Comparing changes

…1096) Bumps [com.nimbusds:oauth2-oidc-sdk](https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions) from 11.34 to 11.37. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/src/master/CHANGELOG.txt">com.nimbusds:oauth2-oidc-sdk's changelog</a>.</em></p> <blockquote> <p>version 1.0 (2012-05-29) * First official release with authorisation endpoint, token endpoint, check ID endpoint and UserInfo endpoint support. * JSON Web Tokens (JWTs) support through the Nimbus-JWT library. * Language Tags (RFC 5646) support through the Nimbus-LangTag library. * JSON support through the JSON Smart library.</p> <p>version 2.0 (2013-05-13) * Intermediary development release with Maven build, published to Maven Central.</p> <p>version 2.1 (2013-06-06) * Updates the APIs to OpenID Connect Messages draft 20, OpenID Connect Standard draft 21, OpenID Connect Discovery draft 17 and OpenID Connect Registration draft 19. * Major refactoring of the APIs for greater simplicity. * Adds JUnit tests.</p> <p>version 2.2 (2013-06-18) * Refactors dynamic OpenID Connect client registration. * Adds partial support of the OAuth 2.0 Dynamic Client Registration Protocol (draft-ietf-oauth-dyn-reg-12). * Optimises parsing of request parameters consisting of one or more tokens (scope, response type, etc).</p> <p>version 2.3 (2013-06-19) * Renames OAuth 2.0 dynamic client registration package. * Adds ClientInformation.getClientMetadata() method. * Adds OIDCClientInformation class.</p> <p>version 2.4 (2013-06-20) * Adds static OIDCClientInformation.parse(JSONObject) method.</p> <p>version 2.5 (2013-06-22) * Adds support OAuth 2.0 dynamic client update. * Adds OpenID Connect dynamic client registration classes.</p> <p>version 2.6 (2013-06-25) * Enforces order of preference of ACR values in OpenID Connect client metadata, as required by the specification. * Documentation and performance improvements.</p> <p>version 2.7 (2013-06-26) * Switches Identifier generation to java.security.SecureRandom.</p> <p>version 2.8 (2013-06-30) * Fixes serialisation and assignment bugs in ClientMetadata. * Switches Secret generation to java.security.SecureRandom.</p> <p>version 2.9 (2013-09-17)</p>  </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/d98de1ab39f699e39903967775abc242fc064e78"><code>d98de1a</code></a> [maven-release-plugin] prepare for next development iteration</li> <li><a href="https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/2ea716f29401515a656c73bef9d66d5860270b2f"><code>2ea716f</code></a> Shortens InvalidClientException messages</li> <li><a href="https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/ed5773c5a3383a4c5af5f8484aad2864dc1b79c6"><code>ed5773c</code></a> TokenRevocationRequest receives custom form parameters support</li> <li><a href="https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/e133559f00d1469a5da284cfdbb30d4d0102e3be"><code>e133559</code></a> Updates tests for shortened InvalidClientException messages</li> <li><a href="https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/fe43e1f129febee53c0a15178b08b6e835bcd460"><code>fe43e1f</code></a> [maven-release-plugin] prepare release 11.35</li> <li><a href="https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/73224c9422c0ebb3c1a3b5387aac2d529d8bef5b"><code>73224c9</code></a> [maven-release-plugin] prepare for next development iteration</li> <li><a href="https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/f3f728613feb023640801faf33873d55f6c2ec98"><code>f3f7286</code></a> Adds static JSONObjectUtils.getNonNegativeLong methods</li> <li><a href="https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/d6899e0554d630956dd09e3d2ba1236ee66d2bd6"><code>d6899e0</code></a> Cleans up JSONObjectUtils.getEnum(net.minidev.json.JSONObject, java.lang.Stri...</li> <li><a href="https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/9b05d23a876550842e75c1abff08795ac825b9a0"><code>9b05d23</code></a> Adds non-negative checks when parsing Date instances from Unix timestamps (is...