build(deps): bump the dependencies group with 19 updates

[dependabot]

Bumps the dependencies group with 19 updates:

Package	From	To
com.amazonaws:aws-java-sdk-bom	1.12.691	1.12.696
jakarta.json.bind:jakarta.json.bind-api	3.0.0	3.0.1
io.swagger.parser.v3:swagger-parser	2.1.21	2.1.22
io.ebean:ebean	15.0.2	15.1.0
io.ebean:ebean-querybean	15.0.2	15.1.0
io.ebean:querybean-generator	15.0.2	15.1.0
io.ebean:ebean-test	15.0.2	15.1.0
com.github.spotbugs:spotbugs-annotations	4.8.3	4.8.4
org.eclipse.jetty:jetty-server	12.0.7	12.0.8
org.eclipse.jetty.websocket:jetty-websocket-core-server	12.0.7	12.0.8
org.eclipse.jetty.websocket:jetty-websocket-jetty-api	12.0.7	12.0.8
org.eclipse.jetty.websocket:jetty-websocket-jetty-server	12.0.7	12.0.8
org.eclipse.jetty.http2:jetty-http2-server	12.0.7	12.0.8
org.eclipse.jetty:jetty-alpn-java-server	12.0.7	12.0.8
org.eclipse.jetty.http2:jetty-http2-client	12.0.7	12.0.8
org.jacoco:org.jacoco.agent	0.8.11	0.8.12
org.apache.maven.plugin-tools:maven-plugin-annotations	3.11.0	3.12.0
org.apache.maven.plugins:maven-source-plugin	3.3.0	3.3.1
org.apache.maven.plugins:maven-plugin-plugin	3.11.0	3.12.0

Updates com.amazonaws:aws-java-sdk-bom from 1.12.691 to 1.12.696

Changelog

Sourced from com.amazonaws:aws-java-sdk-bom's changelog.

1.12.696 2024-04-05

AWS Resource Groups

• Features

  • Added a new QueryErrorCode RESOURCE_TYPE_NOT_SUPPORTED that is returned by the ListGroupResources operation if the group query contains unsupported resource types.

Amazon QuickSight

• Features

  • Adding IAMIdentityCenterInstanceArn parameter to CreateAccountSubscription

Amazon Verified Permissions

• Features

  • Adding BatchIsAuthorizedWithToken API which supports multiple authorization requests against a PolicyStore given a bearer token.

1.12.695 2024-04-04

AWS B2B Data Interchange

• Features

  • Adding support for X12 5010 HIPAA EDI version and associated transaction sets.

AWS Clean Rooms Service

• Features

  • Feature: New schemaStatusDetails field to the existing Schema object that displays a status on Schema API responses to show whether a schema is queryable or not. New BatchGetSchemaAnalysisRule API to retrieve multiple schemaAnalysisRules using a single API call.

Amazon EMR Containers

• Features

  • This release adds support for integration with EKS AccessEntry APIs to enable automatic Cluster Access for EMR on EKS.

Amazon Elastic Compute Cloud

• Features

  • Amazon EC2 G6 instances powered by NVIDIA L4 Tensor Core GPUs can be used for a wide range of graphics-intensive and machine learning use cases. Gr6 instances also feature NVIDIA L4 GPUs and can be used for graphics workloads with higher memory requirements.

Amazon Interactive Video Service

• Features

  • API update to include an SRT ingest endpoint and passphrase for all channels.

Amazon Verified Permissions

• Features

  • Adds GroupConfiguration field to Identity Source API's

1.12.694 2024-04-03

AWS Clean Rooms ML

• Features

  • The release includes a public SDK for AWS Clean Rooms ML APIs, making them globally available to developers worldwide.

