Bump the dependencies group with 12 updates #657

dependabot · 2025-10-27T20:01:17Z

Bumps the dependencies group with 12 updates:

Package	From	To
org.apache.maven.plugins:maven-antrun-plugin	`3.1.0`	`3.2.0`
io.avaje:avaje-jsonb	`3.7`	`3.8`
io.avaje:avaje-json-node	`3.7`	`3.8`
io.avaje:avaje-inject	`11.6`	`12.0`
io.avaje:avaje-inject-generator	`11.6`	`12.0`
io.avaje:avaje-inject-maven-plugin	`11.6`	`12.0`
io.avaje:avaje-jsonb-generator	`3.7`	`3.8`
io.avaje:avaje-jex	`3.2`	`3.3`
io.avaje:avaje-jex-htmx	`3.2`	`3.3`
io.avaje:avaje-nima	`1.4`	`1.5`
io.avaje:avaje-nima-test	`1.4`	`1.5`
io.avaje:avaje-json-core	`3.7`	`3.8`

Updates org.apache.maven.plugins:maven-antrun-plugin from 3.1.0 to 3.2.0

Release notes

Sourced from org.apache.maven.plugins:maven-antrun-plugin's releases.

3.2.0

📝 Documentation updates

[MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#112) @Bukama

[MANTRUN-231] - Document limitations of exportAntProperties (#108) @elharo

👻 Maintenance

Refresh download page, use site descriptor 2.0 (#342) @slawekjaranowski

Add tag-template to release-drafter (#343) @slawekjaranowski

Run ci also with Maven 4 (#341) @slachiewicz

Bump Maven to 3.9.11 and keep prerequisites at 3.6.3 (#340) @slachiewicz

feat: enable prevent branch protection rules (#337) @sparsick

Enable Github Issues (#116) @Bukama

Switch from plexus to Guice (#106) @elharo

Correct user visible spelling error (#105) @elharo

[MANTRUN-241] - Bump org.junit:junit-bom from 5.10.1 to 5.10.2 (#92) @dependabot[bot]

[MANTRUN-239] - Upgrade parent pom to 40 (#88) @slachiewicz

[MANTRUN-239] - Update parent pom to 39 (#80) @slachiewicz

📦 Dependency updates

Bump version.xmlunit from 2.10.3 to 2.10.4 (#338) @dependabot[bot]

Bump org.apache.maven.plugins:maven-plugins from 44 to 45 (#336) @dependabot[bot]

Bump org.apache.maven.plugins:maven-plugins from 43 to 44 (#115) @dependabot[bot]

Bump version.xmlunit from 2.10.2 to 2.10.3 (#333) @dependabot[bot]

Bump version.xmlunit from 2.10.1 to 2.10.2 (#118) @dependabot[bot]

Bump version.xmlunit from 2.10.0 to 2.10.1 (#117) @dependabot[bot]

Bump org.apache.ant:ant from 1.10.14 to 1.10.15 (#103) @dependabot[bot]

[MANTRUN-239] - Bump org.apache.maven.plugins:maven-plugins from 42 to 43 (#101) @dependabot[bot]

[MANTRUN-244] - Upgrade to JUnit 5.12.0 (#114) @slachiewicz

Bump org.hamcrest:hamcrest-core from 1.3 to 3.0 (#111) @dependabot[bot]

Declare dependencies explicitly (#107) @elharo

Bump org.apache.maven.plugins:maven-plugins from 41 to 42 (#96) @dependabot[bot]

Bump org.xmlunit:xmlunit-core from 2.9.1 to 2.10.0 (#98) @dependabot[bot]

[MANTRUN-242] - Require Maven 3.6.3+ (#95) @slachiewicz

[MANTRUN-241] - Bump org.junit:junit-bom from 5.10.1 to 5.10.2 (#92) @dependabot[bot]

Bump org.apache.maven.plugins:maven-plugins from 40 to 41 (#91) @dependabot[bot]

[MANTRUN-241] - Bump org.junit.jupiter:junit-jupiter-engine to 5.10.1 (#89) @slachiewicz

Bump xmlunit-matchers from 2.9.0 to 2.9.1 (#83) @dependabot[bot]

Bump xmlunit-core from 2.9.0 to 2.9.1 (#84) @dependabot[bot]

[MANTRUN-240] - Bump org.apache.ant:ant from 1.10.13 to 1.10.14 (#87) @dependabot[bot]

Bump ant from 1.10.12 to 1.10.13 (#81) @dependabot[bot]

Bump maven-checkstyle-plugin from 3.1.2 to 3.2.0 (#67) @dependabot[bot]

Bump junit-jupiter-engine from 5.9.0 to 5.9.1 (#68) @dependabot[bot]

