[9.4.x] Bump the dev-dependencies group across 1 directory with 24 updates #12755

dependabot · 2025-02-01T00:23:22Z

Bumps the dev-dependencies group with 24 updates in the / directory:

Package	From	To
commons-codec:commons-codec	`1.17.1`	`1.18.0`
org.junit.jupiter:junit-jupiter	`5.10.5`	`5.11.4`
org.junit:junit-bom	`5.10.5`	`5.11.4`
org.junit.vintage:junit-vintage-engine	`5.10.5`	`5.11.4`
org.junit.jupiter:junit-jupiter-api	`5.10.5`	`5.11.4`
net.java.dev.jna:jna	`5.15.0`	`5.16.0`
org.infinispan.protostream:protostream	`4.4.4.Final`	`4.5.0.Final`
org.apache.mina:mina-core	`2.2.3`	`2.2.4`
com.google.guava:guava	`33.3.1-jre`	`33.4.0-jre`
io.grpc:grpc-core	`1.68.2`	`1.70.0`
org.apache.maven.plugins:maven-remote-resources-plugin	`3.2.0`	`3.3.0`
org.apache.maven.plugins:maven-invoker-plugin	`3.8.1`	`3.9.0`
com.google.code.gson:gson	`2.11.0`	`2.12.1`
com.google.cloud:google-cloud-datastore	`2.24.3`	`2.26.0`
org.eclipse.platform:org.eclipse.osgi	`3.21.0`	`3.22.0`
org.ops4j.pax.exam:pax-exam	`4.13.5`	`4.14.0`
org.ops4j.pax.exam:pax-exam-inject	`4.13.5`	`4.14.0`
org.ops4j.pax.exam:pax-exam-container-forked	`4.13.5`	`4.14.0`
org.ops4j.pax.exam:pax-exam-junit4	`4.13.5`	`4.14.0`
org.ops4j.pax.exam:pax-exam-link-mvn	`4.13.5`	`4.14.0`
org.ops4j.pax.swissbox:pax-swissbox-framework	`1.8.3`	`1.9.0`
org.ops4j.pax.swissbox:pax-swissbox-tracker	`1.8.3`	`1.9.0`
org.ops4j.pax.url:pax-url-aether	`2.6.14`	`2.6.16`
org.ops4j.pax.url:pax-url-wrap	`2.6.14`	`2.6.16`

Updates commons-codec:commons-codec from 1.17.1 to 1.18.0

Changelog

Sourced from commons-codec:commons-codec's changelog.

Apache Commons Codec 1.18.0 Release Notes

The Apache Commons Codec team is pleased to announce the release of Apache Commons Codec 1.18.0.

The Apache Commons Codec component contains encoders and decoders for formats such as Base16, Base32, Base64, digest, and Hexadecimal. In addition to these widely used encoders and decoders, the codec package also maintains a collection of phonetic encoding utilities.

This is a feature and maintenance release. Java 8 or later is required.

New features
        Add Base32.Builder.setHexDecodeTable(boolean). Thanks to Gary Gregory, Julian Reschke.
        Add Base32.Builder.setHexEncodeTable(boolean). Thanks to Gary Gregory, Julian Reschke.
Changes
        Bump org.apache.commons:commons-parent from 78 to 79. Thanks to Gary Gregory.
For complete information on Apache Commons Codec, including instructions on how to submit bug reports, patches, or suggestions for improvement, see the Apache Commons Codec website:

https://commons.apache.org/proper/commons-codec/

Download page: https://commons.apache.org/proper/commons-codec/download_codec.cgi

Apache Commons Codec 1.17.2 Release Notes

The Apache Commons Codec component contains encoders and decoders for formats such as Base16, Base32, Base64, digest, and Hexadecimal. In addition to these widely used encoders and decoders, the codec package also maintains a collection of phonetic encoding utilities.

This is a feature and maintenance release. Java 8 or later is required.

Fixed Bugs
        Rewrite DaitchMokotoffSoundex.soundex(String) using String.join(). Thanks to Gary Gregory.

... (truncated)

Commits

5f76abb Update contributing file from user feedback
a38de95 Prepare for the next release candidate
0689dc8 Prepare for the next release candidate
4098222 Port from Doxia 1 to 2
ebb29e9 Make test fixture package private
110a9f8 Don't need to end a paragraph with an extra line break
6444237 Remove background color from site page
9062af4 Merge branch 'master' of
963ee73 Include more in the source assembly
94b9c51 Add a file extension to TODO file
Additional commits viewable in compare view

Updates org.junit.jupiter:junit-jupiter from 5.10.5 to 5.11.4

Release notes

Sourced from org.junit.jupiter:junit-jupiter's releases.

JUnit 5.11.4 = Platform 1.11.4 + Jupiter 5.11.4 + Vintage 5.11.4

See Release Notes.

Full Changelog: junit-team/junit5@r5.11.3...r5.11.4

JUnit 5.11.3 = Platform 1.11.3 + Jupiter 5.11.3 + Vintage 5.11.3

See Release Notes.

Full Changelog: junit-team/junit5@r5.11.2...r5.11.3

JUnit 5.11.2 = Platform 1.11.2 + Jupiter 5.11.2 + Vintage 5.11.2

See Release Notes.

Full Changelog: junit-team/junit5@r5.11.1...r5.11.2

JUnit 5.11.1 = Platform 1.11.1 + Jupiter 5.11.1 + Vintage 5.11.1

See Release Notes.