AWS CloudFormation

• Features

  • This release would return a new field - PolicyAction in cloudformation's existed DescribeChangeSetResponse, showing actions we are going to apply on the physical resource (e.g., Delete, Retain) according to the user's template

AWS Elemental MediaLive

• Features

  • Cmaf Ingest outputs are now supported in Media Live

... (truncated)

Commits

• fd5cbc2 AWS SDK for Java 1.12.696
• ad47c92 Update GitHub version number to 1.12.696-SNAPSHOT
• f3f5543 AWS SDK for Java 1.12.695
• b4ec2ab Update GitHub version number to 1.12.695-SNAPSHOT
• 4a46bf3 AWS SDK for Java 1.12.694
• 5de4081 Update GitHub version number to 1.12.694-SNAPSHOT
• c2aacfe AWS SDK for Java 1.12.693
• f740c21 Update GitHub version number to 1.12.693-SNAPSHOT
• 6bfb4d9 AWS SDK for Java 1.12.692
• ef747a3 Update GitHub version number to 1.12.692-SNAPSHOT
• See full diff in compare view

Updates jakarta.json.bind:jakarta.json.bind-api from 3.0.0 to 3.0.1

Commits

• 2f31540 Update API version of jakarta.json.bind:jakarta.json.bind-api to 3.0.1
• f3a2332 Before 3.0.1 release (#355)
• 1ec8fa1 Merge pull request #249 from mcserra/#237
• 5dfc190 Merge pull request #339 from mkarg/patch-1
• 8c9444e Merge pull request #354 from jakartaee/3.0.0-BRANCH
• 0c6e308 use classpath for jakarta api libraries.
• 8fafd95 Update README.md - Latest published version is 3.0.0
• 7340b84 tck dist update (#323)
• 29a2568 userguide and tck dist eftl bundle tuning (#322)
• 34be979 Update API version of jakarta.json.bind:jakarta.json.bind-api to 3.0.1-SNAPSHOT
• See full diff in compare view

Updates io.swagger.parser.v3:swagger-parser from 2.1.21 to 2.1.22

Release notes

Sourced from io.swagger.parser.v3:swagger-parser's releases.

Swagger-parser 2.1.22 released!

• Issue 2071. Correctly handle external refs in array items composed sc… (#2072)
• update dependencies (#2070)
• Issue 1886 (#2064)
• Validate the api key 'in' attribute is cookie header or query. (#2058)

Commits

• 5040b8b prepare release 2.1.22
• 80a3eba Issue 2071. Correctly handle external refs in array items composed schemas
• 96241cb Issue 2071. Correctly handle external refs in array items composed schemas
• 6c22e31 update dependencies
• c5f50e9 remove newline
• b2ef50b update existing tests
• 056774f Validate the api key 'in' attribute is cookie header or query.
• e3746af Merge pull request #2064 from walaniam/issue_1886_202403
• 5dc1cf1 Merge branch 'master' into issue_1886_202403
• 46e3ca9 bump snapshot 2.1.22-SNAPSHOT
• Additional commits viewable in compare view

Updates io.ebean:ebean from 15.0.2 to 15.1.0

Commits

• 7853bf0 Merge branch 'master' into ebean-15x
• 0128d64 Version 14.1.0
• 68b313f Update ebean-agent to 14.1.0
• fad32c5 Merge pull request #3384 from ebean-orm/feature/rename-iquerybean
• 8f1ebdb Rename QueryBean interface to IQueryBean (because we want to rename TQRootBean)
• f7703ef Merge pull request #3383 from ebean-orm/feature/orderById
• c5ffccb Merge pull request #3382 from ebean-orm/fix/3381-pc-clear
• 3e65705 #3379 Followup, Move orderById() to common QueryBuilder interface
• 7469a38 #3375 Followup, Temporarily add back setRoot() method to allow time for Intel...
• 7ea4311 Fix for #3381 - Empty OneToMany when overflowing LazyLoadBatchSize and mixed ...
• Additional commits viewable in compare view

Updates io.ebean:ebean-querybean from 15.0.2 to 15.1.0

Updates io.ebean:querybean-generator from 15.0.2 to 15.1.0

Updates io.ebean:ebean-test from 15.0.2 to 15.1.0

Updates io.ebean:ebean-querybean from 15.0.2 to 15.1.0

Updates io.ebean:querybean-generator from 15.0.2 to 15.1.0

Updates io.ebean:ebean-test from 15.0.2 to 15.1.0

Updates com.github.spotbugs:spotbugs-annotations from 4.8.3 to 4.8.4

Changelog

Sourced from com.github.spotbugs:spotbugs-annotations's changelog.