Bump plexus-utils from 3.4.1 to 3.4.2 (#57) @dependabot[bot]

Bump maven-javadoc-plugin from 3.4.0 to 3.4.1 (#65) @dependabot[bot]

Bump maven-project-info-reports-plugin from 3.3.0 to 3.4.1 (#64) @dependabot[bot]

Bump junit-jupiter-engine from 5.8.2 to 5.9.0 (#63) @dependabot[bot]

... (truncated)

Commits

d8a5220 [maven-release-plugin] prepare release maven-antrun-plugin-3.2.0
a049c4d Refresh download page, use site descriptor 2.0
3e2fbe1 Add tag-template to release-drafter
43af127 Add hacktoberfest label to project
cc0189a Run ci also with Maven 4
ff42558 Bump Maven to 3.9.11 and keep prerequisites at 3.6.3
17c406c Bump version.xmlunit from 2.10.3 to 2.10.4 (#338)
a313597 feat: enable prevent branch protection rules
e0127c7 Bump org.apache.maven.plugins:maven-plugins from 44 to 45
565754c fix
Additional commits viewable in compare view

Updates io.avaje:avaje-jsonb from 3.7 to 3.8

Release notes

Sourced from io.avaje:avaje-jsonb's releases.

3.8

What's Changed

Fix record nested generics by @SentryMan in avaje/avaje-jsonb#421

Fix Invalid toJson parameter name by @SentryMan in avaje/avaje-jsonb#422

Support Select Jackson Annotations by @SentryMan in avaje/avaje-jsonb#426

Support Select GSON & Jakarta JSON-B annotations (#426) by @mechite in avaje/avaje-jsonb#427

Update readme (for #427) by @mechite in avaje/avaje-jsonb#429

Do not fail compilation on cascade failure by @SentryMan in avaje/avaje-jsonb#435

Only Log Cascade Warning when in the Same Module by @SentryMan in avaje/avaje-jsonb#439

Fix nested generic classes by @SentryMan in avaje/avaje-jsonb#441

Fix Jackson SPI by @SentryMan in avaje/avaje-jsonb#443

Match Creator Aliases to Fields by @SentryMan in avaje/avaje-jsonb#445

Dependencies

Bump com.fasterxml.jackson.core:jackson-core from 2.19.2 to 2.20.0 in the dependencies group by @dependabot[bot] in avaje/avaje-jsonb#423

Bump io.helidon.webserver:helidon-webserver from 4.2.6 to 4.2.7 in the dependencies group by @dependabot[bot] in avaje/avaje-jsonb#424

Bump org.springframework.boot:spring-boot-dependencies from 3.5.5 to 3.5.6 in the dependencies group by @dependabot[bot] in avaje/avaje-jsonb#430

Bump io.helidon.webserver:helidon-webserver from 4.2.7 to 4.3.0 in the dependencies group by @dependabot[bot] in avaje/avaje-jsonb#431

Bump io.helidon.webserver:helidon-webserver from 4.3.0 to 4.3.1 in the dependencies group by @dependabot[bot] in avaje/avaje-jsonb#437

Full Changelog: avaje/avaje-jsonb@3.7...3.8

Commits

160656b Version 3.8
556ee20 Version 3.8-RC4
5068345 match creator aliases to fields (#445)
1fdfa59 Fix Jackson SPI (#443)
ad0c2a4 Version 3.8-RC3
fca862c fix nested generic classes (#441)
4a0ce8d Merge pull request #439 from SentryMan/fix-cascade-warning
7d14acd Merge pull request #437 from avaje/dependabot/maven/main/dependencies-2ca05fbf2e
ee5922b Bump io.helidon.webserver:helidon-webserver in the dependencies group
e063aac 3.8-RC2 (#436)
Additional commits viewable in compare view

Updates io.avaje:avaje-json-node from 3.7 to 3.8

Updates io.avaje:avaje-inject from 11.6 to 12.0

Release notes

Sourced from io.avaje:avaje-inject's releases.

12.0

Breaking changes

12.0 is backwards compatible with 11.6, but not earlier versions.