</li> <li><a href="https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/592d8f4e82e7815966258c114b66834b9b4c9e6c"><code>592d8f4</code></a> Adds "acr" and "auth_time" parameter (RFC 9470) support to TokenIntrospection...</li> <li>Additional commits viewable in <a href="https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/branches/compare/11.37..11.34">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.nimbusds:oauth2-oidc-sdk&package-manager=maven&previous-version=11.34&new-version=11.37)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…apache#1095) Bumps com.gradle:develocity-maven-extension from 2.3.4 to 2.4.0. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.gradle:develocity-maven-extension&package-manager=maven&previous-version=2.3.4&new-version=2.4.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Bumps [org.apache:apache](https://github.com/apache/maven-apache-parent) from 33 to 37. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/apache/maven-apache-parent/releases">org.apache:apache's releases</a>.</em></p> <blockquote> <h2>Apache Parent POM version 37</h2>  <h2>🚀 New features and improvements</h2> <ul> <li>Disable parallel PUT on release (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/566">#566</a>) <a href="https://github.com/slawekjaranowski"><code>@slawekjaranowski</code></a></li> </ul> <h2>Apache Parent POM version 36</h2>  <h2>:boom: Breaking changes</h2> <ul> <li>Update minimum maven version to match current stable version (3.6.3 -> 3.9) (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/533">#533</a>) <a href="https://github.com/DomGarguilo"><code>@DomGarguilo</code></a></li> <li>Introduce javaVersion property for maven.compiler.* configuration (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/551">#551</a>) <a href="https://github.com/slawekjaranowski"><code>@slawekjaranowski</code></a></li> <li>Switch JDK >= 9 to only use maven.compiler.release (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/543">#543</a>) <a href="https://github.com/gnodet"><code>@gnodet</code></a></li> </ul> <h2>🚀 New features and improvements</h2> <ul> <li>Update minimum maven version to match current stable version (3.6.3 -> 3.9) (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/533">#533</a>) <a href="https://github.com/DomGarguilo"><code>@DomGarguilo</code></a></li> <li>Introduce javaVersion property for maven.compiler.* configuration (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/551">#551</a>) <a href="https://github.com/slawekjaranowski"><code>@slawekjaranowski</code></a></li> <li>Switch JDK >= 9 to only use maven.compiler.release (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/543">#543</a>) <a href="https://github.com/gnodet"><code>@gnodet</code></a></li> <li>Add default specification and implementation for javadoc and source manifest entries (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/548">#548</a>) <a href="https://github.com/slawekjaranowski"><code>@slawekjaranowski</code></a></li> </ul> <h2>📝 Documentation updates</h2> <ul> <li>Clarify how to use Apache Snapshot repository (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/558">#558</a>) <a href="https://github.com/kwin"><code>@kwin</code></a></li> <li>activate Fluido skin's anchorJs (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/553">#553</a>) <a href="https://github.com/hboutemy"><code>@hboutemy</code></a></li> </ul> <h2>👻 Maintenance</h2> <ul> <li>Avoid - WARNING: Use of the three-letter time zone ID ... on JDK 25 for RAT plugin (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/562">#562</a>) <a href="https://github.com/slawekjaranowski"><code>@slawekjaranowski</code></a></li> <li>feat: enable prevent branch protection rules (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/535">#535</a>) <a