Full Changelog: junit-team/junit5@r5.11.0...r5.11.1

JUnit 5.11.0 = Platform 1.11.0 + Jupiter 5.11.0 + Vintage 5.11.0

See Release Notes.

New Contributors

@pshevche made their first contribution in junit-team/junit5#3427

@rybak made their first contribution in junit-team/junit5#3416

@pixeebot made their first contribution in junit-team/junit5#3491

@shartte made their first contribution in junit-team/junit5#3562

@eliasnogueira made their first contribution in junit-team/junit5#3674

@bigdaz made their first contribution in junit-team/junit5#3668

@gilday made their first contribution in junit-team/junit5#3667

@bjmi made their first contribution in junit-team/junit5#3806

@madalingiurca made their first contribution in junit-team/junit5#3787

@dmlloyd made their first contribution in junit-team/junit5#3820

@compf made their first contribution in junit-team/junit5#3867

@SveinKare made their first contribution in junit-team/junit5#3840

@mobounya made their first contribution in junit-team/junit5#3720

@robinjhector made their first contribution in junit-team/junit5#3345

@jabhatfield made their first contribution in junit-team/junit5#3829

@rfscholte made their first contribution in junit-team/junit5#3909

Full Changelog: junit-team/junit5@r5.10.3...r5.11.0

JUnit 5.11.0-RC1 = Platform 1.11.0-RC1 + Jupiter 5.11.0-RC1 + Vintage 5.11.0-RC1

... (truncated)

Commits

6430ba4 Release 5.11.4
d093121 Finalize 5.11.4 release notes
0444353 Fix Maven integration tests on JDK 24
b5c7f4e Move #4153 to 5.11.4 release notes
b20c4e2 Ensure the XMLStreamWriter is closed after use
6376f0a Configure Git username and email
2b485c4 Set reference repo URI
500b5a0 Inject username and password via new DSL
d671961 Update plugin gitPublish to v5
3d11279 Add JAVA_25 to JRE enum
Additional commits viewable in compare view

Updates org.junit:junit-bom from 5.10.5 to 5.11.4

Release notes

Sourced from org.junit:junit-bom's releases.

JUnit 5.11.4 = Platform 1.11.4 + Jupiter 5.11.4 + Vintage 5.11.4

See Release Notes.

Full Changelog: junit-team/junit5@r5.11.3...r5.11.4

JUnit 5.11.3 = Platform 1.11.3 + Jupiter 5.11.3 + Vintage 5.11.3

See Release Notes.

Full Changelog: junit-team/junit5@r5.11.2...r5.11.3

JUnit 5.11.2 = Platform 1.11.2 + Jupiter 5.11.2 + Vintage 5.11.2

See Release Notes.

Full Changelog: junit-team/junit5@r5.11.1...r5.11.2

JUnit 5.11.1 = Platform 1.11.1 + Jupiter 5.11.1 + Vintage 5.11.1

See Release Notes.

Full Changelog: junit-team/junit5@r5.11.0...r5.11.1

JUnit 5.11.0 = Platform 1.11.0 + Jupiter 5.11.0 + Vintage 5.11.0

See Release Notes.

New Contributors

@pshevche made their first contribution in junit-team/junit5#3427

@rybak made their first contribution in junit-team/junit5#3416

@pixeebot made their first contribution in junit-team/junit5#3491

@shartte made their first contribution in junit-team/junit5#3562

@eliasnogueira made their first contribution in junit-team/junit5#3674

@bigdaz made their first contribution in junit-team/junit5#3668

@gilday made their first contribution in junit-team/junit5#3667

@bjmi made their first contribution in junit-team/junit5#3806

@madalingiurca made their first contribution in junit-team/junit5#3787

@dmlloyd made their first contribution in junit-team/junit5#3820

@compf made their first contribution in junit-team/junit5#3867

@SveinKare made their first contribution in junit-team/junit5#3840

@mobounya made their first contribution in junit-team/junit5#3720

@robinjhector made their first contribution in junit-team/junit5#3345

@jabhatfield made their first contribution in junit-team/junit5#3829

@rfscholte made their first contribution in junit-team/junit5#3909

Full Changelog: junit-team/junit5@r5.10.3...r5.11.0

JUnit 5.11.0-RC1 = Platform 1.11.0-RC1 + Jupiter 5.11.0-RC1 + Vintage 5.11.0-RC1

... (truncated)

Commits

6430ba4 Release 5.11.4
d093121 Finalize 5.11.4 release notes
0444353 Fix Maven integration tests on JDK 24
b5c7f4e Move #4153 to 5.11.4 release notes
b20c4e2 Ensure the XMLStreamWriter is closed after use
6376f0a Configure Git username and email
2b485c4 Set reference repo URI
500b5a0 Inject username and password via new DSL
d671961 Update plugin gitPublish to v5
3d11279 Add JAVA_25 to JRE enum
Additional commits viewable in compare view

Updates org.junit.vintage:junit-vintage-engine from 5.10.5 to 5.11.4

Release notes

Sourced from org.junit.vintage:junit-vintage-engine's releases.

JUnit 5.11.4 = Platform 1.11.4 + Jupiter 5.11.4 + Vintage 5.11.4

See Release Notes.

Full Changelog: junit-team/junit5@r5.11.3...r5.11.4

JUnit 5.11.3 = Platform 1.11.3 + Jupiter 5.11.3 + Vintage 5.11.3

See Release Notes.