Remove Deprecated/Unused Methods by @SentryMan in avaje/avaje-inject#869

Remove Auto Provides from @DependencyMeta by @SentryMan in avaje/avaje-inject#872

New Features

Make @Lazy work on a package/module level by @SentryMan in avaje/avaje-inject#884

Control of lazy proxy generation via an enum flag

Support Inherited package private types when in the same package. by @SentryMan in avaje/avaje-inject#904

Other Changes

Fix optional/nullable @BeanTypes generation by @SentryMan in avaje/avaje-inject#870

Fix metadata ordering by @SentryMan in avaje/avaje-inject#876

Improve parent bean and scope detection by @cbarlin in avaje/avaje-inject#873

DBuilder contains checking parent if present by @cbarlin in avaje/avaje-inject#878

Reverse PreDestroy Order based on constructor dependency order by @SentryMan in avaje/avaje-inject#883

more descriptive field inject error message by @SentryMan in avaje/avaje-inject#885

Fix Proxy Generation with Final Methods by @SentryMan in avaje/avaje-inject#896

Full Changelog: avaje/avaje-inject@11.6...12.0

Commits

8122a10 Version 12.0
f36387e support inherited pkg private when in the same package (#904)
dfe4078 Merge pull request #905 from avaje/dependabot/maven/master/dependencies-d8d12...
98a39d0 Bump ch.qos.logback:logback-classic in the dependencies group
a152dd8 Merge pull request #902 from avaje/dependabot/maven/master/dependencies-7ea80...
fab3618 Bump the dependencies group with 2 updates
b0a8acf Version 12.0-RC6
e8dcbb5 fix lazy imports on thrown exceptions (#901)
61ad39e Version 12.0-RC5
6481e1a fix proxy generation with final methods (#896)
Additional commits viewable in compare view

Updates io.avaje:avaje-inject-generator from 11.6 to 12.0

Updates io.avaje:avaje-inject-maven-plugin from 11.6 to 12.0

Updates io.avaje:avaje-jsonb-generator from 3.7 to 3.8

Updates io.avaje:avaje-jex from 3.2 to 3.3

Release notes

Sourced from io.avaje:avaje-jex's releases.

3.3

New Features

A new SSL Plugin has been added to make configuring SSL and mTLS easier than building an SSLContext by hand. See the docs for more details.

A new FileUpload Plugin to handle multipart uploads in avaje/avaje-jex#303

What's Changed

#264 Use AppLog.getLogger() rather than direct System.getLogger() for native-image by @rbygrave in avaje/avaje-jex#265

[SSE] Relax SSE Accept Header Validation by @SentryMan in avaje/avaje-jex#273

Add size limit to Context#bodyAsBytes() by @SentryMan in avaje/avaje-jex#272

Improve API for constructing HTTP error responses by @mechite in avaje/avaje-jex#281

add resource loader config by @SentryMan in avaje/avaje-jex#286

An SSL Plugin by @SentryMan in avaje/avaje-jex#285

Encapsulate SslHttpConfigurator by @SentryMan in avaje/avaje-jex#288

[ssl-plugin] Move default SSLContext to main module by @SentryMan in avaje/avaje-jex#289

Remove unnecessary public modifier by @rbygrave in avaje/avaje-jex#290

Removes baos creation on content length by @SentryMan in avaje/avaje-jex#293

Allow Registering Routes with SPI by @SentryMan in avaje/avaje-jex#295

Use FilterOutputStream in Output Buffer by @SentryMan in avaje/avaje-jex#294

Test everything with jetty by @SentryMan in avaje/avaje-jex#287

Add Startup Time Log by @SentryMan in avaje/avaje-jex#301

add avaje-validator's plugins for inject & http (to parent) by @mechite in avaje/avaje-jex#307

Add a FileUpload Plugin by @SentryMan in avaje/avaje-jex#303

Fix typo in avaje.prisms.version property by @mechite in avaje/avaje-jex#313

New Contributors

@mechite made their first contribution in avaje/avaje-jex#281

Full Changelog: avaje/avaje-jex@3.2...3.3

Commits

47c27e6 3.3
7a3df26 Bump io.avaje:avaje-config from 4.2-RC2 to 4.2 in the dependencies group (#315)
954fcf2 Bump the dependencies group with 19 updates (#314)
6b52832 Fix typo in avaje.prisms.version property (#313)
782835b Bump the dependencies group with 3 updates (#311)
c73b928 Bump the dependencies group with 11 updates (#310)
160b84b 3.3-RC5
a6a74c3 Add a FileUpload Plugin (#303)
12740ae add avaje-validator's plugins for inject & http (to parent) (#307)
c19211b Bump ch.qos.logback:logback-classic in the dependencies group (#308)
Additional commits viewable in compare view