href="https://github.com/sebtiem"><code>@sebtiem</code></a></li> </ul> <h2>📦 Dependency updates</h2> <ul> <li>Bump org.apache.maven.plugins:maven-release-plugin from 3.3.0 to 3.3.1 (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/565">#565</a>) @<a href="https://github.com/apps/dependabot">dependabot[bot]</a></li> <li>Bump org.apache.maven.plugins:maven-release-plugin from 3.2.0 to 3.3.0 (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/559">#559</a>) @<a href="https://github.com/apps/dependabot">dependabot[bot]</a></li> <li>Bump org.apache.maven.plugins:maven-source-plugin from 3.3.1 to 3.4.0 (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/557">#557</a>) @<a href="https://github.com/apps/dependabot">dependabot[bot]</a></li> <li>Bump org.apache.maven.plugins:maven-assembly-plugin from 3.7.1 to 3.8.0 (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/556">#556</a>) @<a href="https://github.com/apps/dependabot">dependabot[bot]</a></li> <li>Bump org.apache.maven.plugins:maven-war-plugin from 3.5.0 to 3.5.1 (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/555">#555</a>) @<a href="https://github.com/apps/dependabot">dependabot[bot]</a></li> <li>Bump org.apache.maven.plugins:maven-resources-plugin from 3.3.1 to 3.4.0 (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/554">#554</a>) @<a href="https://github.com/apps/dependabot">dependabot[bot]</a></li> <li>Bump org.apache.maven.plugins:maven-jar-plugin from 3.4.2 to 3.5.0 (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/552">#552</a>) @<a href="https://github.com/apps/dependabot">dependabot[bot]</a></li> <li>Upgrade maven-release-plugin to version 3.2.0 (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/549">#549</a>) <a href="https://github.com/kwin"><code>@kwin</code></a></li> <li>Bump org.apache.maven.plugins:maven-dependency-plugin from 3.8.1 to 3.9.0 (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/542">#542</a>) @<a href="https://github.com/apps/dependabot">dependabot[bot]</a></li> <li>Bump org.apache.maven.plugins:maven-war-plugin from 3.4.0 to 3.5.0 (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/546">#546</a>) @<a href="https://github.com/apps/dependabot">dependabot[bot]</a></li> <li>Bump version.maven-plugin-tools from 3.15.1 to 3.15.2 (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/547">#547</a>) @<a href="https://github.com/apps/dependabot">dependabot[bot]</a></li> <li>Bump org.apache.maven.plugins:maven-antrun-plugin from 3.1.0 to 3.2.0 (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/545">#545</a>) @<a href="https://github.com/apps/dependabot">dependabot[bot]</a></li> <li>Bump org.apache.maven.plugins:maven-enforcer-plugin from 3.6.1 to 3.6.2 (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/541">#541</a>) @<a href="https://github.com/apps/dependabot">dependabot[bot]</a></li> <li>Bump org.apache.maven.plugins:maven-scm-plugin from 2.1.0 to 2.2.1 (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/540">#540</a>) @<a href="https://github.com/apps/dependabot">dependabot[bot]</a></li> <li>Bump org.apache.maven.plugins:maven-ear-plugin from 3.3.0 to 3.4.0 (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/527">#527</a>) @<a href="https://github.com/apps/dependabot">dependabot[bot]</a></li> <li>Bump org.apache.maven.plugins:maven-javadoc-plugin from 3.11.3 to 3.12.0 (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/538">#538</a>) @<a href="https://github.com/apps/dependabot">dependabot[bot]</a></li> <li>Bump org.apache.maven.plugins:maven-compiler-plugin from 3.14.0 to 3.14.1 (<a href="https://redirect.github.com/apache/maven-apache-parent/pull/539">#539</a>) @<a href="https://github.com/apps/dependabot">dependabot[bot]</a></li> </ul>  </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/apache/maven-apache-parent/commits">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache:apache&package-manager=maven&previous-version=33&new-version=37)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) You can trigger a rebase of this PR by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> > **Note** > Automatic rebases have been disabled on this pull request as it has been open for over 30 days. Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…o 3.4.0 (apache#1088) Bumps [com.diffplug.spotless:spotless-maven-plugin](https://github.com/diffplug/spotless) from 2.44.4 to 3.4.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/diffplug/spotless/releases">com.diffplug.spotless:spotless-maven-plugin's releases</a>.</em></p> <blockquote> <h2>Maven Plugin v3.4.0</h2> <h3>Added</h3> <ul> <li>Add <code>tableTest</code> format type for standalone <code>.table</code> files. (<a href="https://redirect.github.com/diffplug/spotless/pull/2880">#2880</a>)</li> </ul> <h3>Changes</h3> <ul> <li>Bump default <code>tabletest-formatter</code> version <code>1.0.1</code> -> <code>1.1.1</code>, now works with Java 17+. (<a href="https://redirect.github.com/diffplug/spotless/pull/2880">#2880</a>)</li> </ul> <h2>Lib v3.3.1</h2> <h3>Fixed</h3> <ul> <li><code>GitPrePushHookInstaller</code> didn't work on windows, now fixed. (<a href="https://redirect.github.com/diffplug/spotless/pull/2562">#2562</a>)</li> </ul> <h2>Lib v3.3.0</h2> <h3>Added</h3> <ul> <li>Allow specifying path to Biome JSON config file directly in <code>biome</code> step. Requires biome 2.x. (<a href="https://redirect.github.com/diffplug/spotless/pull/2548">#2548</a>)</li> <li><code>GitPrePushHookInstaller</code>, a reusable library component for installing a Git <code>pre-push</code> hook that runs formatter checks. (<a href="https://redirect.github.com/diffplug/spotless/pull/2553">#2553</a>)</li> <li>Allow setting Eclipse XML config from a string, not only from files (<a href="https://redirect.github.com/diffplug/spotless/pull/2361">#2361</a>)</li> </ul> <h2>Changed</h2> <ul> <li>Bump default <code>gson</code> version to latest <code>2.11.0</code> -> <code>2.13.1</code>. (<a href="https://redirect.github.com/diffplug/spotless/pull/2414">#2414</a>)</li> <li>Bump default <code>jackson</code> version to latest <code>2.18.1</code> -> <code>2.19.2</code>. (<a href="https://redirect.github.com/diffplug/spotless/pull/2558">#2558</a>)</li> <li>Bump default <code>gherkin-utils</code> version to latest <code>9.0.0</code> -> <code>9.2.0</code>. (<a href="https://redirect.github.com/diffplug/spotless/pull/2408">#2408</a>)</li> <li>Bump default <code>cleanthat</code> version to latest <code>2.22</code> -> <code>2.23</code>. (<a href="https://redirect.github.com/diffplug/spotless/pull/2556">#2556</a>)</li> </ul> <h2>Maven Plugin v3.3.0</h2> <h3>Added</h3> <ul> <li>Add <code>tabletest-formatter</code> support for Java and Kotlin. (<a href="https://redirect.github.com/diffplug/spotless/pull/2860">#2860</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Fix the ability to specify a wildcard version (<code>*</code>) for external formatter executables, which did not work. (<a href="https://redirect.github.com/diffplug/spotless/pull/2848">#2848</a>)</li> <li>[fix] <code>ConcurrentModificationException</code> in <code>expandWildcardImports</code> (<a href="https://redirect.github.com/diffplug/spotless/issues/2830">#2830</a>)</li> </ul> <h2>Maven Plugin v3.2.1</h2> <h3>Fixed</h3> <ul> <li><code>removeSemicolons()</code> should not be applied to multiline strings in groovy <a href="https://redirect.github.com/diffplug/spotless/issues/2780">#2780</a> (<a href="https://redirect.github.com/diffplug/spotless/issues/2792">#2792</a>)</li> </ul> <h2>Lib v3.2.0</h2> <h3>Added</h3> <ul> <li>Support for <code>idea</code> (<a href="https://redirect.github.com/diffplug/spotless/pull/2020">#2020</a>, <a href="https://redirect.github.com/diffplug/spotless/pull/2535">#2535</a>)</li> <li>Add support for removing wildcard imports via <code>removeWildcardImports</code> step. (<a