Full Changelog: junit-team/junit5@r5.11.2...r5.11.3

JUnit 5.11.2 = Platform 1.11.2 + Jupiter 5.11.2 + Vintage 5.11.2

See Release Notes.

Full Changelog: junit-team/junit5@r5.11.1...r5.11.2

JUnit 5.11.1 = Platform 1.11.1 + Jupiter 5.11.1 + Vintage 5.11.1

See Release Notes.

Full Changelog: junit-team/junit5@r5.11.0...r5.11.1

JUnit 5.11.0 = Platform 1.11.0 + Jupiter 5.11.0 + Vintage 5.11.0

See Release Notes.

New Contributors

@pshevche made their first contribution in junit-team/junit5#3427

@rybak made their first contribution in junit-team/junit5#3416

@pixeebot made their first contribution in junit-team/junit5#3491

@shartte made their first contribution in junit-team/junit5#3562

@eliasnogueira made their first contribution in junit-team/junit5#3674

@bigdaz made their first contribution in junit-team/junit5#3668

@gilday made their first contribution in junit-team/junit5#3667

@bjmi made their first contribution in junit-team/junit5#3806

@madalingiurca made their first contribution in junit-team/junit5#3787

@dmlloyd made their first contribution in junit-team/junit5#3820

@compf made their first contribution in junit-team/junit5#3867

@SveinKare made their first contribution in junit-team/junit5#3840

@mobounya made their first contribution in junit-team/junit5#3720

@robinjhector made their first contribution in junit-team/junit5#3345

@jabhatfield made their first contribution in junit-team/junit5#3829

@rfscholte made their first contribution in junit-team/junit5#3909

Full Changelog: junit-team/junit5@r5.10.3...r5.11.0

JUnit 5.11.0-RC1 = Platform 1.11.0-RC1 + Jupiter 5.11.0-RC1 + Vintage 5.11.0-RC1

... (truncated)

Commits

6430ba4 Release 5.11.4
d093121 Finalize 5.11.4 release notes
0444353 Fix Maven integration tests on JDK 24
b5c7f4e Move #4153 to 5.11.4 release notes
b20c4e2 Ensure the XMLStreamWriter is closed after use
6376f0a Configure Git username and email
2b485c4 Set reference repo URI
500b5a0 Inject username and password via new DSL
d671961 Update plugin gitPublish to v5
3d11279 Add JAVA_25 to JRE enum
Additional commits viewable in compare view

Updates org.junit.jupiter:junit-jupiter-api from 5.10.5 to 5.11.4

Release notes

Sourced from org.junit.jupiter:junit-jupiter-api's releases.

JUnit 5.11.4 = Platform 1.11.4 + Jupiter 5.11.4 + Vintage 5.11.4

See Release Notes.

Full Changelog: junit-team/junit5@r5.11.3...r5.11.4

JUnit 5.11.3 = Platform 1.11.3 + Jupiter 5.11.3 + Vintage 5.11.3

See Release Notes.

Full Changelog: junit-team/junit5@r5.11.2...r5.11.3

JUnit 5.11.2 = Platform 1.11.2 + Jupiter 5.11.2 + Vintage 5.11.2

See Release Notes.

Full Changelog: junit-team/junit5@r5.11.1...r5.11.2

JUnit 5.11.1 = Platform 1.11.1 + Jupiter 5.11.1 + Vintage 5.11.1

See Release Notes.

Full Changelog: junit-team/junit5@r5.11.0...r5.11.1

JUnit 5.11.0 = Platform 1.11.0 + Jupiter 5.11.0 + Vintage 5.11.0

See Release Notes.

New Contributors

@pshevche made their first contribution in junit-team/junit5#3427

@rybak made their first contribution in junit-team/junit5#3416

@pixeebot made their first contribution in junit-team/junit5#3491

@shartte made their first contribution in junit-team/junit5#3562

@eliasnogueira made their first contribution in junit-team/junit5#3674

@bigdaz made their first contribution in junit-team/junit5#3668

@gilday made their first contribution in junit-team/junit5#3667

@bjmi made their first contribution in junit-team/junit5#3806

@madalingiurca made their first contribution in junit-team/junit5#3787

@dmlloyd made their first contribution in junit-team/junit5#3820

@compf made their first contribution in junit-team/junit5#3867

@SveinKare made their first contribution in junit-team/junit5#3840

@mobounya made their first contribution in junit-team/junit5#3720

@robinjhector made their first contribution in junit-team/junit5#3345

@jabhatfield made their first contribution in junit-team/junit5#3829

@rfscholte made their first contribution in junit-team/junit5#3909

Full Changelog: junit-team/junit5@r5.10.3...r5.11.0

JUnit 5.11.0-RC1 = Platform 1.11.0-RC1 + Jupiter 5.11.0-RC1 + Vintage 5.11.0-RC1

... (truncated)

Commits

6430ba4 Release 5.11.4
d093121 Finalize 5.11.4 release notes
0444353 Fix Maven integration tests on JDK 24
b5c7f4e Move #4153 to 5.11.4 release notes
b20c4e2 Ensure the XMLStreamWriter is closed after use
6376f0a Configure Git username and email
2b485c4 Set reference repo URI
500b5a0 Inject username and password via new DSL
d671961 Update plugin gitPublish to v5
3d11279 Add JAVA_25 to JRE enum
Additional commits viewable in compare view

Updates net.java.dev.jna:jna from 5.15.0 to 5.16.0

Changelog

Sourced from net.java.dev.jna:jna's changelog.

Release 5.16.0

Features

#1626: Add caching of field list and field validation in Structure along with more efficient reentrant read-write locking instead of synchronized() blocks - @BrettWooldridge

Bug Fixes

#1618: Fix calls to jnidispatch on Android with 16KB page size - @Thomyrock

Commits

7452f87 Release 5.16.0
a9d4e09 Merge pull request #1643 from matthiasblaesing/javadoc2
d1bef49 Merge pull request #1642 from matthiasblaesing/android-fix-16k
dfb4016 Fix missing javadoc file resoures/fonts/dejavu.css
e62279f Bump JNI revision number and rebuild android native parts (other platforms ar...
58d2c1b Fix unittest when run on linux systems with more than 15 partitions
17f4e59 Fix calls to jnidispatch on Android with 16KB page size
3befd7f Merge pull request #1637 from matthiasblaesing/fix-javadoc
3fb2f87 Fix javadoc
9e1e377 Merge pull request #1631 from matthiasblaesing/pr-1629
Additional commits viewable in compare view

Updates org.infinispan.protostream:protostream from 4.4.4.Final to 4.5.0.Final

Release notes

Sourced from org.infinispan.protostream:protostream's releases.

4.5.0.Final

What's Changed

IPROTO-218 Support uninitialized Date and Instant by @tristantarrant in infinispan/protostream#163

IPROTO-238 Align dependencies version with Infinispan by @pruivo in infinispan/protostream#164

OSSRH - Remove staging profile by @pruivo in infinispan/protostream#166

OSSRH - Add SCM plugin by @pruivo in infinispan/protostream#167

IPROTO-239 Use correct generated class by @fax4ever in infinispan/protostream#168

IPROTO-62 Implement annotation based schema generation support for 'oneof' by @anistor in infinispan/protostream#39

Replace Jenkins with GH Actions by @ryanemerson in infinispan/protostream#170

IPROTO-243 JSonUtil field 18 as boolean considered as a string by @wburns in infinispan/protostream#173

Upload test results for Test Report action by @ryanemerson in infinispan/protostream#176

IPROTO-248 Make parent/pom.xml valid against Maven XSD by @pruivo in infinispan/protostream#177

Align dependencies with Infinispan by @pruivo in infinispan/protostream#175

IPROTO-244 Do not pretty print JSON by default by @tristantarrant in infinispan/protostream#172

New Contributors

@fax4ever made their first contribution in infinispan/protostream#168

Full Changelog: infinispan/protostream@4.5.0.Dev01...4.5.0.Final

4.5.0.CR1

What's Changed

IPROTO-62 Implement annotation based schema generation support for 'oneof' by @anistor in infinispan/protostream#39

Full Changelog: infinispan/protostream@4.5.0.Dev05...4.5.0.CR1

Commits

fcb7cb9 Releasing 4.5.0.Final
972ae1b IPROTO-244 Do not pretty print JSON by default
e1d9692 IPROTO-247 Upgrade Jboss Logging to 3.5.0
4660c08 IPROTO-246 Upgrade Log4J to 2.18.0
8497dad IPROTO-245 Upgrade Jackson to 2.13.3
a2948b8 IPROTO-248 Make parent/pom.xml valid against Maven XSD
ec8d650 Upload test reports so that they can be processed by 'test_report.yaml'
b23d9a6 Add 'Test Report' GH action
b001605 IPROTO-243 JSonUtil field 18 as boolean considered as a string
4aaa478 Next version 4.5.0-SNAPSHOT
Additional commits viewable in compare view

Updates org.apache.mina:mina-core from 2.2.3 to 2.2.4

Commits

4134a12 [maven-release-plugin] prepare release 2.2.4
ccc85e3 Fixing another link issue
bfb75f2 Rollbacked to source plugin 3.2.1
625a524 Trying to get maven source plugin to the latest version
252130d Solved some link issues
859e7aa Fixed a bad @link
f583441 Fixed some compilation issues
b1dc83a Fixed some javadoc issues
06a5107 Rollbacked maven source plugin to 3.2.1, because since 3.3.0 the build fails
9791886 Added some missing spaces
Additional commits viewable in compare view

Updates com.google.guava:guava from 33.3.1-jre to 33.4.0-jre

Release notes

Sourced from com.google.guava:guava's releases.

33.4.0

Maven
<dependency>
  <groupId>com.google.guava</groupId>
  <artifactId>guava</artifactId>
  <version>33.4.0-jre</version>
  