Updates io.avaje:avaje-jex-htmx from 3.2 to 3.3

Updates io.avaje:avaje-nima from 1.4 to 1.5

Updates io.avaje:avaje-nima-test from 1.4 to 1.5

Updates io.avaje:avaje-json-core from 3.7 to 3.8

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the dependencies group with 12 updates: | Package | From | To | | --- | --- | --- | | [org.apache.maven.plugins:maven-antrun-plugin](https://github.com/apache/maven-antrun-plugin) | `3.1.0` | `3.2.0` | | [io.avaje:avaje-jsonb](https://github.com/avaje/avaje-jsonb) | `3.7` | `3.8` | | io.avaje:avaje-json-node | `3.7` | `3.8` | | [io.avaje:avaje-inject](https://github.com/avaje/avaje-inject) | `11.6` | `12.0` | | io.avaje:avaje-inject-generator | `11.6` | `12.0` | | io.avaje:avaje-inject-maven-plugin | `11.6` | `12.0` | | io.avaje:avaje-jsonb-generator | `3.7` | `3.8` | | [io.avaje:avaje-jex](https://github.com/avaje/avaje-jex) | `3.2` | `3.3` | | io.avaje:avaje-jex-htmx | `3.2` | `3.3` | | io.avaje:avaje-nima | `1.4` | `1.5` | | io.avaje:avaje-nima-test | `1.4` | `1.5` | | io.avaje:avaje-json-core | `3.7` | `3.8` | Updates `org.apache.maven.plugins:maven-antrun-plugin` from 3.1.0 to 3.2.0 - [Release notes](https://github.com/apache/maven-antrun-plugin/releases) - [Commits](apache/maven-antrun-plugin@maven-antrun-plugin-3.1.0...maven-antrun-plugin-3.2.0) Updates `io.avaje:avaje-jsonb` from 3.7 to 3.8 - [Release notes](https://github.com/avaje/avaje-jsonb/releases) - [Commits](avaje/avaje-jsonb@3.7...3.8) Updates `io.avaje:avaje-json-node` from 3.7 to 3.8 Updates `io.avaje:avaje-inject` from 11.6 to 12.0 - [Release notes](https://github.com/avaje/avaje-inject/releases) - [Commits](avaje/avaje-inject@11.6...12.0) Updates `io.avaje:avaje-inject-generator` from 11.6 to 12.0 Updates `io.avaje:avaje-inject-generator` from 11.6 to 12.0 Updates `io.avaje:avaje-inject-maven-plugin` from 11.6 to 12.0 Updates `io.avaje:avaje-jsonb-generator` from 3.7 to 3.8 Updates `io.avaje:avaje-jex` from 3.2 to 3.3 - [Release notes](https://github.com/avaje/avaje-jex/releases) - [Commits](avaje/avaje-jex@3.2...3.3) Updates `io.avaje:avaje-jex-htmx` from 3.2 to 3.3 Updates `io.avaje:avaje-jex-htmx` from 3.2 to 3.3 Updates `io.avaje:avaje-nima` from 1.4 to 1.5 Updates `io.avaje:avaje-nima-test` from 1.4 to 1.5 Updates `io.avaje:avaje-json-core` from 3.7 to 3.8 --- updated-dependencies: - dependency-name: org.apache.maven.plugins:maven-antrun-plugin dependency-version: 3.2.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: io.avaje:avaje-jsonb dependency-version: '3.8' dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: io.avaje:avaje-json-node dependency-version: '3.8' dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: io.avaje:avaje-inject dependency-version: '12.0' dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies - dependency-name: io.avaje:avaje-inject-generator dependency-version: '12.0' dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies - dependency-name: io.avaje:avaje-inject-generator dependency-version: '12.0' dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies - dependency-name: io.avaje:avaje-inject-maven-plugin dependency-version: '12.0' dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies - dependency-name: io.avaje:avaje-jsonb-generator dependency-version: '3.8' dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: io.avaje:avaje-jex dependency-version: '3.3' dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: io.avaje:avaje-jex-htmx dependency-version: '3.3' dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: io.avaje:avaje-jex-htmx dependency-version: '3.3' dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: io.avaje:avaje-nima dependency-version: '1.5' dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: io.avaje:avaje-nima-test dependency-version: '1.5' dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: io.avaje:avaje-json-core dependency-version: '3.8' dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added the dependencies Pull requests that update a dependency file label Oct 27, 2025

github-actions bot approved these changes Oct 27, 2025

View reviewed changes

github-actions bot enabled auto-merge October 27, 2025 20:01

github-actions bot merged commit 3261bac into master Oct 27, 2025
6 checks passed

dependabot bot deleted the dependabot/maven/master/dependencies-815d11f13f branch October 27, 2025 20:03

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump the dependencies group with 12 updates #657

Bump the dependencies group with 12 updates #657

Uh oh!

dependabot bot commented on behalf of github Oct 27, 2025

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Bump the dependencies group with 12 updates #657

Bump the dependencies group with 12 updates #657

Uh oh!

Conversation

dependabot bot commented on behalf of github Oct 27, 2025

3.2.0

📝 Documentation updates

👻 Maintenance

📦 Dependency updates

3.8

What's Changed

Dependencies

12.0

Breaking changes

New Features

Other Changes

3.3

New Features

What's Changed

New Contributors

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant