/build.yml
+5-5
diff --git a/‎.github/workflows/codacy.yml
+1-1 b/‎.github/workflows/codacy.yml
+1-1
diff --git a/‎.github/workflows/codeql.yml
+4-4 b/‎.github/workflows/codeql.yml
+4-4
diff --git a/‎.github/workflows/dependency-check.yml
+2-2 b/‎.github/workflows/dependency-check.yml
+2-2
diff --git a/‎.github/workflows/dependency-submission-pr-retrieve.yml
+1-1 b/‎.github/workflows/dependency-submission-pr-retrieve.yml
+1-1
diff --git a/‎.github/workflows/devskim.yml
+1-1 b/‎.github/workflows/devskim.yml
+1-1
diff --git a/‎.github/workflows/qodana.yml
+1-1 b/‎.github/workflows/qodana.yml
+1-1
diff --git a/‎.github/workflows/scorecards-analysis.yml
+2-2 b/‎.github/workflows/scorecards-analysis.yml
+2-2
diff --git a/‎.github/workflows/semgrep.yml
+1-1 b/‎.github/workflows/semgrep.yml
+1-1
diff --git a/‎.github/workflows/snyk.yml
+1-1 b/‎.github/workflows/snyk.yml
+1-1
diff --git a/‎.github/workflows/spelling.yml
+2-2 b/‎.github/workflows/spelling.yml
+2-2
diff --git a/‎.github/workflows/trivy.yml
+2-2 b/‎.github/workflows/trivy.yml
+2-2
diff --git a/‎caffeine/src/javaPoet/java/com/github/benmanes/caffeine/cache/node/Finalize.java
+1-1 b/‎caffeine/src/javaPoet/java/com/github/benmanes/caffeine/cache/node/Finalize.java
+1-1
diff --git a/‎caffeine/src/jmh/java/com/github/benmanes/caffeine/FactoryBenchmark.java
+3-3 b/‎caffeine/src/jmh/java/com/github/benmanes/caffeine/FactoryBenchmark.java
+3-3
diff --git a/‎caffeine/src/jmh/java/com/github/benmanes/caffeine/cache/BuilderBenchmark.java
+4-4 b/‎caffeine/src/jmh/java/com/github/benmanes/caffeine/cache/BuilderBenchmark.java
+4-4
diff --git a/‎caffeine/src/jmh/java/com/github/benmanes/caffeine/cache/EvictionBenchmark.java
+3-3 b/‎caffeine/src/jmh/java/com/github/benmanes/caffeine/cache/EvictionBenchmark.java
+3-3
diff --git a/‎caffeine/src/jmh/java/com/github/benmanes/caffeine/cache/FrequencySketchBenchmark.java
+3-3 b/‎caffeine/src/jmh/java/com/github/benmanes/caffeine/cache/FrequencySketchBenchmark.java
+3-3
diff --git a/‎caffeine/src/jmh/java/com/github/benmanes/caffeine/cache/GetPutBenchmark.java
+4-4 b/‎caffeine/src/jmh/java/com/github/benmanes/caffeine/cache/GetPutBenchmark.java
+4-4
diff --git a/‎caffeine/src/jmh/java/com/github/benmanes/caffeine/cache/PutRemoveBenchmark.java
+3-3 b/‎caffeine/src/jmh/java/com/github/benmanes/caffeine/cache/PutRemoveBenchmark.java
+3-3
diff --git a/‎caffeine/src/jmh/java/com/github/benmanes/caffeine/cache/TimerWheelBenchmark.java
+3-3 b/‎caffeine/src/jmh/java/com/github/benmanes/caffeine/cache/TimerWheelBenchmark.java
+3-3
@@ -38,7 +38,9 @@ runs:
     - name: Set up JDK ${{ steps.gradle_toolchain.outputs.version }}
       uses: actions/setup-java@3a4f6e1af504cf6a31855fa899c6aa5355ba6c12 # v4.7.0
       with:
-        java-version: ${{ steps.gradle_toolchain.outputs.version }}
+        java-version: |
+          24
+          ${{ steps.gradle_toolchain.outputs.version }}
         distribution: temurin
     - name: Prepare JDK toolchain
       id: java_toolchain
 
@@ -21,7 +21,7 @@ jobs:
         with:
           persist-credentials: false
       - name: Run actionlint
-        uses: reviewdog/action-actionlint@db58217885f9a6570da9c71be4e40ec33fe44a1f # v1.65.0
+        uses: reviewdog/action-actionlint@a5524e1c19e62881d79c1f1b9b6f09f16356e281 # v1.65.2
         env:
           SHELLCHECK_OPTS: -e SC2001 -e SC2035 -e SC2046 -e SC2061 -e SC2086 -e SC2156
         with:
@@ -50,13 +50,13 @@ jobs:
         with:
           persist-credentials: false
       - name: Install uv
-        uses: astral-sh/setup-uv@f94ec6bedd8674c4426838e6b50417d36b6ab231 # v5.3.1
+        uses: astral-sh/setup-uv@22695119d769bdb6f7032ad67b9bca0ef8c4a174 # v5.4.0
       - name: Run zizmor
         env:
           GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
         run: uvx zizmor --pedantic --format sarif . > results.sarif
       - name: Upload SARIF file for GitHub Advanced Security Dashboard
-        uses: github/codeql-action/upload-sarif@b56ba49b26e50535fa1e7f7db0f4f7b4bf65d80d # v3.28.10
+        uses: github/codeql-action/upload-sarif@1b549b9259bda1cb5ddde3b41741a82a2d15a841 # v3.28.13
         with:
           sarif_file: results.sarif
           category: zizmor
@@ -49,7 +49,7 @@ jobs:
     permissions:
       contents: read
     env:
-      JAVA_VERSION: 23
+      JAVA_VERSION: 24
     steps:
       - name: Harden Runner
         uses: step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0
@@ -73,7 +73,7 @@ jobs:
     permissions:
       contents: read
     env:
-      JAVA_VERSION: 23
+      JAVA_VERSION: 24
     steps:
       - name: Harden Runner
         uses: step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0
 
@@ -49,7 +49,7 @@ jobs:
       contents: read
     strategy:
       matrix:
-        java: [ 11, 23, 25, GraalVM ]
+        java: [ 11, 24, 25, GraalVM ]
     env:
       JAVA_VERSION: ${{ matrix.java }}
     steps:
@@ -120,7 +120,7 @@ jobs:
           - simulator:check
           - jcache:check
           - guava:check
-        java: [ 11, 23 ]
+        java: [ 11, 24 ]
         include:
           - suite: caffeine:weakKeysAndStrongValuesStatsSyncGuavaSlowTest
             java: 11
@@ -202,7 +202,7 @@ jobs:
           find . -path */jacoco/*.exec -o -path */results/*.xml
           | tar czf $ARTIFACT_NAME.tar.gz --files-from -
       - name: Upload test results
-        uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
+        uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
         if: always() && (env.JAVA_VERSION == env.PUBLISH_JDK)
         with:
           retention-days: 1
@@ -247,7 +247,7 @@ jobs:
           fetch-depth: 0
           persist-credentials: false
       - name: Download Tests Results
-        uses: actions/download-artifact@cc203385981b70ca67e1cc392babf9cc229d5806 # v4.1.9
+        uses: actions/download-artifact@95815c38cf2ff2164869cbab79da8d1f422bc89e # v4.2.1
       - name: Decompress
         run: find . -type f -name '*.tar.gz' -exec sh -c 'tar -zxf {} --one-top-level' \;
       - name: Combine Jacoco Reports
@@ -310,7 +310,7 @@ jobs:
             ${{ env.ALLOWED_ENDPOINTS }}
             badgen.net:443
       - name: Download Tests
-        uses: actions/download-artifact@cc203385981b70ca67e1cc392babf9cc229d5806 # v4.1.9
+        uses: actions/download-artifact@95815c38cf2ff2164869cbab79da8d1f422bc89e # v4.2.1
       - name: Decompress
         run: find . -type f -name '*.tar.gz' -exec sh -c 'tar -zxf {} --one-top-level' \;
       - name: Publish Test Results
 
@@ -49,7 +49,7 @@ jobs:
         if: steps.check_files.outputs.files_exists == 'true'
         run: jq -c '.runs |= unique_by({tool, invocations, results})' < results.sarif > codacy.sarif
       - name: Upload result to GitHub Code Scanning
-        uses: github/codeql-action/upload-sarif@b56ba49b26e50535fa1e7f7db0f4f7b4bf65d80d # v3.28.10
+        uses: github/codeql-action/upload-sarif@1b549b9259bda1cb5ddde3b41741a82a2d15a841 # v3.28.13
         if: steps.check_files.outputs.files_exists == 'true'
         continue-on-error: true
         with:
 
@@ -58,13 +58,13 @@ jobs:
           java: ${{ env.JAVA_VERSION }}
           cache-encryption-key: ${{ secrets.GRADLE_ENCRYPTION_KEY }}
       - name: Initialize CodeQL (Actions)
-        uses: github/codeql-action/init@b56ba49b26e50535fa1e7f7db0f4f7b4bf65d80d # v3.28.10
+        uses: github/codeql-action/init@1b549b9259bda1cb5ddde3b41741a82a2d15a841 # v3.28.13
         if: ${{ matrix.language == 'actions' }}
         with:
           languages: actions
           dependency-caching: true
       - name: Initialize CodeQL (Java)
-        uses: github/codeql-action/init@b56ba49b26e50535fa1e7f7db0f4f7b4bf65d80d # v3.28.10
+        uses: github/codeql-action/init@1b549b9259bda1cb5ddde3b41741a82a2d15a841 # v3.28.13
         if: ${{ matrix.language == 'java' }}
         with:
           queries: >
@@ -82,6 +82,6 @@ jobs:
           config: |
             threat-models: local
       - name: Autobuild
-        uses: github/codeql-action/autobuild@b56ba49b26e50535fa1e7f7db0f4f7b4bf65d80d # v3.28.10
+        uses: github/codeql-action/autobuild@1b549b9259bda1cb5ddde3b41741a82a2d15a841 # v3.28.13
       - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@b56ba49b26e50535fa1e7f7db0f4f7b4bf65d80d # v3.28.10
+        uses: github/codeql-action/analyze@1b549b9259bda1cb5ddde3b41741a82a2d15a841 # v3.28.13
@@ -8,7 +8,7 @@ on:
 
 env:
   DEVELOCITY_ACCESS_KEY: ${{ secrets.DEVELOCITY_ACCESS_KEY }}
-  JAVA_VERSION: 23
+  JAVA_VERSION: 24
 
 jobs:
   dependency-check:
@@ -64,7 +64,7 @@ jobs:
         with:
           files: build/reports/dependency-check-report.sarif
       - name: Upload result to GitHub Code Scanning
-        uses: github/codeql-action/upload-sarif@b56ba49b26e50535fa1e7f7db0f4f7b4bf65d80d # v3.28.10
+        uses: github/codeql-action/upload-sarif@1b549b9259bda1cb5ddde3b41741a82a2d15a841 # v3.28.13
         if: steps.check_files.outputs.files_exists == 'true'
         with:
           sarif_file: build/reports/dependency-check-report.sarif
@@ -7,7 +7,7 @@ on:
 
 env:
   DEVELOCITY_ACCESS_KEY: ${{ secrets.DEVELOCITY_ACCESS_KEY }}
-  JAVA_VERSION: 23
+  JAVA_VERSION: 24
 
 jobs:
   submit-dependency-graph:
 
@@ -33,6 +33,6 @@ jobs:
       - name: Run DevSkim scanner
         uses: microsoft/DevSkim-Action@a6b6966a33b497cd3ae2ebc406edf8f4cc2feec6 # v1.0.15
       - name: Upload DevSkim scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@b56ba49b26e50535fa1e7f7db0f4f7b4bf65d80d # v3.28.10
+        uses: github/codeql-action/upload-sarif@1b549b9259bda1cb5ddde3b41741a82a2d15a841 # v3.28.13
         with:
           sarif_file: devskim-results.sarif
@@ -72,6 +72,6 @@ jobs:
           upload-result: true
           github-token: ${{ secrets.GITHUB_TOKEN }}
       - name: Upload SARIF file for GitHub Advanced Security Dashboard
-        uses: github/codeql-action/upload-sarif@b56ba49b26e50535fa1e7f7db0f4f7b4bf65d80d # v3.28.10
+        uses: github/codeql-action/upload-sarif@1b549b9259bda1cb5ddde3b41741a82a2d15a841 # v3.28.13
         with:
           sarif_file: ${{ runner.temp }}/qodana/results/qodana.sarif.json
@@ -51,12 +51,12 @@ jobs:
           results_file: results.sarif
           repo_token: ${{ secrets.SCORECARD_READ_TOKEN }}
       - name: Upload artifact
-        uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
+        uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
         with:
           name: SARIF file
           path: results.sarif
           retention-days: 5
       - name: Upload to code-scanning
-        uses: github/codeql-action/upload-sarif@b56ba49b26e50535fa1e7f7db0f4f7b4bf65d80d # v3.28.10
+        uses: github/codeql-action/upload-sarif@1b549b9259bda1cb5ddde3b41741a82a2d15a841 # v3.28.13
         with:
           sarif_file: results.sarif
@@ -34,7 +34,7 @@ jobs:
         with:
           files: results.sarif
       - name: Upload SARIF file for GitHub Advanced Security Dashboard
-        uses: github/codeql-action/upload-sarif@b56ba49b26e50535fa1e7f7db0f4f7b4bf65d80d # v3.28.10
+        uses: github/codeql-action/upload-sarif@1b549b9259bda1cb5ddde3b41741a82a2d15a841 # v3.28.13
         if: steps.check_files.outputs.files_exists == 'true'
         continue-on-error: true
         with:
 
@@ -44,7 +44,7 @@ jobs:
         with:
           files: snyk.sarif
       - name: Upload result to GitHub Code Scanning
-        uses: github/codeql-action/upload-sarif@b56ba49b26e50535fa1e7f7db0f4f7b4bf65d80d # v3.28.10
+        uses: github/codeql-action/upload-sarif@1b549b9259bda1cb5ddde3b41741a82a2d15a841 # v3.28.13
         if: steps.check_files.outputs.files_exists == 'true'
         with:
           sarif_file: snyk.sarif
 
@@ -21,7 +21,7 @@ jobs:
         with:
           persist-credentials: false
       - name: Misspell
-        uses: reviewdog/action-misspell@18ffb61effb93b47e332f185216be7e49592e7e1 # v1.26.1
+        uses: reviewdog/action-misspell@9daa94af4357dddb6fd3775de806bc0a8e98d3e4 # v1.26.3
         with:
           reporter: github-check
           github_token: ${{ secrets.GITHUB_TOKEN }}
@@ -42,4 +42,4 @@ jobs:
         with:
           persist-credentials: false
       - name: Typos
-        uses: crate-ci/typos@8951ef9cb569c860bc8f3f18070fbfaf65cdb349 # v1.30.0
+        uses: crate-ci/typos@d08e4083f112e684fb88f6babd9ae60a1f1cd84f # v1.30.3
@@ -28,7 +28,7 @@ jobs:
         with:
           persist-credentials: false
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@18f2510ee396bbf400402947b394f2dd8c87dbb0 # v0.29.0
+        uses: aquasecurity/trivy-action@6c175e9c4083a92bbca2f9724c8a5e33bc2d97a5 # v0.30.0
         continue-on-error: true
         with:
           scan-type: fs
@@ -40,7 +40,7 @@ jobs:
         with:
           files: results.sarif
       - name: Upload result to GitHub Code Scanning
-        uses: github/codeql-action/upload-sarif@b56ba49b26e50535fa1e7f7db0f4f7b4bf65d80d # v3.28.10
+        uses: github/codeql-action/upload-sarif@1b549b9259bda1cb5ddde3b41741a82a2d15a841 # v3.28.13
         if: steps.check_files.outputs.files_exists == 'true'
         with:
             sarif_file: results.sarif
@@ -28,7 +28,7 @@
  *
  * @author [email protected] (Ben Manes)
  */
-public class Finalize implements NodeRule {
+public final class Finalize implements NodeRule {
 
   @Override
   public boolean applies(NodeContext context) {
 
@@ -29,9 +29,9 @@
 /**
  * This benchmark can be run by optionally specifying the target jvm in the command.
  * <p>
- * <pre>{@code
- *   ./gradlew jmh -PincludePattern=FactoryBenchmark --rerun
- * }</pre>
+ * {@snippet :
+ * ./gradlew jmh -PincludePattern=FactoryBenchmark --rerun
+ * }
  *
  * @author [email protected] (Ben Manes)
  */
 
@@ -30,14 +30,14 @@
 
 /**
  * <p>
- * <pre>{@code
- *   ./gradlew jmh -PincludePattern=BuilderBenchmark --rerun
- * }</pre>
+ * {@snippet :
+ * ./gradlew jmh -PincludePattern=BuilderBenchmark --rerun
+ * }
  *
  * @author [email protected] (Ben Manes)
  */
 @State(Scope.Benchmark)
-@SuppressWarnings("MemberName")
+@SuppressWarnings({"MemberName", "StatementSwitchToExpressionSwitch"})
 public class BuilderBenchmark {
   @Param BuilderType type;
   Supplier<?> builder;
 
@@ -27,9 +27,9 @@
  * A benchmark that evaluates the eviction performance of a cache. The cache is pre-populated for
  * a 100% eviction rate to mimic worst case behavior.
  * <p>
- * <pre>{@code
- *   ./gradlew jmh -PincludePattern=EvictionBenchmark --rerun
- * }</pre>
+ * {@snippet :
+ * ./gradlew jmh -PincludePattern=EvictionBenchmark --rerun
+ * }
  *
  * @author [email protected] (Ben Manes)
  */
 
@@ -28,9 +28,9 @@
 import site.ycsb.generator.ScrambledZipfianGenerator;
 
 /**
- * <pre>{@code
- *   ./gradlew jmh -PincludePattern=FrequencySketchBenchmark --rerun
- * }</pre>
+ * {@snippet :
+ * ./gradlew jmh -PincludePattern=FrequencySketchBenchmark --rerun
+ * }
  *
  * @author [email protected] (Ben Manes)
  */
 
@@ -35,10 +35,10 @@
  * A benchmark that evaluates the read/write performance of a cache. The cache is pre-populated for
  * a 100% hit rate and a Zipf distribution of keys is used to mimic application usage patterns.
  * <p>
- * <pre>{@code
- *   // JAVA_VERSION=?? for an alternative jdk
- *   ./gradlew jmh -PincludePattern=GetPutBenchmark --rerun
- * }</pre>
+ * {@snippet :
+ * // JAVA_VERSION=?? for an alternative jdk
+ * ./gradlew jmh -PincludePattern=GetPutBenchmark --rerun
+ * }
  *
  * @author [email protected] (Ben Manes)
  */
 
@@ -40,9 +40,9 @@
  * relatively rare compared to reads. Thus, this benchmark is only for diagnosing performance
  * concerns and should not be used to compare implementations.
  * <p>
- * <pre>{@code
- *   ./gradlew jmh -PincludePattern=PutRemoveBenchmark --rerun
- * }</pre>
+ * {@snippet :
+ * ./gradlew jmh -PincludePattern=PutRemoveBenchmark --rerun
+ * }
  *
  * @author [email protected] (Ben Manes)
  */
 
@@ -26,9 +26,9 @@
 import org.openjdk.jmh.annotations.State;
 
 /**
- * <pre>{@code
- *   ./gradlew jmh -PincludePattern=TimerWheelBenchmark --rerun
- * }</pre>
+ * {@snippet :
+ * ./gradlew jmh -PincludePattern=TimerWheelBenchmark --rerun
+ * }
  *
  * @author [email protected] (Ben Manes)
  */
Original file line number	Diff line number	Diff line change
`@@ -28,7 +28,7 @@`
`28`	`28`	`*`
`29`	`29`	`* @author [email protected] (Ben Manes)`
`30`	`30`	`*/`
`31`		`-public class Finalize implements NodeRule {`
	`31`	`+public final class Finalize implements NodeRule {`
`32`	`32`
`33`	`33`	`@Override`
`34`	`34`	`public boolean applies(NodeContext context) {`