4.8.4 - 2024-04-07

Fixed

• Fix FP in SE_PREVENT_EXT_OBJ_OVERWRITE when the if statement checking for null value, checking multiple variables or the method exiting in the if branch with an exception. (#2750)
• Fix possible null value in taxonomies of SARIF output (#2744)
• Fix executionSuccessful flag in SARIF report being set to false when bugs were found (#2116)
• Move information contained in the SARIF property exitSignalName to exitCodeDescription (#2739)
• Do not report SE_NO_SERIALVERSIONID or other serialization issues for records (#2793)
• Added support for CONSTANT_Dynamic (#2759)
• Ignore generic variable types when looking for BC_UNCONFIRMED_CAST_OF_RETURN_VALUE (#1219)
• Do not report BC_UNCONFIRMED_CAST for Java 21's type switches (#2813)
• Remove AppleExtension library (note: menus slightly changed) (#2823)
• Fix false positive NP_NULL_ON_SOME_PATH_FROM_RETURN_VALUE even if Objects.requireNonNull is used. (#651, #456)
• Fixed error preventing SpotBugs from reporting FE_FLOATING_POINT_EQUALITY (#2843)
• Fixed NP_LOAD_OF_KNOWN_NULL_VALUE and RCN_REDUNDANT_NULLCHECK_OF_NULL_VALUE false positives in try-with-resources generated finally blocks (#2844)
• Do not report DLS_DEAD_LOCAL_STORE for Java 21's type switches (#2828)
• Update UnreadFields detector to ignore warnings for fields with certain annotations (#574)
• Do not report UWF_FIELD_NOT_INITIALIZED_IN_CONSTRUCTOR for fields initialized in method annotated with @​PostConstruct, @​BeforeEach, etc. (#2872 #2870 #453)
• Do not report DLS_DEAD_LOCAL_STORE for Hibernate bytecode enhancements (#2865)
• Fixed NP_NULL_ON_SOME_PATH_FROM_RETURN_VALUE false positives due to source code formatting (#2874)
• Added more nullability annotations in TypeQualifierResolver (#2558 #2694)
• Improved the bug description for VA_FORMAT_STRING_USES_NEWLINE when using text blocks, check the usage of String.formatted() (#2881)
• Fixed crash in ValueRangeAnalysisFactory when looking for redundant conditions used in assertions #2887)
• Revert again commons-text from 1.11.0 to 1.10.0 to resolve a version conflict (#2686)
• Fixed false positive MC_OVERRIDABLE_METHOD_CALL_IN_CONSTRUCTOR when referencing but not calling an overridable method #2837)
• Update the filter XSD namespace and location for the upcoming 4.8.4 release #2909)

Added

• New detector MultipleInstantiationsOfSingletons and introduced new bug types:
  • SING_SINGLETON_HAS_NONPRIVATE_CONSTRUCTOR is reported in case of a non-private constructor,
  • SING_SINGLETON_IMPLEMENTS_CLONEABLE is reported in case of a class directly implementing the Cloneable interface,
  • SING_SINGLETON_INDIRECTLY_IMPLEMENTS_CLONEABLE is reported when a class indirectly implements the Cloneable interface,
  • SING_SINGLETON_IMPLEMENTS_CLONE_METHOD is reported when a class does not implement the Cloneable interface, but has a clone() method,
  • SING_SINGLETON_IMPLEMENTS_SERIALIZABLE is reported when a class directly or indirectly implements the Serializable interface and
  • SING_SINGLETON_GETTER_NOT_SYNCHRONIZED is reported when the instance-getter method of the singleton class is not synchronized. (See SEI CERT MSC07-J)
• Extend FindOverridableMethodCall detector with new bug type: MC_OVERRIDABLE_METHOD_CALL_IN_READ_OBJECT. It's reported when an overridable method is called from readObject(), according to SEI CERT rule SER09-J. Do not invoke overridable methods from the readObject() method.