href="https://redirect.github.com/diffplug/spotless/pull/2517">#2517</a>)</li> <li>scalafmt: enforce version consistency between the version configured in Spotless and the version declared in Scalafmt config file (<a href="https://redirect.github.com/diffplug/spotless/issues/2460">#2460</a>)</li> </ul> <h3>Fixed</h3> <ul> <li><code>SortPom</code> disable expandEmptyElements, to avoid empty body warnings. (<a href="https://redirect.github.com/diffplug/spotless/pull/2520">#2520</a>)</li> <li>Fix biome formatter for new major release 2.x of biome (<a href="https://redirect.github.com/diffplug/spotless/pull/2537">#2537</a>)</li> <li>Make sure npm-based formatters use the correct <code>node_modules</code> directory when running in parallel. (<a href="https://redirect.github.com/diffplug/spotless/pull/2542">#2542</a>)</li> </ul> <h3>Changed</h3> <ul> <li>Bump internal dependencies for npm-based formatters (<a href="https://redirect.github.com/diffplug/spotless/pull/2542">#2542</a>)</li> </ul> <h2>Maven Plugin v3.2.0</h2> <h3>Added</h3> <ul> <li>Add the ability to specify a wildcard version (<code>*</code>) for external formatter executables. (<a href="https://redirect.github.com/diffplug/spotless/issues/2757">#2757</a>)</li> </ul> <h3>Changes</h3> <ul> <li>Dramatic (~100x) performance improvement when using git <code>ratchetFrom</code>. (<a href="https://redirect.github.com/diffplug/spotless/pull/2805">#2805</a>)</li> </ul> <h3>Fixed</h3>  </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/diffplug/spotless/commit/708a1b0e6383ad2dd34cf3def185bb085a786789"><code>708a1b0</code></a> Published maven/3.4.0</li> <li><a href="https://github.com/diffplug/spotless/commit/1cc0163c25b52824cd57b56cdcb8c4cb0c7b4795"><code>1cc0163</code></a> Published gradle/8.4.0</li> <li><a href="https://github.com/diffplug/spotless/commit/a4cd808f6092c6ed9371205de4af5285beea9533"><code>a4cd808</code></a> Published lib/4.5.0</li> <li><a href="https://github.com/diffplug/spotless/commit/9066bf6ede907e913fbe30259de0763f1b0b55ea"><code>9066bf6</code></a> Add links to the changelog.</li> <li><a href="https://github.com/diffplug/spotless/commit/db8dc1cc8e83b18ef357a0e660f03556fd792247"><code>db8dc1c</code></a> Fix for illegal mutation issue with <code>predeclareDeps</code> (<a href="https://redirect.github.com/diffplug/spotless/issues/2892">#2892</a>)</li> <li><a href="https://github.com/diffplug/spotless/commit/0eb98a9574304e362f0ca6ddbfb71617de46df75"><code>0eb98a9</code></a> chore: Updated gradle plugin change</li> <li><a href="https://github.com/diffplug/spotless/commit/3f7f12e649b1085a7937b8730e6a7689a52ca6da"><code>3f7f12e</code></a> chore: Removes check for predeclare as it's not needed anymore</li> <li><a href="https://github.com/diffplug/spotless/commit/55c0c5c081b83ad35e92911718e3069a64467c2a"><code>55c0c5c</code></a> fix: IsolatedProjectTest.predeclaredIsUnsupported() is now actually supported...</li> <li><a href="https://github.com/diffplug/spotless/commit/47489afd92aa79f56372bd53e82d09a44f606a32"><code>47489af</code></a> fix: avoid IllegalMutationException when root project uses predeclareDeps() w...</li> <li><a href="https://github.com/diffplug/spotless/commit/4010e8b42c32b8dfac31a988c6820b6b0ef499bd"><code>4010e8b</code></a> test: Introduce a test harnessing predeclared deps</li> <li>Additional commits viewable in <a href="https://github.com/diffplug/spotless/compare/maven/2.44.4...maven/3.4.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.diffplug.spotless:spotless-maven-plugin&package-manager=maven&previous-version=2.44.4&new-version=3.4.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: JB Onofré <jbonofre@apache.org> Co-authored-by: JB Onofré <jb.onofre@dremio.com>

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Comparing changes

Open a pull request

Uh oh!

Commits on Mar 30, 2026

This comparison is taking too long to generate.

Uh oh!