  <version>33.4.0-android</version>
</dependency>
Jar files

33.4.0-jre.jar

33.4.0-android.jar

Guava requires one runtime dependency, which you can download here:

failureaccess-1.0.2.jar

Javadoc

33.4.0-jre

33.4.0-android

JDiff

33.4.0-jre vs. 33.3.1-jre

33.4.0-android vs. 33.3.1-android

33.4.0-android vs. 33.4.0-jre

Changelog

Exposed additional Java 8 APIs to Android users. (6082782134, 9b0109c662, 6ace8bc8ea, b650b9fe77, c6c268006c, 984f713d76, f9f3fffb87, cdc225474e)

base: Deprecated Charsets constants in favor of StandardCharsets. We will not remove the constants, but we recommend using StandardCharsets for consistency. (45e6be2688)

base: Added ToStringHelper.omitEmptyValues(). (f5ec2ab85c)

collect: Added an optimized copyOf method to TreeRangeMap. (a46565dd1c)

collect.testing: Fixed @Require annotations so that features implied by absent features are not also required to be absent. (81be061f85)

io: Changed ByteSink and CharSink to no longer call flush() in some cases before close(). This is a no-op for well-behaved streams, which internally flush their data as part of closing. However, we have discovered some stream implementations that have overridden close() to do nothing, including not to flush some buffered data. If this change causes problems, the simplest fix is usually to change the close() override to at least call flush(). (6ace8bc8ea)

net: Added HttpHeaders.ALT_SVC and MediaType.CBOR. (503ba429f9, 7c0bf0892d)

Commits

See full diff in compare view

Updates io.grpc:grpc-core from 1.68.2 to 1.70.0

Release notes

Sourced from io.grpc:grpc-core's releases.

v1.70.0

Bug Fixes

Re-enable animalsniffer, fixing most violations (8ea362937). Violations would only have triggered on API level 23 and earlier, and the violations fixed here were highly unlikely to be triggered

api: Fix Android API level 23 and earlier compatibility for StatusRuntimeException without stacktrace (#11072) (ebe2b4867). This fixes a regression introduced in 1.64.0. The regression should have caused failures on API level 23 and earlier when a StatusRuntimeException or StatusException was created. However, for unknown reasons tests on old devices didn’t notice issues

okhttp: Improve certificate handling by rejecting non-ASCII subject alternative names and hostnames as seen in CVE-2021-0341 (#11749) (a0982ca0a). Hostnames are considered trusted and CAs are required to use punycode for non-ASCII hostnames, so this is expected to provide defense-in-depth. See also the related GoSecure blog post and the AOSP fix

okhttp: Fix for ipv6 link local with scope (#11725) (65b32e60e)

xds: Preserve nonce when unsubscribing last watcher of a particular type so that new discovery requests of that type are handled correctly (1cf1927d1). This (along with 6c12c2bd2) fixes a nonce-handling regression introduced in 1.66.0 that could cause resources to appear to not exist until re-creating the ADS stream. Triggering the behavior required specific config changes. It is easiest to trigger when clusters use EDS and routes are changed from one cluster to another. The error “found 0 leaf (logical DNS or EDS) clusters for root cluster” might then be seen

xds: Remember nonces for unknown types (6c12c2bd2)

xds: Unexpected types in the bootstrap’s server_features should be ignored (e8ff6da2c). They were previously required to be strings

xds: Remove xds authority label from metric registration (#11760) (6516c7387). This fixes the error “Incorrect number of required labels provided. Expected: 4” introduced in 1.69.0

xds: Fixed unsupported unsigned 32 bits issue for circuit breaker (#11735) (f8f613984). This fixes clients treating large max_requests as “no requests” and failing all requests

Improvements

api: Introduce custom NameResolver.Args (#11669) (0b2d44098)

stub: Introduce new API: BlockingStubV2 which supports Bidi streaming, Client streaming, a cleaner Server streaming and Unary RPCs (#10318) (ea8c31c30)

bazel: Remove workaround for DoNotCall fixed in Bazel 3.4 (805cad378)

binder: A standard API for pointing resolvers at a different Android User. (#11775) (1126a8e30)

xds: Fix XDS control plane client retry timer backoff duration when connection closes after results are received (#11766) (ef7c2d59c)

xds: Parsing xDS Cluster Metadata (#11741) (1edc4d84d). Not used actively, but this adds validation. The validation is unlikely to fail but may reject invalid resources.

xds: Use "#server" as dataplane target value for xDS enabled gRPC servers (#11715) (ebb43a69e). This only impacts the grpc.target label in grpc.xds_client.* metrics. Previously the empty string was used

rls: Reduce RLS debug channel logging (7f9c1f39f). This only matters when debug logging is enabled

Documentation

examples: Simplify graceful shutdown in Hostname example (f1109e421)

examples: Remove references to maven-central.storage-download.googleapis.com (c96e926e6)

examples: Updated the attachHeaders to newAttachHeadersInterceptor in HeaderClientInterceptor (#11759) (5e8abc677)

Dependencies

Bazel 8 is released, so replace Bazel 6 testing with Bazel 7 (8a5f7776d)

Thanks to

@panchenko

@benjaminp

@ZachChuba

@vinodhabib

v1.69.1

Bug Fixes

okhttp: Improve certificate handling by rejecting non-ASCII subject alternative names and hostnames as seen in CVE-2021-0341 (#11749) (a0982ca0a). Hostnames are considered trusted and CAs are required to use punycode for non-ASCII hostnames, so this is expected to provide defense-in-depth. See also the related GoSecure blog post and the AOSP fix

xds: Preserve nonce when unsubscribing last watcher of a particular type so that new discovery requests of that type are handled correctly (1cf1927d1). This (along with 6c12c2bd2) fixes a nonce-handling regression introduced in 1.66.0 that could cause resources to appear to not exist until re-creating the ADS stream. Triggering the behavior required specific config changes. It is easiest to trigger when clusters use EDS and routes are changed from one cluster to another. The error “found 0 leaf (logical DNS or EDS) clusters for root cluster” might then be seen

xds: Remember nonces for unknown types (6c12c2bd2)

xds: Unexpected types in the bootstrap’s server_features should be ignored (e8ff6da2c). They were previously required to be strings

xds: Fixed unsupported unsigned 32 bits issue for circuit breaker (#11735) (f8f613984). This fixes clients treating large max_requests as “no requests” and failing all requests

xds: Remove xds authority label from metric registration (#11760) (6516c7387). This fixes the error “Incorrect number of required labels provided. Expected: 4” introduced in 1.69.0

... (truncated)

Commits

22a42c8 Bump version to 1.70.0
e015a74 Update README etc to reference 1.70.0
4412054 xds: Rename grpc.xds.cluster to grpc.lb.backend_service
7dada7d xds: Pass grpc.xds.cluster label to tracer
1edc4d8 xds: Parsing xDS Cluster Metadata (#11741)
4222f77 xds:Move creating the retry timer in handleRpcStreamClosed to as late as poss...
6c12c2b xds: Remember nonces for unknown types
4a0f707 xds: Avoid depending on io.grpc.xds.Internal* classes
1cf1927 xds: Preserve nonce when unsubscribing type
9a712c3 xds: Make XdsClient.ResourceStore package-private
Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-remote-resources-plugin from 3.2.0 to 3.3.0

Release notes

Sourced from org.apache.maven.plugins:maven-remote-resources-plugin's releases.

3.3.0

⚠️ Deprecated

[MRRESOURCES-151] - Deprecate includeProjectProperties parameter (#71) @slawekjaranowski

🚀 New features and improvements

[MRRESOURCES-155] - Allow project workspace files to override bundle resources (#79) @slawekjaranowski

[MRRESOURCES-154] - Allow to require project properties by bundle (#78) @slawekjaranowski

[MRRESOURCES-152] - Add property for resourceBundles and outputDirectory (#76) @slawekjaranowski

[MRRESOURCES-150] - Ensure reproducible order in bundle (#69) @adoroszlai

📦 Dependency updates

[MRRESOURCES-153] - Bump maven-archiver from 3.6.1 to 3.6.3 (#77) @slawekjaranowski

[MRRESOURCES-149] - Bump org.eclipse.sisu:org.eclipse.sisu.plexus from 0.9.0.M2 to 0.9.0.M3 (#68) @dependabot

[MRRESOURCES-148] - Bump org.apache.velocity:velocity-engine-core from 2.3 to 2.4.1 (#66) @dependabot

[MRRESOURCES-147] - Bump org.apache.maven.shared:maven-filtering from 3.3.2 to 3.4.0 (#62) @dependabot

[MRRESOURCES-146] - Bump org.apache.maven.plugins:maven-plugins from 41 to 43 (#61) @dependabot

Bump org.apache.maven.shared:maven-common-artifact-filters from 3.3.2 to 3.4.0 (#60) @dependabot

👻 Maintenance

[MRRESOURCES-150] - Fix dependencies (#74) @slawekjaranowski

Declare used dependencies (#73) @elharo

Avoid using deprecated API (#72) @slawekjaranowski

Unsuppress IOExceptions during test setup (#70) @elharo

Switch to Guice constructor injection (#67) @elharo

Remove references to old versions of the plugin (#55) @elharo

Bump apache/maven-gh-actions-shared from 3 to 4 (#56) @dependabot

Prefer https (

…dates Bumps the dev-dependencies group with 24 updates in the / directory: | Package | From | To | | --- | --- | --- | | [commons-codec:commons-codec](https://github.com/apache/commons-codec) | `1.17.1` | `1.18.0` | | [org.junit.jupiter:junit-jupiter](https://github.com/junit-team/junit5) | `5.10.5` | `5.11.4` | | [org.junit:junit-bom](https://github.com/junit-team/junit5) | `5.10.5` | `5.11.4` | | [org.junit.vintage:junit-vintage-engine](https://github.com/junit-team/junit5) | `5.10.5` | `5.11.4` | | [org.junit.jupiter:junit-jupiter-api](https://github.com/junit-team/junit5) | `5.10.5` | `5.11.4` | | [net.java.dev.jna:jna](https://github.com/java-native-access/jna) | `5.15.0` | `5.16.0` | | [org.infinispan.protostream:protostream](https://github.com/infinispan/protostream) | `4.4.4.Final` | `4.5.0.Final` | | [org.apache.mina:mina-core](https://github.com/apache/mina) | `2.2.3` | `2.2.4` | | [com.google.guava:guava](https://github.com/google/guava) | `33.3.1-jre` | `33.4.0-jre` | | [io.grpc:grpc-core](https://github.com/grpc/grpc-java) | `1.68.2` | `1.70.0` | | [org.apache.maven.plugins:maven-remote-resources-plugin](https://github.com/apache/maven-remote-resources-plugin) | `3.2.0` | `3.3.0` | | [org.apache.maven.plugins:maven-invoker-plugin](https://github.com/apache/maven-invoker-plugin) | `3.8.1` | `3.9.0` | | [com.google.code.gson:gson](https://github.com/google/gson) | `2.11.0` | `2.12.1` | | [com.google.cloud:google-cloud-datastore](https://github.com/googleapis/java-datastore) | `2.24.3` | `2.26.0` | | [org.eclipse.platform:org.eclipse.osgi](https://github.com/eclipse-equinox/equinox) | `3.21.0` | `3.22.0` | | org.ops4j.pax.exam:pax-exam | `4.13.5` | `4.14.0` | | org.ops4j.pax.exam:pax-exam-inject | `4.13.5` | `4.14.0` | | org.ops4j.pax.exam:pax-exam-container-forked | `4.13.5` | `4.14.0` | | org.ops4j.pax.exam:pax-exam-junit4 | `4.13.5` | `4.14.0` | | org.ops4j.pax.exam:pax-exam-link-mvn | `4.13.5` | `4.14.0` | | [org.ops4j.pax.swissbox:pax-swissbox-framework](https://github.com/ops4j/org.ops4j.pax.swissbox) | `1.8.3` | `1.9.0` | | [org.ops4j.pax.swissbox:pax-swissbox-tracker](https://github.com/ops4j/org.ops4j.pax.swissbox) | `1.8.3` | `1.9.0` | | [org.ops4j.pax.url:pax-url-aether](https://github.com/ops4j/org.ops4j.pax.url) | `2.6.14` | `2.6.16` | | [org.ops4j.pax.url:pax-url-wrap](https://github.com/ops4j/org.ops4j.pax.url) | `2.6.14` | `2.6.16` | Updates `commons-codec:commons-codec` from 1.17.1 to 1.18.0 - [Changelog](https://github.com/apache/commons-codec/blob/master/RELEASE-NOTES.txt) - [Commits](apache/commons-codec@rel/commons-codec-1.17.1...rel/commons-codec-1.18.0) Updates `org.junit.jupiter:junit-jupiter` from 5.10.5 to 5.11.4 - [Release notes](https://github.com/junit-team/junit5/releases) - [Commits](junit-team/junit5@r5.10.5...r5.11.4) Updates `org.junit:junit-bom` from 5.10.5 to 5.11.4 - [Release notes](https://github.com/junit-team/junit5/releases) - [Commits](junit-team/junit5@r5.10.5...r5.11.4) Updates `org.junit.vintage:junit-vintage-engine` from 5.10.5 to 5.11.4 - [Release notes](https://github.com/junit-team/junit5/releases) - [Commits](junit-team/junit5@r5.10.5...r5.11.4) Updates `org.junit.jupiter:junit-jupiter-api` from 5.10.5 to 5.11.4 - [Release notes](https://github.com/junit-team/junit5/releases) - [Commits](junit-team/junit5@r5.10.5...r5.11.4) Updates `net.java.dev.jna:jna` from 5.15.0 to 5.16.0 - [Changelog](https://github.com/java-native-access/jna/blob/master/CHANGES.md) - [Commits](java-native-access/jna@5.15.0...5.16.0) Updates `org.infinispan.protostream:protostream` from 4.4.4.Final to 4.5.0.Final - [Release notes](https://github.com/infinispan/protostream/releases) - [Commits](infinispan/protostream@4.4.4.Final...4.5.0.Final) Updates `org.apache.mina:mina-core` from 2.2.3 to 2.2.4 - [Commits](apache/mina@2.2.3...2.2.4) Updates `com.google.guava:guava` from 33.3.1-jre to 33.4.0-jre - [Release notes](https://github.com/google/guava/releases) - [Commits](https://github.com/google/guava/commits) Updates `io.grpc:grpc-core` from 1.68.2 to 1.70.0 - [Release notes](https://github.com/grpc/grpc-java/releases) - [Commits](grpc/grpc-java@v1.68.2...v1.70.0) Updates `org.apache.maven.plugins:maven-remote-resources-plugin` from 3.2.0 to 3.3.0 - [Release notes](https://github.com/apache/maven-remote-resources-plugin/releases) - [Commits](apache/maven-remote-resources-plugin@maven-remote-resources-plugin-3.2.0...maven-remote-resources-plugin-3.3.0) Updates `org.apache.maven.plugins:maven-invoker-plugin` from 3.8.1 to 3.9.0 - [Release notes](https://github.com/apache/maven-invoker-plugin/releases) - [Commits](apache/maven-invoker-plugin@maven-invoker-plugin-3.8.1...maven-invoker-plugin-3.9.0) Updates `org.junit.vintage:junit-vintage-engine` from 5.10.5 to 5.11.4 - [Release notes](https://github.com/junit-team/junit5/releases) - [Commits](junit-team/junit5@r5.10.5...r5.11.4) Updates `com.google.code.gson:gson` from 2.11.0 to 2.12.1 - [Release notes](https://github.com/google/gson/releases) - [Changelog](https://github.com/google/gson/blob/main/CHANGELOG.md) - [Commits](google/gson@gson-parent-2.11.0...gson-parent-2.12.1) Updates `com.google.cloud:google-cloud-datastore` from 2.24.3 to 2.26.0 - [Release notes](https://github.com/googleapis/java-datastore/releases) - [Changelog](https://github.com/googleapis/java-datastore/blob/main/CHANGELOG.md) - [Commits](googleapis/java-datastore@v2.24.3...v2.26.0) Updates `org.junit.jupiter:junit-jupiter-api` from 5.10.5 to 5.11.4 - [Release notes](https://github.com/junit-team/junit5/releases) - [Commits](junit-team/junit5@r5.10.5...r5.11.4) Updates `org.eclipse.platform:org.eclipse.osgi` from 3.21.0 to 3.22.0 - [Commits](https://github.com/eclipse-equinox/equinox/commits) Updates `org.ops4j.pax.exam:pax-exam` from 4.13.5 to 4.14.0 Updates `org.ops4j.pax.exam:pax-exam-inject` from 4.13.5 to 4.14.0 Updates `org.ops4j.pax.exam:pax-exam-container-forked` from 4.13.5 to 4.14.0 Updates `org.ops4j.pax.exam:pax-exam-junit4` from 4.13.5 to 4.14.0 Updates `org.ops4j.pax.exam:pax-exam-link-mvn` from 4.13.5 to 4.14.0 Updates `org.ops4j.pax.exam:pax-exam-inject` from 4.13.5 to 4.14.0 Updates `org.ops4j.pax.exam:pax-exam-container-forked` from 4.13.5 to 4.14.0 Updates `org.ops4j.pax.swissbox:pax-swissbox-framework` from 1.8.3 to 1.9.0 - [Commits](ops4j/org.ops4j.pax.swissbox@swissbox-1.8.3...swissbox-1.9.0) Updates `org.ops4j.pax.swissbox:pax-swissbox-tracker` from 1.8.3 to 1.9.0 - [Commits](ops4j/org.ops4j.pax.swissbox@swissbox-1.8.3...swissbox-1.9.0) Updates `org.ops4j.pax.swissbox:pax-swissbox-tracker` from 1.8.3 to 1.9.0 - [Commits](ops4j/org.ops4j.pax.swissbox@swissbox-1.8.3...swissbox-1.9.0) Updates `org.ops4j.pax.exam:pax-exam-junit4` from 4.13.5 to 4.14.0 Updates `org.ops4j.pax.exam:pax-exam-link-mvn` from 4.13.5 to 4.14.0 Updates `org.ops4j.pax.url:pax-url-aether` from 2.6.14 to 2.6.16 - [Commits](ops4j/org.ops4j.pax.url@url-2.6.14...url-2.6.16) Updates `org.ops4j.pax.url:pax-url-wrap` from 2.6.14 to 2.6.16 - [Commits](ops4j/org.ops4j.pax.url@url-2.6.14...url-2.6.16) Updates `org.ops4j.pax.url:pax-url-wrap` from 2.6.14 to 2.6.16 - [Commits](ops4j/org.ops4j.pax.url@url-2.6.14...url-2.6.16) --- updated-dependencies: - dependency-name: commons-codec:commons-codec dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: org.junit.jupiter:junit-jupiter dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: org.junit:junit-bom dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: org.junit.vintage:junit-vintage-engine dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: org.junit.jupiter:junit-jupiter-api dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: net.java.dev.jna:jna dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: org.infinispan.protostream:protostream dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: org.apache.mina:mina-core dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dev-dependencies - dependency-name: com.google.guava:guava dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: io.grpc:grpc-core dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: org.apache.maven.plugins:maven-remote-resources-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: org.apache.maven.plugins:maven-invoker-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: org.junit.vintage:junit-vintage-engine dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: com.google.code.gson:gson dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: com.google.cloud:google-cloud-datastore dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: org.junit.jupiter:junit-jupiter-api dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: org.eclipse.platform:org.eclipse.osgi dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: org.ops4j.pax.exam:pax-exam dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: org.ops4j.pax.exam:pax-exam-inject dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: org.ops4j.pax.exam:pax-exam-container-forked dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: org.ops4j.pax.exam:pax-exam-junit4 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: org.ops4j.pax.exam:pax-exam-link-mvn dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: org.ops4j.pax.exam:pax-exam-inject dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: org.ops4j.pax.exam:pax-exam-container-forked dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: org.ops4j.pax.swissbox:pax-swissbox-framework dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: org.ops4j.pax.swissbox:pax-swissbox-tracker dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: org.ops4j.pax.swissbox:pax-swissbox-tracker dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: org.ops4j.pax.exam:pax-exam-junit4 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: org.ops4j.pax.exam:pax-exam-link-mvn dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: org.ops4j.pax.url:pax-url-aether dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dev-dependencies - dependency-name: org.ops4j.pax.url:pax-url-wrap dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dev-dependencies - dependency-name: org.ops4j.pax.url:pax-url-wrap dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dev-dependencies ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Feb 1, 2025

dependabot bot added this to the 9.4.x milestone Feb 1, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[9.4.x] Bump the dev-dependencies group across 1 directory with 24 updates #12755

[9.4.x] Bump the dev-dependencies group across 1 directory with 24 updates #12755

dependabot bot commented on behalf of github Feb 1, 2025

[9.4.x] Bump the dev-dependencies group across 1 directory with 24 updates #12755

Are you sure you want to change the base?

[9.4.x] Bump the dev-dependencies group across 1 directory with 24 updates #12755

Conversation

dependabot bot commented on behalf of github Feb 1, 2025

Apache Commons Codec 1.18.0 Release Notes

New features

Changes

Apache Commons Codec 1.17.2 Release Notes

Fixed Bugs

New Contributors

New Contributors

New Contributors

New Contributors

Release 5.16.0

Features

Bug Fixes

4.5.0.Final

What's Changed

New Contributors

4.5.0.CR1

What's Changed

33.4.0

Maven

Jar files

Javadoc

JDiff

Changelog

v1.70.0

Bug Fixes

Improvements

Documentation

Dependencies

Thanks to

v1.69.1

Bug Fixes

3.3.0

⚠️ Deprecated

🚀 New features and improvements

📦 Dependency updates

👻 Maintenance