Changed

• Minor cleanup in connection with slashed and dotted names (#2805)

Build

• Fix sonar coverage for project (#2796)
• Upgraded the build to compile bug samples using Java 21 language features (#2813)
• Add 'configurations.checkstyle resolution starategy' to control bug in gradle on exclusions not being excluded properly as seen in checkstyle usage. See checkstyle/checkstyle#14211 for more information. (#2798)
• Allow our builds to work with jdk 11 with drop back on Eclipse to 4.24 and spring to 5.3.31. (#2604)

Commits

• a86cfd3 release v4.8.4
• 2240767 fix: Update the filter XSD namespace and location for the upcoming 4.8.4 (#2915)
• 1bd7c25 chore(deps): update plugin io.github.gradle-nexus.publish-plugin to v2 (#2920)
• 789d397 Keep track of constructed BugReporters for TextUiCommandLine (#2047) (#2894)
• 3dff769 chore(deps): update plugin com.gradle.enterprise to v3.17 (#2917)
• 3ca5182 fix(deps): update dependency jacoco to v0.8.12 (#2918)
• 133a6f0 fix(deps): update dependency checkstyle to v10.15.0 (#2916)
• 6d43261 Extend the FindOverridableMethodCall detector to handle SER09-J (#2895)
• 9c36fdc Fix for false positive MC_OVERRIDABLE_METHOD_CALL_IN_CONSTRUCTOR when referen...
• 0969918 chore(deps): update plugin org.sonarqube to v5 (#2914)
• Additional commits viewable in compare view

Updates org.eclipse.jetty:jetty-server from 12.0.7 to 12.0.8

Updates org.eclipse.jetty.websocket:jetty-websocket-core-server from 12.0.7 to 12.0.8

Updates org.eclipse.jetty.websocket:jetty-websocket-jetty-api from 12.0.7 to 12.0.8

Updates org.eclipse.jetty.websocket:jetty-websocket-jetty-server from 12.0.7 to 12.0.8

Updates org.eclipse.jetty.http2:jetty-http2-server from 12.0.7 to 12.0.8

Updates org.eclipse.jetty:jetty-alpn-java-server from 12.0.7 to 12.0.8

Updates org.eclipse.jetty.http2:jetty-http2-client from 12.0.7 to 12.0.8

Updates org.eclipse.jetty.websocket:jetty-websocket-core-server from 12.0.7 to 12.0.8

Updates org.jacoco:org.jacoco.agent from 0.8.11 to 0.8.12

Release notes

Sourced from org.jacoco:org.jacoco.agent's releases.

0.8.12

New Features

• JaCoCo now officially supports Java 22 (GitHub #1596).
• Experimental support for Java 23 class files (GitHub #1553).

Fixed bugs

• Branches added by the Kotlin compiler for functions with default arguments and having more than 32 parameters are filtered out during generation of report (GitHub #1556).
• Branch added by the Kotlin compiler version 1.5.0 and above for reading from lateinit property is filtered out during generation of report (GitHub #1568).

Non-functional Changes

• JaCoCo now depends on ASM 9.7 (GitHub #1600).

Commits

• dbfb6f2 Prepare release 0.8.12
• a50585b Upgrade maven-plugin-plugin to 3.6.4 (#1604)
• fd63cc5 Configure labels that Dependabot assigns to PRs (#1603)
• 03a5333 Add configuration for Dependabot to simplify updates of ASM (#1601)
• 40ff9fb Upgrade ASM to 9.7 (#1600)
• 9077178 Happy birthday Java 22! (#1596)
• 7edd1b5 Bump actions/setup-java from 4.1.0 to 4.2.1 (#1594)
• e50b547 Upgrade ECJ to 3.37.0 (#1590)
• a1144d0 Upgrade maven-site-plugin to 3.12.1 (#1586)
• 04b0141 Bump actions/setup-java from 4.0.0 to 4.1.0 (#1587)
• Additional commits viewable in compare view

Updates org.apache.maven.plugin-tools:maven-plugin-annotations from 3.11.0 to 3.12.0

Release notes

Sourced from org.apache.maven.plugin-tools:maven-plugin-annotations's releases.

3.12.0

Release Notes - Maven Plugin Tools - Version 3.12.0

Commits

• 0b69acc [maven-release-plugin] prepare release maven-plugin-tools-3.12.0
• e5e3dd2 code simplifications
• e97ba77 [MPLUGIN-510] group history per common requirements
• 6f9c3d9 use @​Component instead of @​Parameter when possible
• d8fecbc Bump org.codehaus.plexus:plexus-archiver from 4.9.1 to 4.9.2
• a9dd57d rename mavenVersion to maven3Version
• 1aad214 [MPLUGIN-514] switch from png+imagemap to svg
• ddbaa5b Bump apache/maven-gh-actions-shared from 3 to 4
• cd74761 [MPLUGIN-511] add versions history requirements detection
• d9f8d89 [MPLUGIN-511] prepare method to list releases history
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-source-plugin from 3.3.0 to 3.3.1

Commits

• f80596e [maven-release-plugin] prepare release maven-source-plugin-3.3.1
• 7626998 Bump apache/maven-gh-actions-shared from 3 to 4
• 83c963c Bump org.apache.maven.plugins:maven-plugins from 39 to 41 (#18)
• 40ae495 Bump org.codehaus.plexus:plexus-archiver from 4.8.0 to 4.9.1 (#20)
• 073462b Bump org.apache.maven:maven-archiver from 3.6.0 to 3.6.1 (#21)
• 0b1c823 Fix typos in AbstractSourceJarMojo exception
• 099c65a [MSOURCES-142] Bump org.codehaus.plexus:plexus-archiver from 4.7.1 to 4.8.0 (...
• 1edeea4 [MSOURCES-139] Fix typo in AbstractSourceJarMojo exception
• 436966e [maven-release-plugin] prepare for next development iteration
• See full diff in compare view

Updates org.eclipse.jetty.websocket:jetty-websocket-jetty-api from 12.0.7 to 12.0.8

Updates org.eclipse.jetty.websocket:jetty-websocket-jetty-server from 12.0.7 to 12.0.8

Updates org.eclipse.jetty.http2:jetty-http2-server from 12.0.7 to 12.0.8

Updates org.eclipse.jetty:jetty-alpn-java-server from 12.0.7 to 12.0.8

Updates org.apache.maven.plugins:maven-plugin-plugin from 3.11.0 to 3.12.0

Release notes

Sourced from org.apache.maven.plugins:maven-plugin-plugin's releases.

3.12.0

Release Notes - Maven Plugin Tools - Version 3.12.0

Commits

• 0b69acc [maven-release-plugin] prepare release maven-plugin-tools-3.12.0
• e5e3dd2 code simplifications
• e97ba77 [MPLUGIN-510] group history per common requirements
• 6f9c3d9 use @​Component instead of @​Parameter when possible
• d8fecbc Bump org.codehaus.plexus:plexus-archiver from 4.9.1 to 4.9.2
• a9dd57d rename mavenVersion to maven3Version
• 1aad214 [MPLUGIN-514] switch from png+imagemap to svg
• ddbaa5b Bump apache/maven-gh-actions-shared from 3 to 4
• cd74761 [MPLUGIN-511] add versions history requirements detection
• d9f8d89 [MPLUGIN-511] prepare method to list releases history
• Additional commits viewable in compare view

Updates org.eclipse.jetty.http2:jetty-http2-client from 12.0.7 to 12.0.8

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions