)]}' { "log": [ { "commit": "d952ed48ef257b90a2085bca574ddd9213b67c91", "tree": "2a18c52f8749f5656278f22741ec99965fe515a6", "parents": [ "13c8b9353b80f553e720ff50fce0cb103de87c55" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Apr 06 14:24:24 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Apr 06 14:24:24 2026 +0200" }, "message": "MINOR: Bump dep.hadoop.version from 3.4.3 to 3.5.0 (#1104)\n\nBumps `dep.hadoop.version` from 3.4.3 to 3.5.0.\nUpdates `org.apache.hadoop:hadoop-client-runtime` from 3.4.3 to 3.5.0\n\nUpdates `org.apache.hadoop:hadoop-client-api` from 3.4.3 to 3.5.0\n\nUpdates `org.apache.hadoop:hadoop-common` from 3.4.3 to 3.5.0\n\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "13c8b9353b80f553e720ff50fce0cb103de87c55", "tree": "48959f324e2c1df256d83484f9ae7789121fc060", "parents": [ "d8ad7b6765620c4f3f3078ee87c3d2cfb7423945" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Apr 06 14:23:37 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Apr 06 14:23:37 2026 +0200" }, "message": "MINOR: Bump checker.framework.version from 3.54.0 to 3.55.1 (#1105)\n\nBumps `checker.framework.version` from 3.54.0 to 3.55.1.\nUpdates `org.checkerframework:checker-qual` from 3.54.0 to 3.55.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/releases\"\u003eorg.checkerframework:checker-qual\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eChecker Framework 3.55.1\u003c/h2\u003e\n\u003ch2\u003eVersion 3.55.1 (2026-04-03)\u003c/h2\u003e\n\u003cp\u003eNo user-visible changes.\u003c/p\u003e\n\u003ch2\u003eChecker Framework 3.54.1\u003c/h2\u003e\n\u003ch2\u003eVersion 3.55.0 (2026-04-02)\u003c/h2\u003e\n\u003ch3\u003eUser-visible changes\u003c/h3\u003e\n\u003cp\u003eThe Checker Framework runs under JDK 26 -- that is, it runs on a\nversion 26 JVM.\u003c/p\u003e\n\u003cp\u003eRemoved deprecated command-line option \u003ccode\u003e-AskipDirs\u003c/code\u003e; use\n\u003ccode\u003e-AskipFiles\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eImplementation details\u003c/h3\u003e\n\u003cp\u003eIn \u003ccode\u003eAnnotatedTypeMirror\u003c/code\u003e:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRenamed \u003ccode\u003egetEffectiveAnnotation*()\u003c/code\u003e to\n\u003ccode\u003egetAnnotation*()\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eRenamed \u003ccode\u003ehasEffectiveAnnotation*()\u003c/code\u003e to\n\u003ccode\u003ehasAnnotation*()\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eRemoved deprecated method\n\u003ccode\u003eObjectCreationNode.getConstructor()\u003c/code\u003e; use\n\u003ccode\u003egetTypeToInstantiate()\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eClosed issues\u003c/h3\u003e\n\u003cp\u003e\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7079\"\u003e#7079\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7489\"\u003e#7489\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7539\"\u003e#7539\u003c/a\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/blob/master/docs/CHANGELOG.md\"\u003eorg.checkerframework:checker-qual\u0027s\nchangelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eVersion 3.55.1 (2026-04-03)\u003c/h2\u003e\n\u003cp\u003eNo user-visible changes.\u003c/p\u003e\n\u003ch2\u003eVersion 3.55.0 (2026-04-02)\u003c/h2\u003e\n\u003ch3\u003eUser-visible changes\u003c/h3\u003e\n\u003cp\u003eThe Checker Framework runs under JDK 26 -- that is, it runs on a\nversion 26 JVM.\u003c/p\u003e\n\u003cp\u003eRemoved deprecated command-line option \u003ccode\u003e-AskipDirs\u003c/code\u003e; use\n\u003ccode\u003e-AskipFiles\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eImplementation details\u003c/h3\u003e\n\u003cp\u003eIn \u003ccode\u003eAnnotatedTypeMirror\u003c/code\u003e:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRenamed \u003ccode\u003egetEffectiveAnnotation*()\u003c/code\u003e to\n\u003ccode\u003egetAnnotation*()\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eRenamed \u003ccode\u003ehasEffectiveAnnotation*()\u003c/code\u003e to\n\u003ccode\u003ehasAnnotation*()\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eRemoved deprecated method\n\u003ccode\u003eObjectCreationNode.getConstructor()\u003c/code\u003e; use\n\u003ccode\u003egetTypeToInstantiate()\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eClosed issues\u003c/h3\u003e\n\u003cp\u003e\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7079\"\u003e#7079\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7489\"\u003e#7489\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7539\"\u003e#7539\u003c/a\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/bf4ceb7660825e275f8c7561056310c47d48b81b\"\u003e\u003ccode\u003ebf4ceb7\u003c/code\u003e\u003c/a\u003e\nnew release 3.55.1\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/b8096660563a2349201e126c362c2000de20c1c5\"\u003e\u003ccode\u003eb809666\u003c/code\u003e\u003c/a\u003e\nRemove unneeded argument\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/448019e7d43607b0d1d23e94baae0cd937e0219b\"\u003e\u003ccode\u003e448019e\u003c/code\u003e\u003c/a\u003e\nMake scripts executable in .zip file\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/3bc1190be960534f1c5536ab74b760198ff5e70a\"\u003e\u003ccode\u003e3bc1190\u003c/code\u003e\u003c/a\u003e\nUpdate directory copying\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/22df6d61a52c4183401d2fa355a59645c16feca3\"\u003e\u003ccode\u003e22df6d6\u003c/code\u003e\u003c/a\u003e\nUpdate release date\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/3fc441bc5df12983f716282aeebaf8f6b934bfe6\"\u003e\u003ccode\u003e3fc441b\u003c/code\u003e\u003c/a\u003e\nNote about permissions\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/6baaa5287134b9e616cbcbc40a413f21d498e1a1\"\u003e\u003ccode\u003e6baaa52\u003c/code\u003e\u003c/a\u003e\nBrevity\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/d4ea6b993144c91992077e864c8cbf07ee929dac\"\u003e\u003ccode\u003ed4ea6b9\u003c/code\u003e\u003c/a\u003e\nSet version number to 3.55.1\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/6b03e94dcf412a24859cf5ac9d17c2a4de65d978\"\u003e\u003ccode\u003e6b03e94\u003c/code\u003e\u003c/a\u003e\nImprove release instructions\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/65613a0f0f05d39d74b36c40ba6ca398e1929157\"\u003e\u003ccode\u003e65613a0\u003c/code\u003e\u003c/a\u003e\nFix Nullness extra tests\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/compare/checker-framework-3.54.0...checker-framework-3.55.1\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.checkerframework:checker` from 3.54.0 to 3.55.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/releases\"\u003eorg.checkerframework:checker\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eChecker Framework 3.55.1\u003c/h2\u003e\n\u003ch2\u003eVersion 3.55.1 (2026-04-03)\u003c/h2\u003e\n\u003cp\u003eNo user-visible changes.\u003c/p\u003e\n\u003ch2\u003eChecker Framework 3.54.1\u003c/h2\u003e\n\u003ch2\u003eVersion 3.55.0 (2026-04-02)\u003c/h2\u003e\n\u003ch3\u003eUser-visible changes\u003c/h3\u003e\n\u003cp\u003eThe Checker Framework runs under JDK 26 -- that is, it runs on a\nversion 26 JVM.\u003c/p\u003e\n\u003cp\u003eRemoved deprecated command-line option \u003ccode\u003e-AskipDirs\u003c/code\u003e; use\n\u003ccode\u003e-AskipFiles\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eImplementation details\u003c/h3\u003e\n\u003cp\u003eIn \u003ccode\u003eAnnotatedTypeMirror\u003c/code\u003e:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRenamed \u003ccode\u003egetEffectiveAnnotation*()\u003c/code\u003e to\n\u003ccode\u003egetAnnotation*()\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eRenamed \u003ccode\u003ehasEffectiveAnnotation*()\u003c/code\u003e to\n\u003ccode\u003ehasAnnotation*()\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eRemoved deprecated method\n\u003ccode\u003eObjectCreationNode.getConstructor()\u003c/code\u003e; use\n\u003ccode\u003egetTypeToInstantiate()\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eClosed issues\u003c/h3\u003e\n\u003cp\u003e\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7079\"\u003e#7079\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7489\"\u003e#7489\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7539\"\u003e#7539\u003c/a\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/blob/master/docs/CHANGELOG.md\"\u003eorg.checkerframework:checker\u0027s\nchangelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eVersion 3.55.1 (2026-04-03)\u003c/h2\u003e\n\u003cp\u003eNo user-visible changes.\u003c/p\u003e\n\u003ch2\u003eVersion 3.55.0 (2026-04-02)\u003c/h2\u003e\n\u003ch3\u003eUser-visible changes\u003c/h3\u003e\n\u003cp\u003eThe Checker Framework runs under JDK 26 -- that is, it runs on a\nversion 26 JVM.\u003c/p\u003e\n\u003cp\u003eRemoved deprecated command-line option \u003ccode\u003e-AskipDirs\u003c/code\u003e; use\n\u003ccode\u003e-AskipFiles\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eImplementation details\u003c/h3\u003e\n\u003cp\u003eIn \u003ccode\u003eAnnotatedTypeMirror\u003c/code\u003e:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRenamed \u003ccode\u003egetEffectiveAnnotation*()\u003c/code\u003e to\n\u003ccode\u003egetAnnotation*()\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eRenamed \u003ccode\u003ehasEffectiveAnnotation*()\u003c/code\u003e to\n\u003ccode\u003ehasAnnotation*()\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eRemoved deprecated method\n\u003ccode\u003eObjectCreationNode.getConstructor()\u003c/code\u003e; use\n\u003ccode\u003egetTypeToInstantiate()\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eClosed issues\u003c/h3\u003e\n\u003cp\u003e\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7079\"\u003e#7079\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7489\"\u003e#7489\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7539\"\u003e#7539\u003c/a\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/bf4ceb7660825e275f8c7561056310c47d48b81b\"\u003e\u003ccode\u003ebf4ceb7\u003c/code\u003e\u003c/a\u003e\nnew release 3.55.1\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/b8096660563a2349201e126c362c2000de20c1c5\"\u003e\u003ccode\u003eb809666\u003c/code\u003e\u003c/a\u003e\nRemove unneeded argument\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/448019e7d43607b0d1d23e94baae0cd937e0219b\"\u003e\u003ccode\u003e448019e\u003c/code\u003e\u003c/a\u003e\nMake scripts executable in .zip file\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/3bc1190be960534f1c5536ab74b760198ff5e70a\"\u003e\u003ccode\u003e3bc1190\u003c/code\u003e\u003c/a\u003e\nUpdate directory copying\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/22df6d61a52c4183401d2fa355a59645c16feca3\"\u003e\u003ccode\u003e22df6d6\u003c/code\u003e\u003c/a\u003e\nUpdate release date\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/3fc441bc5df12983f716282aeebaf8f6b934bfe6\"\u003e\u003ccode\u003e3fc441b\u003c/code\u003e\u003c/a\u003e\nNote about permissions\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/6baaa5287134b9e616cbcbc40a413f21d498e1a1\"\u003e\u003ccode\u003e6baaa52\u003c/code\u003e\u003c/a\u003e\nBrevity\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/d4ea6b993144c91992077e864c8cbf07ee929dac\"\u003e\u003ccode\u003ed4ea6b9\u003c/code\u003e\u003c/a\u003e\nSet version number to 3.55.1\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/6b03e94dcf412a24859cf5ac9d17c2a4de65d978\"\u003e\u003ccode\u003e6b03e94\u003c/code\u003e\u003c/a\u003e\nImprove release instructions\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/65613a0f0f05d39d74b36c40ba6ca398e1929157\"\u003e\u003ccode\u003e65613a0\u003c/code\u003e\u003c/a\u003e\nFix Nullness extra tests\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/compare/checker-framework-3.54.0...checker-framework-3.55.1\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "d8ad7b6765620c4f3f3078ee87c3d2cfb7423945", "tree": "5d47b057320ed5a203cb00f027ab64328e8a8430", "parents": [ "e54681b80e84573f4cb6e7fdcb77b4247768965f" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Apr 06 17:41:35 2026 +0900" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Apr 06 17:41:35 2026 +0900" }, "message": "MINOR: [CI] Bump docker/login-action from 4.0.0 to 4.1.0 (#1103)\n\nBumps [docker/login-action](https://github.com/docker/login-action) from\n4.0.0 to 4.1.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/docker/login-action/releases\"\u003edocker/login-action\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix scoped Docker Hub cleanup path when registry is omitted by \u003ca\nhref\u003d\"https://github.com/crazy-max\"\u003e\u003ccode\u003e@​crazy-max\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/945\"\u003edocker/login-action#945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​aws-sdk/client-ecr\u003c/code\u003e and\n\u003ccode\u003e@​aws-sdk/client-ecr-public\u003c/code\u003e to 3.1020.0 in \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/930\"\u003edocker/login-action#930\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​docker/actions-toolkit\u003c/code\u003e from 0.77.0 to 0.86.0 in\n\u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/932\"\u003edocker/login-action#932\u003c/a\u003e\n\u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/936\"\u003edocker/login-action#936\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump brace-expansion from 1.1.12 to 1.1.13 in \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/952\"\u003edocker/login-action#952\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump fast-xml-parser from 5.3.4 to 5.3.6 in \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/942\"\u003edocker/login-action#942\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 in \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/944\"\u003edocker/login-action#944\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump glob from 10.3.12 to 10.5.0 in \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/940\"\u003edocker/login-action#940\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump handlebars from 4.7.8 to 4.7.9 in \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/949\"\u003edocker/login-action#949\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump http-proxy-agent and https-proxy-agent to 8.0.0 in \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/937\"\u003edocker/login-action#937\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump lodash from 4.17.23 to 4.18.1 in \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/958\"\u003edocker/login-action#958\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 in \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/941\"\u003edocker/login-action#941\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump picomatch from 4.0.3 to 4.0.4 in \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/948\"\u003edocker/login-action#948\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump undici from 6.23.0 to 6.24.1 in \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/938\"\u003edocker/login-action#938\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca\nhref\u003d\"https://github.com/docker/login-action/compare/v4.0.0...v4.1.0\"\u003ehttps://github.com/docker/login-action/compare/v4.0.0...v4.1.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/4907a6ddec9925e35a0a9e82d7399ccc52663121\"\u003e\u003ccode\u003e4907a6d\u003c/code\u003e\u003c/a\u003e\nMerge pull request \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/issues/930\"\u003e#930\u003c/a\u003e\nfrom docker/dependabot/npm_and_yarn/aws-sdk-dependenc...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/1e233e691a8881d7f35ca7c2d5dfaaed80b39636\"\u003e\u003ccode\u003e1e233e6\u003c/code\u003e\u003c/a\u003e\nchore: update generated content\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/6c24ead68057f18c30c808a431f0b85dc25663cb\"\u003e\u003ccode\u003e6c24ead\u003c/code\u003e\u003c/a\u003e\nbuild(deps): bump the aws-sdk-dependencies group with 2 updates\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/ee034d70944e3546349cd24295914f139342f1e6\"\u003e\u003ccode\u003eee034d7\u003c/code\u003e\u003c/a\u003e\nMerge pull request \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/issues/958\"\u003e#958\u003c/a\u003e\nfrom docker/dependabot/npm_and_yarn/lodash-4.18.1\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/1527209db9734bd2352a2dc1a63d79c9aa5358bb\"\u003e\u003ccode\u003e1527209\u003c/code\u003e\u003c/a\u003e\nMerge pull request \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/issues/937\"\u003e#937\u003c/a\u003e\nfrom docker/dependabot/npm_and_yarn/proxy-agent-depen...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/d39362aba4d72f8d9d93e0962119840690133e1b\"\u003e\u003ccode\u003ed39362a\u003c/code\u003e\u003c/a\u003e\nbuild(deps): bump lodash from 4.17.23 to 4.18.1\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/a6f092b568105cbb6d9deb7e55e0a4c5c1025fce\"\u003e\u003ccode\u003ea6f092b\u003c/code\u003e\u003c/a\u003e\nchore: update generated content\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/60953f0bed2120ec69659d271fe18d34bc069779\"\u003e\u003ccode\u003e60953f0\u003c/code\u003e\u003c/a\u003e\nbuild(deps): bump the proxy-agent-dependencies group with 2 updates\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/62c688590fb4ab6c6e89a217ced0a7b2ddcf1340\"\u003e\u003ccode\u003e62c6885\u003c/code\u003e\u003c/a\u003e\nMerge pull request \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/issues/936\"\u003e#936\u003c/a\u003e\nfrom docker/dependabot/npm_and_yarn/docker/actions-to...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/102c0e672992d2e992c89b6f4808d65a353b5a1a\"\u003e\u003ccode\u003e102c0e6\u003c/code\u003e\u003c/a\u003e\nchore: update generated content\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/docker/login-action/compare/b45d80f862d83dbcd57f89517bcf500b2ab88fb2...4907a6ddec9925e35a0a9e82d7399ccc52663121\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003ddocker/login-action\u0026package-manager\u003dgithub_actions\u0026previous-version\u003d4.0.0\u0026new-version\u003d4.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "e54681b80e84573f4cb6e7fdcb77b4247768965f", "tree": "526760b3a88b1950eea14a3d600e3ce6c1b4fb0c", "parents": [ "0703021c8315a55651b6f7446da8cc781f039f72" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Mar 30 16:20:40 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 30 16:20:40 2026 +0200" }, "message": "MINOR: Bump com.diffplug.spotless:spotless-maven-plugin from 2.44.4 to 3.4.0 (#1088)\n\nBumps\n[com.diffplug.spotless:spotless-maven-plugin](https://github.com/diffplug/spotless)\nfrom 2.44.4 to 3.4.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/diffplug/spotless/releases\"\u003ecom.diffplug.spotless:spotless-maven-plugin\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eMaven Plugin v3.4.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003etableTest\u003c/code\u003e format type for standalone\n\u003ccode\u003e.table\u003c/code\u003e files. (\u003ca\nhref\u003d\"https://redirect.github.com/diffplug/spotless/pull/2880\"\u003e#2880\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump default \u003ccode\u003etabletest-formatter\u003c/code\u003e version\n\u003ccode\u003e1.0.1\u003c/code\u003e -\u0026gt; \u003ccode\u003e1.1.1\u003c/code\u003e, now works with Java 17+.\n(\u003ca\nhref\u003d\"https://redirect.github.com/diffplug/spotless/pull/2880\"\u003e#2880\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eLib v3.3.1\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eGitPrePushHookInstaller\u003c/code\u003e didn\u0027t work on windows, now\nfixed. (\u003ca\nhref\u003d\"https://redirect.github.com/diffplug/spotless/pull/2562\"\u003e#2562\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eLib v3.3.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAllow specifying path to Biome JSON config file directly in\n\u003ccode\u003ebiome\u003c/code\u003e step. Requires biome 2.x. (\u003ca\nhref\u003d\"https://redirect.github.com/diffplug/spotless/pull/2548\"\u003e#2548\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eGitPrePushHookInstaller\u003c/code\u003e, a reusable library component\nfor installing a Git \u003ccode\u003epre-push\u003c/code\u003e hook that runs formatter\nchecks. (\u003ca\nhref\u003d\"https://redirect.github.com/diffplug/spotless/pull/2553\"\u003e#2553\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow setting Eclipse XML config from a string, not only from files\n(\u003ca\nhref\u003d\"https://redirect.github.com/diffplug/spotless/pull/2361\"\u003e#2361\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eChanged\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump default \u003ccode\u003egson\u003c/code\u003e version to latest \u003ccode\u003e2.11.0\u003c/code\u003e\n-\u0026gt; \u003ccode\u003e2.13.1\u003c/code\u003e. (\u003ca\nhref\u003d\"https://redirect.github.com/diffplug/spotless/pull/2414\"\u003e#2414\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump default \u003ccode\u003ejackson\u003c/code\u003e version to latest\n\u003ccode\u003e2.18.1\u003c/code\u003e -\u0026gt; \u003ccode\u003e2.19.2\u003c/code\u003e. (\u003ca\nhref\u003d\"https://redirect.github.com/diffplug/spotless/pull/2558\"\u003e#2558\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump default \u003ccode\u003egherkin-utils\u003c/code\u003e version to latest\n\u003ccode\u003e9.0.0\u003c/code\u003e -\u0026gt; \u003ccode\u003e9.2.0\u003c/code\u003e. (\u003ca\nhref\u003d\"https://redirect.github.com/diffplug/spotless/pull/2408\"\u003e#2408\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump default \u003ccode\u003ecleanthat\u003c/code\u003e version to latest\n\u003ccode\u003e2.22\u003c/code\u003e -\u0026gt; \u003ccode\u003e2.23\u003c/code\u003e. (\u003ca\nhref\u003d\"https://redirect.github.com/diffplug/spotless/pull/2556\"\u003e#2556\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eMaven Plugin v3.3.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003etabletest-formatter\u003c/code\u003e support for Java and Kotlin.\n(\u003ca\nhref\u003d\"https://redirect.github.com/diffplug/spotless/pull/2860\"\u003e#2860\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix the ability to specify a wildcard version (\u003ccode\u003e*\u003c/code\u003e) for\nexternal formatter executables, which did not work. (\u003ca\nhref\u003d\"https://redirect.github.com/diffplug/spotless/pull/2848\"\u003e#2848\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[fix] \u003ccode\u003eConcurrentModificationException\u003c/code\u003e in\n\u003ccode\u003eexpandWildcardImports\u003c/code\u003e (\u003ca\nhref\u003d\"https://redirect.github.com/diffplug/spotless/issues/2830\"\u003e#2830\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eMaven Plugin v3.2.1\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eremoveSemicolons()\u003c/code\u003e should not be applied to multiline\nstrings in groovy \u003ca\nhref\u003d\"https://redirect.github.com/diffplug/spotless/issues/2780\"\u003e#2780\u003c/a\u003e\n(\u003ca\nhref\u003d\"https://redirect.github.com/diffplug/spotless/issues/2792\"\u003e#2792\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eLib v3.2.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for \u003ccode\u003eidea\u003c/code\u003e (\u003ca\nhref\u003d\"https://redirect.github.com/diffplug/spotless/pull/2020\"\u003e#2020\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/diffplug/spotless/pull/2535\"\u003e#2535\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for removing wildcard imports via\n\u003ccode\u003eremoveWildcardImports\u003c/code\u003e step. (\u003ca\nhref\u003d\"https://redirect.github.com/diffplug/spotless/pull/2517\"\u003e#2517\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003escalafmt: enforce version consistency between the version configured\nin Spotless and the version declared in Scalafmt config file (\u003ca\nhref\u003d\"https://redirect.github.com/diffplug/spotless/issues/2460\"\u003e#2460\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSortPom\u003c/code\u003e disable expandEmptyElements, to avoid empty\nbody warnings. (\u003ca\nhref\u003d\"https://redirect.github.com/diffplug/spotless/pull/2520\"\u003e#2520\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix biome formatter for new major release 2.x of biome (\u003ca\nhref\u003d\"https://redirect.github.com/diffplug/spotless/pull/2537\"\u003e#2537\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMake sure npm-based formatters use the correct\n\u003ccode\u003enode_modules\u003c/code\u003e directory when running in parallel. (\u003ca\nhref\u003d\"https://redirect.github.com/diffplug/spotless/pull/2542\"\u003e#2542\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump internal dependencies for npm-based formatters (\u003ca\nhref\u003d\"https://redirect.github.com/diffplug/spotless/pull/2542\"\u003e#2542\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eMaven Plugin v3.2.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd the ability to specify a wildcard version (\u003ccode\u003e*\u003c/code\u003e) for\nexternal formatter executables. (\u003ca\nhref\u003d\"https://redirect.github.com/diffplug/spotless/issues/2757\"\u003e#2757\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDramatic (~100x) performance improvement when using git\n\u003ccode\u003eratchetFrom\u003c/code\u003e. (\u003ca\nhref\u003d\"https://redirect.github.com/diffplug/spotless/pull/2805\"\u003e#2805\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/diffplug/spotless/commit/708a1b0e6383ad2dd34cf3def185bb085a786789\"\u003e\u003ccode\u003e708a1b0\u003c/code\u003e\u003c/a\u003e\nPublished maven/3.4.0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/diffplug/spotless/commit/1cc0163c25b52824cd57b56cdcb8c4cb0c7b4795\"\u003e\u003ccode\u003e1cc0163\u003c/code\u003e\u003c/a\u003e\nPublished gradle/8.4.0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/diffplug/spotless/commit/a4cd808f6092c6ed9371205de4af5285beea9533\"\u003e\u003ccode\u003ea4cd808\u003c/code\u003e\u003c/a\u003e\nPublished lib/4.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/diffplug/spotless/commit/9066bf6ede907e913fbe30259de0763f1b0b55ea\"\u003e\u003ccode\u003e9066bf6\u003c/code\u003e\u003c/a\u003e\nAdd links to the changelog.\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/diffplug/spotless/commit/db8dc1cc8e83b18ef357a0e660f03556fd792247\"\u003e\u003ccode\u003edb8dc1c\u003c/code\u003e\u003c/a\u003e\nFix for illegal mutation issue with \u003ccode\u003epredeclareDeps\u003c/code\u003e (\u003ca\nhref\u003d\"https://redirect.github.com/diffplug/spotless/issues/2892\"\u003e#2892\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/diffplug/spotless/commit/0eb98a9574304e362f0ca6ddbfb71617de46df75\"\u003e\u003ccode\u003e0eb98a9\u003c/code\u003e\u003c/a\u003e\nchore: Updated gradle plugin change\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/diffplug/spotless/commit/3f7f12e649b1085a7937b8730e6a7689a52ca6da\"\u003e\u003ccode\u003e3f7f12e\u003c/code\u003e\u003c/a\u003e\nchore: Removes check for predeclare as it\u0027s not needed anymore\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/diffplug/spotless/commit/55c0c5c081b83ad35e92911718e3069a64467c2a\"\u003e\u003ccode\u003e55c0c5c\u003c/code\u003e\u003c/a\u003e\nfix: IsolatedProjectTest.predeclaredIsUnsupported() is now actually\nsupported...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/diffplug/spotless/commit/47489afd92aa79f56372bd53e82d09a44f606a32\"\u003e\u003ccode\u003e47489af\u003c/code\u003e\u003c/a\u003e\nfix: avoid IllegalMutationException when root project uses\npredeclareDeps() w...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/diffplug/spotless/commit/4010e8b42c32b8dfac31a988c6820b6b0ef499bd\"\u003e\u003ccode\u003e4010e8b\u003c/code\u003e\u003c/a\u003e\ntest: Introduce a test harnessing predeclared deps\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/diffplug/spotless/compare/maven/2.44.4...maven/3.4.0\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dcom.diffplug.spotless:spotless-maven-plugin\u0026package-manager\u003dmaven\u0026previous-version\u003d2.44.4\u0026new-version\u003d3.4.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\n---------\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e\nCo-authored-by: JB Onofré \u003cjbonofre@apache.org\u003e\nCo-authored-by: JB Onofré \u003cjb.onofre@dremio.com\u003e" }, { "commit": "0703021c8315a55651b6f7446da8cc781f039f72", "tree": "1b54586c183aa69108d4e7ac05af2578943c3ef8", "parents": [ "447372ce4caa5a53387018861e3ea9d1f7be795c" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Mar 30 14:56:30 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 30 14:56:30 2026 +0200" }, "message": "MINOR: Bump org.apache:apache from 33 to 37 (#1033)\n\nBumps [org.apache:apache](https://github.com/apache/maven-apache-parent)\nfrom 33 to 37.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/apache/maven-apache-parent/releases\"\u003eorg.apache:apache\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eApache Parent POM version 37\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e🚀 New features and improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDisable parallel PUT on release (\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/566\"\u003e#566\u003c/a\u003e)\n\u003ca\nhref\u003d\"https://github.com/slawekjaranowski\"\u003e\u003ccode\u003e@​slawekjaranowski\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eApache Parent POM version 36\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e:boom: Breaking changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minimum maven version to match current stable version (3.6.3\n-\u0026gt; 3.9) (\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/533\"\u003e#533\u003c/a\u003e)\n\u003ca\nhref\u003d\"https://github.com/DomGarguilo\"\u003e\u003ccode\u003e@​DomGarguilo\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIntroduce javaVersion property for maven.compiler.* configuration\n(\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/551\"\u003e#551\u003c/a\u003e)\n\u003ca\nhref\u003d\"https://github.com/slawekjaranowski\"\u003e\u003ccode\u003e@​slawekjaranowski\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch JDK \u0026gt;\u003d 9 to only use maven.compiler.release (\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/543\"\u003e#543\u003c/a\u003e)\n\u003ca href\u003d\"https://github.com/gnodet\"\u003e\u003ccode\u003e@​gnodet\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New features and improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minimum maven version to match current stable version (3.6.3\n-\u0026gt; 3.9) (\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/533\"\u003e#533\u003c/a\u003e)\n\u003ca\nhref\u003d\"https://github.com/DomGarguilo\"\u003e\u003ccode\u003e@​DomGarguilo\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIntroduce javaVersion property for maven.compiler.* configuration\n(\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/551\"\u003e#551\u003c/a\u003e)\n\u003ca\nhref\u003d\"https://github.com/slawekjaranowski\"\u003e\u003ccode\u003e@​slawekjaranowski\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch JDK \u0026gt;\u003d 9 to only use maven.compiler.release (\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/543\"\u003e#543\u003c/a\u003e)\n\u003ca href\u003d\"https://github.com/gnodet\"\u003e\u003ccode\u003e@​gnodet\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd default specification and implementation for javadoc and source\nmanifest entries (\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/548\"\u003e#548\u003c/a\u003e)\n\u003ca\nhref\u003d\"https://github.com/slawekjaranowski\"\u003e\u003ccode\u003e@​slawekjaranowski\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📝 Documentation updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eClarify how to use Apache Snapshot repository (\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/558\"\u003e#558\u003c/a\u003e)\n\u003ca href\u003d\"https://github.com/kwin\"\u003e\u003ccode\u003e@​kwin\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eactivate Fluido skin\u0027s anchorJs (\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/553\"\u003e#553\u003c/a\u003e)\n\u003ca href\u003d\"https://github.com/hboutemy\"\u003e\u003ccode\u003e@​hboutemy\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e👻 Maintenance\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAvoid - WARNING: Use of the three-letter time zone ID ... on JDK 25\nfor RAT plugin (\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/562\"\u003e#562\u003c/a\u003e)\n\u003ca\nhref\u003d\"https://github.com/slawekjaranowski\"\u003e\u003ccode\u003e@​slawekjaranowski\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: enable prevent branch protection rules (\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/535\"\u003e#535\u003c/a\u003e)\n\u003ca href\u003d\"https://github.com/sebtiem\"\u003e\u003ccode\u003e@​sebtiem\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Dependency updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump org.apache.maven.plugins:maven-release-plugin from 3.3.0 to\n3.3.1 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/565\"\u003e#565\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven.plugins:maven-release-plugin from 3.2.0 to\n3.3.0 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/559\"\u003e#559\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven.plugins:maven-source-plugin from 3.3.1 to\n3.4.0 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/557\"\u003e#557\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven.plugins:maven-assembly-plugin from 3.7.1 to\n3.8.0 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/556\"\u003e#556\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven.plugins:maven-war-plugin from 3.5.0 to 3.5.1\n(\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/555\"\u003e#555\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven.plugins:maven-resources-plugin from 3.3.1 to\n3.4.0 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/554\"\u003e#554\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven.plugins:maven-jar-plugin from 3.4.2 to 3.5.0\n(\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/552\"\u003e#552\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade maven-release-plugin to version 3.2.0 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/549\"\u003e#549\u003c/a\u003e)\n\u003ca href\u003d\"https://github.com/kwin\"\u003e\u003ccode\u003e@​kwin\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven.plugins:maven-dependency-plugin from 3.8.1 to\n3.9.0 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/542\"\u003e#542\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven.plugins:maven-war-plugin from 3.4.0 to 3.5.0\n(\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/546\"\u003e#546\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump version.maven-plugin-tools from 3.15.1 to 3.15.2 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/547\"\u003e#547\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven.plugins:maven-antrun-plugin from 3.1.0 to\n3.2.0 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/545\"\u003e#545\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven.plugins:maven-enforcer-plugin from 3.6.1 to\n3.6.2 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/541\"\u003e#541\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven.plugins:maven-scm-plugin from 2.1.0 to 2.2.1\n(\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/540\"\u003e#540\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven.plugins:maven-ear-plugin from 3.3.0 to 3.4.0\n(\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/527\"\u003e#527\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven.plugins:maven-javadoc-plugin from 3.11.3 to\n3.12.0 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/538\"\u003e#538\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven.plugins:maven-compiler-plugin from 3.14.0 to\n3.14.1 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/maven-apache-parent/pull/539\"\u003e#539\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca\nhref\u003d\"https://github.com/apache/maven-apache-parent/commits\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dorg.apache:apache\u0026package-manager\u003dmaven\u0026previous-version\u003d33\u0026new-version\u003d37)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nYou can trigger a rebase of this PR by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\n\u003e **Note**\n\u003e Automatic rebases have been disabled on this pull request as it has\nbeen open for over 30 days.\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "447372ce4caa5a53387018861e3ea9d1f7be795c", "tree": "2a9a8f79f06197af53f15aea2863bf630cd03ca6", "parents": [ "4297733dae36ca83234a239b25068db775a09743" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Mar 30 10:57:29 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 30 10:57:29 2026 +0200" }, "message": "MINOR: Bump com.google.api.grpc:proto-google-common-protos from 2.66.0 to 2.67.0 (#1092)\n\nBumps\n[com.google.api.grpc:proto-google-common-protos](https://github.com/googleapis/sdk-platform-java)\nfrom 2.66.0 to 2.67.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/releases\"\u003ecom.google.api.grpc:proto-google-common-protos\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.67.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/compare/v2.66.1...v2.67.0\"\u003e2.67.0\u003c/a\u003e\n(2026-02-18)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eobservability:\u003c/strong\u003e introduce minimal tracing\nimplementation (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4105\"\u003e#4105\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/e4e5e893e7a62bd12528e7d448dc2789f71946eb\"\u003ee4e5e89\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade Google-Auth-Library to v1.43.0 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4114\"\u003e#4114\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/825298b6bf225bb8536ecab9d788f82f3f8eec4d\"\u003e825298b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade grpc to 1.76.3 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4106\"\u003e#4106\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/c6555f5f0cd85683db76394271e1f57989cac7d0\"\u003ec6555f5\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.66.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/compare/v2.66.0...v2.66.1\"\u003e2.66.1\u003c/a\u003e\n(2026-02-04)\u003c/h2\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[common-protos] update reference documentation for\n\u003ccode\u003eSelectionInput.DROPDOWN\u003c/code\u003e to include dynamic data sources and\nautosuggestion (\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/9960262cf248400836c04063e6a701bec2aca1ba\"\u003e9960262\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/blob/main/CHANGELOG.md\"\u003ecom.google.api.grpc:proto-google-common-protos\u0027s\nchangelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/compare/v2.66.1...v2.67.0\"\u003e2.67.0\u003c/a\u003e\n(2026-02-18)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eobservability:\u003c/strong\u003e introduce minimal tracing\nimplementation (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4105\"\u003e#4105\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/e4e5e893e7a62bd12528e7d448dc2789f71946eb\"\u003ee4e5e89\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade Google-Auth-Library to v1.43.0 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4114\"\u003e#4114\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/825298b6bf225bb8536ecab9d788f82f3f8eec4d\"\u003e825298b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade grpc to 1.76.3 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4106\"\u003e#4106\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/c6555f5f0cd85683db76394271e1f57989cac7d0\"\u003ec6555f5\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/compare/v2.66.0...v2.66.1\"\u003e2.66.1\u003c/a\u003e\n(2026-02-04)\u003c/h2\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[common-protos] update reference documentation for\n\u003ccode\u003eSelectionInput.DROPDOWN\u003c/code\u003e to include dynamic data sources and\nautosuggestion (\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/9960262cf248400836c04063e6a701bec2aca1ba\"\u003e9960262\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/50d2af33e055075693b8ee14cc8a2da107320144\"\u003e\u003ccode\u003e50d2af3\u003c/code\u003e\u003c/a\u003e\nchore(main): release 2.67.0 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4107\"\u003e#4107\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/ffb6b02f9711d247204fce57d98d5f0fb974bf39\"\u003e\u003ccode\u003effb6b02\u003c/code\u003e\u003c/a\u003e\nchore(deps): update upper bound dependencies file (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4112\"\u003e#4112\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/825298b6bf225bb8536ecab9d788f82f3f8eec4d\"\u003e\u003ccode\u003e825298b\u003c/code\u003e\u003c/a\u003e\ndeps: Upgrade Google-Auth-Library to v1.43.0 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4114\"\u003e#4114\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/3fa1ca3ffa0e4d103e2812bd5c29547b7e4d6410\"\u003e\u003ccode\u003e3fa1ca3\u003c/code\u003e\u003c/a\u003e\nchore: update googleapis commit at Thu Feb 5 03:00:22 UTC 2026 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4104\"\u003e#4104\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/e4e5e893e7a62bd12528e7d448dc2789f71946eb\"\u003e\u003ccode\u003ee4e5e89\u003c/code\u003e\u003c/a\u003e\nfeat(observability): introduce minimal tracing implementation (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4105\"\u003e#4105\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/c6555f5f0cd85683db76394271e1f57989cac7d0\"\u003e\u003ccode\u003ec6555f5\u003c/code\u003e\u003c/a\u003e\ndeps: Upgrade grpc to 1.76.3 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4106\"\u003e#4106\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/117c390d24a734aafb0f994ded30a054c6eed901\"\u003e\u003ccode\u003e117c390\u003c/code\u003e\u003c/a\u003e\nchore(main): release 2.66.2-SNAPSHOT (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4102\"\u003e#4102\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/ff33367579969c7ce65dd84a505f8d91b8ba67fd\"\u003e\u003ccode\u003eff33367\u003c/code\u003e\u003c/a\u003e\ntests: Upgrade logback to 1.5.25 in tests (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4103\"\u003e#4103\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/a4d8c44b60f3285244afbff7ef2cbfe032947688\"\u003e\u003ccode\u003ea4d8c44\u003c/code\u003e\u003c/a\u003e\ntests: Remove 3.25.8 from protobuf compatibility testing (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4101\"\u003e#4101\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/3b280a3d65bc45368536e715a4fa6c04ddbfff66\"\u003e\u003ccode\u003e3b280a3\u003c/code\u003e\u003c/a\u003e\nchore(main): release 2.66.1 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4100\"\u003e#4100\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/compare/v2.66.0...v2.67.0\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dcom.google.api.grpc:proto-google-common-protos\u0026package-manager\u003dmaven\u0026previous-version\u003d2.66.0\u0026new-version\u003d2.67.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "4297733dae36ca83234a239b25068db775a09743", "tree": "3cb201618c6d83e0a5aa7902524a08aa8360646d", "parents": [ "89fa995eac2aa84e0195341bff601dfce66b942e" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Mar 30 10:30:50 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 30 10:30:50 2026 +0200" }, "message": "MINOR: Bump com.gradle:develocity-maven-extension from 2.3.4 to 2.4.0 (#1095)\n\nBumps com.gradle:develocity-maven-extension from 2.3.4 to 2.4.0.\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dcom.gradle:develocity-maven-extension\u0026package-manager\u003dmaven\u0026previous-version\u003d2.3.4\u0026new-version\u003d2.4.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "89fa995eac2aa84e0195341bff601dfce66b942e", "tree": "e87d7dc9e739303da3b6b15a4388663e52f2c1be", "parents": [ "168a969147ea77a6fe8f12fa15c6bc25b1e671f2" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Mar 30 10:22:13 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 30 10:22:13 2026 +0200" }, "message": "MINOR: Bump com.nimbusds:oauth2-oidc-sdk from 11.34 to 11.37 (#1096)\n\nBumps\n[com.nimbusds:oauth2-oidc-sdk](https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions)\nfrom 11.34 to 11.37.\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/src/master/CHANGELOG.txt\"\u003ecom.nimbusds:oauth2-oidc-sdk\u0027s\nchangelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003eversion 1.0 (2012-05-29)\n* First official release with authorisation endpoint, token endpoint,\ncheck\nID endpoint and UserInfo endpoint support.\n* JSON Web Tokens (JWTs) support through the Nimbus-JWT library.\n* Language Tags (RFC 5646) support through the Nimbus-LangTag library.\n* JSON support through the JSON Smart library.\u003c/p\u003e\n\u003cp\u003eversion 2.0 (2013-05-13)\n* Intermediary development release with Maven build, published to\nMaven Central.\u003c/p\u003e\n\u003cp\u003eversion 2.1 (2013-06-06)\n* Updates the APIs to OpenID Connect Messages draft 20, OpenID Connect\nStandard draft 21, OpenID Connect Discovery draft 17 and OpenID\nConnect Registration draft 19.\n* Major refactoring of the APIs for greater simplicity.\n* Adds JUnit tests.\u003c/p\u003e\n\u003cp\u003eversion 2.2 (2013-06-18)\n* Refactors dynamic OpenID Connect client registration.\n* Adds partial support of the OAuth 2.0 Dynamic Client Registration\nProtocol (draft-ietf-oauth-dyn-reg-12).\n* Optimises parsing of request parameters consisting of one or more\ntokens (scope, response type, etc).\u003c/p\u003e\n\u003cp\u003eversion 2.3 (2013-06-19)\n* Renames OAuth 2.0 dynamic client registration package.\n* Adds ClientInformation.getClientMetadata() method.\n* Adds OIDCClientInformation class.\u003c/p\u003e\n\u003cp\u003eversion 2.4 (2013-06-20)\n* Adds static OIDCClientInformation.parse(JSONObject) method.\u003c/p\u003e\n\u003cp\u003eversion 2.5 (2013-06-22)\n* Adds support OAuth 2.0 dynamic client update.\n* Adds OpenID Connect dynamic client registration classes.\u003c/p\u003e\n\u003cp\u003eversion 2.6 (2013-06-25)\n* Enforces order of preference of ACR values in OpenID Connect client\nmetadata, as required by the specification.\n* Documentation and performance improvements.\u003c/p\u003e\n\u003cp\u003eversion 2.7 (2013-06-26)\n* Switches Identifier generation to java.security.SecureRandom.\u003c/p\u003e\n\u003cp\u003eversion 2.8 (2013-06-30)\n* Fixes serialisation and assignment bugs in ClientMetadata.\n* Switches Secret generation to java.security.SecureRandom.\u003c/p\u003e\n\u003cp\u003eversion 2.9 (2013-09-17)\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/d98de1ab39f699e39903967775abc242fc064e78\"\u003e\u003ccode\u003ed98de1a\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare for next development iteration\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/2ea716f29401515a656c73bef9d66d5860270b2f\"\u003e\u003ccode\u003e2ea716f\u003c/code\u003e\u003c/a\u003e\nShortens InvalidClientException messages\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/ed5773c5a3383a4c5af5f8484aad2864dc1b79c6\"\u003e\u003ccode\u003eed5773c\u003c/code\u003e\u003c/a\u003e\nTokenRevocationRequest receives custom form parameters support\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/e133559f00d1469a5da284cfdbb30d4d0102e3be\"\u003e\u003ccode\u003ee133559\u003c/code\u003e\u003c/a\u003e\nUpdates tests for shortened InvalidClientException messages\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/fe43e1f129febee53c0a15178b08b6e835bcd460\"\u003e\u003ccode\u003efe43e1f\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release 11.35\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/73224c9422c0ebb3c1a3b5387aac2d529d8bef5b\"\u003e\u003ccode\u003e73224c9\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare for next development iteration\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/f3f728613feb023640801faf33873d55f6c2ec98\"\u003e\u003ccode\u003ef3f7286\u003c/code\u003e\u003c/a\u003e\nAdds static JSONObjectUtils.getNonNegativeLong methods\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/d6899e0554d630956dd09e3d2ba1236ee66d2bd6\"\u003e\u003ccode\u003ed6899e0\u003c/code\u003e\u003c/a\u003e\nCleans up JSONObjectUtils.getEnum(net.minidev.json.JSONObject,\njava.lang.Stri...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/9b05d23a876550842e75c1abff08795ac825b9a0\"\u003e\u003ccode\u003e9b05d23\u003c/code\u003e\u003c/a\u003e\nAdds non-negative checks when parsing Date instances from Unix\ntimestamps (is...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/592d8f4e82e7815966258c114b66834b9b4c9e6c\"\u003e\u003ccode\u003e592d8f4\u003c/code\u003e\u003c/a\u003e\nAdds \u0026quot;acr\u0026quot; and \u0026quot;auth_time\u0026quot; parameter (RFC 9470)\nsupport to TokenIntrospection...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/branches/compare/11.37..11.34\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dcom.nimbusds:oauth2-oidc-sdk\u0026package-manager\u003dmaven\u0026previous-version\u003d11.34\u0026new-version\u003d11.37)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "168a969147ea77a6fe8f12fa15c6bc25b1e671f2", "tree": "28fb1af6255e6f73a7263d5278aa15177a91e685", "parents": [ "07d998733b9c31117941d7ec6c983e7ae51d47b7" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Mar 30 10:21:57 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 30 10:21:57 2026 +0200" }, "message": "MINOR: Bump io.netty:netty-bom from 4.2.10.Final to 4.2.12.Final (#1091)\n\nBumps [io.netty:netty-bom](https://github.com/netty/netty) from\n4.2.10.Final to 4.2.12.Final.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/netty/netty/releases\"\u003eio.netty:netty-bom\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003enetty-4.2.12.Final\u003c/h2\u003e\n\u003ch2\u003eWhat\u0027s Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;Eliminate redundant bounds checks in CompositeByteBuf\naccessors\u0026quot; by \u003ca\nhref\u003d\"https://github.com/chrisvest\"\u003e\u003ccode\u003e@​chrisvest\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16550\"\u003enetty/netty#16550\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca\nhref\u003d\"https://github.com/netty/netty/compare/netty-4.2.11.Final...netty-4.2.12.Final\"\u003ehttps://github.com/netty/netty/compare/netty-4.2.11.Final...netty-4.2.12.Final\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003enetty-4.2.11.Final\u003c/h2\u003e\n\u003ch2\u003eSecurity\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCVE-2026-33871, \u003ca\nhref\u003d\"https://github.com/netty/netty/security/advisories/GHSA-w9fj-cfpg-grvv\"\u003eHTTP/2\nCONTINUATION Frame Flood Denial of Service\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCVE-2026-33870, \u003ca\nhref\u003d\"https://github.com/netty/netty/security/advisories/GHSA-pwqr-wmgm-9rr8\"\u003eHTTP\nRequest Smuggling via Chunked Extension Quoted-String Parsing\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat\u0027s Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate to latest JDK 26 EA release by \u003ca\nhref\u003d\"https://github.com/normanmaurer\"\u003e\u003ccode\u003e@​normanmaurer\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16230\"\u003enetty/netty#16230\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP3: Allow to support non-standard HTTP3 settings by \u003ca\nhref\u003d\"https://github.com/normanmaurer\"\u003e\u003ccode\u003e@​normanmaurer\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16171\"\u003enetty/netty#16171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix Incorrect nanos-to-millis conversion in epoll_wait EINTR retry\nloop by \u003ca\nhref\u003d\"https://github.com/adwsingh\"\u003e\u003ccode\u003e@​adwsingh\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16245\"\u003enetty/netty#16245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAllocate one large segment and slice for each MsgHdrMemory by \u003ca\nhref\u003d\"https://github.com/dreamlike-ocean\"\u003e\u003ccode\u003e@​dreamlike-ocean\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16234\"\u003enetty/netty#16234\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake RefCntOpenSslContext.deallocate more robust by \u003ca\nhref\u003d\"https://github.com/chrisvest\"\u003e\u003ccode\u003e@​chrisvest\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16253\"\u003enetty/netty#16253\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEpoll: Fix excessive CPU usage when Channel is only registered but\nno… by \u003ca\nhref\u003d\"https://github.com/normanmaurer\"\u003e\u003ccode\u003e@​normanmaurer\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16250\"\u003enetty/netty#16250\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate to gcc for arm 10.3-2021.07 by \u003ca\nhref\u003d\"https://github.com/m1ngyuan\"\u003e\u003ccode\u003e@​m1ngyuan\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16255\"\u003enetty/netty#16255\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd acmeIdentifier extension support to pkitesting by \u003ca\nhref\u003d\"https://github.com/chrisvest\"\u003e\u003ccode\u003e@​chrisvest\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16256\"\u003enetty/netty#16256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate JDK versions to latest patch releases by \u003ca\nhref\u003d\"https://github.com/m1ngyuan\"\u003e\u003ccode\u003e@​m1ngyuan\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16254\"\u003enetty/netty#16254\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid allocation in HttpObjectEncoder.addEncodedLengthHex method by\n\u003ca href\u003d\"https://github.com/doom369\"\u003e\u003ccode\u003e@​doom369\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16241\"\u003enetty/netty#16241\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAutomatic backporting workflow from 4.1 to 4.2 by \u003ca\nhref\u003d\"https://github.com/chrisvest\"\u003e\u003ccode\u003e@​chrisvest\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16269\"\u003enetty/netty#16269\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRevert \u0026quot;Automatic backporting workflow from 4.1 to 4.2\u0026quot; by\n\u003ca href\u003d\"https://github.com/chrisvest\"\u003e\u003ccode\u003e@​chrisvest\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16270\"\u003enetty/netty#16270\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP2: Correctly account for padding when decompress by \u003ca\nhref\u003d\"https://github.com/normanmaurer\"\u003e\u003ccode\u003e@​normanmaurer\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16264\"\u003enetty/netty#16264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAutomatic backporting workflow from 4.1 to 4.2 by \u003ca\nhref\u003d\"https://github.com/chrisvest\"\u003e\u003ccode\u003e@​chrisvest\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16271\"\u003enetty/netty#16271\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAutomatic backporting workflow from 4.1 to 4.2 by \u003ca\nhref\u003d\"https://github.com/chrisvest\"\u003e\u003ccode\u003e@​chrisvest\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16273\"\u003enetty/netty#16273\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackport PRs must be created with personal access tokens by \u003ca\nhref\u003d\"https://github.com/chrisvest\"\u003e\u003ccode\u003e@​chrisvest\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16276\"\u003enetty/netty#16276\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose QuicSslContextBuilder::sni by \u003ca\nhref\u003d\"https://github.com/ZeroErrors\"\u003e\u003ccode\u003e@​ZeroErrors\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16178\"\u003enetty/netty#16178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd more porting workflows by \u003ca\nhref\u003d\"https://github.com/chrisvest\"\u003e\u003ccode\u003e@​chrisvest\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16275\"\u003enetty/netty#16275\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd more porting workflows by \u003ca\nhref\u003d\"https://github.com/chrisvest\"\u003e\u003ccode\u003e@​chrisvest\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16283\"\u003enetty/netty#16283\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove the unpooled allocator from test permutations by \u003ca\nhref\u003d\"https://github.com/chrisvest\"\u003e\u003ccode\u003e@​chrisvest\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16282\"\u003enetty/netty#16282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome polishing of the porting workflows by \u003ca\nhref\u003d\"https://github.com/chrisvest\"\u003e\u003ccode\u003e@​chrisvest\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16288\"\u003enetty/netty#16288\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAllow to set destination connection id when creating a client side\nQuicheChannel by \u003ca\nhref\u003d\"https://github.com/normanmaurer\"\u003e\u003ccode\u003e@​normanmaurer\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16286\"\u003enetty/netty#16286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate to latest JDK26 EA build by \u003ca\nhref\u003d\"https://github.com/normanmaurer\"\u003e\u003ccode\u003e@​normanmaurer\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16295\"\u003enetty/netty#16295\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd javadoc to clarify responsibility of the user when generating\nthe remote connection id by \u003ca\nhref\u003d\"https://github.com/normanmaurer\"\u003e\u003ccode\u003e@​normanmaurer\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16293\"\u003enetty/netty#16293\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake the build run faster by \u003ca\nhref\u003d\"https://github.com/chrisvest\"\u003e\u003ccode\u003e@​chrisvest\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16290\"\u003enetty/netty#16290\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix IDE warnings in SslHandler by \u003ca\nhref\u003d\"https://github.com/doom369\"\u003e\u003ccode\u003e@​doom369\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16237\"\u003enetty/netty#16237\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDecrease Long allocations and map.put calls in\nReferenceCountedOpenSllEngine in handshake() method by \u003ca\nhref\u003d\"https://github.com/doom369\"\u003e\u003ccode\u003e@​doom369\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16242\"\u003enetty/netty#16242\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport boringssl SSLCredential API by \u003ca\nhref\u003d\"https://github.com/jmcrawford45\"\u003e\u003ccode\u003e@​jmcrawford45\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/15919\"\u003enetty/netty#15919\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix high-order bit aliasing in HttpUtil.validateToken by \u003ca\nhref\u003d\"https://github.com/furkanvarol\"\u003e\u003ccode\u003e@​furkanvarol\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16279\"\u003enetty/netty#16279\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove multi-byte access performance when UNALIGNED availability is\nunknown by \u003ca\nhref\u003d\"https://github.com/Songdoeon\"\u003e\u003ccode\u003e@​Songdoeon\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16207\"\u003enetty/netty#16207\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid unnecessary SSL.getVersion() call and string allocation in\nReferenceCountedOpenSslEngine by \u003ca\nhref\u003d\"https://github.com/doom369\"\u003e\u003ccode\u003e@​doom369\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16278\"\u003enetty/netty#16278\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport more branch freedom for auto-porting by \u003ca\nhref\u003d\"https://github.com/chrisvest\"\u003e\u003ccode\u003e@​chrisvest\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16300\"\u003enetty/netty#16300\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: the precedence of + is higher than \u0026gt;\u0026gt; by \u003ca\nhref\u003d\"https://github.com/cuiweixie\"\u003e\u003ccode\u003e@​cuiweixie\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16312\"\u003enetty/netty#16312\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdaptiveByteBufAllocator: make sure byteBuf.capacity() not greater\nthan byteBuf.maxCapacity() by \u003ca\nhref\u003d\"https://github.com/laosijikaichele\"\u003e\u003ccode\u003e@​laosijikaichele\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16309\"\u003enetty/netty#16309\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix flaky PooledByteBufAllocatorTest by \u003ca\nhref\u003d\"https://github.com/chrisvest\"\u003e\u003ccode\u003e@​chrisvest\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16313\"\u003enetty/netty#16313\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix pooled arena accounting tests by \u003ca\nhref\u003d\"https://github.com/chrisvest\"\u003e\u003ccode\u003e@​chrisvest\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/pull/16321\"\u003enetty/netty#16321\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/67ce541e4692853e24fc506466960db35bb64914\"\u003e\u003ccode\u003e67ce541\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release netty-4.2.12.Final\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/7074624644b79f4e97081bd58a58ed135962b8c2\"\u003e\u003ccode\u003e7074624\u003c/code\u003e\u003c/a\u003e\nRevert \u0026quot;Eliminate redundant bounds checks in CompositeByteBuf\naccessors\u0026quot; (\u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/issues/16\"\u003e#16\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/c3b0a43442dbf84e3eb161d5f252623f832f1579\"\u003e\u003ccode\u003ec3b0a43\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare for next development iteration\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/c94a8180e749f694fb76963dd494bae17c31aff6\"\u003e\u003ccode\u003ec94a818\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release netty-4.2.11.Final\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/3b76df185678353733aa21702d6be16130d188a0\"\u003e\u003ccode\u003e3b76df1\u003c/code\u003e\u003c/a\u003e\nMerge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/aae944a19eb036993fc47c4b40639476f519deaf\"\u003e\u003ccode\u003eaae944a\u003c/code\u003e\u003c/a\u003e\nAuto-port 4.2: Limit the number of Continuation frames per HTTP2 Headers\n(\u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/issues/16\"\u003e#16\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/60014996491c41d91c26f80bca096610f34fc858\"\u003e\u003ccode\u003e6001499\u003c/code\u003e\u003c/a\u003e\nEliminate redundant bounds checks in CompositeByteBuf accessors (\u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/issues/16525\"\u003e#16525\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/a7fbb6f84625ef29733a1506ed3520e3c21d5247\"\u003e\u003ccode\u003ea7fbb6f\u003c/code\u003e\u003c/a\u003e\nJdkZlibDecoder: accumulate decompressed output before firing channelRead\n(\u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/issues/16\"\u003e#16\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/7937553d8f49e17b064f57b1414907aed8e3be3d\"\u003e\u003ccode\u003e7937553\u003c/code\u003e\u003c/a\u003e\nEnforce io.netty.maxDirectMemory accounting on all Java versions (\u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/issues/16489\"\u003e#16489\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/893ea2ea6c35c9e1812e5d331530b88d8690022b\"\u003e\u003ccode\u003e893ea2e\u003c/code\u003e\u003c/a\u003e\nAllocate less in QueryStringDecoder.addParam for typical use case (\u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/issues/16527\"\u003e#16527\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/netty/netty/compare/netty-4.2.10.Final...netty-4.2.12.Final\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dio.netty:netty-bom\u0026package-manager\u003dmaven\u0026previous-version\u003d4.2.10.Final\u0026new-version\u003d4.2.12.Final)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "07d998733b9c31117941d7ec6c983e7ae51d47b7", "tree": "899a15d4104e8e59740f6c2d9d693945e88e9b24", "parents": [ "01affd741864c493cb76b9357fb32ead7f977672" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Tue Mar 24 09:40:43 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Tue Mar 24 09:40:43 2026 +0100" }, "message": "MINOR: Bump com.h2database:h2 from 2.3.232 to 2.4.240 (#1084)\n\nBumps [com.h2database:h2](https://github.com/h2database/h2database) from\n2.3.232 to 2.4.240.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/h2database/h2database/releases\"\u003ecom.h2database:h2\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eVersion 2.4.240\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/h2database/h2database/commit/c8eb81be7a30786b7534377a7e475bdaa08aeeb8\"\u003e\u003ccode\u003ec8eb81b\u003c/code\u003e\u003c/a\u003e\nin preparation for a release\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/h2database/h2database/commit/7ff5ee5cf0fa7d75ad341ebf53ff9301e390b537\"\u003e\u003ccode\u003e7ff5ee5\u003c/code\u003e\u003c/a\u003e\nMerge pull request \u003ca\nhref\u003d\"https://redirect.github.com/h2database/h2database/issues/4260\"\u003e#4260\u003c/a\u003e\nfrom JackPGreen/update-maven-central-url\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/h2database/h2database/commit/da4c337f0251d51b2aaeeb28133fb87c8da4907c\"\u003e\u003ccode\u003eda4c337\u003c/code\u003e\u003c/a\u003e\nMerge pull request \u003ca\nhref\u003d\"https://redirect.github.com/h2database/h2database/issues/4271\"\u003e#4271\u003c/a\u003e\nfrom IrisesD/master\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/h2database/h2database/commit/d053544f6baa9d91339b51a1b30572d1fabfe705\"\u003e\u003ccode\u003ed053544\u003c/code\u003e\u003c/a\u003e\nfeat: allow \u003ccode\u003eCATALOG\u003c/code\u003e in \u003ccode\u003eCREATE SCHEMA\u003c/code\u003e and\n\u003ccode\u003eDROP SCHEMA\u003c/code\u003e (\u003ca\nhref\u003d\"https://redirect.github.com/h2database/h2database/issues/4277\"\u003e#4277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/h2database/h2database/commit/a448d91e083eceec493be60d398656f27a0ed4c7\"\u003e\u003ccode\u003ea448d91\u003c/code\u003e\u003c/a\u003e\nMerge pull request \u003ca\nhref\u003d\"https://redirect.github.com/h2database/h2database/issues/4273\"\u003e#4273\u003c/a\u003e\nfrom naive924/feat/compactThreads\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/h2database/h2database/commit/6672123e6a404d6fde309bc9871538ddf838b0b6\"\u003e\u003ccode\u003e6672123\u003c/code\u003e\u003c/a\u003e\nfix: change log\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/h2database/h2database/commit/858e74abc3676686c547f0182a73519e9962044c\"\u003e\u003ccode\u003e858e74a\u003c/code\u003e\u003c/a\u003e\nfix: MVStore.compact: run map copy in parallel by default (¼ cores,\noverride ...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/h2database/h2database/commit/bce0ec1f9e116dae837d756af14281d3d566905d\"\u003e\u003ccode\u003ebce0ec1\u003c/code\u003e\u003c/a\u003e\nfeat: parallel map copy option for MVStore.compact()\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/h2database/h2database/commit/d8a6cc3e20e028ac854c08764b9c3e41e360b72e\"\u003e\u003ccode\u003ed8a6cc3\u003c/code\u003e\u003c/a\u003e\nFix command syntax in help.csv\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/h2database/h2database/commit/c45413cdc3f0c0bf77a62817c14cdaec65c87096\"\u003e\u003ccode\u003ec45413c\u003c/code\u003e\u003c/a\u003e\nMerge pull request \u003ca\nhref\u003d\"https://redirect.github.com/h2database/h2database/issues/4266\"\u003e#4266\u003c/a\u003e\nfrom andreitokar/issue-4208-2\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/h2database/h2database/compare/version-2.3.232...version-2.4.240\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dcom.h2database:h2\u0026package-manager\u003dmaven\u0026previous-version\u003d2.3.232\u0026new-version\u003d2.4.240)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "01affd741864c493cb76b9357fb32ead7f977672", "tree": "eadcdbd78569f44ee875d7701c3a73474f7ba7e7", "parents": [ "d5497915c604582e66613c96599b32a812fda4bc" ], "author": { "name": "JB Onofré", "email": "jb.onofre@dremio.com", "time": "Tue Mar 24 07:49:08 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Tue Mar 24 07:49:08 2026 +0100" }, "message": "GH-1078: Upgrade minimum JDK version from 11 to 17 (#1079)\n\nUpdate compiler source/target/release to 17 across build config\n(pom.xml, bom), CI workflows, Docker images, Brewfile, and\ndocumentation. Replace deprecated boxed-type constructors with valueOf()\nin HolderReaderImpl codegen template to fix -Werror under release\u003d17.\n\n## What\u0027s Changed\n\nJDK 11 would not be supported in some cases.\n\n**This contains breaking changes.** \u003c!-- Remove this line if there are\nno breaking changes. --\u003e\n\nCloses #1078." }, { "commit": "d5497915c604582e66613c96599b32a812fda4bc", "tree": "5981b8e5cffa7169a9d34ede72fd20401d242176", "parents": [ "d9d6112b3e4037d72aa44e978bc72c2f7706c52c" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Mar 23 18:47:12 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 23 18:47:12 2026 +0100" }, "message": "MINOR: Bump com.fasterxml.jackson:jackson-bom from 2.21.1 to 2.21.2 (#1082)\n\nBumps\n[com.fasterxml.jackson:jackson-bom](https://github.com/FasterXML/jackson-bom)\nfrom 2.21.1 to 2.21.2.\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/FasterXML/jackson-bom/commit/10e12a55b0a1d0caaa82b8b41101e8ecd39ed976\"\u003e\u003ccode\u003e10e12a5\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release jackson-bom-2.21.2\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/FasterXML/jackson-bom/commit/d75490376b71e112c18fbe4d5f43a984bb2b2d6d\"\u003e\u003ccode\u003ed754903\u003c/code\u003e\u003c/a\u003e\nPrep for 2.21.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/FasterXML/jackson-bom/commit/63e1b3bb3e115e40580cd8c57263955d4fcbee24\"\u003e\u003ccode\u003e63e1b3b\u003c/code\u003e\u003c/a\u003e\nPost-release dep version bump\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/FasterXML/jackson-bom/commit/716ab0d1d95d45d07e9f00f5b8a889f500375981\"\u003e\u003ccode\u003e716ab0d\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare for next development iteration\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca\nhref\u003d\"https://github.com/FasterXML/jackson-bom/compare/jackson-bom-2.21.1...jackson-bom-2.21.2\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dcom.fasterxml.jackson:jackson-bom\u0026package-manager\u003dmaven\u0026previous-version\u003d2.21.1\u0026new-version\u003d2.21.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "d9d6112b3e4037d72aa44e978bc72c2f7706c52c", "tree": "38f9d6f10a3862395208e88a7ab04fca891fc001", "parents": [ "1348b8dc8302daebe7bb76df9f3c13bdcf2766e9" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Mar 23 18:46:51 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 23 18:46:51 2026 +0100" }, "message": "MINOR: Bump com.google.guava:guava-bom from 33.4.8-jre to 33.5.0-jre (#1083)\n\nBumps [com.google.guava:guava-bom](https://github.com/google/guava) from\n33.4.8-jre to 33.5.0-jre.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/google/guava/releases\"\u003ecom.google.guava:guava-bom\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e33.5.0\u003c/h2\u003e\n\u003ch3\u003eMaven\u003c/h3\u003e\n\u003cpre lang\u003d\"xml\"\u003e\u003ccode\u003e\u0026lt;dependency\u0026gt;\n \u0026lt;groupId\u0026gt;com.google.guava\u0026lt;/groupId\u0026gt;\n \u0026lt;artifactId\u0026gt;guava\u0026lt;/artifactId\u0026gt;\n \u0026lt;version\u0026gt;33.5.0-jre\u0026lt;/version\u0026gt;\n \u0026lt;!-- or, for Android: --\u0026gt;\n \u0026lt;version\u0026gt;33.5.0-android\u0026lt;/version\u0026gt;\n\u0026lt;/dependency\u0026gt;\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eJar files\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://repo1.maven.org/maven2/com/google/guava/guava/33.5.0-jre/guava-33.5.0-jre.jar\"\u003e33.5.0-jre.jar\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://repo1.maven.org/maven2/com/google/guava/guava/33.5.0-android/guava-33.5.0-android.jar\"\u003e33.5.0-android.jar\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eGuava requires \u003ca\nhref\u003d\"https://github.com/google/guava/wiki/UseGuavaInYourBuild#what-about-guavas-own-dependencies\"\u003eone\nruntime dependency\u003c/a\u003e, which you can download here:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://repo1.maven.org/maven2/com/google/guava/failureaccess/1.0.3/failureaccess-1.0.3.jar\"\u003efailureaccess-1.0.3.jar\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eJavadoc\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://guava.dev/releases/33.5.0-jre/api/docs/\"\u003e33.5.0-jre\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://guava.dev/releases/33.5.0-android/api/docs/\"\u003e33.5.0-android\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eJDiff\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://guava.dev/releases/33.5.0-jre/api/diffs/\"\u003e33.5.0-jre vs.\n33.4.8-jre\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://guava.dev/releases/33.5.0-android/api/diffs/\"\u003e33.5.0-android\nvs. 33.4.8-android\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://guava.dev/releases/33.5.0-android/api/androiddiffs/\"\u003e33.5.0-android\nvs. 33.5.0-jre\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChangelog\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRestored the \u003ccode\u003eAutomatic-Module-Name\u003c/code\u003e to\n\u003ccode\u003eguava-android\u003c/code\u003e. (It, unlike, \u003ccode\u003eguava-jre\u003c/code\u003e, is not\na proper module.) (7a04a8a955)\u003c/li\u003e\n\u003cli\u003eFor users of \u003ccode\u003eguava-gwt\u003c/code\u003e: Google \u003ca\nhref\u003d\"https://redirect.github.com/gwtproject/gwt-site/pull/394\"\u003ehas\nmoved off GWT internally\u003c/a\u003e. We plan to continue to release\n\u003ccode\u003eguava-gwt\u003c/code\u003e for users of GWT and \u003ca\nhref\u003d\"https://github.com/google/j2cl\"\u003eJ2CL\u003c/a\u003e, but the artifact is no\nlonger tested for GWT-specific issues, and we have limited resources to\nfix any unexpected issues that might arise. While we do not anticipate\nany specific problems, we can\u0027t guarantee how long support will\ncontinue.\u003c/li\u003e\n\u003cli\u003eIncreased our Android \u003ccode\u003eminSdkVersion\u003c/code\u003e to 23\n(Marshmallow). This follows the minimum of Google\u0027s foundational Android\nlibraries, and we expect it to have no practical impact on users.\n(5c23347cc1)\u003c/li\u003e\n\u003cli\u003eListed the JSpecify annotations as an optional dependency in our\nOSGi metadata. (2dfd572981)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ecache\u003c/code\u003e: Improved the handling of exceptions from compute\nfunctions in \u003ccode\u003eCache.asMap()\u003c/code\u003e. (We do still \u003ca\nhref\u003d\"https://guava.dev/releases/snapshot-jre/api/docs/com/google/common/cache/CacheBuilder.html#prefer-caffeine-over-guava-s-caching-api-heading\"\u003erecommend\u003c/a\u003e\nusing \u003ca href\u003d\"https://github.com/ben-manes/caffeine\"\u003eCaffeine\u003c/a\u003e\nrather than \u003ccode\u003ecom.google.common.cache\u003c/code\u003e.) (087f2c4a80)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ecollect\u003c/code\u003e: Improved \u003ccode\u003eIterators.mergeSorted()\u003c/code\u003e\nto preserve stability for equal elements. (4dc93be9a8)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003emath\u003c/code\u003e: Added \u003ccode\u003esaturatedAbs\u003c/code\u003e methods to\n\u003ccode\u003eIntMath\u003c/code\u003e and \u003ccode\u003eLongMath\u003c/code\u003e. (ed0e518f20)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003enet\u003c/code\u003e: Added \u003ccode\u003eimage/avif\u003c/code\u003e to\n\u003ccode\u003eMediaType\u003c/code\u003e. (53344caba6)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etesting\u003c/code\u003e: Made \u003ccode\u003eCollectorTester\u003c/code\u003e available to\nAndroid users. (294c251079)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eutil.concurrent\u003c/code\u003e: Added \u003ccode\u003eStriped.custom\u003c/code\u003e.\n(1586eb271d)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca\nhref\u003d\"https://github.com/google/guava/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dcom.google.guava:guava-bom\u0026package-manager\u003dmaven\u0026previous-version\u003d33.4.8-jre\u0026new-version\u003d33.5.0-jre)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "1348b8dc8302daebe7bb76df9f3c13bdcf2766e9", "tree": "6ac37cb670668fc2dc4d970608692e282d55a864", "parents": [ "a8b238061bfdab433d25ee223ce11d697a572efd" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Mar 23 13:16:04 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 23 13:16:04 2026 +0100" }, "message": "MINOR: Bump io.netty:netty-bom from 4.2.9.Final to 4.2.10.Final (#1085)\n\nBumps [io.netty:netty-bom](https://github.com/netty/netty) from\n4.2.9.Final to 4.2.10.Final.\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/4cc98736c3947bc93122e0b64e0bd8fc970c6437\"\u003e\u003ccode\u003e4cc9873\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release netty-4.2.10.Final\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/54b8663619577749511269a4149adf018438c8b0\"\u003e\u003ccode\u003e54b8663\u003c/code\u003e\u003c/a\u003e\nRemove unnecessary allocations and abstractions in HttpContentCompressor\n(\u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/issues/16\"\u003e#16\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/961f427289730cd1ff92b734ddeea8dd0b7d276a\"\u003e\u003ccode\u003e961f427\u003c/code\u003e\u003c/a\u003e\nUpdate to netty-tcnative 2.0.75.Final (\u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/issues/16227\"\u003e#16227\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/3007ba9d2853a03d3d0281be1ec9b358e48170b1\"\u003e\u003ccode\u003e3007ba9\u003c/code\u003e\u003c/a\u003e\nUse recommanded finalize chain pattern when override finalize() method\n(\u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/issues/16212\"\u003e#16212\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/b91804287e0e06e8ca9da5e508f0490f9b7e4ad9\"\u003e\u003ccode\u003eb918042\u003c/code\u003e\u003c/a\u003e\nUpdate some dependencies (\u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/issues/16198\"\u003e#16198\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/issues/16215\"\u003e#16215\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/874c99529e1db187cc3f5346f5f8ffea94e34f0c\"\u003e\u003ccode\u003e874c995\u003c/code\u003e\u003c/a\u003e\nReduce allocations on DefaultHeaders::containsValue (\u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/issues/15843\"\u003e#15843\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/e0fe7940ce6070be48b8cb5af22ce9e7e4813ec2\"\u003e\u003ccode\u003ee0fe794\u003c/code\u003e\u003c/a\u003e\nRemove unnecessary null check in WebSocketServerExtensionHandler (\u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/issues/16201\"\u003e#16201\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/1b0636b7ac773052c1fefe7f86593e655aacb1b4\"\u003e\u003ccode\u003e1b0636b\u003c/code\u003e\u003c/a\u003e\nMove default compression options into static variable in\nHttpContentCompresso...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/85a3a0ee8d67bac9f6a85aa6444e0805564fffc6\"\u003e\u003ccode\u003e85a3a0e\u003c/code\u003e\u003c/a\u003e\ncodec-http2: move the accessors from Http2Headers to DefaultHttp2Headers\n(\u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/issues/16\"\u003e#16\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/f44a88d340580510cb3a94e454c10cb949dc07fd\"\u003e\u003ccode\u003ef44a88d\u003c/code\u003e\u003c/a\u003e\nImprove chunk picking for the large-size buddy allocator (\u003ca\nhref\u003d\"https://redirect.github.com/netty/netty/issues/16179\"\u003e#16179\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/netty/netty/compare/netty-4.2.9.Final...netty-4.2.10.Final\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dio.netty:netty-bom\u0026package-manager\u003dmaven\u0026previous-version\u003d4.2.9.Final\u0026new-version\u003d4.2.10.Final)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "a8b238061bfdab433d25ee223ce11d697a572efd", "tree": "85bc2474a28afe7f28e7f87f6a74e3b896729ac5", "parents": [ "899e883428ee067da4542393e7ecc958cfb5d90c" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Mar 23 13:15:02 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 23 13:15:02 2026 +0100" }, "message": "MINOR: Bump org.mockito:mockito-bom from 5.21.0 to 5.23.0 (#1087)\n\nBumps [org.mockito:mockito-bom](https://github.com/mockito/mockito) from\n5.21.0 to 5.23.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/mockito/mockito/releases\"\u003eorg.mockito:mockito-bom\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.23.0\u003c/h2\u003e\n\u003ch2\u003eNOTE: Breaking change for Android\u003c/h2\u003e\n\u003cp\u003eThe \u003ccode\u003emockito-android\u003c/code\u003e artifact has a breaking change:\ntests now require a device or emulator based on API 28+ (Android P).\nThis is to enable new support for mocking Kotlin classes. See \u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3788\"\u003e#3788\u003c/a\u003e\nfor more details.\u003c/p\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted --\u003e\u003cem\u003eChangelog\ngenerated by \u003ca\nhref\u003d\"https://github.com/shipkit/shipkit-changelog\"\u003eShipkit Changelog\nGradle Plugin\u003c/a\u003e\u003c/em\u003e\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted\n--\u003e\u003c/p\u003e\n\u003ch4\u003e5.23.0\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e2026-03-11 - \u003ca\nhref\u003d\"https://github.com/mockito/mockito/compare/v5.22.0...v5.23.0\"\u003e6\ncommit(s)\u003c/a\u003e by Brice Dutheil, Joshua Selbo, Philippe Kernevez\u003c/li\u003e\n\u003cli\u003eReplace mockito-android mock maker implementation with\ndexmaker-mockito-inline [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3792\"\u003e#3792\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3792\"\u003emockito/mockito#3792\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix StackOverflowError with AbstractList after using mockSingleton\n[(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3790\"\u003e#3790\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3790\"\u003emockito/mockito#3790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMark parameters of \u003ccode\u003eMockito.when\u003c/code\u003e \u003ccode\u003e@Nullable\u003c/code\u003e\n[(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3503\"\u003e#3503\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3503\"\u003emockito/mockito#3503\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.22.0\u003c/h2\u003e\n\u003cp\u003e\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted --\u003e\u003cem\u003eChangelog\ngenerated by \u003ca\nhref\u003d\"https://github.com/shipkit/shipkit-changelog\"\u003eShipkit Changelog\nGradle Plugin\u003c/a\u003e\u003c/em\u003e\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted\n--\u003e\u003c/p\u003e\n\u003ch4\u003e5.22.0\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e2026-02-27 - \u003ca\nhref\u003d\"https://github.com/mockito/mockito/compare/v5.21.0...v5.22.0\"\u003e6\ncommit(s)\u003c/a\u003e by Joshua Selbo, NiMv1, Rafael Winterhalter,\ndependabot[bot], eunbin son\u003c/li\u003e\n\u003cli\u003eAvoid mocking of internal static utilities [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3785\"\u003e#3785\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3785\"\u003emockito/mockito#3785\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump graalvm/setup-graalvm from 1.4.4 to 1.4.5 [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3780\"\u003e#3780\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3780\"\u003emockito/mockito#3780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eStatic mocking of UUID.class corrupted under JDK 25 [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3778\"\u003e#3778\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3778\"\u003emockito/mockito#3778\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump actions/upload-artifact from 5 to 6 [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3774\"\u003e#3774\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3774\"\u003emockito/mockito#3774\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edocs: clarify RETURNS_MOCKS behavior with sealed abstract enums\n(Java 15+) [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3773\"\u003e#3773\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3773\"\u003emockito/mockito#3773\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd tests for Sets utility class [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3771\"\u003e#3771\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3771\"\u003emockito/mockito#3771\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd core API to enable Kotlin singleton mocking [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3762\"\u003e#3762\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3762\"\u003emockito/mockito#3762\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eStubbing Kotlin \u003ccode\u003eobject\u003c/code\u003e singletons [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3652\"\u003e#3652\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3652\"\u003emockito/mockito#3652\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIncorrect documentation for RETURNS_MOCKS [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3285\"\u003e#3285\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3285\"\u003emockito/mockito#3285\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mockito/mockito/commit/a231205b240e7884a63bf0f63440012867a4da21\"\u003e\u003ccode\u003ea231205\u003c/code\u003e\u003c/a\u003e\nFix StackOverflowError with AbstractList after using mockSingleton (\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3790\"\u003e#3790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mockito/mockito/commit/f6a91a6a6138c776fa8b41ffb3fd078c64802044\"\u003e\u003ccode\u003ef6a91a6\u003c/code\u003e\u003c/a\u003e\nReplace mockito-android mock maker implementation with\ndexmaker-mockito-inlin...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mockito/mockito/commit/aa2298a627ab2c0bce07f648e444477d8e2e05ba\"\u003e\u003ccode\u003eaa2298a\u003c/code\u003e\u003c/a\u003e\nfix: make spotless happy\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mockito/mockito/commit/a6729d657e232ca64da81d9801d7b8f3be6fc49a\"\u003e\u003ccode\u003ea6729d6\u003c/code\u003e\u003c/a\u003e\nchore: update BDDMockito with jspecify annotation\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mockito/mockito/commit/bb83c922484cfd3693d61549b5d6ef39a9c02c2b\"\u003e\u003ccode\u003ebb83c92\u003c/code\u003e\u003c/a\u003e\nchore: move jspecify as a compile only dependency\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mockito/mockito/commit/47a46954cd1c0f8ef64ec63d43da9b71081d74e6\"\u003e\u003ccode\u003e47a4695\u003c/code\u003e\u003c/a\u003e\nchore: add jspecify with minimal change. Fixes \u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3503\"\u003e#3503\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mockito/mockito/commit/25f13951d35ca391ee50207e6c564f3e869f3d91\"\u003e\u003ccode\u003e25f1395\u003c/code\u003e\u003c/a\u003e\nAdd core API to enable Kotlin singleton mocking (\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3762\"\u003e#3762\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mockito/mockito/commit/ef9ee5529853d96028b520f84a41ffd41afc9a1d\"\u003e\u003ccode\u003eef9ee55\u003c/code\u003e\u003c/a\u003e\nAvoids mocking private static methods, as well as package-private static\nmeth...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mockito/mockito/commit/d16fcfc274d7ca03a2b4bdc22dd7c3ec6dac8690\"\u003e\u003ccode\u003ed16fcfc\u003c/code\u003e\u003c/a\u003e\nBump graalvm/setup-graalvm from 1.4.4 to 1.4.5 (\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3780\"\u003e#3780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mockito/mockito/commit/27eb8a3acdd9c9eb3ff788a71b22777026874439\"\u003e\u003ccode\u003e27eb8a3\u003c/code\u003e\u003c/a\u003e\nClarify \u003ccode\u003eRETURNS_MOCKS\u003c/code\u003e behavior with sealed abstract enums\n(Java 15+) (\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3773\"\u003e#3773\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/mockito/mockito/compare/v5.21.0...v5.23.0\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dorg.mockito:mockito-bom\u0026package-manager\u003dmaven\u0026previous-version\u003d5.21.0\u0026new-version\u003d5.23.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "899e883428ee067da4542393e7ecc958cfb5d90c", "tree": "84a663c8528b07f45cc5c465165ecc6ed9633dae", "parents": [ "27382cd92baf29762dba2454d7e9e911c58821e3" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Mar 23 13:14:24 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 23 13:14:24 2026 +0100" }, "message": "MINOR: Bump com.google.protobuf:protobuf-bom from 4.33.4 to 4.34.1 (#1086)\n\nBumps\n[com.google.protobuf:protobuf-bom](https://github.com/protocolbuffers/protobuf)\nfrom 4.33.4 to 4.34.1.\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca\nhref\u003d\"https://github.com/protocolbuffers/protobuf/commits\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dcom.google.protobuf:protobuf-bom\u0026package-manager\u003dmaven\u0026previous-version\u003d4.33.4\u0026new-version\u003d4.34.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "27382cd92baf29762dba2454d7e9e911c58821e3", "tree": "18a15e47940c27f63d836b9a6cea39c66c13a005", "parents": [ "394d12ef455fad83f76ec4b3a79ac6b5c6fe1139" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Mar 16 10:07:18 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 16 10:07:18 2026 +0100" }, "message": "MINOR: Bump checker.framework.version from 3.53.1 to 3.54.0 (#1070)\n\nBumps `checker.framework.version` from 3.53.1 to 3.54.0.\nUpdates `org.checkerframework:checker-qual` from 3.53.1 to 3.54.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/releases\"\u003eorg.checkerframework:checker-qual\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eChecker Framework 3.54.0\u003c/h2\u003e\n\u003ch2\u003eVersion 3.54.0 (2026-03-02)\u003c/h2\u003e\n\u003ch3\u003eUser-visible changes\u003c/h3\u003e\n\u003cp\u003eCommand-line arguments:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e-AinferOutputDirectory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eRemoved long-deprecated\n\u003ccode\u003e-Alint\u003dforbidnonnullarraycomponents\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eNew command-line argument \u003ccode\u003e-Aonelinemsg\u003c/code\u003e puts error\nmessages on a single line. This is useful when using a tool that only\nshows the first line of the error.\u003c/p\u003e\n\u003cp\u003eThe command-line argument \u003ccode\u003e-Anomsgtext\u003c/code\u003e surrounds the\nerror key with brackets instead of parenthesis. This matches Java error\nmessages.\u003c/p\u003e\n\u003ch3\u003eImplementation details\u003c/h3\u003e\n\u003cp\u003eIn \u003ccode\u003eAnnotatedTypeFactory\u003c/code\u003e,\n\u003ccode\u003ecanonicalAnnotation()\u003c/code\u003e returns a non-null value.\u003c/p\u003e\n\u003cp\u003eIn \u003ccode\u003eAnnotationClassLoader\u003c/code\u003e:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRenamed \u003ccode\u003ehasWellDefinedTargetMetaAnnotation()\u003c/code\u003e to\n\u003ccode\u003eisTypeQualifierAnnotation()\u003c/code\u003e. The method now returns\n\u003ccode\u003etrue\u003c/code\u003e for annotations bearing\n\u003ccode\u003e@InvisibleQualifier\u003c/code\u003e or \u003ccode\u003e@SubtypeOf\u003c/code\u003e, in addition\nto the existing \u003ccode\u003e@Target(TYPE_USE)\u003c/code\u003e check.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eIn \u003ccode\u003eTestDiagnostic\u003c/code\u003e:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRenamed field \u003ccode\u003emessage\u003c/code\u003e to \u003ccode\u003ekey\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eAdded new nullable field \u003ccode\u003emessage\u003c/code\u003e for the full message\nwithout the key.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eRemoved classes and methods that have been deprecated for more than\ntwo years.\u003c/p\u003e\n\u003ch3\u003eClosed issues\u003c/h3\u003e\n\u003cp\u003e\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/6874\"\u003e#6874\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7471\"\u003e#7471\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7475\"\u003e#7475\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7486\"\u003e#7486\u003c/a\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/blob/master/docs/CHANGELOG.md\"\u003eorg.checkerframework:checker-qual\u0027s\nchangelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eVersion 3.54.0 (2026-03-02)\u003c/h2\u003e\n\u003ch3\u003eUser-visible changes\u003c/h3\u003e\n\u003cp\u003eCommand-line arguments:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e-AinferOutputDirectory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eRemoved long-deprecated\n\u003ccode\u003e-Alint\u003dforbidnonnullarraycomponents\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eNew command-line argument \u003ccode\u003e-Aonelinemsg\u003c/code\u003e puts error\nmessages on a single line.\nThis is useful when using a tool that only shows the first line of the\nerror.\u003c/p\u003e\n\u003cp\u003eThe command-line argument \u003ccode\u003e-Anomsgtext\u003c/code\u003e surrounds the\nerror key with brackets\ninstead of parenthesis. This matches Java error messages.\u003c/p\u003e\n\u003ch3\u003eImplementation details\u003c/h3\u003e\n\u003cp\u003eIn \u003ccode\u003eAnnotatedTypeFactory\u003c/code\u003e,\n\u003ccode\u003ecanonicalAnnotation()\u003c/code\u003e returns a non-null value.\u003c/p\u003e\n\u003cp\u003eIn \u003ccode\u003eAnnotationClassLoader\u003c/code\u003e:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRenamed \u003ccode\u003ehasWellDefinedTargetMetaAnnotation()\u003c/code\u003e to\n\u003ccode\u003eisTypeQualifierAnnotation()\u003c/code\u003e.\nThe method now returns \u003ccode\u003etrue\u003c/code\u003e for annotations bearing\n\u003ccode\u003e@InvisibleQualifier\u003c/code\u003e\nor \u003ccode\u003e@SubtypeOf\u003c/code\u003e, in addition to the existing\n\u003ccode\u003e@Target(TYPE_USE)\u003c/code\u003e check.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eIn \u003ccode\u003eTestDiagnostic\u003c/code\u003e:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRenamed field \u003ccode\u003emessage\u003c/code\u003e to \u003ccode\u003ekey\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eAdded new nullable field \u003ccode\u003emessage\u003c/code\u003e for the full message\nwithout the key.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eRemoved classes and methods that have been deprecated for more than\ntwo years.\u003c/p\u003e\n\u003ch3\u003eClosed issues\u003c/h3\u003e\n\u003cp\u003e\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/6874\"\u003e#6874\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7471\"\u003e#7471\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7475\"\u003e#7475\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7486\"\u003e#7486\u003c/a\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/a6eff70058f1cf8094315c0918a1d5ec1963788b\"\u003e\u003ccode\u003ea6eff70\u003c/code\u003e\u003c/a\u003e\nnew release 3.54.0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/fd347006340c5a365a286b46d8c4eb5743fe39ae\"\u003e\u003ccode\u003efd34700\u003c/code\u003e\u003c/a\u003e\nPrep for release.\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/edb6e7a0ee35ca54f440248a99af3c5c5a3335e0\"\u003e\u003ccode\u003eedb6e7a\u003c/code\u003e\u003c/a\u003e\nPrint error key in brackets (\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7525\"\u003e#7525\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/a79b1dea956ab18bc23e95799a7559afac539f5a\"\u003e\u003ccode\u003ea79b1de\u003c/code\u003e\u003c/a\u003e\nShow details of the error message in test failures (\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7513\"\u003e#7513\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/a5ecc22d196f7d87c3db465aaa11aaba97d3fec3\"\u003e\u003ccode\u003ea5ecc22\u003c/code\u003e\u003c/a\u003e\nClone the JDK using the same fork and branch as CF (\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7491\"\u003e#7491\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/2770c5239b907f27b2609d13ed4d80535bf42893\"\u003e\u003ccode\u003e2770c52\u003c/code\u003e\u003c/a\u003e\nUpdate cimg/base Docker tag to v2026.03\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/bba6bc98c52031e0023cba575f83a2f2385c8fcf\"\u003e\u003ccode\u003ebba6bc9\u003c/code\u003e\u003c/a\u003e\nUpdate plugin com-gradleup-shadow to v9.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/3a6d4d4dadae58a1b4dc1b67cfb684de5e7185b2\"\u003e\u003ccode\u003e3a6d4d4\u003c/code\u003e\u003c/a\u003e\nUpdate error-prone monorepo to v2.48.0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/70aa5f3ce93425a87543cb60048c3dbdbe0cd8b5\"\u003e\u003ccode\u003e70aa5f3\u003c/code\u003e\u003c/a\u003e\nUpdate plugin net-ltgt-errorprone to v5.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/0dbd3e77823b66b498b9b7890ffba81866e57f8d\"\u003e\u003ccode\u003e0dbd3e7\u003c/code\u003e\u003c/a\u003e\nPrepare for javac AST changes\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/compare/checker-framework-3.53.1...checker-framework-3.54.0\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.checkerframework:checker` from 3.53.1 to 3.54.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/releases\"\u003eorg.checkerframework:checker\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eChecker Framework 3.54.0\u003c/h2\u003e\n\u003ch2\u003eVersion 3.54.0 (2026-03-02)\u003c/h2\u003e\n\u003ch3\u003eUser-visible changes\u003c/h3\u003e\n\u003cp\u003eCommand-line arguments:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e-AinferOutputDirectory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eRemoved long-deprecated\n\u003ccode\u003e-Alint\u003dforbidnonnullarraycomponents\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eNew command-line argument \u003ccode\u003e-Aonelinemsg\u003c/code\u003e puts error\nmessages on a single line. This is useful when using a tool that only\nshows the first line of the error.\u003c/p\u003e\n\u003cp\u003eThe command-line argument \u003ccode\u003e-Anomsgtext\u003c/code\u003e surrounds the\nerror key with brackets instead of parenthesis. This matches Java error\nmessages.\u003c/p\u003e\n\u003ch3\u003eImplementation details\u003c/h3\u003e\n\u003cp\u003eIn \u003ccode\u003eAnnotatedTypeFactory\u003c/code\u003e,\n\u003ccode\u003ecanonicalAnnotation()\u003c/code\u003e returns a non-null value.\u003c/p\u003e\n\u003cp\u003eIn \u003ccode\u003eAnnotationClassLoader\u003c/code\u003e:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRenamed \u003ccode\u003ehasWellDefinedTargetMetaAnnotation()\u003c/code\u003e to\n\u003ccode\u003eisTypeQualifierAnnotation()\u003c/code\u003e. The method now returns\n\u003ccode\u003etrue\u003c/code\u003e for annotations bearing\n\u003ccode\u003e@InvisibleQualifier\u003c/code\u003e or \u003ccode\u003e@SubtypeOf\u003c/code\u003e, in addition\nto the existing \u003ccode\u003e@Target(TYPE_USE)\u003c/code\u003e check.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eIn \u003ccode\u003eTestDiagnostic\u003c/code\u003e:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRenamed field \u003ccode\u003emessage\u003c/code\u003e to \u003ccode\u003ekey\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eAdded new nullable field \u003ccode\u003emessage\u003c/code\u003e for the full message\nwithout the key.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eRemoved classes and methods that have been deprecated for more than\ntwo years.\u003c/p\u003e\n\u003ch3\u003eClosed issues\u003c/h3\u003e\n\u003cp\u003e\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/6874\"\u003e#6874\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7471\"\u003e#7471\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7475\"\u003e#7475\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7486\"\u003e#7486\u003c/a\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/blob/master/docs/CHANGELOG.md\"\u003eorg.checkerframework:checker\u0027s\nchangelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eVersion 3.54.0 (2026-03-02)\u003c/h2\u003e\n\u003ch3\u003eUser-visible changes\u003c/h3\u003e\n\u003cp\u003eCommand-line arguments:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e-AinferOutputDirectory\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eRemoved long-deprecated\n\u003ccode\u003e-Alint\u003dforbidnonnullarraycomponents\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eNew command-line argument \u003ccode\u003e-Aonelinemsg\u003c/code\u003e puts error\nmessages on a single line.\nThis is useful when using a tool that only shows the first line of the\nerror.\u003c/p\u003e\n\u003cp\u003eThe command-line argument \u003ccode\u003e-Anomsgtext\u003c/code\u003e surrounds the\nerror key with brackets\ninstead of parenthesis. This matches Java error messages.\u003c/p\u003e\n\u003ch3\u003eImplementation details\u003c/h3\u003e\n\u003cp\u003eIn \u003ccode\u003eAnnotatedTypeFactory\u003c/code\u003e,\n\u003ccode\u003ecanonicalAnnotation()\u003c/code\u003e returns a non-null value.\u003c/p\u003e\n\u003cp\u003eIn \u003ccode\u003eAnnotationClassLoader\u003c/code\u003e:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRenamed \u003ccode\u003ehasWellDefinedTargetMetaAnnotation()\u003c/code\u003e to\n\u003ccode\u003eisTypeQualifierAnnotation()\u003c/code\u003e.\nThe method now returns \u003ccode\u003etrue\u003c/code\u003e for annotations bearing\n\u003ccode\u003e@InvisibleQualifier\u003c/code\u003e\nor \u003ccode\u003e@SubtypeOf\u003c/code\u003e, in addition to the existing\n\u003ccode\u003e@Target(TYPE_USE)\u003c/code\u003e check.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eIn \u003ccode\u003eTestDiagnostic\u003c/code\u003e:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRenamed field \u003ccode\u003emessage\u003c/code\u003e to \u003ccode\u003ekey\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eAdded new nullable field \u003ccode\u003emessage\u003c/code\u003e for the full message\nwithout the key.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eRemoved classes and methods that have been deprecated for more than\ntwo years.\u003c/p\u003e\n\u003ch3\u003eClosed issues\u003c/h3\u003e\n\u003cp\u003e\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/6874\"\u003e#6874\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7471\"\u003e#7471\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7475\"\u003e#7475\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7486\"\u003e#7486\u003c/a\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/a6eff70058f1cf8094315c0918a1d5ec1963788b\"\u003e\u003ccode\u003ea6eff70\u003c/code\u003e\u003c/a\u003e\nnew release 3.54.0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/fd347006340c5a365a286b46d8c4eb5743fe39ae\"\u003e\u003ccode\u003efd34700\u003c/code\u003e\u003c/a\u003e\nPrep for release.\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/edb6e7a0ee35ca54f440248a99af3c5c5a3335e0\"\u003e\u003ccode\u003eedb6e7a\u003c/code\u003e\u003c/a\u003e\nPrint error key in brackets (\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7525\"\u003e#7525\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/a79b1dea956ab18bc23e95799a7559afac539f5a\"\u003e\u003ccode\u003ea79b1de\u003c/code\u003e\u003c/a\u003e\nShow details of the error message in test failures (\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7513\"\u003e#7513\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/a5ecc22d196f7d87c3db465aaa11aaba97d3fec3\"\u003e\u003ccode\u003ea5ecc22\u003c/code\u003e\u003c/a\u003e\nClone the JDK using the same fork and branch as CF (\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7491\"\u003e#7491\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/2770c5239b907f27b2609d13ed4d80535bf42893\"\u003e\u003ccode\u003e2770c52\u003c/code\u003e\u003c/a\u003e\nUpdate cimg/base Docker tag to v2026.03\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/bba6bc98c52031e0023cba575f83a2f2385c8fcf\"\u003e\u003ccode\u003ebba6bc9\u003c/code\u003e\u003c/a\u003e\nUpdate plugin com-gradleup-shadow to v9.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/3a6d4d4dadae58a1b4dc1b67cfb684de5e7185b2\"\u003e\u003ccode\u003e3a6d4d4\u003c/code\u003e\u003c/a\u003e\nUpdate error-prone monorepo to v2.48.0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/70aa5f3ce93425a87543cb60048c3dbdbe0cd8b5\"\u003e\u003ccode\u003e70aa5f3\u003c/code\u003e\u003c/a\u003e\nUpdate plugin net-ltgt-errorprone to v5.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/0dbd3e77823b66b498b9b7890ffba81866e57f8d\"\u003e\u003ccode\u003e0dbd3e7\u003c/code\u003e\u003c/a\u003e\nPrepare for javac AST changes\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/compare/checker-framework-3.53.1...checker-framework-3.54.0\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "394d12ef455fad83f76ec4b3a79ac6b5c6fe1139", "tree": "6e5ca51d7d6fbae95e8ff538f60a819967cfc75e", "parents": [ "97e491399382215e248b3ba33e7f0d7d9650da5e" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Mar 16 10:04:36 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 16 10:04:36 2026 +0100" }, "message": "MINOR: Bump com.fasterxml.jackson:jackson-bom from 2.21.0 to 2.21.1 (#1071)\n\nBumps\n[com.fasterxml.jackson:jackson-bom](https://github.com/FasterXML/jackson-bom)\nfrom 2.21.0 to 2.21.1.\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/FasterXML/jackson-bom/commit/08a5a9a2156cb06674505e3308e6855ac9e25283\"\u003e\u003ccode\u003e08a5a9a\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release jackson-bom-2.21.1\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/FasterXML/jackson-bom/commit/5b0337650b3a8b56e81de5e5241143108c2b4bc6\"\u003e\u003ccode\u003e5b03376\u003c/code\u003e\u003c/a\u003e\nPrep for 2.21.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/FasterXML/jackson-bom/commit/1d78778a8fa5428d7f8347b5afe7ce6bfbdd0f77\"\u003e\u003ccode\u003e1d78778\u003c/code\u003e\u003c/a\u003e\nMerge branch \u00272.20\u0027 into 2.21\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/FasterXML/jackson-bom/commit/cd46b24421444beebc2bfc9a5ab8785111a031d0\"\u003e\u003ccode\u003ecd46b24\u003c/code\u003e\u003c/a\u003e\nPost-release dep version bump\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/FasterXML/jackson-bom/commit/17179ff9d28756155d0dd28da01e3f88d021e05c\"\u003e\u003ccode\u003e17179ff\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare for next development iteration\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/FasterXML/jackson-bom/commit/2a26844ad13cf49562009867d55b30a084230f2b\"\u003e\u003ccode\u003e2a26844\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release jackson-bom-2.20.2\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/FasterXML/jackson-bom/commit/6adf11bced44313d271312b2f9d158d956a0e15b\"\u003e\u003ccode\u003e6adf11b\u003c/code\u003e\u003c/a\u003e\nPrep for 2.20.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/FasterXML/jackson-bom/commit/441df8a982a8d7d12523406087493092a16b34fb\"\u003e\u003ccode\u003e441df8a\u003c/code\u003e\u003c/a\u003e\nPost-release version bump\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/FasterXML/jackson-bom/commit/a1b48141c0ed54614050e28c3edb3a55c4b245ec\"\u003e\u003ccode\u003ea1b4814\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare for next development iteration\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca\nhref\u003d\"https://github.com/FasterXML/jackson-bom/compare/jackson-bom-2.21.0...jackson-bom-2.21.1\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dcom.fasterxml.jackson:jackson-bom\u0026package-manager\u003dmaven\u0026previous-version\u003d2.21.0\u0026new-version\u003d2.21.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "97e491399382215e248b3ba33e7f0d7d9650da5e", "tree": "3b8bf0c34f993b6feed200f321de576bee4f5a10", "parents": [ "74a7996d40226c659c3b0ae03c0ae75a4964f282" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Mar 16 09:59:10 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 16 09:59:10 2026 +0100" }, "message": "MINOR: Bump com.github.luben:zstd-jni from 1.5.7-6 to 1.5.7-7 (#1073)\n\nBumps [com.github.luben:zstd-jni](https://github.com/luben/zstd-jni)\nfrom 1.5.7-6 to 1.5.7-7.\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/luben/zstd-jni/commit/73bfa2722d168f948f619f88b29913ab4df8fe1d\"\u003e\u003ccode\u003e73bfa27\u003c/code\u003e\u003c/a\u003e\nBump version to v1.5.7-7\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/luben/zstd-jni/commit/322f6bcc084cd04322978e122d97c285b3e46e6d\"\u003e\u003ccode\u003e322f6bc\u003c/code\u003e\u003c/a\u003e\nUpdate GH actions\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/luben/zstd-jni/commit/d18bc0a078bb9852d95c66d9c56ff2e0940662c3\"\u003e\u003ccode\u003ed18bc0a\u003c/code\u003e\u003c/a\u003e\nUse latest MacOS runners\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/luben/zstd-jni/commit/105111233f681a0c14e754da4f31a288df978f31\"\u003e\u003ccode\u003e1051112\u003c/code\u003e\u003c/a\u003e\nFix typo in ZstdDictCompress.java\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/luben/zstd-jni/commit/2d94b35f9b98c503ed960f899fcdaaf6616e7f1e\"\u003e\u003ccode\u003e2d94b35\u003c/code\u003e\u003c/a\u003e\naddress\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/luben/zstd-jni/commit/7c2e3ffd84a835c123cf1f0281feb5c1fcdf2baa\"\u003e\u003ccode\u003e7c2e3ff\u003c/code\u003e\u003c/a\u003e\nAvoid SetLongField call when GetPrimitiveArrayCritical return NULL\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/luben/zstd-jni/commit/d82fedadfc540f1d069ad6962733c70807495f8f\"\u003e\u003ccode\u003ed82feda\u003c/code\u003e\u003c/a\u003e\nfix: ZstdInputStream decompression failure when underlying stream\nreturns 0 t...\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca\nhref\u003d\"https://github.com/luben/zstd-jni/compare/v1.5.7-6...v1.5.7-7\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dcom.github.luben:zstd-jni\u0026package-manager\u003dmaven\u0026previous-version\u003d1.5.7-6\u0026new-version\u003d1.5.7-7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "74a7996d40226c659c3b0ae03c0ae75a4964f282", "tree": "ab98952b6748367fab8d64b3e3adc6723a49fef8", "parents": [ "4242d587b25a74e944f2a01e79d52dcd401d5cf2" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Mar 16 09:55:27 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 16 09:55:27 2026 +0100" }, "message": "MINOR: Bump com.nimbusds:oauth2-oidc-sdk from 11.20.1 to 11.34 (#1074)\n\nBumps\n[com.nimbusds:oauth2-oidc-sdk](https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions)\nfrom 11.20.1 to 11.34.\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/src/master/CHANGELOG.txt\"\u003ecom.nimbusds:oauth2-oidc-sdk\u0027s\nchangelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003eversion 1.0 (2012-05-29)\n* First official release with authorisation endpoint, token endpoint,\ncheck\nID endpoint and UserInfo endpoint support.\n* JSON Web Tokens (JWTs) support through the Nimbus-JWT library.\n* Language Tags (RFC 5646) support through the Nimbus-LangTag library.\n* JSON support through the JSON Smart library.\u003c/p\u003e\n\u003cp\u003eversion 2.0 (2013-05-13)\n* Intermediary development release with Maven build, published to\nMaven Central.\u003c/p\u003e\n\u003cp\u003eversion 2.1 (2013-06-06)\n* Updates the APIs to OpenID Connect Messages draft 20, OpenID Connect\nStandard draft 21, OpenID Connect Discovery draft 17 and OpenID\nConnect Registration draft 19.\n* Major refactoring of the APIs for greater simplicity.\n* Adds JUnit tests.\u003c/p\u003e\n\u003cp\u003eversion 2.2 (2013-06-18)\n* Refactors dynamic OpenID Connect client registration.\n* Adds partial support of the OAuth 2.0 Dynamic Client Registration\nProtocol (draft-ietf-oauth-dyn-reg-12).\n* Optimises parsing of request parameters consisting of one or more\ntokens (scope, response type, etc).\u003c/p\u003e\n\u003cp\u003eversion 2.3 (2013-06-19)\n* Renames OAuth 2.0 dynamic client registration package.\n* Adds ClientInformation.getClientMetadata() method.\n* Adds OIDCClientInformation class.\u003c/p\u003e\n\u003cp\u003eversion 2.4 (2013-06-20)\n* Adds static OIDCClientInformation.parse(JSONObject) method.\u003c/p\u003e\n\u003cp\u003eversion 2.5 (2013-06-22)\n* Adds support OAuth 2.0 dynamic client update.\n* Adds OpenID Connect dynamic client registration classes.\u003c/p\u003e\n\u003cp\u003eversion 2.6 (2013-06-25)\n* Enforces order of preference of ACR values in OpenID Connect client\nmetadata, as required by the specification.\n* Documentation and performance improvements.\u003c/p\u003e\n\u003cp\u003eversion 2.7 (2013-06-26)\n* Switches Identifier generation to java.security.SecureRandom.\u003c/p\u003e\n\u003cp\u003eversion 2.8 (2013-06-30)\n* Fixes serialisation and assignment bugs in ClientMetadata.\n* Switches Secret generation to java.security.SecureRandom.\u003c/p\u003e\n\u003cp\u003eversion 2.9 (2013-09-17)\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/668f6d8de81cad42984e4cacb19f69261a2254b6\"\u003e\u003ccode\u003e668f6d8\u003c/code\u003e\u003c/a\u003e\nThe ParseException message thrown by Prompt.Type.parse must not include\nparse...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/75cde87ee5301a3cc558ed040bcc51db4ff0184d\"\u003e\u003ccode\u003e75cde87\u003c/code\u003e\u003c/a\u003e\nUpdates test sample X.509 cert chain resource\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/a7a9623882a119b4024798a91955b9fc0cc095b5\"\u003e\u003ccode\u003ea7a9623\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release 11.30.2\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/e03c9bbc8e208307b0ec6d0970901b2b5fcc5d83\"\u003e\u003ccode\u003ee03c9bb\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare for next development iteration\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/6f11e3038f6ebc6ded2045a145bafb22d3c66b13\"\u003e\u003ccode\u003e6f11e30\u003c/code\u003e\u003c/a\u003e\nExpands AMR test coverage\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/afba676c638c25b9acbc88f677bfa321e6e0d6da\"\u003e\u003ccode\u003eafba676\u003c/code\u003e\u003c/a\u003e\nAdds static AMR.parseList(Collection\u0026lt;String\u0026gt;) method\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/4b700b3f2176a8c04c8df6298a594a6419041caf\"\u003e\u003ccode\u003e4b700b3\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release 11.31\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/b214cfadec399b2bd695173cc8613529434f1237\"\u003e\u003ccode\u003eb214cfa\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare for next development iteration\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/28628f9543f4b18f4a4c1368846386a95142777d\"\u003e\u003ccode\u003e28628f9\u003c/code\u003e\u003c/a\u003e\nThe DPoPCommonVerifier must instantiate the DPoPProofClaimsSetVerifier\nwith t...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/commits/4df4d53cea079a3bc14ec8a36117205284bdbdf3\"\u003e\u003ccode\u003e4df4d53\u003c/code\u003e\u003c/a\u003e\nThe DPoPCommonVerifier must instantiate the DPoPProofClaimsSetVerifier\nwith t...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/branches/compare/11.34..11.20.1\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dcom.nimbusds:oauth2-oidc-sdk\u0026package-manager\u003dmaven\u0026previous-version\u003d11.20.1\u0026new-version\u003d11.34)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "4242d587b25a74e944f2a01e79d52dcd401d5cf2", "tree": "c22140b8edd1eb716824e2ff4f9aeee54e3ffa8a", "parents": [ "47cd032939f15edbfc7c87fbcb02d585f82e5948" ], "author": { "name": "JB Onofré", "email": "jb.onofre@dremio.com", "time": "Mon Mar 16 09:37:09 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 16 09:37:09 2026 +0100" }, "message": "MINOR: Bump version to 20.0.0-SNAPSHOT (#1076)" }, { "commit": "47cd032939f15edbfc7c87fbcb02d585f82e5948", "tree": "3846f19af350ebddfe29de8027e0332f118514ec", "parents": [ "fa781dcc3c42ab98214743e3aef1eb8fd5297209" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Mar 16 08:46:10 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 16 08:46:10 2026 +0100" }, "message": "MINOR: Bump org.codehaus.mojo:properties-maven-plugin from 1.2.1 to 1.3.0 (#1072)\n\nBumps\n[org.codehaus.mojo:properties-maven-plugin](https://github.com/mojohaus/properties-maven-plugin)\nfrom 1.2.1 to 1.3.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/mojohaus/properties-maven-plugin/releases\"\u003eorg.codehaus.mojo:properties-maven-plugin\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.3.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e🚀 New features and improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFeature Request: add yml properties manager (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/properties-maven-plugin/pull/134\"\u003e#134\u003c/a\u003e)\n\u003ca href\u003d\"https://github.com/mattmeye\"\u003e\u003ccode\u003e@​mattmeye\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eInclude/exclude project properties (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/properties-maven-plugin/pull/126\"\u003e#126\u003c/a\u003e)\n\u003ca\nhref\u003d\"https://github.com/reda-alaoui\"\u003e\u003ccode\u003e@​reda-alaoui\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e👻 Maintenance\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse Sisu plugin (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/properties-maven-plugin/pull/140\"\u003e#140\u003c/a\u003e)\n\u003ca\nhref\u003d\"https://github.com/slachiewicz\"\u003e\u003ccode\u003e@​slachiewicz\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Build\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump release-drafter/release-drafter from 5 to 6 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/properties-maven-plugin/pull/120\"\u003e#120\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Dependency updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump org.codehaus.mojo:mojo-parent from 94 to 95 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/properties-maven-plugin/pull/156\"\u003e#156\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.mojo:mojo-parent from 93 to 94 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/properties-maven-plugin/pull/154\"\u003e#154\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.yaml:snakeyaml from 2.4 to 2.5 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/properties-maven-plugin/pull/153\"\u003e#153\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.mojo:mojo-parent from 92 to 93 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/properties-maven-plugin/pull/152\"\u003e#152\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.mojo:mojo-parent from 91 to 92 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/properties-maven-plugin/pull/149\"\u003e#149\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.mojo:mojo-parent from 87 to 91 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/properties-maven-plugin/pull/148\"\u003e#148\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRequire Maven 3.6.3 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/properties-maven-plugin/pull/139\"\u003e#139\u003c/a\u003e)\n\u003ca\nhref\u003d\"https://github.com/slachiewicz\"\u003e\u003ccode\u003e@​slachiewicz\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.yaml:snakeyaml from 2.3 to 2.4 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/properties-maven-plugin/pull/138\"\u003e#138\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.mojo:mojo-parent from 86 to 87 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/properties-maven-plugin/pull/137\"\u003e#137\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.mojo:mojo-parent from 85 to 86 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/properties-maven-plugin/pull/132\"\u003e#132\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.plexus:plexus-utils from 4.0.1 to 4.0.2 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/properties-maven-plugin/pull/133\"\u003e#133\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.mojo:mojo-parent from 84 to 85 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/properties-maven-plugin/pull/131\"\u003e#131\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.mojo:mojo-parent from 80 to 84 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/properties-maven-plugin/pull/130\"\u003e#130\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.mojo:mojo-parent from 78 to 80 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/properties-maven-plugin/pull/122\"\u003e#122\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.plexus:plexus-utils from 4.0.0 to 4.0.1 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/properties-maven-plugin/pull/125\"\u003e#125\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump apache/maven-gh-actions-shared from 3 to 4 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/properties-maven-plugin/pull/124\"\u003e#124\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.mojo:mojo-parent from 77 to 78 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/properties-maven-plugin/pull/119\"\u003e#119\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/properties-maven-plugin/commit/91a2ade909971501f4fb7cb5b11aa79c55daebbc\"\u003e\u003ccode\u003e91a2ade\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release\nproperties-maven-plugin-1.3.0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/properties-maven-plugin/commit/bf56d329e0a2bf93cf898d55d06bb82af1b65a67\"\u003e\u003ccode\u003ebf56d32\u003c/code\u003e\u003c/a\u003e\nBump org.codehaus.mojo:mojo-parent from 94 to 95\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/properties-maven-plugin/commit/80e20be60fb2fc5e32191c44ff179abb18e0771f\"\u003e\u003ccode\u003e80e20be\u003c/code\u003e\u003c/a\u003e\nBump org.codehaus.mojo:mojo-parent from 93 to 94\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/properties-maven-plugin/commit/e8ae7a549abfbedd3d0a55024a6bf7bbe120475a\"\u003e\u003ccode\u003ee8ae7a5\u003c/code\u003e\u003c/a\u003e\nBump org.yaml:snakeyaml from 2.4 to 2.5\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/properties-maven-plugin/commit/bb39c3dac8d245b593ade92775ac3c26dee06359\"\u003e\u003ccode\u003ebb39c3d\u003c/code\u003e\u003c/a\u003e\nBump org.codehaus.mojo:mojo-parent from 92 to 93\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/properties-maven-plugin/commit/b41267b38c2e505668f2e9b7f76dffc6971ec0d2\"\u003e\u003ccode\u003eb41267b\u003c/code\u003e\u003c/a\u003e\nBump org.codehaus.mojo:mojo-parent from 91 to 92\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/properties-maven-plugin/commit/bb548c594cc64177609a30410c0efdbb234a2d3e\"\u003e\u003ccode\u003ebb548c5\u003c/code\u003e\u003c/a\u003e\nBump org.codehaus.mojo:mojo-parent from 87 to 91\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/properties-maven-plugin/commit/3ffa9cb844ecacce5b49c860eeffc8ad6a19b078\"\u003e\u003ccode\u003e3ffa9cb\u003c/code\u003e\u003c/a\u003e\nUse Sisu plugin\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/properties-maven-plugin/commit/7adbe3b5b6cb112219128f903d30bee53d598be1\"\u003e\u003ccode\u003e7adbe3b\u003c/code\u003e\u003c/a\u003e\nRequire Maven 3.6.3\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/properties-maven-plugin/commit/407342ff704d73472aa7f0ad05684b5e403e37bf\"\u003e\u003ccode\u003e407342f\u003c/code\u003e\u003c/a\u003e\nBump org.yaml:snakeyaml from 2.3 to 2.4\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/mojohaus/properties-maven-plugin/compare/1.2.1...properties-maven-plugin-1.3.0\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dorg.codehaus.mojo:properties-maven-plugin\u0026package-manager\u003dmaven\u0026previous-version\u003d1.2.1\u0026new-version\u003d1.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "fa781dcc3c42ab98214743e3aef1eb8fd5297209", "tree": "86d2e9928340d14d28542cde0719e6e593440dbe", "parents": [ "d5e132b96500646ea4021d3b032d00a65233b6b5" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Mar 16 08:45:54 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 16 08:45:54 2026 +0100" }, "message": "MINOR: Bump com.squareup.okio:okio-jvm from 3.16.4 to 3.17.0 (#1075)\n\nBumps [com.squareup.okio:okio-jvm](https://github.com/square/okio) from\n3.16.4 to 3.17.0.\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/square/okio/blob/master/CHANGELOG.md\"\u003ecom.squareup.okio:okio-jvm\u0027s\nchangelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eVersion 3.17.0\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003e2026-03-11\u003c/em\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNew: Adjust down the Kotlin stdlib dependency to [Kotlin\n2.1.21][kotlin_2_1_21]. Okio is built\nwith an up-to-date Kotlin compiler (2.2.21), but depends on an older\nkotlin-stdlib. We\u0027re doing\nthis so you can update Okio and Kotlin independently.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix: Return the correct timestamp in\n\u003ccode\u003eFileMetadata.createdAtMillis\u003c/code\u003e on Kotlin/Native on UNIX\nplatforms. We were incorrectly using the POSIX \u003ccode\u003ectime\u003c/code\u003e\n(\u003cem\u003echange\u003c/em\u003e time) instead of the\n\u003ccode\u003ebirthtime\u003c/code\u003e. With this fix Okio now prefers\n\u003ccode\u003estatx()\u003c/code\u003e over \u003ccode\u003estat()\u003c/code\u003e on native platforms. This\nAPI first appeared in Linux in 4.11 (2017) and Android in API 30\n(2020).\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/square/okio/commit/80a50234e5edb96041a8168c4754ba9e1ff3625a\"\u003e\u003ccode\u003e80a5023\u003c/code\u003e\u003c/a\u003e\nPrepare for release 3.17.0.\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/square/okio/commit/65c0c26bb5242b697ffc28f6c666ae0a01197ff6\"\u003e\u003ccode\u003e65c0c26\u003c/code\u003e\u003c/a\u003e\nSwitch to FileMetadata to use statx instead of stat on Linux and Apple\nplatfo...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/square/okio/commit/b11f17b233601af92ae1fabea3fecdeea0608631\"\u003e\u003ccode\u003eb11f17b\u003c/code\u003e\u003c/a\u003e\nRemove Kotlin/JS IR default parameter workarounds. (\u003ca\nhref\u003d\"https://redirect.github.com/square/okio/issues/1786\"\u003e#1786\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/square/okio/commit/b35f473635db8ad9d5a9b096780e960d1b8f7d4d\"\u003e\u003ccode\u003eb35f473\u003c/code\u003e\u003c/a\u003e\nUpdate Gradle to v9.4.0 (\u003ca\nhref\u003d\"https://redirect.github.com/square/okio/issues/1785\"\u003e#1785\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/square/okio/commit/cbcee31f2bcb7e6f606d8eafc45f4c8ea7228cae\"\u003e\u003ccode\u003ecbcee31\u003c/code\u003e\u003c/a\u003e\nUpdate actions/upload-artifact action to v7 (\u003ca\nhref\u003d\"https://redirect.github.com/square/okio/issues/1783\"\u003e#1783\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/square/okio/commit/fc7aecb7f6f7a123f2024ab6397da04311546bf2\"\u003e\u003ccode\u003efc7aecb\u003c/code\u003e\u003c/a\u003e\nUpdate dependency com.android.tools.build:gradle to v9.0.1 (\u003ca\nhref\u003d\"https://redirect.github.com/square/okio/issues/1781\"\u003e#1781\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/square/okio/commit/79aa26755c77df8c4d0233926c7308fd353ad697\"\u003e\u003ccode\u003e79aa267\u003c/code\u003e\u003c/a\u003e\nDrop \u003ccode\u003eisWasm()\u003c/code\u003e early return workaround for KT-60212. (\u003ca\nhref\u003d\"https://redirect.github.com/square/okio/issues/1777\"\u003e#1777\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/square/okio/commit/45459dca7d40b4c2df1454a0f363e0b8e153beb5\"\u003e\u003ccode\u003e45459dc\u003c/code\u003e\u003c/a\u003e\nFix result of an \u0027errnoToIOException\u0027 call is not thrown. inside\n`PosixFileSy...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/square/okio/commit/9fbab0f7ab00b525b0ae331c8c3ac3c645afc8c8\"\u003e\u003ccode\u003e9fbab0f\u003c/code\u003e\u003c/a\u003e\nDecode env variables in WASI tests (\u003ca\nhref\u003d\"https://redirect.github.com/square/okio/issues/1773\"\u003e#1773\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/square/okio/commit/50abe8900f2e7bd48d4afc77bda0afd74fc790ac\"\u003e\u003ccode\u003e50abe89\u003c/code\u003e\u003c/a\u003e\nStop using AssertJ (\u003ca\nhref\u003d\"https://redirect.github.com/square/okio/issues/1771\"\u003e#1771\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/square/okio/compare/parent-3.16.4...parent-3.17.0\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dcom.squareup.okio:okio-jvm\u0026package-manager\u003dmaven\u0026previous-version\u003d3.16.4\u0026new-version\u003d3.17.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "d5e132b96500646ea4021d3b032d00a65233b6b5", "tree": "02e07183c00ebfb331c3ba0f20afe0f36eca0854", "parents": [ "77127ef54272b578075c574071f24ee8c1bba22e" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Mar 16 08:45:29 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 16 08:45:29 2026 +0100" }, "message": "MINOR: [CI] Bump actions/download-artifact from 8.0.0 to 8.0.1 (#1068)\n\nBumps\n[actions/download-artifact](https://github.com/actions/download-artifact)\nfrom 8.0.0 to 8.0.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/actions/download-artifact/releases\"\u003eactions/download-artifact\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat\u0027s Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for CJK characters in the artifact name by \u003ca\nhref\u003d\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/actions/download-artifact/pull/471\"\u003eactions/download-artifact#471\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd a regression test for artifact name + content-type mismatches by\n\u003ca href\u003d\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/actions/download-artifact/pull/472\"\u003eactions/download-artifact#472\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca\nhref\u003d\"https://github.com/actions/download-artifact/compare/v8...v8.0.1\"\u003ehttps://github.com/actions/download-artifact/compare/v8...v8.0.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/actions/download-artifact/commit/3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c\"\u003e\u003ccode\u003e3e5f45b\u003c/code\u003e\u003c/a\u003e\nAdd regression tests for CJK characters (\u003ca\nhref\u003d\"https://redirect.github.com/actions/download-artifact/issues/471\"\u003e#471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/actions/download-artifact/commit/e6d03f67377d4412c7aa56a8e2e4988e6ec479dd\"\u003e\u003ccode\u003ee6d03f6\u003c/code\u003e\u003c/a\u003e\nAdd a regression test for artifact name + content-type mismatches (\u003ca\nhref\u003d\"https://redirect.github.com/actions/download-artifact/issues/472\"\u003e#472\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca\nhref\u003d\"https://github.com/actions/download-artifact/compare/70fc10c6e5e1ce46ad2ea6f2b72d43f7d47b13c3...3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dactions/download-artifact\u0026package-manager\u003dgithub_actions\u0026previous-version\u003d8.0.0\u0026new-version\u003d8.0.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "77127ef54272b578075c574071f24ee8c1bba22e", "tree": "3fb51ad9dc4b51c5452f4c3f8e90d022bb58c2e0", "parents": [ "b410fb26d01c7cefc4c6e3443a53562164001371" ], "author": { "name": "Sutou Kouhei", "email": "kou@clear-code.com", "time": "Mon Mar 16 16:17:40 2026 +0900" }, "committer": { "name": "Sutou Kouhei", "email": "kou@clear-code.com", "time": "Mon Mar 16 16:17:40 2026 +0900" }, "message": "GH-1077: Add missing `export GH_TOKEN` to release scripts\n" }, { "commit": "b410fb26d01c7cefc4c6e3443a53562164001371", "tree": "9ac2519e7d58f077b075bd7e86d7dfce34aced4f", "parents": [ "77df3ecb2cf5517fb5d37a4b2806844e3b4700df" ], "author": { "name": "JB Onofré", "email": "jb.onofre@dremio.com", "time": "Thu Mar 12 11:58:50 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Thu Mar 12 11:58:50 2026 +0100" }, "message": "MINOR: Bump version to 19.0.0 (#1066)" }, { "commit": "77df3ecb2cf5517fb5d37a4b2806844e3b4700df", "tree": "0ad7c0f8ab6e6541b7c6b89546662b2008e0240d", "parents": [ "4a7fb4ef95d9386a0a7102fb18fbe52547527c21" ], "author": { "name": "Yicong Huang", "email": "17627829+Yicong-Huang@users.noreply.github.com", "time": "Thu Mar 12 01:39:44 2026 -0700" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Thu Mar 12 09:39:44 2026 +0100" }, "message": "GH-343: Fix BaseVariableWidthVector and BaseLargeVariableWidthVector offset buffer serialization (#989)\n\n## What\u0027s Changed\n\nFix `BaseVariableWidthVector`/`BaseLargeVariableWidthVector` IPC\nserialization when `valueCount` is 0.\n\n### Problem\n\nWhen `valueCount \u003d\u003d 0`, `setReaderAndWriterIndex()` was setting\n`offsetBuffer.writerIndex(0)`, which means `readableBytes() \u003d\u003d 0`. IPC\nserializer uses `readableBytes()` to determine buffer size, so 0 bytes\nwere written to the IPC stream. This crashes IPC readers in other\nlibraries because Arrow spec requires offset buffer to have at least one\nentry `[0]`.\n\nThis is a follow-up to #967 which fixed the same issue in\n`ListVector`/`LargeListVector`.\n\n### Fix\n\nModify `setReaderAndWriterIndex()` to always use `(valueCount + 1) *\nOFFSET_WIDTH` for the offset buffer\u0027s `writerIndex`, moved outside the\nif/else branch. When the offset buffer capacity is insufficient (e.g.,\nempty buffer from constructor or loaded via `loadFieldBuffers()`), it\nreallocates a properly sized buffer on demand.\n\n\n### Testing\n\nAdded tests for empty `VarCharVector` and `LargeVarCharVector` verifying\noffset buffer has correct `readableBytes()` after `setValueCount(0)`.\n\n\nCloses #343\n\n---------\n\nCo-authored-by: Yicong Huang \u003cyicong.huang+data@databricks.com\u003e" }, { "commit": "4a7fb4ef95d9386a0a7102fb18fbe52547527c21", "tree": "4f09f3dd69e311626992e51184f2721d3e019857", "parents": [ "18de621ff2e7a72f54d416b9ef6e6a4a96b2aa8d" ], "author": { "name": "Aleksei Starikov", "email": "aleksei.starikov.ax@gmail.com", "time": "Wed Mar 11 14:59:21 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Wed Mar 11 14:59:21 2026 +0100" }, "message": "GH-552: [Vector] Add absent methods to the UnionFixedSizeListWriter (#1052)\n\n## What\u0027s Changed\n\nAdd absent methods to the `UnionFixedSizeListWriter`.\n\n1. Aligned the `UnionFixedSizeListWriter` template with the\n`UnionListWriter` template, which added the following previously absent\nmethods to the generated `UnionFixedSizeListWriter` class:\n\n```\n- duration() methods\n - DurationWriter duration()\n - DurationWriter duration(String name, org.apache.arrow.vector.types.TimeUnit unit)\n - DurationWriter duration(String name)\n- timeStampSecTZ() methods\n - TimeStampSecTZWriter timeStampSecTZ()\n - TimeStampSecTZWriter timeStampSecTZ(String name, String timezone)\n - TimeStampSecTZWriter timeStampSecTZ(String name)\n- timeStampMilliTZ() methods\n - TimeStampMilliTZWriter timeStampMilliTZ()\n - TimeStampMilliTZWriter timeStampMilliTZ(String name, String timezone)\n - TimeStampMilliTZWriter timeStampMilliTZ(String name)\n- timeStampMicroTZ() methods\n - TimeStampMicroTZWriter timeStampMicroTZ()\n - TimeStampMicroTZWriter timeStampMicroTZ(String name, String timezone)\n - TimeStampMicroTZWriter timeStampMicroTZ(String name)\n- timeStampNanoTZ() methods\n - TimeStampNanoTZWriter timeStampNanoTZ()\n - TimeStampNanoTZWriter timeStampNanoTZ(String name, String timezone)\n - TimeStampNanoTZWriter timeStampNanoTZ(String name)\n- fixedSizeBinary() methods\n - FixedSizeBinaryWriter fixedSizeBinary()\n - FixedSizeBinaryWriter fixedSizeBinary(String name, int byteWidth)\n - FixedSizeBinaryWriter fixedSizeBinary(String name)\n- write() methods for Duration\n - void writeDuration(long value)\n - void write(DurationHolder holder)\n- write() methods for TimeStampSecTZ \n - void writeTimeStampSecTZ(long value)\n - void write(TimeStampSecTZHolder holder)\n- write() methods for TimeStampMilliTZ\n - void writeTimeStampMilliTZ(long value)\n - void write(TimeStampMilliTZHolder holder)\n- write() methods for TimeStampMicroTZ\n - void writeTimeStampMicroTZ(long value)\n - void write(TimeStampMicroTZHolder holder)\n- write() methods for TimeStampNanoTZ\n - void writeTimeStampNanoTZ(long value)\n - void write(TimeStampNanoTZHolder holder)\n- write() methods for FixedSizeBinary\n - void writeFixedSizeBinary(ArrowBuf buffer)\n - void write(FixedSizeBinaryHolder holder)\n```\n\n2. Add `structName \u003d name;` for 2 existing methods (align them with\nother similar methods):\n\n```\n- DecimalWriter decimal(String name)\n- Decimal256Writer decimal256(String name)\n```\n\n3. Remove unused assignments from the `UnionListWriter` template + add\nmissing overrides.\n\nThis fix adds override annotations to the `UnionListWriter` generated\nclass and extend/fix the code of the `UnionFixedSizeListWriter`\ngenerated class. So, the change is backward compatible.\n\nSee the gists for the generated writer classes:\n-\n[UnionFixedSizeListWriter](https://gist.github.com/axreldable/9908f98d75ec4c0a62e4ccfa176cbbe1)\n-\n[UnionListWriter](https://gist.github.com/axreldable/881f3cf1ed001c513870daf3ea4f3bbd)\n\n---\n\nInspired by this [PR](https://github.com/apache/arrow/pull/35353).\n\n---\n\nCloses #552 ." }, { "commit": "18de621ff2e7a72f54d416b9ef6e6a4a96b2aa8d", "tree": "044e31ee6465580848455e9a6a5367aaf6a83037", "parents": [ "6ffb2d0450effccf115203ae31da10708a35dda8" ], "author": { "name": "Pedro Matias", "email": "pedro.matias@dremio.com", "time": "Wed Mar 11 10:59:07 2026 +0000" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Wed Mar 11 11:59:07 2026 +0100" }, "message": "GH-1004: [JDBC] Fix NPE in ArrowFlightJdbcDriver#connect​(final String url, final Properties info) (#1005)\n\n## What\u0027s Changed\n`ArrowFlightJdbcDriver.connect(final String url, final Properties info)`\nnow properly ignores a null value for `info`, obtaining the properties\nsolely from the URL.\n\nCloses #1004." }, { "commit": "6ffb2d0450effccf115203ae31da10708a35dda8", "tree": "6a58d18d1eb1c5c9c03d3ae69b2d62b1bae7e7c0", "parents": [ "c8666f28569ca7e825b45f8ca39434c12428bec6" ], "author": { "name": "Aleksei Starikov", "email": "aleksei.starikov.ax@gmail.com", "time": "Wed Mar 11 11:23:45 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Wed Mar 11 11:23:45 2026 +0100" }, "message": "GH-301: [Vector] Allow adding a vector at the end of VectorSchemaRoot (#1013)\n\n## What\u0027s Changed\n\nAllow adding a vector at the end of VectorSchemaRoot in the\n`VectorSchemaRoot#addVector()` method.\n\nPreviously, the precondition `index \u003c fieldVectors.size()` rejected\n`index \u003d\u003d fieldVectors.size()`, so appending was impossible. The\nprecondition is now `index \u003c\u003d fieldVectors.size()`, and when `index \u003d\u003d\nfieldVectors.size()` the new vector is appended after all existing\nvectors.\n\nThe implementation of `VectorSchemaRoot#addVector()` is now aligned with\n[BaseTable#insertVector()](https://github.com/apache/arrow-java/blob/main/vector/src/main/java/org/apache/arrow/vector/table/BaseTable.java#L156)\n\nThe change is backward compatible, as it extends the functionality of\nthe `VectorSchemaRoot#addVector()` method.\n\nCloses #301." }, { "commit": "c8666f28569ca7e825b45f8ca39434c12428bec6", "tree": "4408b9e039da0f4a1ed5c106002c11356bede430", "parents": [ "bdec833fb69f945db9f3c767715c93d09214f2b5" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Wed Mar 11 11:09:05 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Wed Mar 11 11:09:05 2026 +0100" }, "message": "MINOR: Bump com.gradle:common-custom-user-data-maven-extension from 2.0.3 to 2.1.0 (#998)\n\nBumps\n[com.gradle:common-custom-user-data-maven-extension](https://github.com/gradle/common-custom-user-data-maven-extension)\nfrom 2.0.3 to 2.1.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/gradle/common-custom-user-data-maven-extension/releases\"\u003ecom.gradle:common-custom-user-data-maven-extension\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.1.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[NEW] Add support for evaluating one or more Groovy scripts in the\nDevelocity storage directory\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.0.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[FIX] Added a null-safety check to handle cases where the Maven\nsession may be null\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.0.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[FIX] GitHub Actions build link doesn\u0027t include run attempt\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.0.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[FIX] Add GitHub run attempt as custom value to precisely identify\nGitHub Action run\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.0.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[FIX] Add GitHub run number as custom value to precisely identify\nGitHub Action run\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/gradle/common-custom-user-data-maven-extension/commit/0bb5838877d857339d4978d7cf95ebf92d80fca0\"\u003e\u003ccode\u003e0bb5838\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release v2.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/gradle/common-custom-user-data-maven-extension/commit/4b1a27c382505dd0141ded0f97b55e762b36b60e\"\u003e\u003ccode\u003e4b1a27c\u003c/code\u003e\u003c/a\u003e\nUpdate changes.md\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/gradle/common-custom-user-data-maven-extension/commit/b9010d0e992d013c796db047d0d6198625cb4ee8\"\u003e\u003ccode\u003eb9010d0\u003c/code\u003e\u003c/a\u003e\nMerge pull request \u003ca\nhref\u003d\"https://redirect.github.com/gradle/common-custom-user-data-maven-extension/issues/329\"\u003e#329\u003c/a\u003e\nfrom gradle/erichaagdev/groovy-scripts-m2-directory\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/gradle/common-custom-user-data-maven-extension/commit/82281ec9c8e64b513c21dc3a070ce3d9e1024189\"\u003e\u003ccode\u003e82281ec\u003c/code\u003e\u003c/a\u003e\nSwitch Groovy script evaluation order\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/gradle/common-custom-user-data-maven-extension/commit/7cdb3cc04431f2df925970f598b493debad18413\"\u003e\u003ccode\u003e7cdb3cc\u003c/code\u003e\u003c/a\u003e\nClarify script locations in README\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/gradle/common-custom-user-data-maven-extension/commit/2c511ae9448ff6709e3ec126051ce85c32d4321b\"\u003e\u003ccode\u003e2c511ae\u003c/code\u003e\u003c/a\u003e\nAdd support for evaluating one or more Groovy scripts in the Develocity\nstora...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/gradle/common-custom-user-data-maven-extension/commit/f02dbca75dfe88afdf5e3a6aec78cf85474fbd3f\"\u003e\u003ccode\u003ef02dbca\u003c/code\u003e\u003c/a\u003e\nUpdate to use version 2.0.7 of the Common Custom User Data Maven\nExtension\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/gradle/common-custom-user-data-maven-extension/commit/88e0f414d7035a5a15b3a08105851887113bc051\"\u003e\u003ccode\u003e88e0f41\u003c/code\u003e\u003c/a\u003e\nPrepare for next round of development\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/gradle/common-custom-user-data-maven-extension/commit/36edaf81c38f68c0ecc85f906d5877ec819432ba\"\u003e\u003ccode\u003e36edaf8\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare for next development iteration\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/gradle/common-custom-user-data-maven-extension/commit/683a96653c5d96555bb9c2f84cc948edeb101bd8\"\u003e\u003ccode\u003e683a966\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release v2.0.7\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/gradle/common-custom-user-data-maven-extension/compare/v2.0.3...v2.1.0\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dcom.gradle:common-custom-user-data-maven-extension\u0026package-manager\u003dmaven\u0026previous-version\u003d2.0.3\u0026new-version\u003d2.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nYou can trigger a rebase of this PR by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\n\u003e **Note**\n\u003e Automatic rebases have been disabled on this pull request as it has\nbeen open for over 30 days.\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "bdec833fb69f945db9f3c767715c93d09214f2b5", "tree": "83301490fcbc110ff78ffe224463fba4ae4c6de3", "parents": [ "e349a9a837aa9e3c5a56cbdd841f4e9655fa9ab2" ], "author": { "name": "Pedro Matias", "email": "pedro.matias@dremio.com", "time": "Wed Mar 11 07:34:47 2026 +0000" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Wed Mar 11 08:34:47 2026 +0100" }, "message": "GH-994: Fix DatabaseMetaData NPEs when SqlInfo is unavailable (#995)\n\n## What\u0027s Changed\n\nMultiple DatabaseMetaData methods had NPEs when the method\n`ArrowDatabaseMetadata.getSqlInfoAndCacheIfCacheIsEmpty(final SqlInfo\nsqlInfoCommand, final Class\u003cT\u003e desiredType)`\nreturned null.\n\nNow the method never returns null. If the database server does not\nprovide the requested info, either a sensible default is returned or a\nSQLException is thrown.\n\nCloses #994." }, { "commit": "e349a9a837aa9e3c5a56cbdd841f4e9655fa9ab2", "tree": "fda76ccd75c285a7acfda9ddacd6afd9e2ce6234", "parents": [ "7390f551267798d4670eae6b2894c527dbc90403" ], "author": { "name": "Logan Riggs", "email": "logan.riggs@dremio.com", "time": "Wed Mar 11 00:09:23 2026 -0700" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Wed Mar 11 08:09:23 2026 +0100" }, "message": "GH-1061: Add codegen classifier jar for arrow-vector. (#1062)\n\n## What\u0027s Changed\n\nAdd a new codegen classifier jar for arrow-vector that contains tdd and\nother template files.\n\nCloses #1061 ." }, { "commit": "7390f551267798d4670eae6b2894c527dbc90403", "tree": "822dcce4fb5e611573c70b2a2f756df8e7add1fd", "parents": [ "a53339b6ba2321f51f7f10f16a1ce06b12384498" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Tue Mar 10 14:46:43 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Tue Mar 10 14:46:43 2026 +0100" }, "message": "MINOR: Bump io.grpc:grpc-bom from 1.78.0 to 1.79.0 (#1048)\n\nBumps [io.grpc:grpc-bom](https://github.com/grpc/grpc-java) from 1.78.0\nto 1.79.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/grpc/grpc-java/releases\"\u003eio.grpc:grpc-bom\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.79.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eAPI Changes\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ecore: Delete the never-used\nio.grpc.internal.ReadableBuffer.readBytes(ByteBuffer) (\u003ca\nhref\u003d\"https://redirect.github.com/grpc/grpc-java/issues/12580\"\u003e#12580\u003c/a\u003e)\n(738782fb0). This is deeply internal and not accessible, so shouldn’t\nimpact anything. However, Apache Arrow Java \u003ca\nhref\u003d\"https://github.com/apache/arrow-java/blob/96156ccc2bf933c75c852ca7c04418a61f87defd/flight/flight-core/src/main/java/org/apache/arrow/flight/grpc/GetReadableBuffer.java#L44-L45\"\u003euses\nreflection to access private fields\u003c/a\u003e; \u003ca\nhref\u003d\"https://redirect.github.com/apache/arrow-java/pull/954\"\u003eGH-939:\nRemove reflection for gRPC buffers\u003c/a\u003e is swapping to gRPC’s public\nzero-copy APIs\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eopentelemetry: Add target attribute filter for metrics (\u003ca\nhref\u003d\"https://redirect.github.com/grpc/grpc-java/issues/12587\"\u003e#12587\u003c/a\u003e).\nIntroduce an optional Predicate targetAttributeFilter to control how\ngrpc.target is recorded in OpenTelemetry client metrics. When a filter\nis provided, targets rejected by the predicate are normalized to\n\u0026quot;other\u0026quot; to reduce grpc.target metric cardinality, while\naccepted targets are recorded as-is. If no filter is set, existing\nbehavior is preserved. This change adds a new Builder API on\nGrpcOpenTelemetry to allow applications to configure the filter. \u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eBehavior Changes\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ecore: Convert AutoConfiguredLB to an actual LB (4bbf8eee5). This is\nan internal refactoring, but it does improve how errors are handled for\nbroken binaries. Previously, not being able to load pick_first would\nresult in a channel panic. Now it is handled as a regular load balancing\nerror\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eokhttp: Assert no pending streams before transport READY (\u003ca\nhref\u003d\"https://redirect.github.com/grpc/grpc-java/issues/12566\"\u003e#12566\u003c/a\u003e)\n(ed6d175fc). No pending streams should exist when the transport\ntransitions to READY. This PR adds an assertion to help verify this\ninvariant.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eBug Fixes\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ecore: PickFirstLB should not return a subchannel during CONNECTING\n(228fc8ecd). Pick-first in grpc-java has behaved this way since it was\ncreated, and it was of no consequence. However, now there are some load\nbalancing policies (mainly RLS) that will do a pick() and hope the\nresult to be reasonably accurate for metrics.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eImprovements\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ecore: Improve DEADLINE_EXCEEDED message for CallCreds delays\n(ead532b39). Previously the error message contained “buffered_nanos” and\n“waiting_for_connection” for connection delays. However, we discovered\nthe same strings were also used if waiting on CallCredentials. Now\nyou’ll see details like “connecting_and_lb_delay”,\n“call_credentials_delay”, and “was_still_waiting”.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eopentelemetry: Add Android API checking (a9f73f4c0). Previously we\nassumed OpenTelemetry support would not be used on Android. It did\nhappen to be compatible with Android, but since OpenTelemetry does have\nsome Android support, we now have a check that it remains compatible\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ecore: Catch Errors when calling complex config parsing code\n(a535ed799). Error (and any other Throwable) is now caught and handled\nwhen parsing configuration (e.g., service config, xds). This will cause\nsuch failures to be handled gracefully instead of panicking the\nchannel\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ecore: Implement LoadBalancer.Helper.createOobChannel() with the\ninternals of createResolvingOobChannel() (3915d029c). This API is only\nexpected to be relevant to the gRPC-LB lookaside load balancer, and is\nnot believed to have behavior changes. Out-of-band channel had been\nimplemented with its own stripped-down Channel without load balancing.\nReimplementing using the resolving oob channel makes it a full-fledged\nchannel and reduces the burden when integrating new features and allows\nus to have a ManagedChannelBuilder to use with efforts like \u003ca\nhref\u003d\"https://redirect.github.com/grpc/proposal/pull/529\"\u003egRFC A110:\nChild Channel Options\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003exds: Implement the proactive connection logic in RingHashLoadBalancer\nas outlined in gRFC A61 (\u003ca\nhref\u003d\"https://redirect.github.com/grpc/grpc-java/issues/12596\"\u003e#12596\u003c/a\u003e).\nPreviously, the Java implementation only initialized child balancers\nwhen a ring-chosen endpoint was in TRANSIENT_FAILURE during a picker\u0027s\npickSubchannel call. This PR adds the missing logic: when a child\nbalancer reports TRANSIENT_FAILURE, the LoadBalancer now proactively\ninitializes the first available IDLE child if no other children are\ncurrently connecting or ready.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThis ensures a backup subchannel starts warming up immediately\noutside the RPC flow, reducing failover latency and improving overall\nresilience. This behavior was previously present but was inadvertently\nlost after \u003ca\nhref\u003d\"https://redirect.github.com/grpc/grpc-java/pull/10610\"\u003e#10610\u003c/a\u003e.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eapi: Add RFC 3986 support to DnsNameResolverProvider (\u003ca\nhref\u003d\"https://redirect.github.com/grpc/grpc-java/issues/12602\"\u003e#12602\u003c/a\u003e)\n(f65127cf7) Experimental RFC 3986 target URI parsing mode (disabled by\ndefault)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eNew Features\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eopentelemetry: Actual reason for the disconnects in subchannel\nmetrics(6b2f7580c), completing the remaining work in \u003ca\nhref\u003d\"https://redirect.github.com/grpc/proposal/pull/485/files\"\u003egRFC\nA96: OTel metrics for Subchannels\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eDependencies\u003c/strong\u003e \u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eprotobuf: Upgrade Bazel protobuf to 33.1 (\u003ca\nhref\u003d\"https://redirect.github.com/grpc/grpc-java/issues/12553\"\u003e#12553\u003c/a\u003e)\n(b61a8f49c) and load java_proto_library from the protobuf repo\n(c7f3cdbc3)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eprotobuf: Fix build with Bazel 9 by upgrading bazel_jar_jar and\ngrpc-proto versions (\u003ca\nhref\u003d\"https://redirect.github.com/grpc/grpc-java/issues/12569\"\u003e#12569\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrade dependencies (\u003ca\nhref\u003d\"https://redirect.github.com/grpc/grpc-java/issues/12588\"\u003e#12588\u003c/a\u003e)\n(6422092e3) Netty to 4.1.130, error-prone annotations to 2.45.0,\ngoogle-auth-library to 1.41.0, tomcat-embed-core9 to 9.0.113,\ntomcat-embed-core to 10.1.50, opentelemetry to 1.57.0,\njetty-ee10-servlet to 12.1.5, jetty-http2-server to 12.1.5,\ngoogle-cloud-logging to 3.23.9, google-auth to 1.41.0,\nproto-google-common-protos to 2.63.2.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/grpc/grpc-java/commit/381593f39e37b530177faad3c6035cfce4536ec7\"\u003e\u003ccode\u003e381593f\u003c/code\u003e\u003c/a\u003e\nBump version to 1.79.0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/grpc/grpc-java/commit/f93ecb0ae2395d20c02b4eafe931c6796ac12598\"\u003e\u003ccode\u003ef93ecb0\u003c/code\u003e\u003c/a\u003e\nUpdate README etc to reference 1.79.0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/grpc/grpc-java/commit/f6d140f877ca11d428389b688e68e5e33f78740d\"\u003e\u003ccode\u003ef6d140f\u003c/code\u003e\u003c/a\u003e\nxds: Normalize weights before combining endpoint and locality\nweights\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/grpc/grpc-java/commit/c589bef18f33c1aead47382391adba70f8bd4655\"\u003e\u003ccode\u003ec589bef\u003c/code\u003e\u003c/a\u003e\ncore: clarify dns javadoc/test about trailing path segments\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/grpc/grpc-java/commit/65596ae3a9cdf420d91748e5ad1779ad92e14627\"\u003e\u003ccode\u003e65596ae\u003c/code\u003e\u003c/a\u003e\ncore: Move 4 test cases from DnsNameResolverTest to\nDnsNameResolverProviderTe...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/grpc/grpc-java/commit/59a64f0b685f32b70b9bf73c7e15a5b0f847f767\"\u003e\u003ccode\u003e59a64f0\u003c/code\u003e\u003c/a\u003e\ncore: Use FlagResetRule to set/restore system properties in\nDnsNameResolverTe...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/grpc/grpc-java/commit/c5f5ee0e994f76d4edac48ea17b52a0f918af822\"\u003e\u003ccode\u003ec5f5ee0\u003c/code\u003e\u003c/a\u003e\nopentelemetry: Add target attribute filter for metrics (\u003ca\nhref\u003d\"https://redirect.github.com/grpc/grpc-java/issues/12587\"\u003e#12587\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/grpc/grpc-java/commit/f65127cf7c861a1b7cf7411ef48df6f9116d6bc3\"\u003e\u003ccode\u003ef65127c\u003c/code\u003e\u003c/a\u003e\napi: Add RFC 3986 support to DnsNameResolverProvider (\u003ca\nhref\u003d\"https://redirect.github.com/grpc/grpc-java/issues/12602\"\u003e#12602\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/grpc/grpc-java/commit/a535ed799387e41b1edb44b59907af99e770259b\"\u003e\u003ccode\u003ea535ed7\u003c/code\u003e\u003c/a\u003e\nCatch Errors when calling complex parsing code\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/grpc/grpc-java/commit/ebb9420948e4c5ea380f9da2e1c6c0d8cf991bbe\"\u003e\u003ccode\u003eebb9420\u003c/code\u003e\u003c/a\u003e\nxds: Merge ClusterResolverLB into CdsLB2\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/grpc/grpc-java/compare/v1.78.0...v1.79.0\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dio.grpc:grpc-bom\u0026package-manager\u003dmaven\u0026previous-version\u003d1.78.0\u0026new-version\u003d1.79.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\n---------\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e\nCo-authored-by: JB Onofré \u003cjbonofre@apache.org\u003e" }, { "commit": "a53339b6ba2321f51f7f10f16a1ce06b12384498", "tree": "b75693170780cd2ee2f04661bba8cd7eef997093", "parents": [ "a7313c22c17211ecb666e44e97158a495a176778" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Mar 09 18:59:48 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 09 18:59:48 2026 +0100" }, "message": "MINOR: Bump dep.hadoop.version from 3.4.2 to 3.4.3 (#1055)\n\nBumps `dep.hadoop.version` from 3.4.2 to 3.4.3.\nUpdates `org.apache.hadoop:hadoop-client-runtime` from 3.4.2 to 3.4.3\n\nUpdates `org.apache.hadoop:hadoop-client-api` from 3.4.2 to 3.4.3\n\nUpdates `org.apache.hadoop:hadoop-common` from 3.4.2 to 3.4.3\n\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "a7313c22c17211ecb666e44e97158a495a176778", "tree": "19cffd797391a281ae370d41a2da146ddb0f09b5", "parents": [ "07c5f48a16230275cb502b94ffe4a3ca70f9adad" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Mar 09 17:32:56 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 09 17:32:56 2026 +0100" }, "message": "MINOR: [CI] Bump docker/login-action from 3.7.0 to 4.0.0 (#1053)\n\nBumps [docker/login-action](https://github.com/docker/login-action) from\n3.7.0 to 4.0.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/docker/login-action/releases\"\u003edocker/login-action\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNode 24 as default runtime (requires \u003ca\nhref\u003d\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eActions\nRunner v2.327.1\u003c/a\u003e or later) by \u003ca\nhref\u003d\"https://github.com/crazy-max\"\u003e\u003ccode\u003e@​crazy-max\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/929\"\u003edocker/login-action#929\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch to ESM and update config/test wiring by \u003ca\nhref\u003d\"https://github.com/crazy-max\"\u003e\u003ccode\u003e@​crazy-max\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/927\"\u003edocker/login-action#927\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​actions/core\u003c/code\u003e from 1.11.1 to 3.0.0 in \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/919\"\u003edocker/login-action#919\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​aws-sdk/client-ecr\u003c/code\u003e from 3.890.0 to 3.1000.0 in\n\u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/909\"\u003edocker/login-action#909\u003c/a\u003e\n\u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/920\"\u003edocker/login-action#920\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​aws-sdk/client-ecr-public\u003c/code\u003e from 3.890.0 to\n3.1000.0 in \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/909\"\u003edocker/login-action#909\u003c/a\u003e\n\u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/920\"\u003edocker/login-action#920\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​docker/actions-toolkit\u003c/code\u003e from 0.63.0 to 0.77.0 in\n\u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/910\"\u003edocker/login-action#910\u003c/a\u003e\n\u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/928\"\u003edocker/login-action#928\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​isaacs/brace-expansion\u003c/code\u003e from 5.0.0 to 5.0.1 in \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/921\"\u003edocker/login-action#921\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump js-yaml from 4.1.0 to 4.1.1 in \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/901\"\u003edocker/login-action#901\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca\nhref\u003d\"https://github.com/docker/login-action/compare/v3.7.0...v4.0.0\"\u003ehttps://github.com/docker/login-action/compare/v3.7.0...v4.0.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/b45d80f862d83dbcd57f89517bcf500b2ab88fb2\"\u003e\u003ccode\u003eb45d80f\u003c/code\u003e\u003c/a\u003e\nMerge pull request \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/issues/929\"\u003e#929\u003c/a\u003e\nfrom crazy-max/node24\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/176cb9c12abea98dfe844071c0999ff6ee9688a7\"\u003e\u003ccode\u003e176cb9c\u003c/code\u003e\u003c/a\u003e\nnode 24 as default runtime\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/cad89843109a11cb6f69f52fe695c42cf69d57d3\"\u003e\u003ccode\u003ecad8984\u003c/code\u003e\u003c/a\u003e\nMerge pull request \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/issues/920\"\u003e#920\u003c/a\u003e\nfrom docker/dependabot/npm_and_yarn/aws-sdk-dependenc...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/92cbcb231ed341e7dc71693351b21f5ba65f8349\"\u003e\u003ccode\u003e92cbcb2\u003c/code\u003e\u003c/a\u003e\nchore: update generated content\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/5a2d6a71bd3e0cb4abb6faae33f3dde61ece8e5b\"\u003e\u003ccode\u003e5a2d6a7\u003c/code\u003e\u003c/a\u003e\nbuild(deps): bump the aws-sdk-dependencies group with 2 updates\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/44512b6b2e08b878e82b107b394fcd1af5748e63\"\u003e\u003ccode\u003e44512b6\u003c/code\u003e\u003c/a\u003e\nMerge pull request \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/issues/928\"\u003e#928\u003c/a\u003e\nfrom docker/dependabot/npm_and_yarn/docker/actions-to...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/28737a5e46bc0c62910ef429b2e55f9cabbbd5df\"\u003e\u003ccode\u003e28737a5\u003c/code\u003e\u003c/a\u003e\nchore: update generated content\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/dac079354afbd8db4c3b58b8cc6946573479b2a6\"\u003e\u003ccode\u003edac0793\u003c/code\u003e\u003c/a\u003e\nbuild(deps): bump \u003ccode\u003e@​docker/actions-toolkit\u003c/code\u003e from 0.76.0 to\n0.77.0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/62029f315d6d05c8646343320e4a1552e5f1c77a\"\u003e\u003ccode\u003e62029f3\u003c/code\u003e\u003c/a\u003e\nMerge pull request \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/issues/919\"\u003e#919\u003c/a\u003e\nfrom docker/dependabot/npm_and_yarn/actions/core-3.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/08c8f064bf22a1c55918ee608a81d87b13cc4461\"\u003e\u003ccode\u003e08c8f06\u003c/code\u003e\u003c/a\u003e\nchore: update generated content\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/docker/login-action/compare/c94ce9fb468520275223c153574b00df6fe4bcc9...b45d80f862d83dbcd57f89517bcf500b2ab88fb2\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003ddocker/login-action\u0026package-manager\u003dgithub_actions\u0026previous-version\u003d3.7.0\u0026new-version\u003d4.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "07c5f48a16230275cb502b94ffe4a3ca70f9adad", "tree": "494418a78f3bbeb8cc5ae0c928a5ed1cc3a032bc", "parents": [ "2f39438afd4a2c8bf7ba63b7e3aa726c680036e1" ], "author": { "name": "JB Onofré", "email": "jb.onofre@dremio.com", "time": "Mon Mar 09 17:32:10 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 09 17:32:10 2026 +0100" }, "message": "MINOR: [CI] Increase JNI macOS job timeout from 45 to 60 minutes (#1060)\n\nAs MacOS executor as slightly slower than other executors, this PR\nincrease the JNI MacOS job timeout to 60 minutes (instead of 45\nminutes)." }, { "commit": "2f39438afd4a2c8bf7ba63b7e3aa726c680036e1", "tree": "acf8b740ddfa03225db3c85cee64c426c60f697e", "parents": [ "15f50796b5603100702560fad4b4c843f4fa379c" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Mar 09 16:32:14 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 09 16:32:14 2026 +0100" }, "message": "MINOR: Bump org.apache.orc:orc-core from 2.2.2 to 2.3.0 (#1056)\n\nBumps org.apache.orc:orc-core from 2.2.2 to 2.3.0.\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dorg.apache.orc:orc-core\u0026package-manager\u003dmaven\u0026previous-version\u003d2.2.2\u0026new-version\u003d2.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "15f50796b5603100702560fad4b4c843f4fa379c", "tree": "949919523e77713761308540cb5f9a03aec3a55b", "parents": [ "7cbf15994ae7c82fbcb178dded6b3f128219d9ad" ], "author": { "name": "JB Onofré", "email": "jb.onofre@dremio.com", "time": "Mon Mar 09 15:12:41 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 09 15:12:41 2026 +0100" }, "message": "MINOR: Fix flaky TestBasicAuth memory leak by waiting for async buffer release (#1058)\n\n## What\u0027s Changed\n\ngRPC/Netty releases Arrow buffers asynchronously after server shutdown.\nPoll briefly for the allocator\u0027s memory to drain before closing it,\npreventing spurious \"Memory was leaked\" errors in CI.\n\nThe fix adds a brief polling loop to wait for the allocator\u0027s memory to\ndrain before closing it." }, { "commit": "7cbf15994ae7c82fbcb178dded6b3f128219d9ad", "tree": "0cee389c63acf77576e2650d3b5f946d239ec237", "parents": [ "5dfd2595080a15d3d6ff3e40d8de57af4bdd7858" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Wed Mar 04 21:18:49 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Wed Mar 04 21:18:49 2026 +0100" }, "message": "MINOR: Bump org.codehaus.mojo:build-helper-maven-plugin from 3.6.0 to 3.6.1 (#1049)\n\nBumps\n[org.codehaus.mojo:build-helper-maven-plugin](https://github.com/mojohaus/build-helper-maven-plugin)\nfrom 3.6.0 to 3.6.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/mojohaus/build-helper-maven-plugin/releases\"\u003eorg.codehaus.mojo:build-helper-maven-plugin\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.6.1\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e📝 Documentation updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRename Goals to Plugin Documentation in the site menu (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/build-helper-maven-plugin/pull/229\"\u003e#229\u003c/a\u003e)\n\u003ca\nhref\u003d\"https://github.com/slawekjaranowski\"\u003e\u003ccode\u003e@​slawekjaranowski\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate the documentation for adding more resource directories (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/build-helper-maven-plugin/pull/213\"\u003e#213\u003c/a\u003e)\n\u003ca href\u003d\"https://github.com/mjj042\"\u003e\u003ccode\u003e@​mjj042\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e👻 Maintenance\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse common release-drafter configuration (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/build-helper-maven-plugin/pull/230\"\u003e#230\u003c/a\u003e)\n\u003ca\nhref\u003d\"https://github.com/slawekjaranowski\"\u003e\u003ccode\u003e@​slawekjaranowski\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Dependency updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump org.codehaus.mojo:mojo-parent from 87 to 91 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/build-helper-maven-plugin/pull/228\"\u003e#228\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven.shared:file-management from 3.1.0 to 3.2.0 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/build-helper-maven-plugin/pull/222\"\u003e#222\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.mojo:mojo-parent from 86 to 87 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/build-helper-maven-plugin/pull/221\"\u003e#221\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.mojo:mojo-parent from 85 to 86 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/build-helper-maven-plugin/pull/219\"\u003e#219\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.plexus:plexus-utils from 4.0.1 to 4.0.2 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/build-helper-maven-plugin/pull/220\"\u003e#220\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.mojo:mojo-parent from 84 to 85 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/build-helper-maven-plugin/pull/217\"\u003e#217\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.mojo:mojo-parent from 82 to 84 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/build-helper-maven-plugin/pull/214\"\u003e#214\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/build-helper-maven-plugin/commit/908df59c109817837a30e2340d2e8e6481bd4359\"\u003e\u003ccode\u003e908df59\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release 3.6.1\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/build-helper-maven-plugin/commit/faafd8f533f04511c6b1107ef3a90dd287d9a90b\"\u003e\u003ccode\u003efaafd8f\u003c/code\u003e\u003c/a\u003e\nUse common release-drafter configuration\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/build-helper-maven-plugin/commit/a91b402d31251d1ee7bd7de53e94440d09162ef2\"\u003e\u003ccode\u003ea91b402\u003c/code\u003e\u003c/a\u003e\nRename Goals to Plugin Documentation in the site menu\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/build-helper-maven-plugin/commit/1e9136d0ebb7689737906574134f6fb4465033b2\"\u003e\u003ccode\u003e1e9136d\u003c/code\u003e\u003c/a\u003e\nBump org.codehaus.mojo:mojo-parent from 87 to 91\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/build-helper-maven-plugin/commit/8700ddcd1659f0c7754d5cf977a0e52f53defa4a\"\u003e\u003ccode\u003e8700ddc\u003c/code\u003e\u003c/a\u003e\nBump org.apache.maven.shared:file-management from 3.1.0 to 3.2.0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/build-helper-maven-plugin/commit/ab2c63520127f18f8b432ec110f0951f1e40d48b\"\u003e\u003ccode\u003eab2c635\u003c/code\u003e\u003c/a\u003e\nBump org.codehaus.mojo:mojo-parent from 86 to 87\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/build-helper-maven-plugin/commit/611ce4052a7668acdffd804c097a7548a935faa2\"\u003e\u003ccode\u003e611ce40\u003c/code\u003e\u003c/a\u003e\nTypos.\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/build-helper-maven-plugin/commit/02d2b8e4feb3ebf8db8174a720b3550f9a74b55d\"\u003e\u003ccode\u003e02d2b8e\u003c/code\u003e\u003c/a\u003e\nBump org.codehaus.mojo:mojo-parent from 85 to 86\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/build-helper-maven-plugin/commit/d742e5c858e428b79b5a2136de2609999951ce36\"\u003e\u003ccode\u003ed742e5c\u003c/code\u003e\u003c/a\u003e\nUpdate site.xml to Doxia 2\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/build-helper-maven-plugin/commit/80b89b8cc9fcf5ebf47430aab60f8ed7d35793c4\"\u003e\u003ccode\u003e80b89b8\u003c/code\u003e\u003c/a\u003e\nBump org.codehaus.plexus:plexus-utils from 4.0.1 to 4.0.2\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/mojohaus/build-helper-maven-plugin/compare/3.6.0...3.6.1\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dorg.codehaus.mojo:build-helper-maven-plugin\u0026package-manager\u003dmaven\u0026previous-version\u003d3.6.0\u0026new-version\u003d3.6.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "5dfd2595080a15d3d6ff3e40d8de57af4bdd7858", "tree": "8e87935d89f1e7513297a362c75a763df50e2b76", "parents": [ "41acbdc681c4792b01655066bf7230f4a07c2ef2" ], "author": { "name": "Logan Riggs", "email": "logan.riggs@gmail.com", "time": "Wed Mar 04 12:03:18 2026 -0800" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Wed Mar 04 21:03:18 2026 +0100" }, "message": "GH-1038: Trim object memory for ArrowBuf (#1044)\n\n## What\u0027s Changed\n\nA significant number of ArrowBuf and BufferLedger objects are created\nduring certain workloads. Saving several bytes per instance could add up\nto significant memory savings and reduced memory allocation expense and\ngarbage collection.\n\nThe id field, which was a sequential value used when logging object\ninformation, is replaced with an identity hash code. This should still\nallow enough information for debugging without the memory overhead.\nThere may be possible duplicate values but it shouldn\u0027t matter for\nlogging purposes.\n\nAtomic fields can be replaced by a primitive and a static updater which\nsaves several bytes per instance.\n\n### ArrowBuf\n| Component | Before | After | Savings |\n|-----------|--------|-------|---------|\n| `idGenerator` (static) | `AtomicLong` | Removed | 24 bytes globally |\n| `id` field (per instance) | `long` (8 bytes) | Removed | **8 bytes per\ninstance** |\n| `getId()` | Returns `id` field | Returns\n`System.identityHashCode(this)` | — |\n\n### BufferLedger\n| Component | Before | After | Savings |\n|-----------|--------|-------|---------|\n| `LEDGER_ID_GENERATOR` (static) | `AtomicLong` | Removed | 24 bytes\nglobally |\n| `ledgerId` (per instance) | `long` (8 bytes) | Removed | **8 bytes per\ninstance** |\n| `bufRefCnt` | `AtomicInteger` (24 bytes) | `volatile int` + static\nupdater | **20 bytes per instance** |\n\n### Total Savings\n\n| Scale | ArrowBuf | BufferLedger | Combined |\n|-------|----------|--------------|----------|\n| 100K | 800 KB | 2.8 MB | **~3.6 MB** |\n| 1M | 8 MB | 28 MB | **~36 MB** |\n| 10M | 80 MB | 280 MB | **~360 MB** |\n\n\n\n### Benchmarking\nI ran the added benchmark before and after the metadata trimming.\n\n**Metadata Trimmed**\n\n| Benchmark | Mode | Score | Error |Units|\n|-------|----------|--------------|----------|----------|\n|MemoryFootprintBenchmarks.measureAllocationPerformance | avgt | 456.831\n|± 36.059 | us/op|\n|MemoryFootprintBenchmarks.measureArrowBufMemoryFootprint | ss | 161.085\n|± 35.596| ms/op|\n|Created 100000 ArrowBuf instances. Heap memory used | sum | 35631520\nbytes (33.98 MB) |0 |bytes|\n|Average memory per ArrowBuf| sum | 356.32 bytes |0 |bytes|\n\n\n**Previous Object Layout**\n\n| Benchmark | Mode | Score | Error |Units|\n|-------|----------|--------------|----------|----------|\n|MemoryFootprintBenchmarks.measureAllocationPerformance | avgt | 466.171\n|± 16.233 | us/op|\n|MemoryFootprintBenchmarks.measureArrowBufMemoryFootprint | ss | 176.790\n|± 17.943 |ms/op|\n|Created 100000 ArrowBuf instances. Heap memory used | sum | 38817480\nbytes (37.02 MB) |0 |bytes|\n|Average memory per ArrowBuf| sum | 388.17 bytes |0 |bytes|\n\n\nCloses #1038." }, { "commit": "41acbdc681c4792b01655066bf7230f4a07c2ef2", "tree": "82b74aac83a0c365edb7e6bec319fa5231e76366", "parents": [ "9c497848f9e7a531aae1095009257217d993c24b" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Mar 02 13:26:12 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 02 13:26:12 2026 +0100" }, "message": "MINOR: [CI] Bump actions/download-artifact from 7.0.0 to 8.0.0 (#1047)\n\nBumps\n[actions/download-artifact](https://github.com/actions/download-artifact)\nfrom 7.0.0 to 8.0.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/actions/download-artifact/releases\"\u003eactions/download-artifact\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.0.0\u003c/h2\u003e\n\u003ch2\u003ev8 - What\u0027s new\u003c/h2\u003e\n\u003ch3\u003eDirect downloads\u003c/h3\u003e\n\u003cp\u003eTo support direct uploads in \u003ccode\u003eactions/upload-artifact\u003c/code\u003e,\nthe action will no longer attempt to unzip all downloaded files.\nInstead, the action checks the \u003ccode\u003eContent-Type\u003c/code\u003e header ahead of\nunzipping and skips non-zipped files. Callers wishing to download a\nzipped file as-is can also set the new \u003ccode\u003eskip-decompress\u003c/code\u003e\nparameter to \u003ccode\u003efalse\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eEnforced checks (breaking)\u003c/h3\u003e\n\u003cp\u003eA previous release introduced digest checks on the download. If a\ndownload hash didn\u0027t match the expected hash from the server, the action\nwould log a warning. Callers can now configure the behavior on mismatch\nwith the \u003ccode\u003edigest-mismatch\u003c/code\u003e parameter. To be secure by\ndefault, we are now defaulting the behavior to \u003ccode\u003eerror\u003c/code\u003e which\nwill fail the workflow run.\u003c/p\u003e\n\u003ch3\u003eESM\u003c/h3\u003e\n\u003cp\u003eTo support new versions of the @actions/* packages, we\u0027ve upgraded\nthe package to ESM.\u003c/p\u003e\n\u003ch2\u003eWhat\u0027s Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDon\u0027t attempt to un-zip non-zipped downloads by \u003ca\nhref\u003d\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/actions/download-artifact/pull/460\"\u003eactions/download-artifact#460\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd a setting to specify what to do on hash mismatch and default it\nto \u003ccode\u003eerror\u003c/code\u003e by \u003ca\nhref\u003d\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/actions/download-artifact/pull/461\"\u003eactions/download-artifact#461\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca\nhref\u003d\"https://github.com/actions/download-artifact/compare/v7...v8.0.0\"\u003ehttps://github.com/actions/download-artifact/compare/v7...v8.0.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/actions/download-artifact/commit/70fc10c6e5e1ce46ad2ea6f2b72d43f7d47b13c3\"\u003e\u003ccode\u003e70fc10c\u003c/code\u003e\u003c/a\u003e\nMerge pull request \u003ca\nhref\u003d\"https://redirect.github.com/actions/download-artifact/issues/461\"\u003e#461\u003c/a\u003e\nfrom actions/danwkennedy/digest-mismatch-behavior\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/actions/download-artifact/commit/f258da9a506b755b84a09a531814700b86ccfc62\"\u003e\u003ccode\u003ef258da9\u003c/code\u003e\u003c/a\u003e\nAdd change docs\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/actions/download-artifact/commit/ccc058e5fbb0bb2352213eaec3491e117cbc4a5c\"\u003e\u003ccode\u003eccc058e\u003c/code\u003e\u003c/a\u003e\nFix linting issues\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/actions/download-artifact/commit/bd7976ba57ecea96e6f3df575eb922d11a12a9fd\"\u003e\u003ccode\u003ebd7976b\u003c/code\u003e\u003c/a\u003e\nAdd a setting to specify what to do on hash mismatch and default it to\n\u003ccode\u003eerror\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/actions/download-artifact/commit/ac21fcf45e0aaee541c0f7030558bdad38d77d6c\"\u003e\u003ccode\u003eac21fcf\u003c/code\u003e\u003c/a\u003e\nMerge pull request \u003ca\nhref\u003d\"https://redirect.github.com/actions/download-artifact/issues/460\"\u003e#460\u003c/a\u003e\nfrom actions/danwkennedy/download-no-unzip\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/actions/download-artifact/commit/15999bff51058bc7c19b50ebbba518eaef7c26c0\"\u003e\u003ccode\u003e15999bf\u003c/code\u003e\u003c/a\u003e\nAdd note about package bumps\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/actions/download-artifact/commit/974686ed5098c7f9c9289ec946b9058e496a2561\"\u003e\u003ccode\u003e974686e\u003c/code\u003e\u003c/a\u003e\nBump the version to \u003ccode\u003ev8\u003c/code\u003e and add release notes\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/actions/download-artifact/commit/fbe48b1d2756394be4cd4358ed3bc1343b330e75\"\u003e\u003ccode\u003efbe48b1\u003c/code\u003e\u003c/a\u003e\nUpdate test names to make it clearer what they do\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/actions/download-artifact/commit/96bf374a614d4360e225874c3efd6893a3f285e7\"\u003e\u003ccode\u003e96bf374\u003c/code\u003e\u003c/a\u003e\nOne more test fix\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/actions/download-artifact/commit/b8c4819ef592cbe04fd93534534b38f853864332\"\u003e\u003ccode\u003eb8c4819\u003c/code\u003e\u003c/a\u003e\nFix skip decompress test\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/actions/download-artifact/compare/37930b1c2abaa49bbe596cd826c3c89aef350131...70fc10c6e5e1ce46ad2ea6f2b72d43f7d47b13c3\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dactions/download-artifact\u0026package-manager\u003dgithub_actions\u0026previous-version\u003d7.0.0\u0026new-version\u003d8.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "9c497848f9e7a531aae1095009257217d993c24b", "tree": "bcfb5c7b936b2b6bd13da307335934558e87ea02", "parents": [ "1a99518180b6a89fe17a9af5ce12f6956b5c6c27" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Mar 02 13:19:43 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 02 13:19:43 2026 +0100" }, "message": "MINOR: Bump checker.framework.version from 3.53.0 to 3.53.1 (#1046)\n\nBumps `checker.framework.version` from 3.53.0 to 3.53.1.\nUpdates `org.checkerframework:checker-qual` from 3.53.0 to 3.53.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/releases\"\u003eorg.checkerframework:checker-qual\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eChecker Framework 3.53.1\u003c/h2\u003e\n\u003ch2\u003eVersion 3.53.1 (2026-02-02)\u003c/h2\u003e\n\u003ch3\u003eClosed issues\u003c/h3\u003e\n\u003cp\u003e\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/4858\"\u003e#4858\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/6141\"\u003e#6141\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/6620\"\u003e#6620\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7360\"\u003e#7360\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7388\"\u003e#7388\u003c/a\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/blob/master/docs/CHANGELOG.md\"\u003eorg.checkerframework:checker-qual\u0027s\nchangelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eVersion 3.53.1 (2026-02-02)\u003c/h2\u003e\n\u003ch3\u003eClosed issues\u003c/h3\u003e\n\u003cp\u003e\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/4858\"\u003e#4858\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/6141\"\u003e#6141\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/6620\"\u003e#6620\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7360\"\u003e#7360\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7388\"\u003e#7388\u003c/a\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/ef993ae5df68b25a038f8fac771b492e9ec9cd82\"\u003e\u003ccode\u003eef993ae\u003c/code\u003e\u003c/a\u003e\nnew release 3.53.1\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/c712fad4f8152b39ba6ec80155e67e061e82baa7\"\u003e\u003ccode\u003ec712fad\u003c/code\u003e\u003c/a\u003e\nUpdate release number.\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/18c01fc26dc0713cc5c21a7e0d678a6e2c86ee26\"\u003e\u003ccode\u003e18c01fc\u003c/code\u003e\u003c/a\u003e\nPrep for release.\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/f8d4d5521b5b5b4ebbc72b4ec3d4da070c0aa207\"\u003e\u003ccode\u003ef8d4d55\u003c/code\u003e\u003c/a\u003e\nRelease script corrections\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/37845c817a018f0ddb338e260b4099aa0536b0f7\"\u003e\u003ccode\u003e37845c8\u003c/code\u003e\u003c/a\u003e\nRename Shrinkable to CanShrink, to accommodate a future checker\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/77d27e7e2ae0935a015df1551c0bee68ddcda5b2\"\u003e\u003ccode\u003e77d27e7\u003c/code\u003e\u003c/a\u003e\nUpdate cimg/base Docker tag to v2026.02 (\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7470\"\u003e#7470\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/e096e0dba840883bd5734683155a6a6754fc5ba4\"\u003e\u003ccode\u003ee096e0d\u003c/code\u003e\u003c/a\u003e\nUpdate URLs\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/971a3f789cfb77dcc385f56077bf0f53f00fcb0a\"\u003e\u003ccode\u003e971a3f7\u003c/code\u003e\u003c/a\u003e\nUse https URLs rather than http URLs\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/c62acd1aae432332117105a90ada7805ae66d6a5\"\u003e\u003ccode\u003ec62acd1\u003c/code\u003e\u003c/a\u003e\nUpdate Gradle to v9.3.1 (\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7464\"\u003e#7464\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/ce0eaa8027fe2c2df6c08642a9f7dbd6283d5b04\"\u003e\u003ccode\u003ece0eaa8\u003c/code\u003e\u003c/a\u003e\nAdd link to project list\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/compare/checker-framework-3.53.0...checker-framework-3.53.1\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.checkerframework:checker` from 3.53.0 to 3.53.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/releases\"\u003eorg.checkerframework:checker\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eChecker Framework 3.53.1\u003c/h2\u003e\n\u003ch2\u003eVersion 3.53.1 (2026-02-02)\u003c/h2\u003e\n\u003ch3\u003eClosed issues\u003c/h3\u003e\n\u003cp\u003e\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/4858\"\u003e#4858\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/6141\"\u003e#6141\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/6620\"\u003e#6620\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7360\"\u003e#7360\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7388\"\u003e#7388\u003c/a\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/blob/master/docs/CHANGELOG.md\"\u003eorg.checkerframework:checker\u0027s\nchangelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eVersion 3.53.1 (2026-02-02)\u003c/h2\u003e\n\u003ch3\u003eClosed issues\u003c/h3\u003e\n\u003cp\u003e\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/4858\"\u003e#4858\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/6141\"\u003e#6141\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/6620\"\u003e#6620\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7360\"\u003e#7360\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7388\"\u003e#7388\u003c/a\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/ef993ae5df68b25a038f8fac771b492e9ec9cd82\"\u003e\u003ccode\u003eef993ae\u003c/code\u003e\u003c/a\u003e\nnew release 3.53.1\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/c712fad4f8152b39ba6ec80155e67e061e82baa7\"\u003e\u003ccode\u003ec712fad\u003c/code\u003e\u003c/a\u003e\nUpdate release number.\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/18c01fc26dc0713cc5c21a7e0d678a6e2c86ee26\"\u003e\u003ccode\u003e18c01fc\u003c/code\u003e\u003c/a\u003e\nPrep for release.\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/f8d4d5521b5b5b4ebbc72b4ec3d4da070c0aa207\"\u003e\u003ccode\u003ef8d4d55\u003c/code\u003e\u003c/a\u003e\nRelease script corrections\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/37845c817a018f0ddb338e260b4099aa0536b0f7\"\u003e\u003ccode\u003e37845c8\u003c/code\u003e\u003c/a\u003e\nRename Shrinkable to CanShrink, to accommodate a future checker\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/77d27e7e2ae0935a015df1551c0bee68ddcda5b2\"\u003e\u003ccode\u003e77d27e7\u003c/code\u003e\u003c/a\u003e\nUpdate cimg/base Docker tag to v2026.02 (\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7470\"\u003e#7470\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/e096e0dba840883bd5734683155a6a6754fc5ba4\"\u003e\u003ccode\u003ee096e0d\u003c/code\u003e\u003c/a\u003e\nUpdate URLs\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/971a3f789cfb77dcc385f56077bf0f53f00fcb0a\"\u003e\u003ccode\u003e971a3f7\u003c/code\u003e\u003c/a\u003e\nUse https URLs rather than http URLs\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/c62acd1aae432332117105a90ada7805ae66d6a5\"\u003e\u003ccode\u003ec62acd1\u003c/code\u003e\u003c/a\u003e\nUpdate Gradle to v9.3.1 (\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7464\"\u003e#7464\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/ce0eaa8027fe2c2df6c08642a9f7dbd6283d5b04\"\u003e\u003ccode\u003ece0eaa8\u003c/code\u003e\u003c/a\u003e\nAdd link to project list\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/compare/checker-framework-3.53.0...checker-framework-3.53.1\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "1a99518180b6a89fe17a9af5ce12f6956b5c6c27", "tree": "4ccc1b37eda11ca2ca28bc18221efefcdfcd7f71", "parents": [ "394755bc612f9457446396e4374f2871bbc99d9d" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Mar 02 13:15:36 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 02 13:15:36 2026 +0100" }, "message": "MINOR: [CI] Bump actions/upload-artifact from 6.0.0 to 7.0.0 (#1045)\n\nBumps\n[actions/upload-artifact](https://github.com/actions/upload-artifact)\nfrom 6.0.0 to 7.0.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/actions/upload-artifact/releases\"\u003eactions/upload-artifact\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.0.0\u003c/h2\u003e\n\u003ch2\u003ev7 What\u0027s new\u003c/h2\u003e\n\u003ch3\u003eDirect Uploads\u003c/h3\u003e\n\u003cp\u003eAdds support for uploading single files directly (unzipped). Callers\ncan set the new \u003ccode\u003earchive\u003c/code\u003e parameter to \u003ccode\u003efalse\u003c/code\u003e to\nskip zipping the file during upload. Right now, we only support single\nfiles. The action will fail if the glob passed resolves to multiple\nfiles. The \u003ccode\u003ename\u003c/code\u003e parameter is also ignored with this\nsetting. Instead, the name of the artifact will be the name of the\nuploaded file.\u003c/p\u003e\n\u003ch3\u003eESM\u003c/h3\u003e\n\u003cp\u003eTo support new versions of the \u003ccode\u003e@actions/*\u003c/code\u003e packages,\nwe\u0027ve upgraded the package to ESM.\u003c/p\u003e\n\u003ch2\u003eWhat\u0027s Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd proxy integration test by \u003ca\nhref\u003d\"https://github.com/Link\"\u003e\u003ccode\u003e@​Link\u003c/code\u003e\u003c/a\u003e- in \u003ca\nhref\u003d\"https://redirect.github.com/actions/upload-artifact/pull/754\"\u003eactions/upload-artifact#754\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade the module to ESM and bump dependencies by \u003ca\nhref\u003d\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/actions/upload-artifact/pull/762\"\u003eactions/upload-artifact#762\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport direct file uploads by \u003ca\nhref\u003d\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/actions/upload-artifact/pull/764\"\u003eactions/upload-artifact#764\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/Link\"\u003e\u003ccode\u003e@​Link\u003c/code\u003e\u003c/a\u003e- made\ntheir first contribution in \u003ca\nhref\u003d\"https://redirect.github.com/actions/upload-artifact/pull/754\"\u003eactions/upload-artifact#754\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca\nhref\u003d\"https://github.com/actions/upload-artifact/compare/v6...v7.0.0\"\u003ehttps://github.com/actions/upload-artifact/compare/v6...v7.0.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/actions/upload-artifact/commit/bbbca2ddaa5d8feaa63e36b76fdaad77386f024f\"\u003e\u003ccode\u003ebbbca2d\u003c/code\u003e\u003c/a\u003e\nSupport direct file uploads (\u003ca\nhref\u003d\"https://redirect.github.com/actions/upload-artifact/issues/764\"\u003e#764\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/actions/upload-artifact/commit/589182c5a4cec8920b8c1bce3e2fab1c97a02296\"\u003e\u003ccode\u003e589182c\u003c/code\u003e\u003c/a\u003e\nUpgrade the module to ESM and bump dependencies (\u003ca\nhref\u003d\"https://redirect.github.com/actions/upload-artifact/issues/762\"\u003e#762\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/actions/upload-artifact/commit/47309c993abb98030a35d55ef7ff34b7fa1074b5\"\u003e\u003ccode\u003e47309c9\u003c/code\u003e\u003c/a\u003e\nMerge pull request \u003ca\nhref\u003d\"https://redirect.github.com/actions/upload-artifact/issues/754\"\u003e#754\u003c/a\u003e\nfrom actions/Link-/add-proxy-integration-tests\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/actions/upload-artifact/commit/02a8460834e70dab0ce194c64360c59dc1475ef0\"\u003e\u003ccode\u003e02a8460\u003c/code\u003e\u003c/a\u003e\nAdd proxy integration test\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca\nhref\u003d\"https://github.com/actions/upload-artifact/compare/b7c566a772e6b6bfb58ed0dc250532a479d7789f...bbbca2ddaa5d8feaa63e36b76fdaad77386f024f\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dactions/upload-artifact\u0026package-manager\u003dgithub_actions\u0026previous-version\u003d6.0.0\u0026new-version\u003d7.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "394755bc612f9457446396e4374f2871bbc99d9d", "tree": "2c8934104f22ccc1a047420a6ac4ca5cc4e38f43", "parents": [ "39b0593ac53c1444d0eb05f698fc3c0aa300f30b" ], "author": { "name": "Issac Garcia", "email": "issac.garcia@siren.io", "time": "Thu Feb 26 13:20:01 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Thu Feb 26 13:20:01 2026 +0100" }, "message": "GH-1007: fix: does not break class loading if direct buffer allocator is not available (#1008)\n\n## What\u0027s Changed\n\nThe Direct Buffer is not always needed to use Arrow memory, however, we\ncannot load MemoryUtil class if we don\u0027t set:\n```\n--add-opens\u003djava.base/java.nio\u003dorg.apache.arrow.memory.core,ALL-UNNAMED\n```\nWhich is not always needed/possible.\n\nThis fix proposes to catch the `InaccessibleObjectException` to not\navoiding the load of the class.\n\nThe directBuffer is, in any case not available and a\n`UnsupportedOperationException` will be throw as it is in the existing\ncode\n\n\n\nCloses #1007 ." }, { "commit": "39b0593ac53c1444d0eb05f698fc3c0aa300f30b", "tree": "d66d0d7d0399e689807a62db4cb93f9200effc34", "parents": [ "2e76de1d2542811843b7dc262cdae0e20102b034" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Feb 23 09:47:30 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Feb 23 09:47:30 2026 +0100" }, "message": "MINOR: Bump com.google.api.grpc:proto-google-common-protos from 2.63.2 to 2.66.0 (#1034)\n\nBumps\n[com.google.api.grpc:proto-google-common-protos](https://github.com/googleapis/sdk-platform-java)\nfrom 2.63.2 to 2.66.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/releases\"\u003ecom.google.api.grpc:proto-google-common-protos\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.66.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/compare/v2.65.1...v2.66.0\"\u003e2.66.0\u003c/a\u003e\n(2026-01-23)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade protobuf runtime and gen code to 4.33.x (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4000\"\u003e#4000\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4074\"\u003e#4074\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/3e37376ccaddf42617436471dc9b014974b8e3df\"\u003e3e37376\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDowngrade opentelemetry to 1.51.0 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4075\"\u003e#4075\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/cf6548232830e0461500d92954050186e255b572\"\u003ecf65482\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate auth library to 1.42.0 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4087\"\u003e#4087\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/ad9ee0731a64585ad8ee0f0ac71bece9f6eaf068\"\u003ead9ee07\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate googleapis/java-cloud-bom digest to ef3656d (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3630\"\u003e#3630\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/790bcf0542dc8aba5afe2f65e80a74d643b40cfe\"\u003e790bcf0\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate http-client to 2.1.0 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4086\"\u003e#4086\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/d8bc8f5d335ffde52a603b47718574858f04f5ee\"\u003ed8bc8f5\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.65.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/compare/v2.65.0...v2.65.1\"\u003e2.65.1\u003c/a\u003e\n(2026-01-13)\u003c/h2\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs for GoogleCredentialsProvider#setScopesToApply (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4057\"\u003e#4057\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/0a9962f9945b6018796a808f89a6a3a309d1ca04\"\u003e0a9962f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.65.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/compare/v2.64.2...v2.65.0\"\u003e2.65.0\u003c/a\u003e\n(2026-01-12)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd org.json:json to third-party-dependencies pom (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4047\"\u003e#4047\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/ffa432e4e4ae763845afd48b404836c88698bdc0\"\u003effa432e\u003c/a\u003e),\ncloses \u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4046\"\u003e#4046\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eremove dependency management of graal-sdk (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4033\"\u003e#4033\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/ad05c34e205c09ad035f469170b0c62b4423b748\"\u003ead05c34\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd api_version breadcrumb to client docs (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4018\"\u003e#4018\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/a2b2179874e6a5435001fe201f4eecc2a8e4c531\"\u003ea2b2179\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCreate a single S2AChannelCredentials per application (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3989\"\u003e#3989\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/3758b436d7e80b79ad7d5ea330d8f2bf2f430330\"\u003e3758b43\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eprovide API to share the same background executor for channel po…\n(\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4030\"\u003e#4030\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/178182c76c1b35e702215a88adc3ab511dd35a9e\"\u003e178182c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate dependencies.txt for grpc-gcp to 1.9.0 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4025\"\u003e#4025\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/b68791d074c02e02a5ccf2f937a5922749a14f56\"\u003eb68791d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate google api dependencies (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3917\"\u003e#3917\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/480cf13148687c53c4af3da9d48490aeb5bf4b88\"\u003e480cf13\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate google.http-client.version to 2.0.3 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4054\"\u003e#4054\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/b9a8c8924e7b03bca8a97e476abfd012b86f6d45\"\u003eb9a8c89\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/blob/main/CHANGELOG.md\"\u003ecom.google.api.grpc:proto-google-common-protos\u0027s\nchangelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/compare/v2.65.1...v2.66.0\"\u003e2.66.0\u003c/a\u003e\n(2026-01-23)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade protobuf runtime and gen code to 4.33.x (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4000\"\u003e#4000\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4074\"\u003e#4074\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/3e37376ccaddf42617436471dc9b014974b8e3df\"\u003e3e37376\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDowngrade opentelemetry to 1.51.0 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4075\"\u003e#4075\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/cf6548232830e0461500d92954050186e255b572\"\u003ecf65482\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate auth library to 1.42.0 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4087\"\u003e#4087\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/ad9ee0731a64585ad8ee0f0ac71bece9f6eaf068\"\u003ead9ee07\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate googleapis/java-cloud-bom digest to ef3656d (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3630\"\u003e#3630\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/790bcf0542dc8aba5afe2f65e80a74d643b40cfe\"\u003e790bcf0\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate http-client to 2.1.0 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4086\"\u003e#4086\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/d8bc8f5d335ffde52a603b47718574858f04f5ee\"\u003ed8bc8f5\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/compare/v2.65.0...v2.65.1\"\u003e2.65.1\u003c/a\u003e\n(2026-01-13)\u003c/h2\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs for GoogleCredentialsProvider#setScopesToApply (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4057\"\u003e#4057\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/0a9962f9945b6018796a808f89a6a3a309d1ca04\"\u003e0a9962f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/compare/v2.64.2...v2.65.0\"\u003e2.65.0\u003c/a\u003e\n(2026-01-12)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd org.json:json to third-party-dependencies pom (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4047\"\u003e#4047\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/ffa432e4e4ae763845afd48b404836c88698bdc0\"\u003effa432e\u003c/a\u003e),\ncloses \u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4046\"\u003e#4046\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eremove dependency management of graal-sdk (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4033\"\u003e#4033\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/ad05c34e205c09ad035f469170b0c62b4423b748\"\u003ead05c34\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd api_version breadcrumb to client docs (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4018\"\u003e#4018\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/a2b2179874e6a5435001fe201f4eecc2a8e4c531\"\u003ea2b2179\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCreate a single S2AChannelCredentials per application (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3989\"\u003e#3989\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/3758b436d7e80b79ad7d5ea330d8f2bf2f430330\"\u003e3758b43\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eprovide API to share the same background executor for channel po…\n(\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4030\"\u003e#4030\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/178182c76c1b35e702215a88adc3ab511dd35a9e\"\u003e178182c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate dependencies.txt for grpc-gcp to 1.9.0 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4025\"\u003e#4025\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/b68791d074c02e02a5ccf2f937a5922749a14f56\"\u003eb68791d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate google api dependencies (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3917\"\u003e#3917\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/480cf13148687c53c4af3da9d48490aeb5bf4b88\"\u003e480cf13\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate google.http-client.version to 2.0.3 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4054\"\u003e#4054\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/b9a8c8924e7b03bca8a97e476abfd012b86f6d45\"\u003eb9a8c89\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix retry guide link in javadocs (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/4029\"\u003e#4029\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/b43f77c66d93d2423744d0f6d6a0a2a53a06e6d9\"\u003eb43f77c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/compare/v2.64.1...v2.64.2\"\u003e2.64.2\u003c/a\u003e\n(2025-12-10)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commits/v2.66.0\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dcom.google.api.grpc:proto-google-common-protos\u0026package-manager\u003dmaven\u0026previous-version\u003d2.63.2\u0026new-version\u003d2.66.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "2e76de1d2542811843b7dc262cdae0e20102b034", "tree": "effb3c091e60d086a510e94a1d6166432e74172f", "parents": [ "0e54b379ff871084139679f1bc501faf05996e18" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Feb 23 09:46:15 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Feb 23 09:46:15 2026 +0100" }, "message": "MINOR: Bump org.codehaus.mojo:versions-maven-plugin from 2.20.0 to 2.21.0 (#1029)\n\nBumps\n[org.codehaus.mojo:versions-maven-plugin](https://github.com/mojohaus/versions)\nfrom 2.20.0 to 2.21.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/mojohaus/versions/releases\"\u003eorg.codehaus.mojo:versions-maven-plugin\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.21.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e🚀 New features and improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd versions.skip parameter to skip plugin execution (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/versions/pull/1328\"\u003e#1328\u003c/a\u003e)\n\u003ca\nhref\u003d\"https://github.com/jorgheymans\"\u003e\u003ccode\u003e@​jorgheymans\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/versions/issues/1331\"\u003e#1331\u003c/a\u003e:\nFix NPE in restrictionForUnchangedSegment if actual version is null (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/versions/pull/1332\"\u003e#1332\u003c/a\u003e)\n\u003ca href\u003d\"https://github.com/andrzejj0\"\u003e\u003ccode\u003e@​andrzejj0\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/versions/issues/1310\"\u003e#1310\u003c/a\u003e:\nCorrected UseDepVersionMojo + handling a similar case in SetMojo,\nSetScmTagMojo, UpdateChildModulesMojo (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/versions/pull/1322\"\u003e#1322\u003c/a\u003e)\n\u003ca href\u003d\"https://github.com/andrzejj0\"\u003e\u003ccode\u003e@​andrzejj0\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUseDepVersionMoto should process all projects on the project list\n(\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/versions/pull/1320\"\u003e#1320\u003c/a\u003e)\n\u003ca href\u003d\"https://github.com/andrzejj0\"\u003e\u003ccode\u003e@​andrzejj0\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed \u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/versions/issues/1317\"\u003e#1317\u003c/a\u003e:\nRegression coming from ArtifactVersions::filter when currentVersion is\nnull and ignoredVersions is not null (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/versions/pull/1319\"\u003e#1319\u003c/a\u003e)\n\u003ca href\u003d\"https://github.com/andrzejj0\"\u003e\u003ccode\u003e@​andrzejj0\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📝 Documentation updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix README typos in Contributing section (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/versions/pull/1337\"\u003e#1337\u003c/a\u003e)\n\u003ca\nhref\u003d\"https://github.com/kranthipoturaju\"\u003e\u003ccode\u003e@​kranthipoturaju\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/versions/issues/1323\"\u003e#1323\u003c/a\u003e:\nDocumentation (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/versions/pull/1324\"\u003e#1324\u003c/a\u003e)\n\u003ca href\u003d\"https://github.com/andrzejj0\"\u003e\u003ccode\u003e@​andrzejj0\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Dependency updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump byteBuddyVersion from 1.18.3 to 1.18.4 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/versions/pull/1335\"\u003e#1335\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven.plugin-testing:maven-plugin-testing-harness\nfrom 3.4.0 to 3.5.0 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/versions/pull/1333\"\u003e#1333\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.plexus:plexus-archiver from 4.10.4 to 4.11.0 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/versions/pull/1334\"\u003e#1334\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.mojo:mojo-parent from 94 to 95 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/versions/pull/1330\"\u003e#1330\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump byteBuddyVersion from 1.18.2 to 1.18.3 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/versions/pull/1329\"\u003e#1329\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.commons:commons-text from 1.14.0 to 1.15.0 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/versions/pull/1325\"\u003e#1325\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump byteBuddyVersion from 1.18.1 to 1.18.2 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/versions/pull/1318\"\u003e#1318\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.20.1\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/versions/issues/1313\"\u003e#1313\u003c/a\u003e:\nDo not show existing version as update (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/versions/pull/1315\"\u003e#1315\u003c/a\u003e)\n\u003ca href\u003d\"https://github.com/andrzejj0\"\u003e\u003ccode\u003e@​andrzejj0\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/versions/commit/1cdedea53c3c29a34494fc198db8626ea64942ef\"\u003e\u003ccode\u003e1cdedea\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release 2.21.0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/versions/commit/b94795745ed51d84935742cd15e8b42709f8cb8c\"\u003e\u003ccode\u003eb947957\u003c/code\u003e\u003c/a\u003e\nFix README typos in Contributing section\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/versions/commit/b85c0a8f41240dc012d0bde7833963cdfff1c76a\"\u003e\u003ccode\u003eb85c0a8\u003c/code\u003e\u003c/a\u003e\nBump project version to 2.21.0-SNAPSHOT\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/versions/commit/7ae37673007d7d27d448a2dee92f58f122622118\"\u003e\u003ccode\u003e7ae3767\u003c/code\u003e\u003c/a\u003e\nBump byteBuddyVersion from 1.18.3 to 1.18.4 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/versions/issues/1335\"\u003e#1335\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/versions/commit/38afa9f7503d05143342bace5a3cc126ea179adc\"\u003e\u003ccode\u003e38afa9f\u003c/code\u003e\u003c/a\u003e\nBump org.apache.maven.plugin-testing:maven-plugin-testing-harness\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/versions/commit/39af6a23525e853a03b58c7a3d23319232e1c707\"\u003e\u003ccode\u003e39af6a2\u003c/code\u003e\u003c/a\u003e\nBump org.codehaus.plexus:plexus-archiver from 4.10.4 to 4.11.0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/versions/commit/f51b9d59d1dea3128956492281b013831cfc8143\"\u003e\u003ccode\u003ef51b9d5\u003c/code\u003e\u003c/a\u003e\n\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/versions/issues/1331\"\u003e#1331\u003c/a\u003e:\nFix NPE in restrictionForUnchangedSegment if actual version is null\n(#...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/versions/commit/8d209b3404eb7497c15c257d5083bcee1f4c4de2\"\u003e\u003ccode\u003e8d209b3\u003c/code\u003e\u003c/a\u003e\nBump org.codehaus.mojo:mojo-parent from 94 to 95 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/versions/issues/1330\"\u003e#1330\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/versions/commit/4929d48b9e4599e479be9044ccfc40598b0177f6\"\u003e\u003ccode\u003e4929d48\u003c/code\u003e\u003c/a\u003e\nBump byteBuddyVersion from 1.18.2 to 1.18.3 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/versions/issues/1329\"\u003e#1329\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/versions/commit/cb84d01dac8f9a82ddf5842cad38b6dedadecee6\"\u003e\u003ccode\u003ecb84d01\u003c/code\u003e\u003c/a\u003e\nAdd versions.skip parameter to skip plugin execution (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/versions/issues/1328\"\u003e#1328\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/mojohaus/versions/compare/2.20.0...2.21.0\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dorg.codehaus.mojo:versions-maven-plugin\u0026package-manager\u003dmaven\u0026previous-version\u003d2.20.0\u0026new-version\u003d2.21.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "0e54b379ff871084139679f1bc501faf05996e18", "tree": "9e960b53abe261fad6fabc2b327587cace5a6aba", "parents": [ "6e73f7f563b28eec4218d8afabdfaa0ef41e714a" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Feb 23 09:45:46 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Feb 23 09:45:46 2026 +0100" }, "message": "MINOR: Bump commons-cli:commons-cli from 1.9.0 to 1.11.0 (#1028)\n\nBumps [commons-cli:commons-cli](https://github.com/apache/commons-cli)\nfrom 1.9.0 to 1.11.0.\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/apache/commons-cli/blob/master/RELEASE-NOTES.txt\"\u003ecommons-cli:commons-cli\u0027s\nchangelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eApache Commons CLI 1.11.0 Release Notes\u003c/h2\u003e\n\u003cp\u003eThe Apache Commons CLI team is pleased to announce the release of\nApache Commons CLI 1.11.0.\u003c/p\u003e\n\u003cp\u003eApache Commons CLI provides a simple API for presenting, processing,\nand validating a Command Line Interface.\u003c/p\u003e\n\u003cp\u003eThis is a feature and maintenance release. Java 8 or later is\nrequired.\u003c/p\u003e\n\u003ch2\u003eNew Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Add CommandLine.getOptionCount() to measure option\nrepetition [#396](https://github.com/apache/commons-cli/issues/396).\nThanks to David Larochette, Gary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eFixed Bugs\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCLI-351: Multiple trailing BREAK_CHAR_SET characters cause infinite\nloop in HelpFormatter. Thanks to Damien Carbonne, Claude Warren, Gary\nGregory.\u003c/li\u003e\n\u003cli\u003eCLI-351: Fix issue with groups not being reported in help output. \u003ca\nhref\u003d\"https://redirect.github.com/apache/commons-cli/issues/411\"\u003e#411\u003c/a\u003e.\nThanks to Damien Carbonne, Claude Warren, Gary Gregory.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eUpdates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Bump org.apache.commons:commons-parent from 85 to 91\n[#393](https://github.com/apache/commons-cli/issues/393). Thanks to Gary\nGregory, Dependabot.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Bump commons-io:commons-io from 2.20.0 to 2.21.0. Thanks to\nGary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eHistorical list of changes: \u003ca\nhref\u003d\"https://commons.apache.org/proper/commons-cli/changes.html\"\u003ehttps://commons.apache.org/proper/commons-cli/changes.html\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eFor complete information on Apache Commons CLI, including\ninstructions on how to submit bug reports,\npatches, or suggestions for improvement, see the Apache Commons CLI\nwebsite:\u003c/p\u003e\n\u003cp\u003e\u003ca\nhref\u003d\"https://commons.apache.org/proper/commons-cli/\"\u003ehttps://commons.apache.org/proper/commons-cli/\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eDownload page: \u003ca\nhref\u003d\"https://commons.apache.org/proper/commons-cli/download_cli.cgi\"\u003ehttps://commons.apache.org/proper/commons-cli/download_cli.cgi\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eHave fun!\nThe Apache Commons Team\u003c/p\u003e\n\u003chr /\u003e\n\u003ch2\u003eApache Commons CLI 1.11.0 Release Notes\u003c/h2\u003e\n\u003cp\u003eThe Apache Commons CLI team is pleased to announce the release of\nApache Commons CLI 1.11.0.\u003c/p\u003e\n\u003cp\u003eApache Commons CLI provides a simple API for presenting, processing,\nand validating a Command Line Interface.\u003c/p\u003e\n\u003cp\u003eThis is a feature and maintenance release. Java 8 or later is\nrequired.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-cli/commit/d74613321325f6081fa0206c4ab608ab65d80e2e\"\u003e\u003ccode\u003ed746133\u003c/code\u003e\u003c/a\u003e\nPrepare for the release candidate 1.11.0 RC1\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-cli/commit/966ddd66b31e0608ecbd650a3eb2bb2426e26c22\"\u003e\u003ccode\u003e966ddd6\u003c/code\u003e\u003c/a\u003e\nPrepare for the next release candidate\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-cli/commit/234a34d61dc11a302358c92fd18ed702327c5e39\"\u003e\u003ccode\u003e234a34d\u003c/code\u003e\u003c/a\u003e\nUse ternary to reduce duplication\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-cli/commit/ef98fc4b9302fbf10e8b608dce0571d2bc066345\"\u003e\u003ccode\u003eef98fc4\u003c/code\u003e\u003c/a\u003e\nBetter test assertions\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-cli/commit/a9baf80a113c75885f53bb0dc34e6f9e15bc37b3\"\u003e\u003ccode\u003ea9baf80\u003c/code\u003e\u003c/a\u003e\nNo need to create an intermediary array\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-cli/commit/4c464592162bbae53dd606ca56375ce92894e3cf\"\u003e\u003ccode\u003e4c46459\u003c/code\u003e\u003c/a\u003e\nReduce returns\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-cli/commit/7108379d50938de7ac26de6d1c76ee6a0ef2845f\"\u003e\u003ccode\u003e7108379\u003c/code\u003e\u003c/a\u003e\nJavadoc\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-cli/commit/7199a701924f0ecf95d729095bc610d6434a3a77\"\u003e\u003ccode\u003e7199a70\u003c/code\u003e\u003c/a\u003e\nUse forEachRemaining\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-cli/commit/e852acf572129fa8b2e3824b0e23a32a074e832f\"\u003e\u003ccode\u003ee852acf\u003c/code\u003e\u003c/a\u003e\nReuse constants\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-cli/commit/395346c58f510fcff79893d0adeb9961ab430a43\"\u003e\u003ccode\u003e395346c\u003c/code\u003e\u003c/a\u003e\nBetter exception message\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/apache/commons-cli/compare/rel/commons-cli-1.9.0...rel/commons-cli-1.11.0\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dcommons-cli:commons-cli\u0026package-manager\u003dmaven\u0026previous-version\u003d1.9.0\u0026new-version\u003d1.11.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "6e73f7f563b28eec4218d8afabdfaa0ef41e714a", "tree": "55efa54a8c7e2004d148830fe6fd8f5f963b1686", "parents": [ "6b6d16a42fdcb46dae728ef0795559e1606c2372" ], "author": { "name": "Ashish", "email": "paliwalashish@gmail.com", "time": "Sun Feb 22 09:29:47 2026 -0800" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Sun Feb 22 18:29:47 2026 +0100" }, "message": "MINOR: Fix minor issue with README (#1026)\n\n## What\u0027s Changed\n\nPlease fill in a description of the changes here.\n\nThe PR fixes minor documentation issue, where commands needed to be\nadjusted to new repo.\nThese were found while setting up the environment.\n\nAI was **NOT** used to generate the PR\n\nCloses #NNN." }, { "commit": "6b6d16a42fdcb46dae728ef0795559e1606c2372", "tree": "24c1e8fbd9501f9d4117380c8f73c859502739fe", "parents": [ "5adfb7e32922de6bc7d929a248911904aab80abd" ], "author": { "name": "Aleksei Starikov", "email": "aleksei.starikov.ax@gmail.com", "time": "Sun Feb 22 14:41:02 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Sun Feb 22 14:41:02 2026 +0100" }, "message": "GH-139: [Flight] Stop return null from MetadataAdapter.getAll(String) and getAllByte(String) (#1016)\n\n## What\u0027s Changed\n\n`CallHeaders` has 3 implementations:\n- FlightCallHeaders\n- ErrorFlightMetadata\n- MetadataAdapter\n\n**Before this change:**\n`MetadataAdapter` could return `null` from `getAll(String)` and\n`getAllByte(String)` when there were no values for the key, because\ngRPC’s `Metadata.getAll()` returns `null` in that case. This was\nundocumented and forced callers to null-check.\n\n**After this change:**\nAll 3 implementations consistently return an `empty iterable` (never\n`null`) when the key is absent or has no values. The contract is\ndocumented on the interface and covered by tests for each\nimplementation.\n\n---\n**This contains breaking changes.**\n`MetadataAdapter.getAll(String)` and `getAllByte(String)` return empty\niterator instead of null.\n\n---\nCloses #139." }, { "commit": "5adfb7e32922de6bc7d929a248911904aab80abd", "tree": "473652f4c3b7a12591eb6980add166477bba6718", "parents": [ "b209fa2ee8ca9840530b404e1448f90d5ae0889d" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Wed Feb 18 07:11:51 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Wed Feb 18 07:11:51 2026 +0100" }, "message": "MINOR: Bump commons-codec:commons-codec from 1.20.0 to 1.21.0 (#997)\n\nBumps\n[commons-codec:commons-codec](https://github.com/apache/commons-codec)\nfrom 1.20.0 to 1.21.0.\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/apache/commons-codec/blob/master/RELEASE-NOTES.txt\"\u003ecommons-codec:commons-codec\u0027s\nchangelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eApache Commons Codec 1.21.0 Release Notes\u003c/h2\u003e\n\u003cp\u003eThe Apache Commons Codec team is pleased to announce the release of\nApache Commons Codec 1.21.0.\u003c/p\u003e\n\u003cp\u003eThe Apache Commons Codec component contains encoders and decoders for\nformats such as Base16, Base32, Base64, digest, and Hexadecimal. In\naddition to these\nwidely used encoders and decoders, the codec package also maintains a\ncollection of phonetic encoding utilities.\u003c/p\u003e\n\u003cp\u003eThis is a feature and maintenance release. Java 8 or later is\nrequired.\u003c/p\u003e\n\u003ch2\u003eNew features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCODEC-333: Add distinct Base64 decoding for standard and URL-safe\nformats. Thanks to Aleksandr Beliakov, Gary Gregory.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eFixed Bugs\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Fix oak leaf icon references in overview.html when running\n`mvn clean javadoc:javadoc`. Thanks to Gary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Fix Apache RAT plugin console warnings. Thanks to Gary\nGregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Fix malformed Javadoc comments. Thanks to Gary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eChanges\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Bump org.apache.commons:commons-parent from 91 to 96\n[#415](https://github.com/apache/commons-codec/issues/415),\n[#418](https://github.com/apache/commons-codec/issues/418). Thanks to\nGary Gregory, Dependabot.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Bump commons-io:commons-io from 2.20.0 to 2.21.0. Thanks to\nGary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Bump org.apache.commons:commons-lang3 from 3.19.0 to 3.20.0.\nThanks to Gary Gregory, Dependabot.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFor complete information on Apache Commons Codec, including\ninstructions on how to submit bug reports,\npatches, or suggestions for improvement, see the Apache Commons Codec\nwebsite:\u003c/p\u003e\n\u003cp\u003e\u003ca\nhref\u003d\"https://commons.apache.org/proper/commons-codec/\"\u003ehttps://commons.apache.org/proper/commons-codec/\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eDownload page: \u003ca\nhref\u003d\"https://commons.apache.org/proper/commons-codec/download_codec.cgi\"\u003ehttps://commons.apache.org/proper/commons-codec/download_codec.cgi\u003c/a\u003e\u003c/p\u003e\n\u003chr /\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-codec/commit/91c44048f2751ef89567cd50ff04851da4f56e3f\"\u003e\u003ccode\u003e91c4404\u003c/code\u003e\u003c/a\u003e\nPrepare for the release candidate 1.21.0 RC1\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-codec/commit/21fe1d7f86bbc198975c4282c9239ef1b5e9f094\"\u003e\u003ccode\u003e21fe1d7\u003c/code\u003e\u003c/a\u003e\nPrepare for the next release candidate\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-codec/commit/d4ea4d0867dce2b36deda123d9e477531aefcacf\"\u003e\u003ccode\u003ed4ea4d0\u003c/code\u003e\u003c/a\u003e\nBump actions/checkout from 6.0.1 to 6.0.2\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-codec/commit/e30b1f6c247468f5ab2d06dd101c535c77778bc9\"\u003e\u003ccode\u003ee30b1f6\u003c/code\u003e\u003c/a\u003e\nBump actions/setup-java from 5.1.0 to 5.2.0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-codec/commit/2e4891c194cf4733fda4be4e8b29c2fa3ae46476\"\u003e\u003ccode\u003e2e4891c\u003c/code\u003e\u003c/a\u003e\nBump org.apache.commons:commons-parent from 95 to 96\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-codec/commit/d02c003231a2ae8d065f9edfecf4e97dcffc085e\"\u003e\u003ccode\u003ed02c003\u003c/code\u003e\u003c/a\u003e\nUse a URL to a prettier page: \u003ca\nhref\u003d\"https://www.ietf.org/rfc/rfc2045\"\u003ehttps://www.ietf.org/rfc/rfc2045\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-codec/commit/3c961b83ead5140fbaffb1191692f943758ecdec\"\u003e\u003ccode\u003e3c961b8\u003c/code\u003e\u003c/a\u003e\nCheckstyle\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-codec/commit/99cf6b7800f7f1af1b45c4b167aae128e3bb4aeb\"\u003e\u003ccode\u003e99cf6b7\u003c/code\u003e\u003c/a\u003e\nJavadoc and exception messages: \u0026quot;base 32\u0026quot; -\u0026gt;\n\u0026quot;Base32\u0026quot;.\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-codec/commit/2df7b9a20ed600ad64bc00edf1c9a619edab76a0\"\u003e\u003ccode\u003e2df7b9a\u003c/code\u003e\u003c/a\u003e\nJavadoc and exception messages: \u0026quot;base 64\u0026quot; -\u0026gt;\n\u0026quot;Base64\u0026quot;.\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-codec/commit/0643fdd0b7fcac6bd1543cdd1868ec7b5de4bbcc\"\u003e\u003ccode\u003e0643fdd\u003c/code\u003e\u003c/a\u003e\nJavadoc 8 doesn\u0027t know how to find this link\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/apache/commons-codec/compare/rel/commons-codec-1.20.0...rel/commons-codec-1.21.0\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dcommons-codec:commons-codec\u0026package-manager\u003dmaven\u0026previous-version\u003d1.20.0\u0026new-version\u003d1.21.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "b209fa2ee8ca9840530b404e1448f90d5ae0889d", "tree": "41b0d959804e7b6c366837b2d90dd0134de41f62", "parents": [ "de97138845abbd12ad253170b5738c4ec3d45473" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Tue Feb 17 21:29:33 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Tue Feb 17 21:29:33 2026 +0100" }, "message": "MINOR: [CI] Bump docker/login-action from 3.6.0 to 3.7.0 (#996)\n\nBumps [docker/login-action](https://github.com/docker/login-action) from\n3.6.0 to 3.7.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/docker/login-action/releases\"\u003edocker/login-action\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003escope\u003c/code\u003e input to set scopes for the authentication\ntoken by \u003ca\nhref\u003d\"https://github.com/crazy-max\"\u003e\u003ccode\u003e@​crazy-max\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/912\"\u003edocker/login-action#912\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for AWS European Sovereign Cloud ECR by \u003ca\nhref\u003d\"https://github.com/dphi\"\u003e\u003ccode\u003e@​dphi\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/914\"\u003edocker/login-action#914\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnsure passwords are redacted with \u003ccode\u003eregistry-auth\u003c/code\u003e input\nby \u003ca href\u003d\"https://github.com/crazy-max\"\u003e\u003ccode\u003e@​crazy-max\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/911\"\u003edocker/login-action#911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump lodash from 4.17.21 to 4.17.23 in \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/pull/915\"\u003edocker/login-action#915\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca\nhref\u003d\"https://github.com/docker/login-action/compare/v3.6.0...v3.7.0\"\u003ehttps://github.com/docker/login-action/compare/v3.6.0...v3.7.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/c94ce9fb468520275223c153574b00df6fe4bcc9\"\u003e\u003ccode\u003ec94ce9f\u003c/code\u003e\u003c/a\u003e\nMerge pull request \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/issues/915\"\u003e#915\u003c/a\u003e\nfrom docker/dependabot/npm_and_yarn/lodash-4.17.23\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/8339c958ce8511f38d0c474c1886a87c802bf1ef\"\u003e\u003ccode\u003e8339c95\u003c/code\u003e\u003c/a\u003e\nMerge pull request \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/issues/912\"\u003e#912\u003c/a\u003e\nfrom docker/scope\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/c83e9320c8beb50b77dd007c46d5c8161f0cac4a\"\u003e\u003ccode\u003ec83e932\u003c/code\u003e\u003c/a\u003e\nbuild(deps): bump lodash from 4.17.21 to 4.17.23\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/b268aa57e39ff0a5386d2fd1eded4e2e1d60d705\"\u003e\u003ccode\u003eb268aa5\u003c/code\u003e\u003c/a\u003e\nchore: update generated content\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/a60322927812ddc99316dd6252b4fba6d8f09ac1\"\u003e\u003ccode\u003ea603229\u003c/code\u003e\u003c/a\u003e\ndocumentation for scope input\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/7567f92a74b2639be1bd8bc932a112a0d81283da\"\u003e\u003ccode\u003e7567f92\u003c/code\u003e\u003c/a\u003e\nAdd scope input to set scopes for the authentication token\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/0567fa5ae8c9a197cb207537dc5cbb43ca3d803f\"\u003e\u003ccode\u003e0567fa5\u003c/code\u003e\u003c/a\u003e\nMerge pull request \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/issues/914\"\u003e#914\u003c/a\u003e\nfrom dphi/add-support-for-amazonaws.eu\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/f6ef57754547a85003a0e18f789be661346d4a6e\"\u003e\u003ccode\u003ef6ef577\u003c/code\u003e\u003c/a\u003e\nfeat: add support for AWS European Sovereign Cloud ECR registries\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/916386b00027d425839f8da46d302dab33f5875b\"\u003e\u003ccode\u003e916386b\u003c/code\u003e\u003c/a\u003e\nMerge pull request \u003ca\nhref\u003d\"https://redirect.github.com/docker/login-action/issues/911\"\u003e#911\u003c/a\u003e\nfrom crazy-max/ensure-redact\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/docker/login-action/commit/5b3f94a294ea5478af3af437baa6ad0d3dcd04fd\"\u003e\u003ccode\u003e5b3f94a\u003c/code\u003e\u003c/a\u003e\nchore: update generated content\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/docker/login-action/compare/5e57cd118135c172c3672efd75eb46360885c0ef...c94ce9fb468520275223c153574b00df6fe4bcc9\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003ddocker/login-action\u0026package-manager\u003dgithub_actions\u0026previous-version\u003d3.6.0\u0026new-version\u003d3.7.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "de97138845abbd12ad253170b5738c4ec3d45473", "tree": "2cdf0135399b69b2f01ba24cf378b50ffdbe2824", "parents": [ "9fd4973d12abbd9e9d14098c2acd41d97a6c4407" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Tue Feb 17 21:29:08 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Tue Feb 17 21:29:08 2026 +0100" }, "message": "MINOR: Bump logback.version from 1.5.26 to 1.5.27 (#999)\n\nBumps `logback.version` from 1.5.26 to 1.5.27.\nUpdates `ch.qos.logback:logback-classic` from 1.5.26 to 1.5.27\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/qos-ch/logback/releases\"\u003ech.qos.logback:logback-classic\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eLogback 1.5.27\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003e2026-01-30 Release of logback version 1.5.27\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003e• Updated license to Eclipse Public License version 2.0 from version\n1.0, retaining the GPL 2.1 dual-license.\u003c/p\u003e\n\u003cp\u003e• Fixed missing MDC data transmitted by \u003ccode\u003eSocketAppender\u003c/code\u003e\nreported in \u003ca\nhref\u003d\"https://redirect.github.com/qos-ch/logback/issues/1010\"\u003eissues/1010\u003c/a\u003e\nby Lars Vogel.\u003c/p\u003e\n\u003cp\u003e• Removed all \u003ccode\u003eReceiver\u003c/code\u003e classes and components which were\nalready disabled for several years.\u003c/p\u003e\n\u003cp\u003e• Refactored file scanning code for improved clarity.\u003c/p\u003e\n\u003cp\u003e• In \u003ccode\u003eSizeAndTimeBasedRollingPolicy\u003c/code\u003e modified\n\u003ccode\u003etotalSizeCap\u003c/code\u003e and \u003ccode\u003emaxFileSize\u003c/code\u003e comparison to\ntaking into account file compression. This fixes \u003ca\nhref\u003d\"https://redirect.github.com/qos-ch/logback/issues/1007\"\u003eissues/1007\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003e• A bit-wise identical binary of this version can be reproduced by\nbuilding from source code at commit\n3618eb01aad6672f9cd250dccf7546a69cbe982f associated with the tag\nv_1.5.27. Release built using Java \u0026quot;21\u0026quot; 2023-10-17 LTS build\n21.0.1.+12-LTS-29 under Linux Debian 11.6.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/3618eb01aad6672f9cd250dccf7546a69cbe982f\"\u003e\u003ccode\u003e3618eb0\u003c/code\u003e\u003c/a\u003e\nincrease timeout delay to 2000 millis\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/db150c3c92656ed01c66dbd8ec2a0f1548637663\"\u003e\u003ccode\u003edb150c3\u003c/code\u003e\u003c/a\u003e\nprepare release 1.5.27\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/0370b137a47a6148c3f2d527f6bfdbd22d3136a8\"\u003e\u003ccode\u003e0370b13\u003c/code\u003e\u003c/a\u003e\nfix missing MDC transmission in SocketAppender. Fixes issues/1010\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/8100acd4e49f7d3c78520efacfd98bd398f0e810\"\u003e\u003ccode\u003e8100acd\u003c/code\u003e\u003c/a\u003e\nremove RemoteAppender*\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/2b67210613628b8610f44063c4e739b71ce83190\"\u003e\u003ccode\u003e2b67210\u003c/code\u003e\u003c/a\u003e\nremove Receiver related classes\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/d84b58686b3e04661bb47e7260d1fdcb731826ac\"\u003e\u003ccode\u003ed84b586\u003c/code\u003e\u003c/a\u003e\nremove ReceiverModelHandler - project still builds indicating no active\nusage\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/44049ed38ff396bc45a98d9b536da8f179547132\"\u003e\u003ccode\u003e44049ed\u003c/code\u003e\u003c/a\u003e\nremove support for receivers in SerializedModelConfigurator and\nJoranConfigur...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/56085d898665d6e99489591333a4ddf381465443\"\u003e\u003ccode\u003e56085d8\u003c/code\u003e\u003c/a\u003e\nfix test\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/e7764f47e51921abe9635b32c2fa80e65d29efba\"\u003e\u003ccode\u003ee7764f4\u003c/code\u003e\u003c/a\u003e\nrefactor file change scanning for clarity\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/e56a12f865751ce6a599963187b4a861854c7e8a\"\u003e\u003ccode\u003ee56a12f\u003c/code\u003e\u003c/a\u003e\nbump assertj version\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/qos-ch/logback/compare/v_1.5.26...v_1.5.27\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ch.qos.logback:logback-core` from 1.5.26 to 1.5.27\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/qos-ch/logback/releases\"\u003ech.qos.logback:logback-core\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eLogback 1.5.27\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003e2026-01-30 Release of logback version 1.5.27\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003e• Updated license to Eclipse Public License version 2.0 from version\n1.0, retaining the GPL 2.1 dual-license.\u003c/p\u003e\n\u003cp\u003e• Fixed missing MDC data transmitted by \u003ccode\u003eSocketAppender\u003c/code\u003e\nreported in \u003ca\nhref\u003d\"https://redirect.github.com/qos-ch/logback/issues/1010\"\u003eissues/1010\u003c/a\u003e\nby Lars Vogel.\u003c/p\u003e\n\u003cp\u003e• Removed all \u003ccode\u003eReceiver\u003c/code\u003e classes and components which were\nalready disabled for several years.\u003c/p\u003e\n\u003cp\u003e• Refactored file scanning code for improved clarity.\u003c/p\u003e\n\u003cp\u003e• In \u003ccode\u003eSizeAndTimeBasedRollingPolicy\u003c/code\u003e modified\n\u003ccode\u003etotalSizeCap\u003c/code\u003e and \u003ccode\u003emaxFileSize\u003c/code\u003e comparison to\ntaking into account file compression. This fixes \u003ca\nhref\u003d\"https://redirect.github.com/qos-ch/logback/issues/1007\"\u003eissues/1007\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003e• A bit-wise identical binary of this version can be reproduced by\nbuilding from source code at commit\n3618eb01aad6672f9cd250dccf7546a69cbe982f associated with the tag\nv_1.5.27. Release built using Java \u0026quot;21\u0026quot; 2023-10-17 LTS build\n21.0.1.+12-LTS-29 under Linux Debian 11.6.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/3618eb01aad6672f9cd250dccf7546a69cbe982f\"\u003e\u003ccode\u003e3618eb0\u003c/code\u003e\u003c/a\u003e\nincrease timeout delay to 2000 millis\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/db150c3c92656ed01c66dbd8ec2a0f1548637663\"\u003e\u003ccode\u003edb150c3\u003c/code\u003e\u003c/a\u003e\nprepare release 1.5.27\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/0370b137a47a6148c3f2d527f6bfdbd22d3136a8\"\u003e\u003ccode\u003e0370b13\u003c/code\u003e\u003c/a\u003e\nfix missing MDC transmission in SocketAppender. Fixes issues/1010\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/8100acd4e49f7d3c78520efacfd98bd398f0e810\"\u003e\u003ccode\u003e8100acd\u003c/code\u003e\u003c/a\u003e\nremove RemoteAppender*\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/2b67210613628b8610f44063c4e739b71ce83190\"\u003e\u003ccode\u003e2b67210\u003c/code\u003e\u003c/a\u003e\nremove Receiver related classes\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/d84b58686b3e04661bb47e7260d1fdcb731826ac\"\u003e\u003ccode\u003ed84b586\u003c/code\u003e\u003c/a\u003e\nremove ReceiverModelHandler - project still builds indicating no active\nusage\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/44049ed38ff396bc45a98d9b536da8f179547132\"\u003e\u003ccode\u003e44049ed\u003c/code\u003e\u003c/a\u003e\nremove support for receivers in SerializedModelConfigurator and\nJoranConfigur...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/56085d898665d6e99489591333a4ddf381465443\"\u003e\u003ccode\u003e56085d8\u003c/code\u003e\u003c/a\u003e\nfix test\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/e7764f47e51921abe9635b32c2fa80e65d29efba\"\u003e\u003ccode\u003ee7764f4\u003c/code\u003e\u003c/a\u003e\nrefactor file change scanning for clarity\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/e56a12f865751ce6a599963187b4a861854c7e8a\"\u003e\u003ccode\u003ee56a12f\u003c/code\u003e\u003c/a\u003e\nbump assertj version\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/qos-ch/logback/compare/v_1.5.26...v_1.5.27\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "9fd4973d12abbd9e9d14098c2acd41d97a6c4407", "tree": "fdb83088ccfe11e9da93bdd7a389d72a3d89cd00", "parents": [ "46211fccf642d6dcfcebc31081817da1529d6a35" ], "author": { "name": "Aleksei Starikov", "email": "aleksei.starikov.ax@gmail.com", "time": "Tue Feb 17 14:15:00 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Tue Feb 17 14:15:00 2026 +0100" }, "message": "GH-470: [Vector] Fix ListViewVector.getElementEndIndex(index) method (#1019)\n\n## What\u0027s Changed\n\n[First\ncommit](https://github.com/apache/arrow-java/commit/a758cadb17c3d50c08a139a3e2ddced71215ccf5)\nchanges logic:\n\n- The PR fixes a bug in the `ListViewVector.getElementEndIndex(index)`\nmethod .\n\nBefore:\n```\npublic int getElementEndIndex(int index) {\n return sizeBuffer.getInt(index * OFFSET_WIDTH);\n}\n```\nAfter:\n```\npublic int getElementEndIndex(int index) {\n return offsetBuffer.getInt(index * OFFSET_WIDTH) + sizeBuffer.getInt(index * SIZE_WIDTH);\n}\n```\n\n[Second\ncommit](https://github.com/apache/arrow-java/commit/aec29750202ff1aac73e7fdc9c2020b3dcf72696)\ndoesn\u0027t change logic:\n\n- Fixes a bug of usage `sizeBuffer` with `OFFSET_WIDTH` (`hashCode`\nmethod) and `offsetBuffer` with `SIZE_WIDTH` (`setSize` method). It\ndoesn\u0027t introduce real changes in the logic as `OFFSET_WIDTH` \u003d\u003d\n`SIZE_WIDTH` \u003d\u003d 4\n\n- Plus small refactoring of ListViewVector to avoid code duplication and\nsimilar issues in the future.\n\n---\nIt\u0027s a bug fix.\n\n---\nCloses #470." }, { "commit": "46211fccf642d6dcfcebc31081817da1529d6a35", "tree": "6da2a6fe2fdfbfb542e009d606527b28d68e5e90", "parents": [ "32984435ed1ffbe6ce1578e075da6eeb012d6bbb" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Tue Feb 17 14:06:40 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Tue Feb 17 14:06:40 2026 +0100" }, "message": "MINOR: Bump com.gradle:develocity-maven-extension from 2.3.1 to 2.3.3 (#1001)\n\nBumps com.gradle:develocity-maven-extension from 2.3.1 to 2.3.3.\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dcom.gradle:develocity-maven-extension\u0026package-manager\u003dmaven\u0026previous-version\u003d2.3.1\u0026new-version\u003d2.3.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "32984435ed1ffbe6ce1578e075da6eeb012d6bbb", "tree": "b757da8fb3f76f4e56e1827fbbb3017c02931b3b", "parents": [ "9d6237ed4761b0ae923499a24d1545bae6218add" ], "author": { "name": "Aleksei Starikov", "email": "aleksei.starikov.ax@gmail.com", "time": "Tue Feb 17 13:59:36 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Tue Feb 17 13:59:36 2026 +0100" }, "message": "GH-130: Fix AutoCloseables to work with @Nullable structures (#1017)\n\n## What\u0027s Changed\n\n`AutoCloseables` supposes to work with nullable `Iterables`, `varargs`,\nand `collection of nulls`. The PR introduces:\n- `@Nullable` annotation for all public methods in `AutoCloseables`\n(only private `flatten` method doesn\u0027t support null `Iterable`)\n- `null` checks to prevent NPEs\n\n---\nThe change is backward compatible. Only possible NPEs are prevented.\n\n---\nCloses #130 ." }, { "commit": "9d6237ed4761b0ae923499a24d1545bae6218add", "tree": "70ed56d864deb5464213ef9f38cbe674126f7ea6", "parents": [ "6dbc5d3690168e381f6b70c94638a9907c5489b3" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Tue Feb 17 07:49:34 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Tue Feb 17 07:49:34 2026 +0100" }, "message": "MINOR: Bump org.mockito:mockito-bom from 5.17.0 to 5.21.0 (#1000)\n\nBumps [org.mockito:mockito-bom](https://github.com/mockito/mockito) from\n5.17.0 to 5.21.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/mockito/mockito/releases\"\u003eorg.mockito:mockito-bom\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.21.0\u003c/h2\u003e\n\u003cp\u003e\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted --\u003e\u003cem\u003eChangelog\ngenerated by \u003ca\nhref\u003d\"https://github.com/shipkit/shipkit-changelog\"\u003eShipkit Changelog\nGradle Plugin\u003c/a\u003e\u003c/em\u003e\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted\n--\u003e\u003c/p\u003e\n\u003ch4\u003e5.21.0\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e2025-12-09 - \u003ca\nhref\u003d\"https://github.com/mockito/mockito/compare/v5.20.0...v5.21.0\"\u003e17\ncommit(s)\u003c/a\u003e by Giulio Longfils, Joshua Selbo, Woongi9, Zylox,\ndependabot[bot]\u003c/li\u003e\n\u003cli\u003eBump graalvm/setup-graalvm from 1.4.3 to 1.4.4 [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3768\"\u003e#3768\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3768\"\u003emockito/mockito#3768\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump graalvm/setup-graalvm from 1.4.2 to 1.4.3 [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3767\"\u003e#3767\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3767\"\u003emockito/mockito#3767\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 5 to 6 [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3765\"\u003e#3765\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3765\"\u003emockito/mockito#3765\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdds output of matchers to potential mismatch; Fixes \u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/2468\"\u003e#2468\u003c/a\u003e\n[(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3760\"\u003e#3760\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3760\"\u003emockito/mockito#3760\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eForbid mocking WeakReference with inline mock maker [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3759\"\u003e#3759\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3759\"\u003emockito/mockito#3759\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eStackOverflowError when mocking WeakReference [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3758\"\u003e#3758\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3758\"\u003emockito/mockito#3758\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump actions/upload-artifact from 4 to 5 [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3756\"\u003e#3756\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3756\"\u003emockito/mockito#3756\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump graalvm/setup-graalvm from 1.4.1 to 1.4.2 [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3755\"\u003e#3755\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3755\"\u003emockito/mockito#3755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport primitives in GenericArrayReturnType. [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3753\"\u003e#3753\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3753\"\u003emockito/mockito#3753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eClassNotFoundException when stubbing array of primitive type on\nAndroid [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3752\"\u003e#3752\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3752\"\u003emockito/mockito#3752\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump graalvm/setup-graalvm from 1.4.0 to 1.4.1 [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3744\"\u003e#3744\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3744\"\u003emockito/mockito#3744\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump gradle/actions from 4 to 5 [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3743\"\u003e#3743\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3743\"\u003emockito/mockito#3743\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump org.graalvm.buildtools.native from 0.11.0 to 0.11.1 [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3738\"\u003e#3738\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3738\"\u003emockito/mockito#3738\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump com.diffplug.spotless:spotless-plugin-gradle from 7.2.1 to\n8.0.0 [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3735\"\u003e#3735\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3735\"\u003emockito/mockito#3735\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump graalvm/setup-graalvm from 1.3.7 to 1.4.0 [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3734\"\u003e#3734\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3734\"\u003emockito/mockito#3734\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump org.assertj:assertj-core from 3.27.5 to 3.27.6 [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3733\"\u003e#3733\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3733\"\u003emockito/mockito#3733\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump errorprone from 2.41.0 to 2.42.0 [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3732\"\u003e#3732\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3732\"\u003emockito/mockito#3732\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFeat: automatically detect class to mock in mockStatic and\nmockConstruction [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3731\"\u003e#3731\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3731\"\u003emockito/mockito#3731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn completed futures for unstubbed Future/CompletionStage in\nReturnsEmptyValues [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3727\"\u003e#3727\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3727\"\u003emockito/mockito#3727\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eautomatically detect class to mock [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/2779\"\u003e#2779\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/2779\"\u003emockito/mockito#2779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIncorrect \u0026quot;has following stubbing(s) with different\narguments\u0026quot; message when using Argument Matchers [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/2468\"\u003e#2468\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/2468\"\u003emockito/mockito#2468\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.20.0\u003c/h2\u003e\n\u003cp\u003e\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted --\u003e\u003cem\u003eChangelog\ngenerated by \u003ca\nhref\u003d\"https://github.com/shipkit/shipkit-changelog\"\u003eShipkit Changelog\nGradle Plugin\u003c/a\u003e\u003c/em\u003e\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted\n--\u003e\u003c/p\u003e\n\u003ch4\u003e5.20.0\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e2025-09-20 - \u003ca\nhref\u003d\"https://github.com/mockito/mockito/compare/v5.19.0...v5.20.0\"\u003e11\ncommit(s)\u003c/a\u003e by Adrian-Kim, Giulio Longfils, Rafael Winterhalter,\ndependabot[bot]\u003c/li\u003e\n\u003cli\u003eBump org.assertj:assertj-core from 3.27.4 to 3.27.5 [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3730\"\u003e#3730\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3730\"\u003emockito/mockito#3730\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIntroducing the Ability to Mock Construction of Generic Types (\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/2401\"\u003e#2401\u003c/a\u003e)\n[(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3729\"\u003e#3729\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3729\"\u003emockito/mockito#3729\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump com.gradle.develocity from 4.1.1 to 4.2 [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3726\"\u003e#3726\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3726\"\u003emockito/mockito#3726\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump graalvm/setup-graalvm from 1.3.6 to 1.3.7 [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3725\"\u003e#3725\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3725\"\u003emockito/mockito#3725\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump org.eclipse.platform:org.eclipse.osgi from 3.23.100 to 3.23.200\n[(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3720\"\u003e#3720\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3720\"\u003emockito/mockito#3720\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump graalvm/setup-graalvm from 1.3.5 to 1.3.6 [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3719\"\u003e#3719\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3719\"\u003emockito/mockito#3719\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump actions/setup-java from 4 to 5 [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3715\"\u003e#3715\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3715\"\u003emockito/mockito#3715\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump com.gradle.develocity from 4.1 to 4.1.1 [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3713\"\u003e#3713\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3713\"\u003emockito/mockito#3713\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump bytebuddy from 1.17.6 to 1.17.7 [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3712\"\u003e#3712\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3712\"\u003emockito/mockito#3712\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etest: Use Assume.assumeThat for SequencedCollection tests [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3711\"\u003e#3711\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3711\"\u003emockito/mockito#3711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3709\"\u003e#3709\u003c/a\u003e\n[(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3710\"\u003e#3710\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3710\"\u003emockito/mockito#3710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat: Add support for JDK21 Sequenced Collections. [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3708\"\u003e#3708\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/pull/3708\"\u003emockito/mockito#3708\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIntroducing the Ability to Mock Construction of Generic Types [(\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/2401\"\u003e#2401\u003c/a\u003e)](\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/2401\"\u003emockito/mockito#2401\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.19.0\u003c/h2\u003e\n\u003cp\u003e\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted --\u003e\u003cem\u003eChangelog\ngenerated by \u003ca\nhref\u003d\"https://github.com/shipkit/shipkit-changelog\"\u003eShipkit Changelog\nGradle Plugin\u003c/a\u003e\u003c/em\u003e\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted\n--\u003e\u003c/p\u003e\n\u003ch4\u003e5.19.0\u003c/h4\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mockito/mockito/commit/09d2230acd7160252a6db228313c226a976e51b9\"\u003e\u003ccode\u003e09d2230\u003c/code\u003e\u003c/a\u003e\nBump graalvm/setup-graalvm from 1.4.3 to 1.4.4 (\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3768\"\u003e#3768\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mockito/mockito/commit/df3e0ccdd42533ac933f87e3fa00c0681d362c5b\"\u003e\u003ccode\u003edf3e0cc\u003c/code\u003e\u003c/a\u003e\nBump graalvm/setup-graalvm from 1.4.2 to 1.4.3 (\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3767\"\u003e#3767\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mockito/mockito/commit/04a6e9f88ccc6c29e77b95a8e0b617319bcee234\"\u003e\u003ccode\u003e04a6e9f\u003c/code\u003e\u003c/a\u003e\nBump actions/checkout from 5 to 6 (\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3765\"\u003e#3765\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mockito/mockito/commit/756a3cf3fa890437603704f1dc2932e908ef3951\"\u003e\u003ccode\u003e756a3cf\u003c/code\u003e\u003c/a\u003e\nAdd description of matchers to potential mismatch (\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3760\"\u003e#3760\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mockito/mockito/commit/58ba4455209a126d025eecbf18b33a7e04dece3b\"\u003e\u003ccode\u003e58ba445\u003c/code\u003e\u003c/a\u003e\nForbid mocking WeakReference with inline mock maker (\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3759\"\u003e#3759\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mockito/mockito/commit/966d6009047c7f6617dbf080e68ee38ea049aa54\"\u003e\u003ccode\u003e966d600\u003c/code\u003e\u003c/a\u003e\nBump actions/upload-artifact from 4 to 5 (\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3756\"\u003e#3756\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mockito/mockito/commit/632bf7bf5521208b237dcd08602c84b399b78031\"\u003e\u003ccode\u003e632bf7b\u003c/code\u003e\u003c/a\u003e\nBump graalvm/setup-graalvm from 1.4.1 to 1.4.2 (\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3755\"\u003e#3755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mockito/mockito/commit/8564b43fbbdf4911a35148f7f11689dd5524c7c8\"\u003e\u003ccode\u003e8564b43\u003c/code\u003e\u003c/a\u003e\nFix primitives support in GenericArrayReturnType for Android (\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3753\"\u003e#3753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mockito/mockito/commit/bf3a80983b99339716ec6070e09e60fbe3d9858c\"\u003e\u003ccode\u003ebf3a809\u003c/code\u003e\u003c/a\u003e\nBump graalvm/setup-graalvm from 1.4.0 to 1.4.1 (\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3744\"\u003e#3744\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mockito/mockito/commit/cffddd4c759feda23185b6d25495fc8f9006190b\"\u003e\u003ccode\u003ecffddd4\u003c/code\u003e\u003c/a\u003e\nBump gradle/actions from 4 to 5 (\u003ca\nhref\u003d\"https://redirect.github.com/mockito/mockito/issues/3743\"\u003e#3743\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/mockito/mockito/compare/v5.17.0...v5.21.0\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dorg.mockito:mockito-bom\u0026package-manager\u003dmaven\u0026previous-version\u003d5.17.0\u0026new-version\u003d5.21.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "6dbc5d3690168e381f6b70c94638a9907c5489b3", "tree": "b7c8c5fc95f44ff84113688804ca227f6ed8b375", "parents": [ "bc7132b92c9c8ab693e5264cddf5145a3eed902e" ], "author": { "name": "Tamas Mate", "email": "50709850+tmater@users.noreply.github.com", "time": "Tue Feb 17 06:16:03 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Tue Feb 17 06:16:03 2026 +0100" }, "message": "GH-946: Add Variant extension type support (#947)\n\n### Summary\n\nThis PR adds support for the Variant extension type in Arrow Java,\nenabling storage and manipulation of semi-structured variant data with\nmetadata and value buffers.\n\n### Changes\n\nA new `arrow-variant` module introduces the `Variant` class for parsing\nand working with variant data. This module is separated from the core\nvector module to isolate the `parquet-variant` dependency, so users of\nthe Arrow vector library don\u0027t have to depend on Parquet. This also\nmaintains a clean API boundary between Arrow\u0027s core functionality and\nvariant-specific parsing logic.\n\nThe core vector module gains `VariantType` as an extension type along\nwith `VariantVector` for storing variant data as metadata/value buffer\npairs. The implementation includes reader and writer support through\n`VariantReaderImpl`, `VariantWriterImpl`, and\n`NullableVariantHolderReaderImpl`, with corresponding holder classes for\nuse in generated code paths.\n\n### Testing\n\n- Unit tests for `VariantType`, `VariantVector`, and `Variant` parsing\n- Integration tests with `ListVector` and `MapVector`\n- Extension type round-trip tests\n\nCloses #946" }, { "commit": "bc7132b92c9c8ab693e5264cddf5145a3eed902e", "tree": "156dd0e6ae9c71a9455cd2f5788ce470822ac7b6", "parents": [ "2b74309ba4d5844593d6a3191d7b958f18468ae9" ], "author": { "name": "Sutou Kouhei", "email": "kou@clear-code.com", "time": "Mon Feb 16 22:02:33 2026 +0900" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Feb 16 14:02:33 2026 +0100" }, "message": "GH-1021: Use released apache/arrow instead of main (#1022)\n\n## What\u0027s Changed\n\nIn general, we should use released apache/arrow for apache/arrow-java\nrelease.\n\nCloses #1021." }, { "commit": "2b74309ba4d5844593d6a3191d7b958f18468ae9", "tree": "b54e78f2f748c19911df7436d5a547562d5733eb", "parents": [ "60a1a424200675710cc002c87b5a9a3afc6bada5" ], "author": { "name": "Aleksei Starikov", "email": "aleksei.starikov.ax@gmail.com", "time": "Mon Feb 16 11:42:29 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Feb 16 19:42:29 2026 +0900" }, "message": "MINOR: [Docs] Remove extra line in README.md (fix pre-commit) (#1018)\n\n## What\u0027s Changed\n\nRemove extra line in README.md for fixing the `end-of-file-fixer` hook\nin the `pre-commit` build.\n\nE.g.\n[here](https://github.com/apache/arrow-java/actions/runs/21902454512/job/63233962122)\nin the main branch build.\n```\nfix end of files.........................................................Failed\n- hook id: end-of-file-fixer\n- exit code: 1\n- files were modified by this hook\n\nFixing README.md\n```" }, { "commit": "60a1a424200675710cc002c87b5a9a3afc6bada5", "tree": "9a269ea45ce8f45990025208d268b7dcb7631a41", "parents": [ "776466e904f3ae44f52c3baa019e795e8a68c527" ], "author": { "name": "Aleksei Starikov", "email": "aleksei.starikov.ax@gmail.com", "time": "Wed Feb 11 12:00:23 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Wed Feb 11 12:00:23 2026 +0100" }, "message": "GH-1014: [Docs] Fix broken and obsolete links in the README.md (#1015)\n\n## What\u0027s Changed\n\nFix broken links in `README.md` file.\nRemove the unused reference [2]:\nhttps://github.com/apache/arrow/blob/main/cpp/README.md.\nInline footnote links.\n\nCloses #1014." }, { "commit": "776466e904f3ae44f52c3baa019e795e8a68c527", "tree": "1e6869c8779363f73f0ec52b92cf6051b7e6bcb6", "parents": [ "b3113ab797020a8cfd6ea83ab3c549eb808b2d09" ], "author": { "name": "Aleksei Starikov", "email": "aleksei.starikov.ax@gmail.com", "time": "Sun Feb 08 14:08:20 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Sun Feb 08 14:08:20 2026 +0100" }, "message": "GH-141: Correct capacity behavior in BufferAllocator.buffer docstrings (#1010)\n\n## What\u0027s Changed\n\nUpdate the `BufferAllocator.buffer(long)` and\n`BufferAllocator.buffer(long, BufferManager)` docstrings so they match\nthe actual behavior: the returned buffer’s capacity is the allocated\n(possibly rounded) size, not the requested size. The previous text said\nthe capacity would be set to the configured size, which was incorrect.\nThe new text also mentions that callers can use\n`ArrowBuf#capacity(long)` to set the capacity to the requested size when\nneeded.\n\nDocumentation-only change; no code or behavioral changes.\n\nCloses #141." }, { "commit": "b3113ab797020a8cfd6ea83ab3c549eb808b2d09", "tree": "5619f194dcbd70bbac19fdeddea9465b8371e861", "parents": [ "ce1f3d75b25038af068b62cb9ebd35817b7a04a3" ], "author": { "name": "Aleksei Starikov", "email": "aleksei.starikov.ax@gmail.com", "time": "Sun Feb 08 14:07:13 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Sun Feb 08 14:07:13 2026 +0100" }, "message": "GH-1011: [Docs] Fix broken Java API reference links in documentation (#1012)\n\n## What\u0027s Changed\n\nFix Java API references in docs.\n\nFor example:\n\nhttps://arrow.apache.org/docs/java/reference/org/apache/arrow/flight/FlightClient.html\n-\u003e\nhttps://arrow.apache.org/java/current/reference/org.apache.arrow.flight.core/org/apache/arrow/flight/FlightClient.html\n\nCloses #1011." }, { "commit": "ce1f3d75b25038af068b62cb9ebd35817b7a04a3", "tree": "ac95b767919f84c1e480cd6c97a7a4256ad5d520", "parents": [ "ad59035ec880920f285158a140467d8b8d41789c" ], "author": { "name": "Tamas Mate", "email": "50709850+tmater@users.noreply.github.com", "time": "Wed Jan 28 22:58:30 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Wed Jan 28 22:58:30 2026 +0100" }, "message": "GH-993: Fix missing pipe in milestone assignment script (#992)\n\nThe `head -n1` command was not piped to grep output, causing all\nmatching milestones to be captured instead of just the first one.\n\nExample failure:\n```\n Assigning milestone: 19.0.0\n 20.0.0\n \u002719.0.0\n 20.0.0\u0027 not found\n```\n\nCloses #993" }, { "commit": "ad59035ec880920f285158a140467d8b8d41789c", "tree": "06e1db872f3d5f4b115ef3d4ac02714d1db0973a", "parents": [ "0eb50b5e840d7538d10478934929cc6b7ea40429" ], "author": { "name": "Pedro Matias", "email": "pedro.matias@dremio.com", "time": "Tue Jan 27 22:25:29 2026 +0000" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Tue Jan 27 23:25:29 2026 +0100" }, "message": "GH-990: [JDBC] Fix memory leak on Connection#close due to unclosed ResultSet(s) (#991)\n\n## What\u0027s Changed\n\nClosing a Connection when there was one or more unclosed ResultSet that\nhad been obtained\nvia methods of the interface DatabaseMetaData would generate exceptions\ndue to memory leaks.\n\nNow, closing a Connection will first close all the ResultSet instances\nobtained from DatabaseMetadata\ninstances associated with that Connection.\n\nCloses #990." }, { "commit": "0eb50b5e840d7538d10478934929cc6b7ea40429", "tree": "87f6d88caaf09dca14309ddc6ae6f9f55c5873c9", "parents": [ "923a5df0d668aa90f0d322f618314118ea0399e6" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Tue Jan 27 18:44:08 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Tue Jan 27 18:44:08 2026 +0100" }, "message": "MINOR: Bump com.google.protobuf:protobuf-bom from 4.33.1 to 4.33.4 (#984)\n\nBumps\n[com.google.protobuf:protobuf-bom](https://github.com/protocolbuffers/protobuf)\nfrom 4.33.1 to 4.33.4.\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca\nhref\u003d\"https://github.com/protocolbuffers/protobuf/commits\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dcom.google.protobuf:protobuf-bom\u0026package-manager\u003dmaven\u0026previous-version\u003d4.33.1\u0026new-version\u003d4.33.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "923a5df0d668aa90f0d322f618314118ea0399e6", "tree": "597e768f23fd84537d81f9b71eb616134534c12d", "parents": [ "9b1f946db4927fa49c6ba4d713d7e83bd712a026" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Tue Jan 27 18:26:34 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Tue Jan 27 18:26:34 2026 +0100" }, "message": "MINOR: Bump logback.version from 1.5.25 to 1.5.26 (#981)\n\nBumps `logback.version` from 1.5.25 to 1.5.26.\nUpdates `ch.qos.logback:logback-classic` from 1.5.25 to 1.5.26\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/qos-ch/logback/releases\"\u003ech.qos.logback:logback-classic\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eLogback 1.5.26\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003e2026-01-25 Release of logback version 1.5.26\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003e• InsertFromJNDIModelHandler was accessing javax.naming package\nforcing the inclusion of the optional java.naming module. This problem\nwas raised in \u003ca\nhref\u003d\"https://redirect.github.com/qos-ch/logback/issues/1003\"\u003eissues/1003\u003c/a\u003e\nby Marius Hanl who also provided the relevant PR.\u003c/p\u003e\n\u003cp\u003e• In applications using shadow/fat/shade jars, module or package\ninformation could be lost. Thus, in the absence of version information,\nlogback-classic would warn about version mismatches. Logback components\nnow ship with properties files containing version information that\nsurvive shadow/fat/shade jars. This issue was reporteed in \u003ca\nhref\u003d\"https://redirect.github.com/qos-ch/logback/issues/1002\"\u003eissues/1002\u003c/a\u003e\nby Christoph Gritschenberger.\u003c/p\u003e\n\u003cp\u003e• A bit-wise identical binary of this version can be reproduced by\nbuilding from source code at commit\n33deb54506bbfaf1ff151f26f3a5f86936011619 associated with the tag\nv_1.5.26. Release built using Java \u0026quot;21\u0026quot; 2023-10-17 LTS build\n21.0.1.+12-LTS-29 under Linux Debian 11.6.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/33deb54506bbfaf1ff151f26f3a5f86936011619\"\u003e\u003ccode\u003e33deb54\u003c/code\u003e\u003c/a\u003e\nprepare release 1.5.26\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/d38a3e2113d11c98b2ae4dc01b5a262de4cb6388\"\u003e\u003ccode\u003ed38a3e2\u003c/code\u003e\u003c/a\u003e\nrefactoring based on usage in logback-access\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/4368333c90125f4f9e4fd3d17946c73eb1bc97fe\"\u003e\u003ccode\u003e4368333\u003c/code\u003e\u003c/a\u003e\nmove VersionUtil.getCoreVersionBySelfDeclaredProperties to\nCoreVersionUtil\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/8bd5660bdb4b7b4d6ce67e576f16bea987e93899\"\u003e\u003ccode\u003e8bd5660\u003c/code\u003e\u003c/a\u003e\nmodify VersionCheckTest to use logback-core 1.5.25\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/7a8f0b6e32953fc38762f7025d77c3f6d7dd39a5\"\u003e\u003ccode\u003e7a8f0b6\u003c/code\u003e\u003c/a\u003e\nversion information is self declared by modules.\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/00d272f6aeb87708bed6fc42e9207557fa7f7d02\"\u003e\u003ccode\u003e00d272f\u003c/code\u003e\u003c/a\u003e\nDo not use javax.naming namespace in the catch block, so that Logback\ncan be ...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/420d67c965b0ef76a084ac37cc45c95d16ffece3\"\u003e\u003ccode\u003e420d67c\u003c/code\u003e\u003c/a\u003e\nmention country only, add missing 2016-03-29\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/033aba4896778c8a082833ff06240f4873766a29\"\u003e\u003ccode\u003e033aba4\u003c/code\u003e\u003c/a\u003e\nfix javadoc errors\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/6d52744c4c378be58c5df95aa4b4d3bc6f9c18c8\"\u003e\u003ccode\u003e6d52744\u003c/code\u003e\u003c/a\u003e\nstart work on 1.5.26-SNAPSHOT\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca\nhref\u003d\"https://github.com/qos-ch/logback/compare/v_1.5.25...v_1.5.26\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ch.qos.logback:logback-core` from 1.5.25 to 1.5.26\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/qos-ch/logback/releases\"\u003ech.qos.logback:logback-core\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eLogback 1.5.26\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003e2026-01-25 Release of logback version 1.5.26\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003e• InsertFromJNDIModelHandler was accessing javax.naming package\nforcing the inclusion of the optional java.naming module. This problem\nwas raised in \u003ca\nhref\u003d\"https://redirect.github.com/qos-ch/logback/issues/1003\"\u003eissues/1003\u003c/a\u003e\nby Marius Hanl who also provided the relevant PR.\u003c/p\u003e\n\u003cp\u003e• In applications using shadow/fat/shade jars, module or package\ninformation could be lost. Thus, in the absence of version information,\nlogback-classic would warn about version mismatches. Logback components\nnow ship with properties files containing version information that\nsurvive shadow/fat/shade jars. This issue was reporteed in \u003ca\nhref\u003d\"https://redirect.github.com/qos-ch/logback/issues/1002\"\u003eissues/1002\u003c/a\u003e\nby Christoph Gritschenberger.\u003c/p\u003e\n\u003cp\u003e• A bit-wise identical binary of this version can be reproduced by\nbuilding from source code at commit\n33deb54506bbfaf1ff151f26f3a5f86936011619 associated with the tag\nv_1.5.26. Release built using Java \u0026quot;21\u0026quot; 2023-10-17 LTS build\n21.0.1.+12-LTS-29 under Linux Debian 11.6.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/33deb54506bbfaf1ff151f26f3a5f86936011619\"\u003e\u003ccode\u003e33deb54\u003c/code\u003e\u003c/a\u003e\nprepare release 1.5.26\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/d38a3e2113d11c98b2ae4dc01b5a262de4cb6388\"\u003e\u003ccode\u003ed38a3e2\u003c/code\u003e\u003c/a\u003e\nrefactoring based on usage in logback-access\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/4368333c90125f4f9e4fd3d17946c73eb1bc97fe\"\u003e\u003ccode\u003e4368333\u003c/code\u003e\u003c/a\u003e\nmove VersionUtil.getCoreVersionBySelfDeclaredProperties to\nCoreVersionUtil\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/8bd5660bdb4b7b4d6ce67e576f16bea987e93899\"\u003e\u003ccode\u003e8bd5660\u003c/code\u003e\u003c/a\u003e\nmodify VersionCheckTest to use logback-core 1.5.25\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/7a8f0b6e32953fc38762f7025d77c3f6d7dd39a5\"\u003e\u003ccode\u003e7a8f0b6\u003c/code\u003e\u003c/a\u003e\nversion information is self declared by modules.\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/00d272f6aeb87708bed6fc42e9207557fa7f7d02\"\u003e\u003ccode\u003e00d272f\u003c/code\u003e\u003c/a\u003e\nDo not use javax.naming namespace in the catch block, so that Logback\ncan be ...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/420d67c965b0ef76a084ac37cc45c95d16ffece3\"\u003e\u003ccode\u003e420d67c\u003c/code\u003e\u003c/a\u003e\nmention country only, add missing 2016-03-29\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/033aba4896778c8a082833ff06240f4873766a29\"\u003e\u003ccode\u003e033aba4\u003c/code\u003e\u003c/a\u003e\nfix javadoc errors\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/6d52744c4c378be58c5df95aa4b4d3bc6f9c18c8\"\u003e\u003ccode\u003e6d52744\u003c/code\u003e\u003c/a\u003e\nstart work on 1.5.26-SNAPSHOT\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca\nhref\u003d\"https://github.com/qos-ch/logback/compare/v_1.5.25...v_1.5.26\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "9b1f946db4927fa49c6ba4d713d7e83bd712a026", "tree": "ebbfc8604729caafa87eac2fa64f0e22b980ee7d", "parents": [ "3db456262fe00fc980f4846f31ed0e3cea1e6379" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Tue Jan 27 17:57:43 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Tue Jan 27 17:57:43 2026 +0100" }, "message": "MINOR: Bump org.apache.commons:commons-pool2 from 2.12.1 to 2.13.1 (#987)\n\nBumps org.apache.commons:commons-pool2 from 2.12.1 to 2.13.1.\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dorg.apache.commons:commons-pool2\u0026package-manager\u003dmaven\u0026previous-version\u003d2.12.1\u0026new-version\u003d2.13.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "3db456262fe00fc980f4846f31ed0e3cea1e6379", "tree": "48ee856df22b6054a441ac5f03d859b5914390d9", "parents": [ "096f582ae7e7f39af8f80f23470c4802a27aeac8" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Tue Jan 27 17:21:30 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Tue Jan 27 17:21:30 2026 +0100" }, "message": "MINOR: Bump org.assertj:assertj-core from 3.27.3 to 3.27.7 (#988)\n\nBumps [org.assertj:assertj-core](https://github.com/assertj/assertj)\nfrom 3.27.3 to 3.27.7.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/assertj/assertj/releases\"\u003eorg.assertj:assertj-core\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.27.7\u003c/h2\u003e\n\u003ch2\u003e:lock: Security\u003c/h2\u003e\n\u003ch3\u003eCore\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix XXE vulnerability in \u003ccode\u003eisXmlEqualTo\u003c/code\u003e assertion\n(CVE-2026-24400)\n\u003cul\u003e\n\u003cli\u003eSee \u003ca\nhref\u003d\"https://github.com/assertj/assertj/security/advisories/GHSA-rqfh-9r24-8c9r\"\u003eGHSA-rqfh-9r24-8c9r\u003c/a\u003e\nfor details; many thanks to \u003ca\nhref\u003d\"https://github.com/wxt201\"\u003e\u003ccode\u003e@​wxt201\u003c/code\u003e\u003c/a\u003e and \u003ca\nhref\u003d\"https://github.com/Song-Li\"\u003e\u003ccode\u003e@​Song-Li\u003c/code\u003e\u003c/a\u003e for\nresponsibly reporting it!\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:no_entry_sign: Deprecated\u003c/h2\u003e\n\u003ch3\u003eCore\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eXmlStringPrettyFormatter\u003c/code\u003e with no\nreplacement\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:bug: Bug Fixes\u003c/h2\u003e\n\u003ch3\u003eGuava\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eNavigation to \u003ccode\u003eassertj-core\u003c/code\u003e or \u003ccode\u003eguava\u003c/code\u003e types\nfrom \u003ccode\u003eassertj-guava\u003c/code\u003e Javadoc site has unnecessary header \u003ca\nhref\u003d\"https://redirect.github.com/assertj/assertj/issues/3478\"\u003e#3478\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003ch3\u003eCore\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Byte Buddy 1.18.3\u003c/li\u003e\n\u003cli\u003eUpgrade to JUnit BOM 5.14.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eGuava\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Guava 33.5.0-jre\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.27.6\u003c/h2\u003e\n\u003ch2\u003e:bug: Bug Fixes\u003c/h2\u003e\n\u003ch3\u003eCore\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd missing export for \u003ccode\u003eorg.assertj.core.annotation\u003c/code\u003e \u003ca\nhref\u003d\"https://redirect.github.com/assertj/assertj/issues/3951\"\u003e#3951\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThanks to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href\u003d\"https://github.com/duponter\"\u003e\u003ccode\u003e@​duponter\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.27.5\u003c/h2\u003e\n\u003ch2\u003e:zap: Improvements\u003c/h2\u003e\n\u003ch3\u003eCore\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eByteBuddy in AssertJ 3.27.4 not compatible with Java 25 \u003ca\nhref\u003d\"https://redirect.github.com/assertj/assertj/issues/3946\"\u003e#3946\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/assertj/assertj/commit/e84071667f5f8f13084af9dfa54cee5fd9db18db\"\u003e\u003ccode\u003ee840716\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release assertj-build-3.27.7\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/assertj/assertj/commit/85ca7eb6609bb179c043b85ae7d290523b1ba79a\"\u003e\u003ccode\u003e85ca7eb\u003c/code\u003e\u003c/a\u003e\nDeprecate \u003ccode\u003eXmlStringPrettyFormatter\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/assertj/assertj/commit/77081dc5eb107141df80f95bd0149b468e451341\"\u003e\u003ccode\u003e77081dc\u003c/code\u003e\u003c/a\u003e\nMerge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/assertj/assertj/commit/b68fc24a9de28f28a486fc5b887c1b8a003a5823\"\u003e\u003ccode\u003eb68fc24\u003c/code\u003e\u003c/a\u003e\nBump github/codeql-action from 4.31.9 to 4.31.10 in the github-actions\ngroup ...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/assertj/assertj/commit/0cf5bb6c50f6ead3deaa2a2ff50ef1e7d933c8a3\"\u003e\u003ccode\u003e0cf5bb6\u003c/code\u003e\u003c/a\u003e\nBump \u003ccode\u003ekotlin.version\u003c/code\u003e from 2.1.0 to 2.2.21\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/assertj/assertj/commit/d393ef1f5e48c89d47d7cf6d1eae359ceda0a126\"\u003e\u003ccode\u003ed393ef1\u003c/code\u003e\u003c/a\u003e\nAbort tests when symbolic links cannot be created (\u003ca\nhref\u003d\"https://redirect.github.com/assertj/assertj/issues/3788\"\u003e#3788\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/assertj/assertj/commit/22124331e9922af5a43ab50f7a9a25b65be53be1\"\u003e\u003ccode\u003e2212433\u003c/code\u003e\u003c/a\u003e\nAdd IntelliJ custom inspection for test class names\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/assertj/assertj/commit/5717d025cfe0f4c66de20f3253c0b0ecba259aa1\"\u003e\u003ccode\u003e5717d02\u003c/code\u003e\u003c/a\u003e\nUpdate JetBrains icon\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/assertj/assertj/commit/a8ec20bd42ed01f9cc6f654046c7dd424b0af07c\"\u003e\u003ccode\u003ea8ec20b\u003c/code\u003e\u003c/a\u003e\nAdd icon for JetBrains products\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/assertj/assertj/commit/c05fb3d052b415fb2d6051df939f3b7903a76afe\"\u003e\u003ccode\u003ec05fb3d\u003c/code\u003e\u003c/a\u003e\nBump Maven to 3.9.12 and Wrapper to 3.3.4\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/assertj/assertj/compare/assertj-build-3.27.3...assertj-build-3.27.7\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dorg.assertj:assertj-core\u0026package-manager\u003dmaven\u0026previous-version\u003d3.27.3\u0026new-version\u003d3.27.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the\n[Security Alerts\npage](https://github.com/apache/arrow-java/network/alerts).\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "096f582ae7e7f39af8f80f23470c4802a27aeac8", "tree": "9c60f7ab87b4356bfcedcc0a2217e427e90516c0", "parents": [ "3325625662fa0412fccacc9d416289ac93b5b318" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Jan 26 09:06:41 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Jan 26 09:06:41 2026 +0100" }, "message": "MINOR: Bump org.apache.commons:commons-compress from 1.27.1 to 1.28.0 (#985)\n\nBumps\n[org.apache.commons:commons-compress](https://github.com/apache/commons-compress)\nfrom 1.27.1 to 1.28.0.\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/apache/commons-compress/blob/master/RELEASE-NOTES.txt\"\u003eorg.apache.commons:commons-compress\u0027s\nchangelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eApache Commons Compress 1.28.0 Release Notes\u003c/h2\u003e\n\u003cp\u003eThe Apache Commons Compress team is pleased to announce the release\nof Apache Commons Compress 1.28.0.\u003c/p\u003e\n\u003cp\u003eApache Commons Compress defines an API for working with\ncompression and archive formats. These include bzip2, gzip, pack200,\nLZMA, XZ, Snappy, traditional Unix Compress, DEFLATE, DEFLATE64, LZ4,\nBrotli, Zstandard and ar, cpio, jar, tar, zip, dump, 7z, arj.\u003c/p\u003e\n\u003cp\u003eThis is a feature and maintenance release. Java 8 or later is\nrequired.\u003c/p\u003e\n\u003cp\u003eThis release updates Apache Commons Lang to 3.18.0 to pick up the fix\nfor CVE-2025-48924 (\u003ca\nhref\u003d\"https://nvd.nist.gov/vuln/detail/CVE-2025-48924\"\u003ehttps://nvd.nist.gov/vuln/detail/CVE-2025-48924\u003c/a\u003e),\nbut is not affected by it.\u003c/p\u003e\n\u003ch2\u003eChanges in this version\u003c/h2\u003e\n\u003cp\u003eChanges in this version include the following.\u003c/p\u003e\n\u003ch2\u003eNew Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Add GzipParameters.getModificationInstant(). Thanks to Gary\nGregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Add GzipParameters.setModificationInstant(Instant). Thanks\nto Gary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Add GzipParameters.OS, setOS(OS), getOS(). Thanks to Gary\nGregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Add GzipParameters.toString(). Thanks to Gary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003eCOMPRESS-638: Add GzipParameters.setFileNameCharset(Charset) and\ngetFileNameCharset() to override the default ISO-8859-1 Charset \u003ca\nhref\u003d\"https://redirect.github.com/apache/commons-compress/issues/602\"\u003e#602\u003c/a\u003e.\nThanks to vincexjl, Gary Gregory, Piotr P. Karwasz.\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Add support for gzip extra subfields, see\nGzipParameters.setExtra(HeaderExtraField)\n[#604](https://github.com/apache/commons-compress/issues/604). Thanks to\nddeschenes-1, Gary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Add CompressFilterOutputStream and refactor to use. Thanks\nto Gary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Add ZipFile.stream(). Thanks to Gary Gregory. \n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e GzipCompressorInputStream reads the modification time\n(MTIME) and stores its value incorrectly multiplied by 1,000. Thanks to\nDanny Deschenes, Gary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e GzipCompressorInputStream writes the modification time\n(MTIME) the value incorrectly divided by 1,000. Thanks to Danny\nDeschenes, Gary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Add optional FHCRC to GZIP header\n[#627](https://github.com/apache/commons-compress/issues/627). Thanks to\nDanny Deschenes, Gary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Add GzipCompressorInputStream.Builder allowing to customize\nthe file name and comment Charsets. Thanks to Gary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Add\nGzipCompressorInputStream.Builder.setOnMemberStart(IOConsumer) to\nmonitor member parsing. Thanks to Gary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Add\nGzipCompressorInputStream.Builder.setOnMemberEnd(IOConsumer) to monitor\nmember parsing. Thanks to Gary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Add PMD check to default Maven goal. Thanks to Gary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Add SevenZFile.Builder.setMaxMemoryLimitKiB(int). Thanks to\nGary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Add MemoryLimitException.MemoryLimitException(long, int,\nThrowable) and deprecate MemoryLimitException.MemoryLimitException(long,\nint, Exception). Thanks to Gary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003eCOMPRESS-692: Add support for zstd compression in zip archives.\nThanks to Mehmet Karaman, Andrey Loskutov, Gary Gregory.\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Add support for XZ compression in ZIP archives. Thanks to\nGary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003eCOMPRESS-695: Add\nZipArchiveInputStream.createZstdInputStream(InputStream) to provide a\ndifferent InputStream implementation for Zstandard (Zstd) \u003ca\nhref\u003d\"https://redirect.github.com/apache/commons-compress/issues/649\"\u003e#649\u003c/a\u003e.\nThanks to Gary Gregory.\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Add\norg.apache.commons.compress.harmony.pack200.Pack200Exception.Pack200Exception(String,\nThrowable). Thanks to Gary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003eCOMPRESS-697: Move BitStream.nextBit() method to BitInputStream \u003ca\nhref\u003d\"https://redirect.github.com/apache/commons-compress/issues/663\"\u003e#663\u003c/a\u003e.\nThanks to Fredrik Kjellberg, Gary Gregory.\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Add\norg.apache.commons.compress.compressors.lzma.LZMACompressorInputStream.builder/Builder().\nThanks to Gary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Add\norg.apache.commons.compress.compressors.lzma.LZMACompressorOutputStream.builder/Builder().\nThanks to Gary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Add\norg.apache.commons.compress.compressors.xz.XZCompressorInputStream.builder/Builder().\nThanks to Gary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Add\norg.apache.commons.compress.compressors.xz.XZCompressorOutputStream.builder/Builder().\nThanks to Gary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Add\norg.apache.commons.compress.compressors.xz.ZstdCompressorOutputStream.builder/Builder()\n[#666](https://github.com/apache/commons-compress/issues/666). Thanks to\nGary Gregory, David Walluck, Piotr P. Karwasz.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Add org.apache.commons.compress.compressors.xz.ZstdConstants\n[#666](https://github.com/apache/commons-compress/issues/666). Thanks to\nGary Gregory, David Walluck, Piotr P. Karwasz.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-compress/commit/852d9c23b94127feafc1649d9c7f13d4df338845\"\u003e\u003ccode\u003e852d9c2\u003c/code\u003e\u003c/a\u003e\nPrepare for the release candidate 1.28.0 RC1\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-compress/commit/f5eb9e28edf8a661ac5efc43b7853ee49bb73b3a\"\u003e\u003ccode\u003ef5eb9e2\u003c/code\u003e\u003c/a\u003e\nPrepare for the next release candidate\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-compress/commit/36f204caa6f7bb2c92a9ad04ba246ad47a2465d2\"\u003e\u003ccode\u003e36f204c\u003c/code\u003e\u003c/a\u003e\nCamel case parameter name\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-compress/commit/4c04e4a803831c00663a6dafd0f0837fba60633b\"\u003e\u003ccode\u003e4c04e4a\u003c/code\u003e\u003c/a\u003e\nUse final\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-compress/commit/6cb7da194a9369edfbd65629576203b8af61ba44\"\u003e\u003ccode\u003e6cb7da1\u003c/code\u003e\u003c/a\u003e\nJavadoc\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-compress/commit/563c9d2fa4d2340902284fc044a7398fc15da5fb\"\u003e\u003ccode\u003e563c9d2\u003c/code\u003e\u003c/a\u003e\nJavadoc\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-compress/commit/ce73bd890e50fcb88d362fc8298f31fa90d802aa\"\u003e\u003ccode\u003ece73bd8\u003c/code\u003e\u003c/a\u003e\nJavadoc\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-compress/commit/a464ae94e0f9c59e9bc30be6086d876f9907d0a4\"\u003e\u003ccode\u003ea464ae9\u003c/code\u003e\u003c/a\u003e\nBetter parameter names\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-compress/commit/c0b2b84144d923a2bf7caada35e1d9bb5d562e78\"\u003e\u003ccode\u003ec0b2b84\u003c/code\u003e\u003c/a\u003e\nAdd TODO for next major version\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-compress/commit/c76bc976703dc0cebfb6d4653061b8ac3524421d\"\u003e\u003ccode\u003ec76bc97\u003c/code\u003e\u003c/a\u003e\nUse OpenVEX to document that we are not affected by CVE-2025-48924\nin\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/apache/commons-compress/compare/rel/commons-compress-1.27.1...rel/commons-compress-1.28.0\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dorg.apache.commons:commons-compress\u0026package-manager\u003dmaven\u0026previous-version\u003d1.27.1\u0026new-version\u003d1.28.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "3325625662fa0412fccacc9d416289ac93b5b318", "tree": "7642b0167ebf33bf3e4881cd114f3814aef1709c", "parents": [ "0f8a0808fd9cf0bd22d3c6b40a2016ee724ce185" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Jan 26 08:49:41 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Jan 26 08:49:41 2026 +0100" }, "message": "MINOR: Bump org.apache.commons:commons-dbcp2 from 2.13.0 to 2.14.0 (#983)\n\nBumps org.apache.commons:commons-dbcp2 from 2.13.0 to 2.14.0.\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dorg.apache.commons:commons-dbcp2\u0026package-manager\u003dmaven\u0026previous-version\u003d2.13.0\u0026new-version\u003d2.14.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "0f8a0808fd9cf0bd22d3c6b40a2016ee724ce185", "tree": "2c2d58a67d6607bf164e78eb7a1e31119d0508b9", "parents": [ "ccaac9ad688265d272d4c3d9d824426ef7681669" ], "author": { "name": "Yicong Huang", "email": "17627829+Yicong-Huang@users.noreply.github.com", "time": "Fri Jan 23 01:18:13 2026 -0800" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Fri Jan 23 10:18:13 2026 +0100" }, "message": "GH-343: Fix ListVector offset buffer not properly serialized for nested empty arrays (#967)\n\n## What\u0027s Changed\n\nFix `ListVector`/`LargeListVector` IPC serialization when `valueCount`\nis 0.\n\n### Problem\n\nWhen `valueCount \u003d\u003d 0`, `setReaderAndWriterIndex()` was setting\n`offsetBuffer.writerIndex(0)`, which means `readableBytes() \u003d\u003d 0`. IPC\nserializer uses `readableBytes()` to determine buffer size, so 0 bytes\nwere written to the IPC stream. This crashes IPC readers in other\nlibraries because Arrow spec requires offset buffer to have at least one\nentry `[0]`.\n\n@viirya:\n\n\u003e The offset buffers are allocated properly. But during IPC\nserialization, they are ignored.\n\u003e ```\n\u003e public long readableBytes() {\n\u003e return writerIndex - readerIndex;\n\u003e }\n\u003e ```\n\u003e So when ListVector.setReaderAndWriterIndex() sets writerIndex(0) and\nreaderIndex(0), readableBytes() returns 0 - 0 \u003d 0.\n\u003e \n\u003e Then when MessageSerializer.writeBatchBuffers() calls\nWriteChannel.write(buffer), it writes 0 bytes.\n\u003e\n\u003e So the flow is:\n\u003e \n\u003e valueCount\u003d0 → ListVector.setReaderAndWriterIndex() sets\noffsetBuffer.writerIndex(0)\n\u003e VectorUnloader.getFieldBuffers() returns the buffer with writerIndex\u003d0\n\u003e MessageSerializer.writeBatchBuffers() writes the buffer\n\u003e WriteChannel.write(buffer) checks buffer.readableBytes() which is 0\n\u003e 0 bytes are written to the IPC stream\n\u003e PyArrow read the batch with the missing buffer → crash when other\nlibraries to read\n\n### Fix\n\nSimplify `setReaderAndWriterIndex()` to always use `(valueCount + 1) *\nOFFSET_WIDTH` for offset buffer\u0027s `writerIndex`. When `valueCount \u003d\u003d 0`,\nthis correctly sets `writerIndex` to `OFFSET_WIDTH`, ensuring\n`offset[0]` is included in serialization.\n\n### Testing\n\nAdded tests for nested empty lists verifying offset buffer has correct\n`readableBytes()`.\n\nCloses #343.\n\n---------\n\nCo-authored-by: Yicong Huang \u003cyicong.huang+data@databricks.com\u003e" }, { "commit": "ccaac9ad688265d272d4c3d9d824426ef7681669", "tree": "53fc820435bcc96e8f53d3a142afa067cc53ff24", "parents": [ "44c49baf6c2fdfcf20c8611f45c627c9438b2adb" ], "author": { "name": "Kaustav Sarkar", "email": "70840177+Kaustav-Sarkar@users.noreply.github.com", "time": "Thu Jan 22 23:26:49 2026 +0530" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Thu Jan 22 18:56:49 2026 +0100" }, "message": "GH-125: Allow null timestamp holder sans timezone (#941)\n\n## Description\nFixes an `IllegalArgumentException` in `TimeStamp*TZVector.set/setSafe`\nwhen unsetting values using a holder with a `null` timezone. The\nvalidation logic now correctly ignores the timezone check when\n`holder.isSet \u003c\u003d 0`, allowing default-constructed holders to be used for\nunsetting values as expected.\n\nComprehensive tests added for all timestamp precisions (Micro, Milli,\nNano, Sec) to verify the fix and ensure the existing workaround (setting\nexplicit timezone) remains supported.\n\nCloses #125 ." }, { "commit": "44c49baf6c2fdfcf20c8611f45c627c9438b2adb", "tree": "2c7036aeb91ba84cf60572ad971460936bca2e95", "parents": [ "7e61d462c094ff9eb3a692176b040a08f81654fe" ], "author": { "name": "Hélder Gregório", "email": "helder.gregorio@dremio.com", "time": "Thu Jan 22 14:19:58 2026 +0000" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Thu Jan 22 15:19:58 2026 +0100" }, "message": "GH-952: Add OAuth support (#953)\n\n## What\u0027s Changed\n\n- Add OAuth 2.0 support to the Flight SQL JDBC driver, including client\ncredentials and token exchange flows\n- Integrate OAuth token acquisition into connection setup, wiring tokens\nthrough OAuthCredentialWriter and updating gRPC credential handling to\nfail fast on writer errors.\n- Document new OAuth connection properties and add example clients for\nboth OAuth flows.\n- Connection Properties Added\n - oauth.flow\n - oauth.tokenUri\n - oauth.clientId\n - oauth.clientSecret\n - oauth.scope\n - oauth.resource\n - oauth.exchange.subjectToken\n - oauth.exchange.subjectTokenType\n - oauth.exchange.actorToken\n - oauth.exchange.actorTokenType\n - oauth.exchange.aud\n - oauth.exchange.requestedTokenType\n- Connection config now recognizes oauth.* and oauth.exchange.*\nproperties and builds OAuth providers when oauth.flow is specified.\n- Adds com.nimbusds:oauth2-oidc-sdk dependency and mockwebserver for\ntests.\n\n\nCloses #952." }, { "commit": "7e61d462c094ff9eb3a692176b040a08f81654fe", "tree": "1b424108567069ada0fc66e71c998edb98ef60e9", "parents": [ "a1d83179cf6d3cce4660f6f0bf8e7f75867e87bf" ], "author": { "name": "Pedro Matias", "email": "pedro.matias@dremio.com", "time": "Thu Jan 22 14:19:32 2026 +0000" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Thu Jan 22 15:19:32 2026 +0100" }, "message": "GH-932: [JDBC] Fix memory leak on Connection#close due to unclosed Statement(s) (#933)\n\n## What\u0027s Changed\n\nClosing a Connection when there was one or more ResultSet that matched\nthe following 2 conditions\n\n1. hadn\u0027t been fully consumed \n2. was obtained via a Statement instance of this Connection instance \n\nwould generate exceptions due to memory leaks.\n\nNow, closing a Connection will first close all the Statement instances\nobtained via that Connection,\nwhich has a side effect of closing all the ResultSet, and then proceed\nwith the old closing logic. This\nside effect is guaranteed by the JDBC Spec 4.3, chapter 13.1.4\n\nThe old closing logic was also slightly refactored to:\n1. remove duplicate calls to ArrowFlightSqlClientHandler.close()\n5. make sure that any exception generated during Connection.close()\nwould be wrapped in a SQLException.\n\nCloses #932." }, { "commit": "a1d83179cf6d3cce4660f6f0bf8e7f75867e87bf", "tree": "97ad8a3aa0219a50aa6da4aad26eb19cd5e9a92b", "parents": [ "71c418c2fde3c49d4cfa4ec564514d04f66f71bf" ], "author": { "name": "Hélder Gregório", "email": "helder.gregorio@dremio.com", "time": "Tue Jan 20 13:57:15 2026 +0000" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Tue Jan 20 14:57:15 2026 +0100" }, "message": "GH-929: Add UUID support in JDBC driver (#930)\n\n## What\u0027s Changed\n\nThis PR adds UUID support to the Arrow Flight SQL JDBC driver, enabling\nJDBC applications to work with UUID data types when connecting to Flight\nSQL servers that use Arrow\u0027s canonical `arrow.uuid` extension type.\n\n### Key Implementation Details\n- Added `ArrowFlightJdbcUuidVectorAccessor` to handle reading UUID\nvalues from `UuidVector`\n - `getObject()` returns `java.util.UUID` directly\n- `getString()` returns the standard hyphenated UUID format (e.g.,\n\"550e8400-e29b-41d4-a716-446655440000\")\n - `getBytes()` returns the 16-byte binary representation\n- Added `UuidAvaticaParameterConverter` to handle parameter binding for\nUUID columns\n - Supports binding `java.util.UUID` objects directly via `setObject()`\n - Supports binding UUID string representations via `setString()`\n - Supports binding 16-byte arrays via `setBytes()`\n- UUID extension type maps to `java.sql.Types.OTHER`.\n- Updated `SqlTypes` to recognize `UuidType` and return appropriate SQL\ntype ID\n\n**Examples**\n``` java\n try (Statement stmt \u003d conn.createStatement();\n ResultSet rs \u003d stmt.executeQuery(\"SELECT id, session_id FROM sessions\")) {\n while (rs.next()) {\n int id \u003d rs.getInt(\"id\");\n // getObject() returns java.util.UUID directly\n UUID sessionId \u003d rs.getObject(\"session_id\", UUID.class);\n // getString() returns hyphenated format: \"550e8400-e29b-41d4-a716-...\"\n String sessionIdStr \u003d rs.getString(\"session_id\");\n \n System.out.printf(\"ID: %d, UUID: %s%n\", id, sessionId);\n }\n }\n \n // Use PreparedStatement to bind UUID parameters\n String sql \u003d \"SELECT * FROM sessions WHERE session_id \u003d ?\";\n try (PreparedStatement pstmt \u003d conn.prepareStatement(sql)) {\n UUID targetId \u003d UUID.fromString(\"550e8400-e29b-41d4-a716-446655440000\");\n // Bind UUID directly with setObject()\n pstmt.setObject(1, targetId);\n // Or bind as string: pstmt.setString(1, targetId.toString());\n \n try (ResultSet rs \u003d pstmt.executeQuery()) {\n if (rs.next()) {\n System.out.println(\"Found: \" + rs.getObject(\"session_id\"));\n }\n }\n }\n```\n\nCloses #929.\n\n---------\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e\nCo-authored-by: Joana Hrotko \u003cjoana.hrotko@dremio.com\u003e" }, { "commit": "71c418c2fde3c49d4cfa4ec564514d04f66f71bf", "tree": "bc29ebc89b823daf25ef8bb6f79b441059beaf64", "parents": [ "db9fff8638e907012b4fb4585723ebbc6514ab20" ], "author": { "name": "Joana Hrotko", "email": "joana.hrotko@dremio.com", "time": "Mon Jan 19 13:41:06 2026 +0000" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Jan 19 14:41:06 2026 +0100" }, "message": "GH-948: Use buffer indexing for UUID vector (#949)\n\n## What\u0027s Changed\n\nThe current UUID vector implementation creates new buffer slices when\nreading values through holders, which has several drawbacks:\n- Memory overhead: Each slice creates a new ArrowBuf object\n- Performance impact: Buffer slicing is slower than direct buffer\nindexing\n- Inconsistency: Other fixed-width types (like Decimal) use buffer\nindexing with a `start` offset field\n\n### Proposed Changes\n\n1. Add `start` field to UUID holders to track buffer offsets:\n - `UuidHolder`: Add `public int start \u003d 0;`\n - `NullableUuidHolder`: Add `public int start \u003d 0;`\n2. Update `UuidVector` to use buffer indexing\n3. Update readers and writers\n\n### Related Work\n\n- Original UUID extension type implementation: GH-825 (#903)\n\nCloses #948" }, { "commit": "db9fff8638e907012b4fb4585723ebbc6514ab20", "tree": "dbff52f2eaf16593bd0678e911b153dad0c1f964", "parents": [ "a74728d490a8307b926f0539eeb582220496ce58" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Jan 19 14:26:37 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Jan 19 14:26:37 2026 +0100" }, "message": "MINOR: Bump org.apache.orc:orc-core from 2.2.1 to 2.2.2 (#971)\n\nBumps org.apache.orc:orc-core from 2.2.1 to 2.2.2.\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dorg.apache.orc:orc-core\u0026package-manager\u003dmaven\u0026previous-version\u003d2.2.1\u0026new-version\u003d2.2.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "a74728d490a8307b926f0539eeb582220496ce58", "tree": "39db182595a3df2e84d7f4558b643caf951e4658", "parents": [ "f9ab35c5628ab19af8df6c1146ac495edf917219" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Jan 19 14:06:30 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Jan 19 14:06:30 2026 +0100" }, "message": "MINOR: Bump com.gradle:develocity-maven-extension from 2.0 to 2.3.1 (#976)\n\nBumps com.gradle:develocity-maven-extension from 2.0 to 2.3.1.\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dcom.gradle:develocity-maven-extension\u0026package-manager\u003dmaven\u0026previous-version\u003d2.0\u0026new-version\u003d2.3.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "f9ab35c5628ab19af8df6c1146ac495edf917219", "tree": "3619489aed75bfdb89bd916f716c633b38648076", "parents": [ "f36777c09246532090c01ca2b5127bb80fd703fb" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Jan 19 13:40:23 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Jan 19 13:40:23 2026 +0100" }, "message": "MINOR: Bump commons-io:commons-io from 2.19.0 to 2.21.0 (#974)\n\nBumps [commons-io:commons-io](https://github.com/apache/commons-io) from\n2.19.0 to 2.21.0.\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/apache/commons-io/blob/master/RELEASE-NOTES.txt\"\u003ecommons-io:commons-io\u0027s\nchangelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003eApache Commons IO 2.21.0 Release Notes\u003c/p\u003e\n\u003cp\u003eThe Apache Commons IO team is pleased to announce the release of\nApache Commons IO 2.21.0.\u003c/p\u003e\n\u003ch2\u003eIntroduction\u003c/h2\u003e\n\u003cp\u003eThe Apache Commons IO library contains utility classes, stream\nimplementations, file filters,\nfile comparators, endian transformation classes, and much more.\u003c/p\u003e\n\u003cp\u003eVersion 2.21.0: Java 8 or later is required.\u003c/p\u003e\n\u003ch2\u003eNew features\u003c/h2\u003e\n\u003cp\u003eo FileUtils#byteCountToDisplaySize() supports Zettabyte, Yottabyte,\nRonnabyte and Quettabyte \u003ca\nhref\u003d\"https://redirect.github.com/apache/commons-io/issues/763\"\u003e#763\u003c/a\u003e.\nThanks to strangelookingnerd, Gary Gregory.\no Add org.apache.commons.io.FileUtils.ONE_RB \u003ca\nhref\u003d\"https://redirect.github.com/apache/commons-io/issues/763\"\u003e#763\u003c/a\u003e.\nThanks to strangelookingnerd, Gary Gregory.\no Add org.apache.commons.io.FileUtils.ONE_QB \u003ca\nhref\u003d\"https://redirect.github.com/apache/commons-io/issues/763\"\u003e#763\u003c/a\u003e.\nThanks to strangelookingnerd, Gary Gregory.\no Add org.apache.commons.io.output.ProxyOutputStream.writeRepeat(byte[],\nint, int, long). Thanks to Gary Gregory.\no Add org.apache.commons.io.output.ProxyOutputStream.writeRepeat(byte[],\nlong). Thanks to Gary Gregory.\no Add org.apache.commons.io.output.ProxyOutputStream.writeRepeat(int,\nlong). Thanks to Gary Gregory.\no Add length unit support in FileSystem limits. Thanks to Piotr P.\nKarwasz.\no Add IOUtils.toByteArray(InputStream, int, int) for safer chunked\nreading with size validation. Thanks to Piotr P. Karwasz.\no Add org.apache.commons.io.file.PathUtils.getPath(String, String).\nThanks to Gary Gregory.\no Add org.apache.commons.io.channels.ByteArraySeekableByteChannel.\nThanks to Gary Gregory.\no Add IOIterable.asIterable(). Thanks to Gary Gregory.\no Add NIO channel support to \u003ccode\u003eAbstractStreamBuilder\u003c/code\u003e. Thanks\nto Piotr P. Karwasz.\no Add CloseShieldChannel to close-shielded NIO Channels \u003ca\nhref\u003d\"https://redirect.github.com/apache/commons-io/issues/786\"\u003e#786\u003c/a\u003e.\nThanks to Piotr P. Karwasz.\no Added IOUtils.checkFromIndexSize as a Java 8 backport of\nObjects.checkFromIndexSize \u003ca\nhref\u003d\"https://redirect.github.com/apache/commons-io/issues/790\"\u003e#790\u003c/a\u003e.\nThanks to Piotr P. Karwasz.\u003c/p\u003e\n\u003ch2\u003eFixed Bugs\u003c/h2\u003e\n\u003cp\u003eo When testing on Java 21 and up, enable\n-XX:+EnableDynamicAgentLoading. Thanks to Gary Gregory.\no When testing on Java 24 and up, don\u0027t fail FileUtilsListFilesTest for\na different behavior in the JRE. Thanks to Gary Gregory.\no ValidatingObjectInputStream does not validate dynamic proxy\ninterfaces. Thanks to Stanislav Fort, Gary Gregory.\no BoundedInputStream.getRemaining() now reports Long.MAX_VALUE instead\nof 0 when no limit is set. Thanks to Piotr P. Karwasz.\no BoundedInputStream.available() correctly accounts for the maximum read\nlimit. Thanks to Piotr P. Karwasz.\no Deprecate IOUtils.readFully(InputStream, int) in favor of\ntoByteArray(InputStream, int). Thanks to Gary Gregory, Piotr P. Karwasz.\no IOUtils.toByteArray(InputStream) now throws IOException on byte array\noverflow. Thanks to Piotr P. Karwasz.\no Javadoc general improvements. Thanks to Gary Gregory, Piotr P.\nKarwasz.\no IOUtils.toByteArray() now throws EOFException when not enough data is\navailable \u003ca\nhref\u003d\"https://redirect.github.com/apache/commons-io/issues/796\"\u003e#796\u003c/a\u003e.\nThanks to Piotr P. Karwasz.\no Fix IOUtils.skip() usage in concurrent scenarios. Thanks to Piotr P.\nKarwasz.\no [javadoc] Fix XmlStreamReader Javadoc to indicate the correct class\nthat is built \u003ca\nhref\u003d\"https://redirect.github.com/apache/commons-io/issues/806\"\u003e#806\u003c/a\u003e.\nThanks to J Hawkins.\u003c/p\u003e\n\u003ch2\u003eChanges\u003c/h2\u003e\n\u003cp\u003eo Bump org.apache.commons:commons-parent from 85 to 91 \u003ca\nhref\u003d\"https://redirect.github.com/apache/commons-io/issues/774\"\u003e#774\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/commons-io/issues/783\"\u003e#783\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/commons-io/issues/808\"\u003e#808\u003c/a\u003e.\nThanks to Gary Gregory, Dependabot.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-io/commit/54073d3b5fdd2985b98a48040ede95eb59c7ee53\"\u003e\u003ccode\u003e54073d3\u003c/code\u003e\u003c/a\u003e\nPrepare for the release candidate 2.21.0 RC1\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-io/commit/f141f09d91368543e4f0754cbd649c484768c55c\"\u003e\u003ccode\u003ef141f09\u003c/code\u003e\u003c/a\u003e\nPrepare for the next release candidate\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-io/commit/adcf1350152faf4dbd8cf53fb2f2649f25dbe227\"\u003e\u003ccode\u003eadcf135\u003c/code\u003e\u003c/a\u003e\nAdd license header\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-io/commit/0f499d060adbd4b36bbd9f47393a7ea6af8149ff\"\u003e\u003ccode\u003e0f499d0\u003c/code\u003e\u003c/a\u003e\nUse new oak logo\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-io/commit/34a961c3ed58ed96c73836db154ae50f0c45110f\"\u003e\u003ccode\u003e34a961c\u003c/code\u003e\u003c/a\u003e\nUse HTTPS in URL\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-io/commit/9e511181a03096b77c3a4b9c6077a4ac0b56b510\"\u003e\u003ccode\u003e9e51118\u003c/code\u003e\u003c/a\u003e\nUse HTTPS in URL\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-io/commit/d715865ee705fdb8ed786582bd6bd4ee996b0665\"\u003e\u003ccode\u003ed715865\u003c/code\u003e\u003c/a\u003e\nAdd dependabot email [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-io/commit/3d6a7e113633e1a33ca254d744c3fcbab61663f3\"\u003e\u003ccode\u003e3d6a7e1\u003c/code\u003e\u003c/a\u003e\nJavadoc\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-io/commit/ad875d566f273f54094b6b872bf9433be9fd86a7\"\u003e\u003ccode\u003ead875d5\u003c/code\u003e\u003c/a\u003e\nBump actions/upload-artifact from 4.6.2 to 5.0.0 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/commons-io/issues/810\"\u003e#810\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-io/commit/bc01dee31ec0ff10aa0841ff245b770fa1ecfade\"\u003e\u003ccode\u003ebc01dee\u003c/code\u003e\u003c/a\u003e\nBump github/codeql-action from 4.30.9 to 4.31.2 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/commons-io/issues/811\"\u003e#811\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/apache/commons-io/compare/rel/commons-io-2.19.0...rel/commons-io-2.21.0\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dcommons-io:commons-io\u0026package-manager\u003dmaven\u0026previous-version\u003d2.19.0\u0026new-version\u003d2.21.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "f36777c09246532090c01ca2b5127bb80fd703fb", "tree": "26152b9f05bf3142582623cbdc5938139444d09e", "parents": [ "3d44a1c2e71d5f38980cc1030e5652f5f62b942d" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Jan 19 09:48:12 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Jan 19 09:48:12 2026 +0100" }, "message": "MINOR: Bump parquet.version from 1.16.0 to 1.17.0 (#968)\n\nBumps `parquet.version` from 1.16.0 to 1.17.0.\nUpdates `org.apache.parquet:parquet-avro` from 1.16.0 to 1.17.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/apache/parquet-mr/releases\"\u003eorg.apache.parquet:parquet-avro\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eApache Parquet 1.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat\u0027s Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd comparator for \u003ccode\u003eUnknownLogicalType\u003c/code\u003e by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3292\"\u003eapache/parquet-java#3292\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAllow reading dictionary encoded boolean by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3370\"\u003eapache/parquet-java#3370\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump com.google.guava:guava from 33.4.0-jre to 33.5.0-jre by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3366\"\u003eapache/parquet-java#3366\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump commons-io:commons-io from 2.18.0 to 2.21.0 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3369\"\u003eapache/parquet-java#3369\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump easymock 5.6.0 to support Java 25 by \u003ca\nhref\u003d\"https://github.com/pan3793\"\u003e\u003ccode\u003e@​pan3793\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3363\"\u003eapache/parquet-java#3363\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump protobuf.version from 3.25.6 to 4.30.2 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3182\"\u003eapache/parquet-java#3182\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump protobuf.version from 4.33.1 to 4.33.2 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3373\"\u003eapache/parquet-java#3373\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump to Java 11 by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3314\"\u003eapache/parquet-java#3314\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/2815\"\u003eGH-2815\u003c/a\u003e:\nAllow bytestreamsplit available via Hadoop Configuration by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3340\"\u003eapache/parquet-java#3340\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/2836\"\u003eGH-2836\u003c/a\u003e:\nSupport reading pure parquet files with cat by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3332\"\u003eapache/parquet-java#3332\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/2891\"\u003eGH-2891\u003c/a\u003e:\nInclude actual values in validation error messages and improve logging\nby \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3319\"\u003eapache/parquet-java#3319\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/2961\"\u003eGH-2961\u003c/a\u003e:\nCycle detection in AvroSchemaConverter to prevent infinite recursion by\n\u003ca href\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3272\"\u003eapache/parquet-java#3272\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/2967\"\u003eGH-2967\u003c/a\u003e:\nSupport unified config options for convert parquet-cli by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3283\"\u003eapache/parquet-java#3283\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/2972\"\u003eGH-2972\u003c/a\u003e:\nFix incomplete avro metadata on INT96 schema converter by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3311\"\u003eapache/parquet-java#3311\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3149\"\u003eGH-3149\u003c/a\u003e:\nEnable ParquetAvroReader to handle decimal types for int32/64 by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3306\"\u003eapache/parquet-java#3306\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3175\"\u003eGH-3175\u003c/a\u003e:\nsupport protobuf library version 4 by \u003ca\nhref\u003d\"https://github.com/uwemaurer\"\u003e\u003ccode\u003e@​uwemaurer\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3352\"\u003eapache/parquet-java#3352\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3213\"\u003eGH-3213\u003c/a\u003e:\nAdd the configuration for ByteStreamSplit encoding by \u003ca\nhref\u003d\"https://github.com/joeyutong\"\u003e\u003ccode\u003e@​joeyutong\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3214\"\u003eapache/parquet-java#3214\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3224\"\u003eGH-3224\u003c/a\u003e:\nMake ParquetProperties.valuesWriterFactory thread safe by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3308\"\u003eapache/parquet-java#3308\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3267\"\u003eGH-3267\u003c/a\u003e:\nAdd comprehensive assertions to TestMemPageStore by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3268\"\u003eapache/parquet-java#3268\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3273\"\u003eGH-3273\u003c/a\u003e:\nAdd scoped chunk level statistics to avoid unbounded output by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3274\"\u003eapache/parquet-java#3274\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3286\"\u003eGH-3286\u003c/a\u003e:\nAdd support for Parquet-Protobuf in Parquet-cli by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3287\"\u003eapache/parquet-java#3287\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3290\"\u003eGH-3290\u003c/a\u003e:\nRestore Snapshot versions for vector/benchmark modules by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3288\"\u003eapache/parquet-java#3288\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3294\"\u003eGH-3294\u003c/a\u003e:\nInclude optional profiles for release process by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3297\"\u003eapache/parquet-java#3297\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3298\"\u003eGH-3298\u003c/a\u003e:\nSupport unified file based configurations for CLI by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3304\"\u003eapache/parquet-java#3304\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3300\"\u003eGH-3300\u003c/a\u003e:\nadd ParquetWriter and ParquetReader builders constructor without params\nby \u003ca href\u003d\"https://github.com/jerolba\"\u003e\u003ccode\u003e@​jerolba\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3301\"\u003eapache/parquet-java#3301\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3310\"\u003eGH-3310\u003c/a\u003e:\nClean up JIRA references and move to GH issues by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3309\"\u003eapache/parquet-java#3309\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3312\"\u003eGH-3312\u003c/a\u003e:\nSupport uuid read converter for parquet thrift by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3313\"\u003eapache/parquet-java#3313\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3315\"\u003eGH-3315\u003c/a\u003e:\nVariant binary read does not take length into account by \u003ca\nhref\u003d\"https://github.com/jerolba\"\u003e\u003ccode\u003e@​jerolba\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3333\"\u003eapache/parquet-java#3333\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3316\"\u003eGH-3316\u003c/a\u003e:\nFix representation type for VariantBuilder decimal by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3335\"\u003eapache/parquet-java#3335\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3317\"\u003eGH-3317\u003c/a\u003e:\nFix bytes written by VariantBuilder.appendFloat by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3334\"\u003eapache/parquet-java#3334\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3320\"\u003eGH-3320\u003c/a\u003e:\nEnsure parquet reader does not fail due to incorrect statistics by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3325\"\u003eapache/parquet-java#3325\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3321\"\u003eGH-3321\u003c/a\u003e\nExclude package-info.class from shaded fastutil dependency by \u003ca\nhref\u003d\"https://github.com/jerolba\"\u003e\u003ccode\u003e@​jerolba\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3322\"\u003eapache/parquet-java#3322\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3327\"\u003eGH-3327\u003c/a\u003e:\nBug fix incorrect compressed size reported by DataPageV1 by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3326\"\u003eapache/parquet-java#3326\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3331\"\u003eGH-3331\u003c/a\u003e:\nTrack Column index page skip statistics during file read by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3330\"\u003eapache/parquet-java#3330\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3338\"\u003eGH-3338\u003c/a\u003e:\nSupport encrypted files for Parquet CLI commands by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3339\"\u003eapache/parquet-java#3339\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3350\"\u003eGH-3350\u003c/a\u003e:\nAvoid flushing data to cloud when exception is thrown by \u003ca\nhref\u003d\"https://github.com/Jiayi-Wang-db\"\u003e\u003ccode\u003e@​Jiayi-Wang-db\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3351\"\u003eapache/parquet-java#3351\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3358\"\u003eGH-3358\u003c/a\u003e:\nAdd Configurable Thrift Max Message Size for Parquet Metadata Reading by\n\u003ca href\u003d\"https://github.com/cravani\"\u003e\u003ccode\u003e@​cravani\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3359\"\u003eapache/parquet-java#3359\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Bump avro.version from 1.11.4 to 1.11.5 by \u003ca\nhref\u003d\"https://github.com/gszadovszky\"\u003e\u003ccode\u003e@​gszadovszky\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3348\"\u003eapache/parquet-java#3348\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Bump version to 1.17.0-SNAPSHOT by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3293\"\u003eapache/parquet-java#3293\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Post release of 1.16.0 by \u003ca\nhref\u003d\"https://github.com/wgtmac\"\u003e\u003ccode\u003e@​wgtmac\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3305\"\u003eapache/parquet-java#3305\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Remove unused parquet-thrift dependencies by \u003ca\nhref\u003d\"https://github.com/dossett\"\u003e\u003ccode\u003e@​dossett\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3323\"\u003eapache/parquet-java#3323\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: [parquet-column] remove unused test dependencies by \u003ca\nhref\u003d\"https://github.com/dossett\"\u003e\u003ccode\u003e@​dossett\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3324\"\u003eapache/parquet-java#3324\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: parquet-avro tests should not debug to stderr by \u003ca\nhref\u003d\"https://github.com/dossett\"\u003e\u003ccode\u003e@​dossett\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3329\"\u003eapache/parquet-java#3329\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Replace JIRA with GitHub Issues by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3303\"\u003eapache/parquet-java#3303\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e\nmade their first contribution in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3288\"\u003eapache/parquet-java#3288\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/Jiayi-Wang-db\"\u003e\u003ccode\u003e@​Jiayi-Wang-db\u003c/code\u003e\u003c/a\u003e\nmade their first contribution in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3351\"\u003eapache/parquet-java#3351\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/joeyutong\"\u003e\u003ccode\u003e@​joeyutong\u003c/code\u003e\u003c/a\u003e\nmade their first contribution in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3214\"\u003eapache/parquet-java#3214\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/fac0c746532e133beb928a7f6a7e57b510b477a1\"\u003e\u003ccode\u003efac0c74\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release apache-parquet-1.17.0-rc0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/a8ead9df9035908172e61a3662f439d86dc51ba7\"\u003e\u003ccode\u003ea8ead9d\u003c/code\u003e\u003c/a\u003e\nBump protobuf.version from 4.33.1 to 4.33.2 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3373\"\u003e#3373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/0ecd799dc01768ec0816a1ab38507b805a788f6a\"\u003e\u003ccode\u003e0ecd799\u003c/code\u003e\u003c/a\u003e\nAllow reading dictionary encoded boolean (\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3370\"\u003e#3370\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/46218f2c0473e2e859dde2df8a28c78fcb0c9ada\"\u003e\u003ccode\u003e46218f2\u003c/code\u003e\u003c/a\u003e\nBump commons-io:commons-io from 2.18.0 to 2.21.0 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3369\"\u003e#3369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/7ec32846663782846615e835bd06859c75b8f6b0\"\u003e\u003ccode\u003e7ec3284\u003c/code\u003e\u003c/a\u003e\nExclude \u003ccode\u003epackage-info.class\u003c/code\u003e from shaded fastutil (\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3322\"\u003e#3322\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/7453be4de8bc608077af08bcb6a720b39d0d7f91\"\u003e\u003ccode\u003e7453be4\u003c/code\u003e\u003c/a\u003e\nBump com.google.guava:guava from 33.4.0-jre to 33.5.0-jre (\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3366\"\u003e#3366\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/893ef11df5f72320c2cff201b8b93bb0d33c2751\"\u003e\u003ccode\u003e893ef11\u003c/code\u003e\u003c/a\u003e\nBump easymock 5.6.0 to support Java 25 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3363\"\u003e#3363\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/6b2940ca1f39e0073d798dfaf7724bc43950a524\"\u003e\u003ccode\u003e6b2940c\u003c/code\u003e\u003c/a\u003e\nRemove unused parquet-thrift dependencies (\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3323\"\u003e#3323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/5040a63e817c48bd56d4a3ba6ebf5ed13e1edca8\"\u003e\u003ccode\u003e5040a63\u003c/code\u003e\u003c/a\u003e\nBump protobuf.version from 3.25.6 to 4.30.2 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3182\"\u003e#3182\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/2ccc2431209ac4a4d745d9f1016e29098204caad\"\u003e\u003ccode\u003e2ccc243\u003c/code\u003e\u003c/a\u003e\nMINOR: parquet-avro tests should not debug to stderr (\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3329\"\u003e#3329\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/apache/parquet-mr/compare/apache-parquet-1.16.0...apache-parquet-1.17.0\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.apache.parquet:parquet-hadoop` from 1.16.0 to 1.17.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/apache/parquet-mr/releases\"\u003eorg.apache.parquet:parquet-hadoop\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eApache Parquet 1.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat\u0027s Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd comparator for \u003ccode\u003eUnknownLogicalType\u003c/code\u003e by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3292\"\u003eapache/parquet-java#3292\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAllow reading dictionary encoded boolean by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3370\"\u003eapache/parquet-java#3370\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump com.google.guava:guava from 33.4.0-jre to 33.5.0-jre by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3366\"\u003eapache/parquet-java#3366\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump commons-io:commons-io from 2.18.0 to 2.21.0 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3369\"\u003eapache/parquet-java#3369\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump easymock 5.6.0 to support Java 25 by \u003ca\nhref\u003d\"https://github.com/pan3793\"\u003e\u003ccode\u003e@​pan3793\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3363\"\u003eapache/parquet-java#3363\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump protobuf.version from 3.25.6 to 4.30.2 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3182\"\u003eapache/parquet-java#3182\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump protobuf.version from 4.33.1 to 4.33.2 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3373\"\u003eapache/parquet-java#3373\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump to Java 11 by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3314\"\u003eapache/parquet-java#3314\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/2815\"\u003eGH-2815\u003c/a\u003e:\nAllow bytestreamsplit available via Hadoop Configuration by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3340\"\u003eapache/parquet-java#3340\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/2836\"\u003eGH-2836\u003c/a\u003e:\nSupport reading pure parquet files with cat by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3332\"\u003eapache/parquet-java#3332\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/2891\"\u003eGH-2891\u003c/a\u003e:\nInclude actual values in validation error messages and improve logging\nby \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3319\"\u003eapache/parquet-java#3319\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/2961\"\u003eGH-2961\u003c/a\u003e:\nCycle detection in AvroSchemaConverter to prevent infinite recursion by\n\u003ca href\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3272\"\u003eapache/parquet-java#3272\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/2967\"\u003eGH-2967\u003c/a\u003e:\nSupport unified config options for convert parquet-cli by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3283\"\u003eapache/parquet-java#3283\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/2972\"\u003eGH-2972\u003c/a\u003e:\nFix incomplete avro metadata on INT96 schema converter by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3311\"\u003eapache/parquet-java#3311\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3149\"\u003eGH-3149\u003c/a\u003e:\nEnable ParquetAvroReader to handle decimal types for int32/64 by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3306\"\u003eapache/parquet-java#3306\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3175\"\u003eGH-3175\u003c/a\u003e:\nsupport protobuf library version 4 by \u003ca\nhref\u003d\"https://github.com/uwemaurer\"\u003e\u003ccode\u003e@​uwemaurer\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3352\"\u003eapache/parquet-java#3352\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3213\"\u003eGH-3213\u003c/a\u003e:\nAdd the configuration for ByteStreamSplit encoding by \u003ca\nhref\u003d\"https://github.com/joeyutong\"\u003e\u003ccode\u003e@​joeyutong\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3214\"\u003eapache/parquet-java#3214\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3224\"\u003eGH-3224\u003c/a\u003e:\nMake ParquetProperties.valuesWriterFactory thread safe by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3308\"\u003eapache/parquet-java#3308\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3267\"\u003eGH-3267\u003c/a\u003e:\nAdd comprehensive assertions to TestMemPageStore by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3268\"\u003eapache/parquet-java#3268\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3273\"\u003eGH-3273\u003c/a\u003e:\nAdd scoped chunk level statistics to avoid unbounded output by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3274\"\u003eapache/parquet-java#3274\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3286\"\u003eGH-3286\u003c/a\u003e:\nAdd support for Parquet-Protobuf in Parquet-cli by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3287\"\u003eapache/parquet-java#3287\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3290\"\u003eGH-3290\u003c/a\u003e:\nRestore Snapshot versions for vector/benchmark modules by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3288\"\u003eapache/parquet-java#3288\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3294\"\u003eGH-3294\u003c/a\u003e:\nInclude optional profiles for release process by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3297\"\u003eapache/parquet-java#3297\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3298\"\u003eGH-3298\u003c/a\u003e:\nSupport unified file based configurations for CLI by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3304\"\u003eapache/parquet-java#3304\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3300\"\u003eGH-3300\u003c/a\u003e:\nadd ParquetWriter and ParquetReader builders constructor without params\nby \u003ca href\u003d\"https://github.com/jerolba\"\u003e\u003ccode\u003e@​jerolba\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3301\"\u003eapache/parquet-java#3301\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3310\"\u003eGH-3310\u003c/a\u003e:\nClean up JIRA references and move to GH issues by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3309\"\u003eapache/parquet-java#3309\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3312\"\u003eGH-3312\u003c/a\u003e:\nSupport uuid read converter for parquet thrift by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3313\"\u003eapache/parquet-java#3313\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3315\"\u003eGH-3315\u003c/a\u003e:\nVariant binary read does not take length into account by \u003ca\nhref\u003d\"https://github.com/jerolba\"\u003e\u003ccode\u003e@​jerolba\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3333\"\u003eapache/parquet-java#3333\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3316\"\u003eGH-3316\u003c/a\u003e:\nFix representation type for VariantBuilder decimal by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3335\"\u003eapache/parquet-java#3335\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3317\"\u003eGH-3317\u003c/a\u003e:\nFix bytes written by VariantBuilder.appendFloat by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3334\"\u003eapache/parquet-java#3334\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3320\"\u003eGH-3320\u003c/a\u003e:\nEnsure parquet reader does not fail due to incorrect statistics by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3325\"\u003eapache/parquet-java#3325\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3321\"\u003eGH-3321\u003c/a\u003e\nExclude package-info.class from shaded fastutil dependency by \u003ca\nhref\u003d\"https://github.com/jerolba\"\u003e\u003ccode\u003e@​jerolba\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3322\"\u003eapache/parquet-java#3322\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3327\"\u003eGH-3327\u003c/a\u003e:\nBug fix incorrect compressed size reported by DataPageV1 by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3326\"\u003eapache/parquet-java#3326\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3331\"\u003eGH-3331\u003c/a\u003e:\nTrack Column index page skip statistics during file read by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3330\"\u003eapache/parquet-java#3330\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3338\"\u003eGH-3338\u003c/a\u003e:\nSupport encrypted files for Parquet CLI commands by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3339\"\u003eapache/parquet-java#3339\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3350\"\u003eGH-3350\u003c/a\u003e:\nAvoid flushing data to cloud when exception is thrown by \u003ca\nhref\u003d\"https://github.com/Jiayi-Wang-db\"\u003e\u003ccode\u003e@​Jiayi-Wang-db\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3351\"\u003eapache/parquet-java#3351\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3358\"\u003eGH-3358\u003c/a\u003e:\nAdd Configurable Thrift Max Message Size for Parquet Metadata Reading by\n\u003ca href\u003d\"https://github.com/cravani\"\u003e\u003ccode\u003e@​cravani\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3359\"\u003eapache/parquet-java#3359\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Bump avro.version from 1.11.4 to 1.11.5 by \u003ca\nhref\u003d\"https://github.com/gszadovszky\"\u003e\u003ccode\u003e@​gszadovszky\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3348\"\u003eapache/parquet-java#3348\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Bump version to 1.17.0-SNAPSHOT by \u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3293\"\u003eapache/parquet-java#3293\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Post release of 1.16.0 by \u003ca\nhref\u003d\"https://github.com/wgtmac\"\u003e\u003ccode\u003e@​wgtmac\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3305\"\u003eapache/parquet-java#3305\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Remove unused parquet-thrift dependencies by \u003ca\nhref\u003d\"https://github.com/dossett\"\u003e\u003ccode\u003e@​dossett\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3323\"\u003eapache/parquet-java#3323\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: [parquet-column] remove unused test dependencies by \u003ca\nhref\u003d\"https://github.com/dossett\"\u003e\u003ccode\u003e@​dossett\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3324\"\u003eapache/parquet-java#3324\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: parquet-avro tests should not debug to stderr by \u003ca\nhref\u003d\"https://github.com/dossett\"\u003e\u003ccode\u003e@​dossett\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3329\"\u003eapache/parquet-java#3329\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Replace JIRA with GitHub Issues by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3303\"\u003eapache/parquet-java#3303\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/ArnavBalyan\"\u003e\u003ccode\u003e@​ArnavBalyan\u003c/code\u003e\u003c/a\u003e\nmade their first contribution in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3288\"\u003eapache/parquet-java#3288\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/Jiayi-Wang-db\"\u003e\u003ccode\u003e@​Jiayi-Wang-db\u003c/code\u003e\u003c/a\u003e\nmade their first contribution in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3351\"\u003eapache/parquet-java#3351\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/joeyutong\"\u003e\u003ccode\u003e@​joeyutong\u003c/code\u003e\u003c/a\u003e\nmade their first contribution in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3214\"\u003eapache/parquet-java#3214\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/fac0c746532e133beb928a7f6a7e57b510b477a1\"\u003e\u003ccode\u003efac0c74\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release apache-parquet-1.17.0-rc0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/a8ead9df9035908172e61a3662f439d86dc51ba7\"\u003e\u003ccode\u003ea8ead9d\u003c/code\u003e\u003c/a\u003e\nBump protobuf.version from 4.33.1 to 4.33.2 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3373\"\u003e#3373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/0ecd799dc01768ec0816a1ab38507b805a788f6a\"\u003e\u003ccode\u003e0ecd799\u003c/code\u003e\u003c/a\u003e\nAllow reading dictionary encoded boolean (\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3370\"\u003e#3370\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/46218f2c0473e2e859dde2df8a28c78fcb0c9ada\"\u003e\u003ccode\u003e46218f2\u003c/code\u003e\u003c/a\u003e\nBump commons-io:commons-io from 2.18.0 to 2.21.0 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3369\"\u003e#3369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/7ec32846663782846615e835bd06859c75b8f6b0\"\u003e\u003ccode\u003e7ec3284\u003c/code\u003e\u003c/a\u003e\nExclude \u003ccode\u003epackage-info.class\u003c/code\u003e from shaded fastutil (\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3322\"\u003e#3322\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/7453be4de8bc608077af08bcb6a720b39d0d7f91\"\u003e\u003ccode\u003e7453be4\u003c/code\u003e\u003c/a\u003e\nBump com.google.guava:guava from 33.4.0-jre to 33.5.0-jre (\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3366\"\u003e#3366\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/893ef11df5f72320c2cff201b8b93bb0d33c2751\"\u003e\u003ccode\u003e893ef11\u003c/code\u003e\u003c/a\u003e\nBump easymock 5.6.0 to support Java 25 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3363\"\u003e#3363\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/6b2940ca1f39e0073d798dfaf7724bc43950a524\"\u003e\u003ccode\u003e6b2940c\u003c/code\u003e\u003c/a\u003e\nRemove unused parquet-thrift dependencies (\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3323\"\u003e#3323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/5040a63e817c48bd56d4a3ba6ebf5ed13e1edca8\"\u003e\u003ccode\u003e5040a63\u003c/code\u003e\u003c/a\u003e\nBump protobuf.version from 3.25.6 to 4.30.2 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3182\"\u003e#3182\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/2ccc2431209ac4a4d745d9f1016e29098204caad\"\u003e\u003ccode\u003e2ccc243\u003c/code\u003e\u003c/a\u003e\nMINOR: parquet-avro tests should not debug to stderr (\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3329\"\u003e#3329\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/apache/parquet-mr/compare/apache-parquet-1.16.0...apache-parquet-1.17.0\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "3d44a1c2e71d5f38980cc1030e5652f5f62b942d", "tree": "1f0e09cc24bd39c64d6f183259e07285b4493745", "parents": [ "1e8608a5b3205eff9d41dac11cf0d2a9f334be83" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Jan 19 09:46:51 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Jan 19 09:46:51 2026 +0100" }, "message": "MINOR: Bump com.fasterxml.jackson:jackson-bom from 2.18.3 to 2.21.0 (#973)\n\nBumps\n[com.fasterxml.jackson:jackson-bom](https://github.com/FasterXML/jackson-bom)\nfrom 2.18.3 to 2.21.0.\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/FasterXML/jackson-bom/commit/901b398ef9e8dfd8595182f149c4f3f78c1c4893\"\u003e\u003ccode\u003e901b398\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release jackson-bom-2.21.0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/FasterXML/jackson-bom/commit/86a4b9f9ff15fbef0e275b836d6e55b4ace3e5ee\"\u003e\u003ccode\u003e86a4b9f\u003c/code\u003e\u003c/a\u003e\n...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/FasterXML/jackson-bom/commit/6b5de3aca17aa41f97a4c356bacf0525c4ab5751\"\u003e\u003ccode\u003e6b5de3a\u003c/code\u003e\u003c/a\u003e\nPrep for 2.21 release\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/FasterXML/jackson-bom/commit/3001d78da41c003e05d2cba7e126a854f7d2120a\"\u003e\u003ccode\u003e3001d78\u003c/code\u003e\u003c/a\u003e\nMerge pull request \u003ca\nhref\u003d\"https://redirect.github.com/FasterXML/jackson-bom/issues/116\"\u003e#116\u003c/a\u003e\nfrom FasterXML/tatu/2.21/115-fix-cyclonedx-backport-i...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/FasterXML/jackson-bom/commit/937029253f1779f9d92ff386f210f1f366414289\"\u003e\u003ccode\u003e9370292\u003c/code\u003e\u003c/a\u003e\nmakeAggregateBom -\u0026gt; makeBom\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/FasterXML/jackson-bom/commit/3e4db580fa7bde99b42cf0bfd292184404245a85\"\u003e\u003ccode\u003e3e4db58\u003c/code\u003e\u003c/a\u003e\nBackport \u003ca\nhref\u003d\"https://redirect.github.com/FasterXML/jackson-bom/issues/115\"\u003e#115\u003c/a\u003e\nin 2.x for 2.21\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/FasterXML/jackson-bom/commit/0ce4467b74172d6ff76facd2e67678d1f073530e\"\u003e\u003ccode\u003e0ce4467\u003c/code\u003e\u003c/a\u003e\nMerge branch \u00272.20\u0027 into 2.x\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/FasterXML/jackson-bom/commit/0dc79f5582788045a837435a588c37a3e079b761\"\u003e\u003ccode\u003e0dc79f5\u003c/code\u003e\u003c/a\u003e\n...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/FasterXML/jackson-bom/commit/6a3d76be1d6b3e0549dd5c79ef493b2c2835682d\"\u003e\u003ccode\u003e6a3d76b\u003c/code\u003e\u003c/a\u003e\nMerge branch \u00272.20\u0027 into 2.x\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/FasterXML/jackson-bom/commit/1d528179d18cf6fea97079361b293b48c3e86719\"\u003e\u003ccode\u003e1d52817\u003c/code\u003e\u003c/a\u003e\nPost-release dep version bump\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/FasterXML/jackson-bom/compare/jackson-bom-2.18.3...jackson-bom-2.21.0\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dcom.fasterxml.jackson:jackson-bom\u0026package-manager\u003dmaven\u0026previous-version\u003d2.18.3\u0026new-version\u003d2.21.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "1e8608a5b3205eff9d41dac11cf0d2a9f334be83", "tree": "4a3e5c87af5cef93dbb3805dc6f1714222ad6f1b", "parents": [ "6eab884d7d868863a283435c29e7bbd912138379" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Jan 19 09:34:59 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Jan 19 09:34:59 2026 +0100" }, "message": "MINOR: Bump logback.version from 1.5.24 to 1.5.25 (#975)\n\nBumps `logback.version` from 1.5.24 to 1.5.25.\nUpdates `ch.qos.logback:logback-classic` from 1.5.24 to 1.5.25\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/f426e0002800cfb507f393fcacffe0761a425220\"\u003e\u003ccode\u003ef426e00\u003c/code\u003e\u003c/a\u003e\nprepare release of 1.5.25\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/d28931f3b9ede954285cd22d44e029142bba52e6\"\u003e\u003ccode\u003ed28931f\u003c/code\u003e\u003c/a\u003e\nrestrict object creation to expected supertype\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/aa264f7ad2bb65c2d5ab046754741e56234c9096\"\u003e\u003ccode\u003eaa264f7\u003c/code\u003e\u003c/a\u003e\ntest default variable values in appender-ref ref attribute\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/8fb403ab6d1a36b351e9095f8ee1c6c3ad8e0405\"\u003e\u003ccode\u003e8fb403a\u003c/code\u003e\u003c/a\u003e\nadjust copyright year\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/b294a12ff9f2bb2f03168590da1c6d7cbfd71cfe\"\u003e\u003ccode\u003eb294a12\u003c/code\u003e\u003c/a\u003e\ncheck optionList in start()\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/b65040a3b5d844a791bd3cc690ca44e9e024e04d\"\u003e\u003ccode\u003eb65040a\u003c/code\u003e\u003c/a\u003e\nAdd EpochConverter for milliseconds/seconds since epoch (related to\nissue \u003ca\nhref\u003d\"https://redirect.github.com/qos-ch/logback/issues/96\"\u003e#96\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/069017445b41e9c3a23bda2be446663dca3c4453\"\u003e\u003ccode\u003e0690174\u003c/code\u003e\u003c/a\u003e\ncla for Duncan Jauncey\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/71dc2afc1046e7b7e218dbfbcde3b0c549bc2fba\"\u003e\u003ccode\u003e71dc2af\u003c/code\u003e\u003c/a\u003e\nRemoved email address for Tony.\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/1f97ae1844b1be8486e4e9cade98d7123d3eded5\"\u003e\u003ccode\u003e1f97ae1\u003c/code\u003e\u003c/a\u003e\ncheck for undeclared by referenced appenders\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/b07355e26aaf128c8303393b7e2ed3d4687c7736\"\u003e\u003ccode\u003eb07355e\u003c/code\u003e\u003c/a\u003e\nMove the artifact version checking code to VersionUtil in\nlogback-core.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/qos-ch/logback/compare/v_1.5.24...v_1.5.25\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ch.qos.logback:logback-core` from 1.5.24 to 1.5.25\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/f426e0002800cfb507f393fcacffe0761a425220\"\u003e\u003ccode\u003ef426e00\u003c/code\u003e\u003c/a\u003e\nprepare release of 1.5.25\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/d28931f3b9ede954285cd22d44e029142bba52e6\"\u003e\u003ccode\u003ed28931f\u003c/code\u003e\u003c/a\u003e\nrestrict object creation to expected supertype\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/aa264f7ad2bb65c2d5ab046754741e56234c9096\"\u003e\u003ccode\u003eaa264f7\u003c/code\u003e\u003c/a\u003e\ntest default variable values in appender-ref ref attribute\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/8fb403ab6d1a36b351e9095f8ee1c6c3ad8e0405\"\u003e\u003ccode\u003e8fb403a\u003c/code\u003e\u003c/a\u003e\nadjust copyright year\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/b294a12ff9f2bb2f03168590da1c6d7cbfd71cfe\"\u003e\u003ccode\u003eb294a12\u003c/code\u003e\u003c/a\u003e\ncheck optionList in start()\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/b65040a3b5d844a791bd3cc690ca44e9e024e04d\"\u003e\u003ccode\u003eb65040a\u003c/code\u003e\u003c/a\u003e\nAdd EpochConverter for milliseconds/seconds since epoch (related to\nissue \u003ca\nhref\u003d\"https://redirect.github.com/qos-ch/logback/issues/96\"\u003e#96\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/069017445b41e9c3a23bda2be446663dca3c4453\"\u003e\u003ccode\u003e0690174\u003c/code\u003e\u003c/a\u003e\ncla for Duncan Jauncey\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/71dc2afc1046e7b7e218dbfbcde3b0c549bc2fba\"\u003e\u003ccode\u003e71dc2af\u003c/code\u003e\u003c/a\u003e\nRemoved email address for Tony.\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/1f97ae1844b1be8486e4e9cade98d7123d3eded5\"\u003e\u003ccode\u003e1f97ae1\u003c/code\u003e\u003c/a\u003e\ncheck for undeclared by referenced appenders\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/b07355e26aaf128c8303393b7e2ed3d4687c7736\"\u003e\u003ccode\u003eb07355e\u003c/code\u003e\u003c/a\u003e\nMove the artifact version checking code to VersionUtil in\nlogback-core.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/qos-ch/logback/compare/v_1.5.24...v_1.5.25\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "6eab884d7d868863a283435c29e7bbd912138379", "tree": "5a5ff4331ea98744d18f5278ea4119f0517bc08d", "parents": [ "349d402a61733084399cc791710e251097b87ea3" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Jan 19 09:33:31 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Jan 19 09:33:31 2026 +0100" }, "message": "MINOR: Bump org.bouncycastle:bcpkix-jdk18on from 1.82 to 1.83 (#969)\n\nBumps\n[org.bouncycastle:bcpkix-jdk18on](https://github.com/bcgit/bc-java) from\n1.82 to 1.83.\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/bcgit/bc-java/blob/main/docs/releasenotes.html\"\u003eorg.bouncycastle:bcpkix-jdk18on\u0027s\nchangelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003e\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted --\u003e2.1.1 Version\u003c!--\nraw HTML omitted --\u003e\u003c!-- raw HTML omitted --\u003e\nRelease: 1.84\u003c!-- raw HTML omitted --\u003e\nDate:      TBD\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003e\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted --\u003e2.2.1 Version\u003c!--\nraw HTML omitted --\u003e\u003c!-- raw HTML omitted --\u003e\nRelease: 1.83\u003c!-- raw HTML omitted --\u003e\nDate:      2025, November 27th.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca\nhref\u003d\"https://github.com/bcgit/bc-java/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dorg.bouncycastle:bcpkix-jdk18on\u0026package-manager\u003dmaven\u0026previous-version\u003d1.82\u0026new-version\u003d1.83)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "349d402a61733084399cc791710e251097b87ea3", "tree": "ca93d4a481cdbb917260da9871092898d51db220", "parents": [ "9cdda52550e5d95b9868e5fda26d51465c8c258d" ], "author": { "name": "Hélder Gregório", "email": "helder.gregorio@dremio.com", "time": "Sat Jan 17 05:00:44 2026 +0000" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Sat Jan 17 06:00:44 2026 +0100" }, "message": "GH-964: Fix IndexOutOfBoundsException in Array.getResultSet() for JDBC clients (#965)\n\n## What\u0027s Changed\n\n- Fixed JDBC specification in ArrowFlightJdbcArray.getResultSet() that\ncaused IndexOutOfBoundsException in JDBC clients like DBeaver when\nreading array columns\n- The method returned a single-column ResultSet containing only array\nvalues, but JDBC spec requires a 2-column format\n- Not it returns two columns:\n - Column 1 (INDEX): 1-based element indices per JDBC specification\n - Column 2: The actual array element values\n\n\nCloses #964." }, { "commit": "9cdda52550e5d95b9868e5fda26d51465c8c258d", "tree": "3122fcca5e0b28778ad69efc6407cf21c4ad0971", "parents": [ "68451bfd55f6fff268a0e11dd4f6e4b3e2a025d2" ], "author": { "name": "Joana Hrotko", "email": "joana.hrotko@dremio.com", "time": "Thu Jan 15 13:49:14 2026 +0000" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Thu Jan 15 14:49:14 2026 +0100" }, "message": "GH-891: Add ExtensionTypeWriterFactory to TransferPair (#892)\n\n## What\u0027s Changed\n\nThis PR simplifies extension type writer creation by moving from a\nfactory-based pattern to a type-based pattern. Instead of passing\n`ExtensionTypeWriterFactory` instances through multiple API layers,\nextension types now provide their own writers via a new\n`getNewFieldWriter()` method on `ArrowType.ExtensionType`.\n\n- Added `getNewFieldWriter(ValueVector)` abstract method to\n`ArrowType.ExtensionType`\n- Removed `ExtensionTypeWriterFactory` interface and all implementations\n- Removed factory parameters from `ComplexCopier`, `PromotableWriter`,\nand `TransferPair` APIs\n- Updated `UnionWriter` to support extension types (previously threw\n`UnsupportedOperationException`)\n- Simplified extension type implementations (`UuidType`, `OpaqueType`)\n\nThe factory pattern didn\u0027t scale well. Each new extension type required\ncreating a separate factory class and passing it through multiple API\nlayers. This was especially painful for external developers who had to\nmaintain two classes per extension type and manage factory parameters\neverywhere.\n\nThe new approach follows the same pattern as `MinorType`, where each\ntype knows how to create its own writer. This reduces boilerplate,\nsimplifies the API, and makes it easier to implement custom extension\ntypes outside arrow-java.\n\n## Breaking Changes\n\n- `ExtensionTypeWriterFactory` has been removed\n- Extension types must now implement `getNewFieldWriter(ValueVector\nvector)` method\n- ExtensionHolders must implement `type()` which returns the\n`ExtensionType` for that Holder\n- (Writers are obtained directly from the extension type, not from a\nfactory)\n\n### Migration Guide\n\n- _Extension types must now implement `getNewFieldWriter(ValueVector\nvector)` method_\n```java\npublic class UuidType extends ExtensionType {\n ...\n\n @Override\n public FieldWriter getNewFieldWriter(ValueVector vector) {\n return new UuidWriterImpl((UuidVector) vector);\n }\n ...\n}\n```\n- _ExtensionHolders must implement `type()` which returns the\n`ExtensionType` for that Holder_\n```java\npublic class UuidHolder extends ExtensionHolder {\n ...\n\n @Override\n public ArrowType type() {\n return UuidType.INSTANCE;\n }\n```\n\n- How to use Extension Writers?\n **Before:**\n ```java\n writer.extension(UuidType.INSTANCE);\n writer.addExtensionTypeWriterFactory(extensionTypeWriterFactory);\n writer.writeExtension(value);\n ```\n\n **After:**\n ```java\n writer.extension(UuidType.INSTANCE);\n writer.writeExtension(value);\n ```\n- Also `copyAsValue` does not need to provide the factory anymore.\n\nCloses #891 ." }, { "commit": "68451bfd55f6fff268a0e11dd4f6e4b3e2a025d2", "tree": "2c8a727cb0696ade0d98970189a3c9bfc3bad06b", "parents": [ "109063f7d970d717e2210fd294cef09f99d16706" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Wed Jan 14 16:38:46 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Wed Jan 14 16:38:46 2026 +0100" }, "message": "MINOR: Bump org.apache.avro:avro from 1.12.0 to 1.12.1 (#955)\n\nBumps org.apache.avro:avro from 1.12.0 to 1.12.1.\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dorg.apache.avro:avro\u0026package-manager\u003dmaven\u0026previous-version\u003d1.12.0\u0026new-version\u003d1.12.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "109063f7d970d717e2210fd294cef09f99d16706", "tree": "a4829d2442b38018046f17f5c9911124864890ee", "parents": [ "936a31a4e59f099fa422c0a4d6a4316941dcd841" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Tue Jan 13 11:27:18 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Tue Jan 13 11:27:18 2026 +0100" }, "message": "MINOR: Bump com.github.ben-manes.caffeine:caffeine from 3.2.0 to 3.2.3 (#960)\n\nBumps\n[com.github.ben-manes.caffeine:caffeine](https://github.com/ben-manes/caffeine)\nfrom 3.2.0 to 3.2.3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/ben-manes/caffeine/releases\"\u003ecom.github.ben-manes.caffeine:caffeine\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.2.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed frequency tracking of weak keys to use the object\u0027s identity\nhash code (\u003ca\nhref\u003d\"https://redirect.github.com/ben-manes/caffeine/issues/1902\"\u003e#1902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdded support for underscores in \u003ccode\u003eCaffeineSpec\u003c/code\u003e when\nusing numeric literals (\u003ca\nhref\u003d\"https://redirect.github.com/ben-manes/caffeine/issues/1890\"\u003e#1890\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImproved the external api to no longer lock when querying for the\nmaximum size or weighted size (\u003ca\nhref\u003d\"https://redirect.github.com/ben-manes/caffeine/issues/1897\"\u003e#1897\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdded detection and recovery when a custom\n\u003ccode\u003eCompletableFuture\u003c/code\u003e is in an inconsistent state (\u003ca\nhref\u003d\"https://redirect.github.com/quarkusio/quarkus/issues/50513\"\u003equarkus#50513\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.2.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed characteristics returned by Spliterators (\u003ca\nhref\u003d\"https://redirect.github.com/ben-manes/caffeine/issues/1883\"\u003e#1883\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.2.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003ecomputeIfAbsent\u003c/code\u003e for an async cache\u0027s synchronous\nview to retry if incomplete\u003c/li\u003e\n\u003cli\u003eImproved \u003ccode\u003eCaffeineSpec\u003c/code\u003e when being reflectively\nconstructed (\u003ca\nhref\u003d\"https://redirect.github.com/ben-manes/caffeine/issues/1839\"\u003e#1839\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImproved the handling of negative durations with variable\nexpiration\u003c/li\u003e\n\u003cli\u003eFixed intermittent null after replacing a weak/soft value (\u003ca\nhref\u003d\"https://redirect.github.com/ben-manes/caffeine/issues/1820\"\u003e#1820\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/ben-manes/caffeine/commit/5227a98b51e02b4d4fbfc2b0e33c362a138f51b1\"\u003e\u003ccode\u003e5227a98\u003c/code\u003e\u003c/a\u003e\nminor build touchups\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/ben-manes/caffeine/commit/cc3f37d50776f246bfb3ddbe907d2c1a675ce901\"\u003e\u003ccode\u003ecc3f37d\u003c/code\u003e\u003c/a\u003e\nreorganize into separate gradle test suites\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/ben-manes/caffeine/commit/2299add522332c06b7bbebb0b5ef322ea23f5254\"\u003e\u003ccode\u003e2299add\u003c/code\u003e\u003c/a\u003e\nAllow users to read the maximum size without locking (fixes \u003ca\nhref\u003d\"https://redirect.github.com/ben-manes/caffeine/issues/1897\"\u003e#1897\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/ben-manes/caffeine/commit/6250b384f161d1841e2bfd032f7bf375626d90ad\"\u003e\u003ccode\u003e6250b38\u003c/code\u003e\u003c/a\u003e\nclarify policy javadoc and add corresponding test cases (fixes \u003ca\nhref\u003d\"https://redirect.github.com/ben-manes/caffeine/issues/1927\"\u003e#1927\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/ben-manes/caffeine/commit/c975fc07460d2fd4008c4d4d14044f65bb1323f2\"\u003e\u003ccode\u003ec975fc0\u003c/code\u003e\u003c/a\u003e\nupgrade error-prone static analyzer\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/ben-manes/caffeine/commit/d8e0a92553ab230122bcd223363c1d8ca060bce7\"\u003e\u003ccode\u003ed8e0a92\u003c/code\u003e\u003c/a\u003e\nallow the project.version to be overridden by external builders\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/ben-manes/caffeine/commit/0e46d2225fece2ac0ce68d9bdd2a056af6015136\"\u003e\u003ccode\u003e0e46d22\u003c/code\u003e\u003c/a\u003e\ndetect if the user\u0027s future is inconsistent with the results\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/ben-manes/caffeine/commit/1971428f8b2fbd37fb57ed6a092de6d7c965f55a\"\u003e\u003ccode\u003e1971428\u003c/code\u003e\u003c/a\u003e\nuse the assemble task for a full build without running the test\nsuites\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/ben-manes/caffeine/commit/782ac79e079ae404ebb948afcc6f28b60aafd8dd\"\u003e\u003ccode\u003e782ac79\u003c/code\u003e\u003c/a\u003e\nuse the key reference with the frequency sketch (fixes \u003ca\nhref\u003d\"https://redirect.github.com/ben-manes/caffeine/issues/1902\"\u003e#1902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/ben-manes/caffeine/commit/e0dd94b922b862b6afbaa59464f1d3cfb8a24596\"\u003e\u003ccode\u003ee0dd94b\u003c/code\u003e\u003c/a\u003e\nminor build clean up\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/ben-manes/caffeine/compare/v3.2.0...v3.2.3\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dcom.github.ben-manes.caffeine:caffeine\u0026package-manager\u003dmaven\u0026previous-version\u003d3.2.0\u0026new-version\u003d3.2.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "936a31a4e59f099fa422c0a4d6a4316941dcd841", "tree": "065033fd9ab66e8d9fa3d1c90c8870fe005faaac", "parents": [ "3206fe558b21ac75e6754149a4ca5961d4d29cb7" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Jan 12 14:16:04 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Jan 12 14:16:04 2026 +0100" }, "message": "MINOR: Bump io.grpc:grpc-bom from 1.73.0 to 1.78.0 (#958)\n\nBumps [io.grpc:grpc-bom](https://github.com/grpc/grpc-java) from 1.73.0\nto 1.78.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/grpc/grpc-java/releases\"\u003eio.grpc:grpc-bom\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eV1.78.0\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ecore: Fix shutdown failing accepted RPCs during channel startup\n(02e98a806). This fixes a race where RPCs could fail with\n\u0026quot;UNAVAILABLE: Channel shutdown invoked\u0026quot; even though they were\ncreated before channel.shutdown()\u003c/li\u003e\n\u003cli\u003eokhttp: Fix race condition overwriting MAX_CONCURRENT_STREAMS (\u003ca\nhref\u003d\"https://redirect.github.com/grpc/grpc-java/issues/12548\"\u003e#12548\u003c/a\u003e)\n(8d49dc1c9)\u003c/li\u003e\n\u003cli\u003ebinder: Stop leaking \u003ccode\u003ethis\u003c/code\u003e from BinderServerTransport\u0027s\nctor (\u003ca\nhref\u003d\"https://redirect.github.com/grpc/grpc-java/issues/12453\"\u003e#12453\u003c/a\u003e)\n(89d77e062)\u003c/li\u003e\n\u003cli\u003erls: Avoid missed config update from reentrancy (55ae1d054). This\nfixes a regression since 1.75.0 triggered by CdsLb being converted to\nXdsDepManager. Without this fix, a second channel to the same target may\nhang when starting, causing DEADLINE_EXCEEDED, and unhang when the\ncontrol plane delivers an update (e.g., endpoint address update)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eImprovements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003exds: gRFC A88 - Changes to XdsClient Watcher APIs (\u003ca\nhref\u003d\"https://redirect.github.com/grpc/grpc-java/issues/12446\"\u003e#12446\u003c/a\u003e)\n(f385add31). We now have improved xDS error handling and this provides a\nclearer mechanism for the xDS server to report per-resource errors to\nthe client, resulting in better error messages for debugging and faster\ndetection of non-existent resources. This also improves the handling of\nall xDS-related data errors and the behavior of the xDS resource\ntimer.\u003c/li\u003e\n\u003cli\u003erls: Control plane channel monitor state and back off handling (\u003ca\nhref\u003d\"https://redirect.github.com/grpc/grpc-java/issues/12460\"\u003e#12460\u003c/a\u003e)\n(26c1c1341). Resets RLS request backoff timers when the Control plane\nchannel state transitions to READY. Also when the backoff timer expires,\ninstead of making a RLS request immediately, it just causes a picker\nupdate to allow making rpc again to the RLS target.\u003c/li\u003e\n\u003cli\u003ecore: simplify DnsNameResolver.resolveAddresses() (4843256af)\u003c/li\u003e\n\u003cli\u003enetty: Run handshakeCompleteRunnable in success cases\n(283f1031f)\u003c/li\u003e\n\u003cli\u003eapi,netty: Add custom header support for HTTP CONNECT proxy\n(bbc0aa369)\u003c/li\u003e\n\u003cli\u003ebinder: Pre-factor out the guts of the BinderClientTransport\nhandshake. (9313e87df)\u003c/li\u003e\n\u003cli\u003ecompiler: Add RISC-V 64-bit architecture support to compiler build\nconfiguration (725ab22f3)\u003c/li\u003e\n\u003cli\u003ecore: Release lock before closing shared resource (cb73f217e).\nShared resources are internal to gRPC for sharing expensive objects\nacross channels and servers, like threads. This reduces the chances of\nforming a deadlock, like seen with s2a in d50098f\u003c/li\u003e\n\u003cli\u003eUpgrade gson to 2.12.1 (6dab2ceab)\u003c/li\u003e\n\u003cli\u003eUpgrade dependencies (f36defa2d). proto-google-common-protos to\n2.63.1, google-auth-library to 1.40.0, error-prone annotations to\n2.44.0, guava to 33.5.0-android, opentelemetry to 1.56.0\u003c/li\u003e\n\u003cli\u003ecompiler: Update maximum supported protobuf edition to EDITION_2024\n(2f64092b8)\u003c/li\u003e\n\u003cli\u003ebinder: Introduce server authorization strategy v2 (d9710725d). Adds\nsupport for \u003ccode\u003eandroid:isolatedProcess\u003c/code\u003e Services and moves all\nsecurity checks to the handshake, making subsequent transactions more\nefficient.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eNew Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ecompiler: Upgrade to C++ protobuf 33.1 (\u003ca\nhref\u003d\"https://redirect.github.com/grpc/grpc-java/issues/12534\"\u003e#12534\u003c/a\u003e)\n(58ae5f808).\u003c/li\u003e\n\u003cli\u003eutil: Add gRFC A68 random subsetting LB (48a42889d). The policy uses\nthe name \u003ccode\u003erandom_subsetting_experimental\u003c/code\u003e. If it is working\nfor you, tell us so we can gauge marking it stable. While the xDS\nportions haven’t yet landed, it is possible to use with xDS with\nJSON-style Structs as supported by gRFC A52\u003c/li\u003e\n\u003cli\u003exds: Support for System Root Certs (\u003ca\nhref\u003d\"https://redirect.github.com/grpc/grpc-java/issues/12499\"\u003e#12499\u003c/a\u003e)\n(51611bad1). Most service mesh workloads use mTLS, as described in gRFC\nA29. However, there are cases where it is useful for applications to use\nnormal TLS rather than using certificates for workload identity, such as\nwhen a mesh wants to move some workloads behind a reverse proxy. The xDS\n\u003ccode\u003eCertificateValidationContext\u003c/code\u003e message (see \u003ca\nhref\u003d\"https://redirect.github.com/envoyproxy/envoy/pull/34235\"\u003eenvoyproxy/envoy#34235\u003c/a\u003e)\nhas a \u003ccode\u003esystem_root_certs\u003c/code\u003e field. In the gRPC client, if this\nfield is present and the \u003ccode\u003eca_certificate_provider_instance\u003c/code\u003e\nfield is unset, system root certificates will be used for validation.\nThis implements \u003ca\nhref\u003d\"https://github.com/grpc/proposal/blob/master/A82-xds-system-root-certs.md\"\u003egRFC\nA82\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003exds: Support for GCP Authentication Filter (\u003ca\nhref\u003d\"https://redirect.github.com/grpc/grpc-java/issues/12499\"\u003e#12499\u003c/a\u003e)\n(51611bad1). In service mesh environments, there are cases where\nintermediate proxies make it impossible to rely on mTLS for end-to-end\nauthentication. These cases can be addressed instead by the use of\nservice account identity JWT tokens. The xDS \u003ca\nhref\u003d\"https://www.envoyproxy.io/docs/envoy/latest/configuration/http/http_filters/gcp_authn_filter\"\u003eGCP\nAuthentication filter\u003c/a\u003e provides a mechanism for attaching such JWT\ntokens as gRPC call credentials on GCP. gRPC already supports a\nframework for xDS HTTP filters, as described in \u003ca\nhref\u003d\"https://github.com/grpc/proposal/blob/master/A39-xds-http-filters.md\"\u003egRFC\nA39\u003c/a\u003e. This release supports the GCP Authentication filter under this\nframework as described in \u003ca\nhref\u003d\"https://github.com/grpc/proposal/blob/master/A83-xds-gcp-authn-filter.md\"\u003egRFC\nA83\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003exds: Support for xDS-based authority rewriting (\u003ca\nhref\u003d\"https://redirect.github.com/grpc/grpc-java/issues/12499\"\u003e#12499\u003c/a\u003e)\n(51611bad1). gRPC supports getting routing configuration from an xDS\nserver, as described in gRFCs \u003ca\nhref\u003d\"https://github.com/grpc/proposal/blob/master/A27-xds-global-load-balancing.md\"\u003eA27\u003c/a\u003e\nand \u003ca\nhref\u003d\"https://github.com/grpc/proposal/blob/master/A28-xds-traffic-splitting-and-routing.md\"\u003eA28\u003c/a\u003e.\nThe xDS configuration can configure the client to rewrite the authority\nheader on requests. This functionality can be useful in cases where the\nserver is using the authority header to make decisions about how to\nprocess the request, such as when multiple hosts are handled via a\nreverse proxy. Note that this feature is solely about rewriting the\nauthority header on data plane RPCs; it does not affect the authority\nused in the TLS handshake.\u003cbr /\u003e\nAs mentioned in \u003ca\nhref\u003d\"https://github.com/grpc/proposal/blob/master/A29-xds-tls-security.md\"\u003egRFC\nA29\u003c/a\u003e, there are use-cases for gRPC that prohibit trusting the xDS\nserver to control security-centric configuration. The authority\nrewriting feature falls under the same umbrella as mTLS configuration.\nAs a result, the authority rewriting feature will only be enabled when\nthe bootstrap config for the xDS server has\n\u003ccode\u003etrusted_xds_server\u003c/code\u003e in the \u003ccode\u003eserver_features\u003c/code\u003e\nfield.\u003c/li\u003e\n\u003cli\u003exds: xDS based SNI setting and SAN validation (\u003ca\nhref\u003d\"https://redirect.github.com/grpc/grpc-java/issues/12378\"\u003e#12378\u003c/a\u003e)\n(0567531). When using xDS credentials make SNI for the Tls handshake to\nbe configured via xDS, rather than use the channel authority as the SNI,\nand make SAN validation to be able to use the SNI sent when so\ninstructed via xDS. Implements gRFC \u003ca\nhref\u003d\"https://github.com/grpc/proposal/blob/master/A101-SNI-setting-and-SNI-SAN-validation.md\"\u003eA101\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapi: Document gRFC A18 TCP_USER_TIMEOUT handling for keepalive\n(da7038782)\u003c/li\u003e\n\u003cli\u003ecore: Fix AbstractClientStream Javadoc (28a6130e8)\u003c/li\u003e\n\u003cli\u003eexamples: Document how to preserve META-INF/services in uber jars\n(97695d523)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks to\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/panchenko\"\u003e\u003ccode\u003e@​panchenko\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/Dayuxiaoshui\"\u003e\u003ccode\u003e@​Dayuxiaoshui\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/becomeStar\"\u003e\u003ccode\u003e@​becomeStar\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/kssumin\"\u003e\u003ccode\u003e@​kssumin\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/marcindabrowski\"\u003e\u003ccode\u003e@​marcindabrowski\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/MariusVolkhart\"\u003e\u003ccode\u003e@​MariusVolkhart\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/Zgoda91\"\u003e\u003ccode\u003e@​Zgoda91\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/devalkone\"\u003e\u003ccode\u003e@​devalkone\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/grpc/grpc-java/commit/8fa6000259958fd3b2bdba579ea7dc002ad95777\"\u003e\u003ccode\u003e8fa6000\u003c/code\u003e\u003c/a\u003e\nBump version to 1.78.0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/grpc/grpc-java/commit/87df333f8ebd23669734b19c16e2cb7a187fded3\"\u003e\u003ccode\u003e87df333\u003c/code\u003e\u003c/a\u003e\nUpdate README etc to reference 1.78.0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/grpc/grpc-java/commit/283f1031f7b48ce32a2f91bb92bac93a0ca29bdd\"\u003e\u003ccode\u003e283f103\u003c/code\u003e\u003c/a\u003e\nnetty: Run handshakeCompleteRunnable in success cases\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/grpc/grpc-java/commit/eb8a63cefb827337cc9fd4c5a3877d96a238c1d6\"\u003e\u003ccode\u003eeb8a63c\u003c/code\u003e\u003c/a\u003e\nIntroduce io.grpc.Uri. (\u003ca\nhref\u003d\"https://redirect.github.com/grpc/grpc-java/issues/12535\"\u003e#12535\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/grpc/grpc-java/commit/58ae5f808cf8e20c5864033c9a8f485b237f9dfc\"\u003e\u003ccode\u003e58ae5f8\u003c/code\u003e\u003c/a\u003e\ncompiler: Upgrade to protobuf 33.1 (\u003ca\nhref\u003d\"https://redirect.github.com/grpc/grpc-java/issues/12534\"\u003e#12534\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/grpc/grpc-java/commit/8d49dc1c9129fc42c6b80584f5dbad1a543009b5\"\u003e\u003ccode\u003e8d49dc1\u003c/code\u003e\u003c/a\u003e\nokhttp: Fix race condition overwriting MAX_CONCURRENT_STREAMS (\u003ca\nhref\u003d\"https://redirect.github.com/grpc/grpc-java/issues/12548\"\u003e#12548\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/grpc/grpc-java/commit/b1a94a410e1926fb870e9717d11c7d8f85c62cb6\"\u003e\u003ccode\u003eb1a94a4\u003c/code\u003e\u003c/a\u003e\nxds: implement server feature fail_on_data_errors (\u003ca\nhref\u003d\"https://redirect.github.com/grpc/grpc-java/issues/12544\"\u003e#12544\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/grpc/grpc-java/commit/55ae1d0541c3482cf9fa2cadb156b1da6852deb4\"\u003e\u003ccode\u003e55ae1d0\u003c/code\u003e\u003c/a\u003e\nrls: Avoid missed config update from reentrancy\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/grpc/grpc-java/commit/53a092646a0883c29d3bc8f05277b9f0c15a1ce6\"\u003e\u003ccode\u003e53a0926\u003c/code\u003e\u003c/a\u003e\nxds: fix race in simpleFlowControl (\u003ca\nhref\u003d\"https://redirect.github.com/grpc/grpc-java/issues/12547\"\u003e#12547\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/grpc/grpc-java/commit/f36defa2d3950de103d2a2dc73fc7f308d35f624\"\u003e\u003ccode\u003ef36defa\u003c/code\u003e\u003c/a\u003e\nUpgrade dependencies\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/grpc/grpc-java/compare/v1.73.0...v1.78.0\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dio.grpc:grpc-bom\u0026package-manager\u003dmaven\u0026previous-version\u003d1.73.0\u0026new-version\u003d1.78.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "3206fe558b21ac75e6754149a4ca5961d4d29cb7", "tree": "fd50567ec79e6a61cd409e3e10ccdd1eb0328088", "parents": [ "05292ac0d16a4735189683b43c2084dd2ee92e20" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Jan 12 14:14:51 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Jan 12 14:14:51 2026 +0100" }, "message": "MINOR: Bump org.apache.commons:commons-text from 1.13.1 to 1.15.0 (#956)\n\nBumps\n[org.apache.commons:commons-text](https://github.com/apache/commons-text)\nfrom 1.13.1 to 1.15.0.\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/apache/commons-text/blob/master/RELEASE-NOTES.txt\"\u003eorg.apache.commons:commons-text\u0027s\nchangelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eApache Commons Text 1.15.0 Release Notes\u003c/h2\u003e\n\u003cp\u003eThe Apache Commons Text team is pleased to announce the release of\nApache Commons Text 1.15.0.\u003c/p\u003e\n\u003cp\u003eApache Commons Text is a set of utility functions and reusable\ncomponents for processing\nand manipulating text in a Java environment.\u003c/p\u003e\n\u003cp\u003eRelease 1.15.0. This is a feature and maintenance release. Java 8 or\nlater is required.\u003c/p\u003e\n\u003ch2\u003eNew features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Add experimental CycloneDX VEX file\n[#683](https://github.com/apache/commons-text/issues/683). Thanks to\nPiotr P. Karwasz, Gary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003eTEXT-235: Add Damerau-Levenshtein distance \u003ca\nhref\u003d\"https://redirect.github.com/apache/commons-text/issues/687\"\u003e#687\u003c/a\u003e.\nThanks to LorgeN, Gary Gregory.\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Add unit tests to increase coverage\n[#719](https://github.com/apache/commons-text/issues/719). Thanks to\nMichael Hausegger, Gary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Add new test for CharSequenceTranslator#with()\n[#725](https://github.com/apache/commons-text/issues/725). Thanks to\nMichael Hausegger, Gary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Add tests and assertions to\norg.apache.commons.text.similarity to get to 100% code coverage\n[#727](https://github.com/apache/commons-text/issues/727),\n[#728](https://github.com/apache/commons-text/issues/728). Thanks to\nMichael Hausegger.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eFixed Bugs\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Fix exception message typo in\nXmlStringLookup.XmlStringLookup(Map, Path...). Thanks to Gary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003eTEXT-236: Inserting at the end of a TextStringBuilder throws a\nStringIndexOutOfBoundsException. Thanks to Pierre Post, Sumit Bera, Alex\nHerbert, Gary Gregory.\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Fix TextStringBuilderTest.testAppendToCharBuffer() to use\nproper argument type\n[#724](https://github.com/apache/commons-text/issues/724). Thanks to\nMichael Hausegger.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Fix Apache RAT plugin console warnings. Thanks to Gary\nGregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Fix site XML to use version 2.0.0 XML schema. Thanks to Gary\nGregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Removed unreachable threshold verification code in\nsrc/main/java/org/apache/commons/text/similarity\n[#730](https://github.com/apache/commons-text/issues/730). Thanks to\nMichael Hausegger.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Enable secure processing for the XML parser in\nXmlStringLookup in case the underlying JAXP implementation doesn\u0027t\n[#729](https://github.com/apache/commons-text/issues/729). Thanks to 김민재\n(minjas0507), Gary Gregory, Piotr Karwasz.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eChanges\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Bump org.apache.commons:commons-parent from 85 to 93\n[#704](https://github.com/apache/commons-text/issues/704),\n[#723](https://github.com/apache/commons-text/issues/723),\n[#726](https://github.com/apache/commons-text/issues/726). Thanks to\nGary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Bump commons.bytebuddy.version from 1.17.6 to 1.18.2\n[#696](https://github.com/apache/commons-text/issues/696),\n[#722](https://github.com/apache/commons-text/issues/722). Thanks to\nGary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Bump graalvm.version from 24.2.2 to 25.0.1\n[#703](https://github.com/apache/commons-text/issues/703),\n[#716](https://github.com/apache/commons-text/issues/716). Thanks to\nGary Gregory, Dependabot.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Bump org.apache.commons:commons-lang3 from 3.18.0 to 3.20.0.\nThanks to Gary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cpre\u003e\u003ccode\u003e Bump commons-io:commons-io from 2.20.0 to 2.21.0. Thanks to\nGary Gregory.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eHistorical list of changes: \u003ca\nhref\u003d\"https://commons.apache.org/proper/commons-text/changes.html\"\u003ehttps://commons.apache.org/proper/commons-text/changes.html\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eFor complete information on Apache Commons Text, including\ninstructions on how to submit bug reports,\npatches, or suggestions for improvement, see the Apache Commons Text\nwebsite:\u003c/p\u003e\n\u003cp\u003e\u003ca\nhref\u003d\"https://commons.apache.org/proper/commons-text\"\u003ehttps://commons.apache.org/proper/commons-text\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eDownload page: \u003ca\nhref\u003d\"https://commons.apache.org/proper/commons-text/download_text.cgi\"\u003ehttps://commons.apache.org/proper/commons-text/download_text.cgi\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-text/commit/04e937470d3679cc163df85d82d5b6d2e3e71128\"\u003e\u003ccode\u003e04e9374\u003c/code\u003e\u003c/a\u003e\nPrepare for the release candidate 1.15.0 RC1\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-text/commit/502c4c41be5671681b58a9b50297f99737e8ea93\"\u003e\u003ccode\u003e502c4c4\u003c/code\u003e\u003c/a\u003e\nPrepare for the next release candidate\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-text/commit/c6e17ec24cc8374eb12676b717bf797f41b6e539\"\u003e\u003ccode\u003ec6e17ec\u003c/code\u003e\u003c/a\u003e\nUse direct access\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-text/commit/58e1e125daaa0aebf8c5ffaa82af48821a1ccf2d\"\u003e\u003ccode\u003e58e1e12\u003c/code\u003e\u003c/a\u003e\nSimplify XML FSP (\u003ca\nhref\u003d\"https://redirect.github.com/apache/commons-text/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-text/commit/b5052c97e84e1c174ec8bfbbb749e33f22917a07\"\u003e\u003ccode\u003eb5052c9\u003c/code\u003e\u003c/a\u003e\nBump actions/setup-java from 5.0.0 to 5.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-text/commit/2e2d4bc90f1b3274e7943ac27d037d47c0cc098d\"\u003e\u003ccode\u003e2e2d4bc\u003c/code\u003e\u003c/a\u003e\nRevert \u0026quot;Bump actions/setup-java from 5.0.0 to 5.1.0\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-text/commit/b0ddbd17bbeee12ad33b8a61c60b4edbe6c85838\"\u003e\u003ccode\u003eb0ddbd1\u003c/code\u003e\u003c/a\u003e\nBump actions/setup-java from 5.0.0 to 5.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-text/commit/1c2d3821e67e08342b8cef4d4445c30b4a22daca\"\u003e\u003ccode\u003e1c2d382\u003c/code\u003e\u003c/a\u003e\nAdd tests with external DTD\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-text/commit/ed3df4b25cd5301921a6523ae7db2411f4a84d98\"\u003e\u003ccode\u003eed3df4b\u003c/code\u003e\u003c/a\u003e\nInternal clean up\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/commons-text/commit/bb508f304a8835ac2319af1d872b2f1a9ff6f81d\"\u003e\u003ccode\u003ebb508f3\u003c/code\u003e\u003c/a\u003e\nBump actions/checkout from 6.0.0 to 6.0.1\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/apache/commons-text/compare/rel/commons-text-1.13.1...rel/commons-text-1.15.0\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dorg.apache.commons:commons-text\u0026package-manager\u003dmaven\u0026previous-version\u003d1.13.1\u0026new-version\u003d1.15.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "05292ac0d16a4735189683b43c2084dd2ee92e20", "tree": "6ee44b137e53b72697142e092d0e0014a97e31c6", "parents": [ "e620c4481b51b47be952918b1d7e1441b22f0b44" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Jan 12 14:14:29 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Jan 12 14:14:29 2026 +0100" }, "message": "MINOR: Bump org.codehaus.mojo:exec-maven-plugin from 3.5.0 to 3.6.3 (#959)\n\nBumps\n[org.codehaus.mojo:exec-maven-plugin](https://github.com/mojohaus/exec-maven-plugin)\nfrom 3.5.0 to 3.6.3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/mojohaus/exec-maven-plugin/releases\"\u003eorg.codehaus.mojo:exec-maven-plugin\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.6.3\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e📝 Documentation updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDocument thread group isolation limitation in java goal (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/exec-maven-plugin/pull/503\"\u003e#503\u003c/a\u003e)\n@\u003ca\nhref\u003d\"https://github.com/apps/copilot-swe-agent\"\u003ecopilot-swe-agent[bot]\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e👻 Maintenance\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eJUnit 5 best practices (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/exec-maven-plugin/pull/505\"\u003e#505\u003c/a\u003e)\n\u003ca\nhref\u003d\"https://github.com/slachiewicz\"\u003e\u003ccode\u003e@​slachiewicz\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMove ExecJavaMojoTest, ExecMojoTest to JUnit 5 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/exec-maven-plugin/pull/502\"\u003e#502\u003c/a\u003e)\n\u003ca\nhref\u003d\"https://github.com/slawekjaranowski\"\u003e\u003ccode\u003e@​slawekjaranowski\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for JEP 512 for for package-private static main method\n(\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/exec-maven-plugin/pull/499\"\u003e#499\u003c/a\u003e)\n\u003ca\nhref\u003d\"https://github.com/anuragagarwal561994\"\u003e\u003ccode\u003e@​anuragagarwal561994\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMove to JUnit 5 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/exec-maven-plugin/pull/501\"\u003e#501\u003c/a\u003e)\n\u003ca\nhref\u003d\"https://github.com/slawekjaranowski\"\u003e\u003ccode\u003e@​slawekjaranowski\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Dependency updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump asm.version from 9.9 to 9.9.1 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/exec-maven-plugin/pull/509\"\u003e#509\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.commons:commons-exec from 1.5.0 to 1.6.0 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/exec-maven-plugin/pull/508\"\u003e#508\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.6.2\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e🚀 New features and improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd JPMS ServiceLoader Support with Multi-Release JAR (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/exec-maven-plugin/pull/500\"\u003e#500\u003c/a\u003e)\n\u003ca href\u003d\"https://github.com/ascheman\"\u003e\u003ccode\u003e@​ascheman\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Dependency updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump asm.version from 9.8 to 9.9 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/exec-maven-plugin/pull/498\"\u003e#498\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.6.1\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRevert change from \u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/exec-maven-plugin/issues/480\"\u003e#480\u003c/a\u003e\n- plugin dependencies must be resolved from plugin repositories (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/exec-maven-plugin/pull/496\"\u003e#496\u003c/a\u003e)\n\u003ca\nhref\u003d\"https://github.com/slawekjaranowski\"\u003e\u003ccode\u003e@​slawekjaranowski\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Dependency updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump org.codehaus.mojo:mojo-parent from 93 to 94 (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/exec-maven-plugin/pull/495\"\u003e#495\u003c/a\u003e)\n@\u003ca href\u003d\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.6.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e🚀 New features and improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[ExecMojo]Add \u003ccode\u003egetShebang\u003c/code\u003e method to correctly set the\ncommand line executable name (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/exec-maven-plugin/pull/487\"\u003e#487\u003c/a\u003e)\n\u003ca href\u003d\"https://github.com/uchenily\"\u003e\u003ccode\u003e@​uchenily\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJEP 512 Support (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/exec-maven-plugin/pull/484\"\u003e#484\u003c/a\u003e)\n\u003ca\nhref\u003d\"https://github.com/cayhorstmann\"\u003e\u003ccode\u003e@​cayhorstmann\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix inheritIo option (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/exec-maven-plugin/pull/488\"\u003e#488\u003c/a\u003e)\n\u003ca\nhref\u003d\"https://github.com/dernasherbrezon\"\u003e\u003ccode\u003e@​dernasherbrezon\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for \u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/exec-maven-plugin/issues/479\"\u003e#479\u003c/a\u003e\n- Wrong repositories used to collect deps (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/exec-maven-plugin/pull/480\"\u003e#480\u003c/a\u003e)\n\u003ca href\u003d\"https://github.com/cstamas\"\u003e\u003ccode\u003e@​cstamas\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/exec-maven-plugin/commit/fe1fa8c1631e599f34c766b33485b220f38bc17e\"\u003e\u003ccode\u003efe1fa8c\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release 3.6.3\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/exec-maven-plugin/commit/5b3feca94f27393cf316932dfaede7d942521faf\"\u003e\u003ccode\u003e5b3feca\u003c/code\u003e\u003c/a\u003e\nBump asm.version from 9.9 to 9.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/exec-maven-plugin/commit/efc7faa0a84c83ff8e8a33a5260fe83cf68538b2\"\u003e\u003ccode\u003eefc7faa\u003c/code\u003e\u003c/a\u003e\nBump org.apache.commons:commons-exec from 1.5.0 to 1.6.0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/exec-maven-plugin/commit/cdaf2670882694beaa597e3ecacaeb5493ee31fc\"\u003e\u003ccode\u003ecdaf267\u003c/code\u003e\u003c/a\u003e\nJUnit 5 best practices (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/exec-maven-plugin/issues/505\"\u003e#505\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/exec-maven-plugin/commit/f3f5997d924d9f60ef58bbc110e15677ea3806d9\"\u003e\u003ccode\u003ef3f5997\u003c/code\u003e\u003c/a\u003e\nMove ExecJavaMojoTest, ExecMojoTest to JUnit 5\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/exec-maven-plugin/commit/03b87b5bb393d6a2996a3103cdc4f6b10224e2ee\"\u003e\u003ccode\u003e03b87b5\u003c/code\u003e\u003c/a\u003e\nDocument thread group isolation limitation in java goal (\u003ca\nhref\u003d\"https://redirect.github.com/mojohaus/exec-maven-plugin/issues/503\"\u003e#503\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/exec-maven-plugin/commit/7a66c3ec712ec1f525e7409de46a72a7e904be15\"\u003e\u003ccode\u003e7a66c3e\u003c/code\u003e\u003c/a\u003e\nAdd support for JEP 512 for for package-private static main methods with\nand ...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/exec-maven-plugin/commit/a6d01ef68d5b57bf163b5957e6a07402e37e845b\"\u003e\u003ccode\u003ea6d01ef\u003c/code\u003e\u003c/a\u003e\nMove to JUnit 5\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/exec-maven-plugin/commit/88d59618ef96ede0b9656abb4fd09403730da865\"\u003e\u003ccode\u003e88d5961\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare for next development iteration\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/mojohaus/exec-maven-plugin/commit/416fdf1d1277bad7a16250305d42d35fb929ba0c\"\u003e\u003ccode\u003e416fdf1\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release 3.6.2\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/mojohaus/exec-maven-plugin/compare/3.5.0...3.6.3\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dorg.codehaus.mojo:exec-maven-plugin\u0026package-manager\u003dmaven\u0026previous-version\u003d3.5.0\u0026new-version\u003d3.6.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "e620c4481b51b47be952918b1d7e1441b22f0b44", "tree": "f8ffcb2c2464abedcd95d93aaf840af5847633a9", "parents": [ "a602e6a21e6a783dd1a23403ee7614ef6031516d" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Jan 12 14:13:57 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Jan 12 14:13:57 2026 +0100" }, "message": "MINOR: Bump logback.version from 1.5.21 to 1.5.24 (#962)\n\nBumps `logback.version` from 1.5.21 to 1.5.24.\nUpdates `ch.qos.logback:logback-classic` from 1.5.21 to 1.5.24\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/qos-ch/logback/releases\"\u003ech.qos.logback:logback-classic\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eLogback 1.5.24\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003e2026-01-06 Release of logback version 1.5.24\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003e• Added ExpressionPropertyCondition a PropertyCondition that can\nevaluate boolean expressions similar to Java. See \u003ca\nhref\u003d\"https://logback.qos.ch/manual/configuration.html#conditionalExp\"\u003ethe\nrelevant documentation\u003c/a\u003e for further details.\u003c/p\u003e\n\u003cp\u003e• A bit-wise identical binary of this version can be reproduced by\nbuilding from source code at commit\n62bc5fc245dd3a52f3dd45e232733f4cefb4806d associated with the tag\nv_1.5.24. Release built using Java \u0026quot;21\u0026quot; 2023-10-17 LTS build\n21.0.1.+12-LTS-29 under Linux Debian 11.6.\u003c/p\u003e\n\u003ch2\u003eLogback 1.5.23\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003e2025-12-21 Release of logback version 1.5.23\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003e• In response to \u003ca\nhref\u003d\"https://redirect.github.com/qos-ch/logback/issues/959\"\u003eissues/959\u003c/a\u003e\nfile name collisions are detected at configuration time by analyzing the\nconfiguration file and no longer at run time. This avoids the\n\u003ccode\u003eConcurrentModificationException\u003c/code\u003e reported in the issue.\u003c/p\u003e\n\u003cp\u003e• ZIP and XZ compression now use a \u003ccode\u003eBufferedOutputStream\u003c/code\u003e\nwhen writing to the compressed file. This issue was reported in \u003ca\nhref\u003d\"https://redirect.github.com/qos-ch/logback/issues/988\"\u003eissues/988\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003e• A bit-wise identical binary of this version can be reproduced by\nbuilding from source code at commit\n0bcc3feb54a6d99caac70969ee5f8334aad1fbaf associated with the tag\nv_1.5.23. Release built using Java \u0026quot;21\u0026quot; 2023-10-17 LTS build\n21.0.1.+12-LTS-29 under Linux Debian 11.6.\u003c/p\u003e\n\u003ch2\u003eLogback 1.5.22\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003e2025-12-11 Release of logback version 1.5.22\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003e• In order to prevent involuntary information leakage, Logback will\nno longer output the value of a substituted variable, if the variable\nname contains any of the case-insensitive strings \u0026quot;password\u0026quot;,\n\u0026quot;secret\u0026quot; or \u0026quot;confidential\u0026quot;. This problem was\nreported by Chintan Rohila in \u003ca\nhref\u003d\"https://redirect.github.com/qos-ch/logback/issues/986\"\u003eissues/986\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003e• Logback now takes the overridden \u003ccode\u003etoString()\u003c/code\u003e method of\n\u003ccode\u003eThrowable\u003c/code\u003e subclasses into account when printing stack\ntraces. This issue was reported in \u003ca\nhref\u003d\"https://jira.qos.ch/browse/LOGBACK-543\"\u003eLOGBACK-543\u003c/a\u003e by Alvin\nChee, with a fix provided in \u003ca\nhref\u003d\"https://redirect.github.com/qos-ch/logback/pull/404\"\u003ePR 404\u003c/a\u003e by\nBrett Kail.\u003c/p\u003e\n\u003cp\u003e• Instead of limit-counting guard, Logback now uses a tumbling-window\nguard to rate limit internal error messages.\u003c/p\u003e\n\u003cp\u003e• A bit-wise identical binary of this version can be reproduced by\nbuilding from source code at commit\n572379aabd2f672b49593e4020696c624541e5b0 associated with the tag\nv_1.5.22. Release built using Java \u0026quot;21\u0026quot; 2023-10-17 LTS build\n21.0.1.+12-LTS-29 under Linux Debian 11.6.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/62bc5fc245dd3a52f3dd45e232733f4cefb4806d\"\u003e\u003ccode\u003e62bc5fc\u003c/code\u003e\u003c/a\u003e\nprepare release 1.5.24\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/aac604d7e8ab4f91f240256755f3a09e53e909f3\"\u003e\u003ccode\u003eaac604d\u003c/code\u003e\u003c/a\u003e\ntypo fix of local variable name\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/8a6df9e5c4e935d158b85811d33f72d10373d914\"\u003e\u003ccode\u003e8a6df9e\u003c/code\u003e\u003c/a\u003e\nExpressionPropertyCondition constructor should be public\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/95e588c4e37b3e76ff2a5c13e60d7e0485d43fb2\"\u003e\u003ccode\u003e95e588c\u003c/code\u003e\u003c/a\u003e\nminor changes in ExpressionPropertyCondition\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/859f5a1f34cdec0f63a1830394df8238e780a9f4\"\u003e\u003ccode\u003e859f5a1\u003c/code\u003e\u003c/a\u003e\nadded ExpressionPropertyCondition capable of parsing logical expressions\non p...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/348075adfa7cdd8f7bba60225ec570efb7761d3c\"\u003e\u003ccode\u003e348075a\u003c/code\u003e\u003c/a\u003e\nstart work on 1.5.24-SNAPSHOT\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/0bcc3feb54a6d99caac70969ee5f8334aad1fbaf\"\u003e\u003ccode\u003e0bcc3fe\u003c/code\u003e\u003c/a\u003e\nprepare release 1.5.23\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/4627dbd618cbb2365a09c8013ec3fc00d349743e\"\u003e\u003ccode\u003e4627dbd\u003c/code\u003e\u003c/a\u003e\nbetter to use BufferedOutputStream during ZIP and XZ compression,\nespecially ...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/299f091d3211ad38869aadadbf7b2f66f231ad52\"\u003e\u003ccode\u003e299f091\u003c/code\u003e\u003c/a\u003e\nadd collision test in presence of conditional processing\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/b446f3f06188f4041cea827832ffb8a90fb07241\"\u003e\u003ccode\u003eb446f3f\u003c/code\u003e\u003c/a\u003e\nIn Context, remove collision map\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/qos-ch/logback/compare/v_1.5.21...v_1.5.24\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ch.qos.logback:logback-core` from 1.5.21 to 1.5.24\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/qos-ch/logback/releases\"\u003ech.qos.logback:logback-core\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eLogback 1.5.24\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003e2026-01-06 Release of logback version 1.5.24\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003e• Added ExpressionPropertyCondition a PropertyCondition that can\nevaluate boolean expressions similar to Java. See \u003ca\nhref\u003d\"https://logback.qos.ch/manual/configuration.html#conditionalExp\"\u003ethe\nrelevant documentation\u003c/a\u003e for further details.\u003c/p\u003e\n\u003cp\u003e• A bit-wise identical binary of this version can be reproduced by\nbuilding from source code at commit\n62bc5fc245dd3a52f3dd45e232733f4cefb4806d associated with the tag\nv_1.5.24. Release built using Java \u0026quot;21\u0026quot; 2023-10-17 LTS build\n21.0.1.+12-LTS-29 under Linux Debian 11.6.\u003c/p\u003e\n\u003ch2\u003eLogback 1.5.23\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003e2025-12-21 Release of logback version 1.5.23\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003e• In response to \u003ca\nhref\u003d\"https://redirect.github.com/qos-ch/logback/issues/959\"\u003eissues/959\u003c/a\u003e\nfile name collisions are detected at configuration time by analyzing the\nconfiguration file and no longer at run time. This avoids the\n\u003ccode\u003eConcurrentModificationException\u003c/code\u003e reported in the issue.\u003c/p\u003e\n\u003cp\u003e• ZIP and XZ compression now use a \u003ccode\u003eBufferedOutputStream\u003c/code\u003e\nwhen writing to the compressed file. This issue was reported in \u003ca\nhref\u003d\"https://redirect.github.com/qos-ch/logback/issues/988\"\u003eissues/988\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003e• A bit-wise identical binary of this version can be reproduced by\nbuilding from source code at commit\n0bcc3feb54a6d99caac70969ee5f8334aad1fbaf associated with the tag\nv_1.5.23. Release built using Java \u0026quot;21\u0026quot; 2023-10-17 LTS build\n21.0.1.+12-LTS-29 under Linux Debian 11.6.\u003c/p\u003e\n\u003ch2\u003eLogback 1.5.22\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003e2025-12-11 Release of logback version 1.5.22\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003e• In order to prevent involuntary information leakage, Logback will\nno longer output the value of a substituted variable, if the variable\nname contains any of the case-insensitive strings \u0026quot;password\u0026quot;,\n\u0026quot;secret\u0026quot; or \u0026quot;confidential\u0026quot;. This problem was\nreported by Chintan Rohila in \u003ca\nhref\u003d\"https://redirect.github.com/qos-ch/logback/issues/986\"\u003eissues/986\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003e• Logback now takes the overridden \u003ccode\u003etoString()\u003c/code\u003e method of\n\u003ccode\u003eThrowable\u003c/code\u003e subclasses into account when printing stack\ntraces. This issue was reported in \u003ca\nhref\u003d\"https://jira.qos.ch/browse/LOGBACK-543\"\u003eLOGBACK-543\u003c/a\u003e by Alvin\nChee, with a fix provided in \u003ca\nhref\u003d\"https://redirect.github.com/qos-ch/logback/pull/404\"\u003ePR 404\u003c/a\u003e by\nBrett Kail.\u003c/p\u003e\n\u003cp\u003e• Instead of limit-counting guard, Logback now uses a tumbling-window\nguard to rate limit internal error messages.\u003c/p\u003e\n\u003cp\u003e• A bit-wise identical binary of this version can be reproduced by\nbuilding from source code at commit\n572379aabd2f672b49593e4020696c624541e5b0 associated with the tag\nv_1.5.22. Release built using Java \u0026quot;21\u0026quot; 2023-10-17 LTS build\n21.0.1.+12-LTS-29 under Linux Debian 11.6.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/62bc5fc245dd3a52f3dd45e232733f4cefb4806d\"\u003e\u003ccode\u003e62bc5fc\u003c/code\u003e\u003c/a\u003e\nprepare release 1.5.24\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/aac604d7e8ab4f91f240256755f3a09e53e909f3\"\u003e\u003ccode\u003eaac604d\u003c/code\u003e\u003c/a\u003e\ntypo fix of local variable name\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/8a6df9e5c4e935d158b85811d33f72d10373d914\"\u003e\u003ccode\u003e8a6df9e\u003c/code\u003e\u003c/a\u003e\nExpressionPropertyCondition constructor should be public\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/95e588c4e37b3e76ff2a5c13e60d7e0485d43fb2\"\u003e\u003ccode\u003e95e588c\u003c/code\u003e\u003c/a\u003e\nminor changes in ExpressionPropertyCondition\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/859f5a1f34cdec0f63a1830394df8238e780a9f4\"\u003e\u003ccode\u003e859f5a1\u003c/code\u003e\u003c/a\u003e\nadded ExpressionPropertyCondition capable of parsing logical expressions\non p...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/348075adfa7cdd8f7bba60225ec570efb7761d3c\"\u003e\u003ccode\u003e348075a\u003c/code\u003e\u003c/a\u003e\nstart work on 1.5.24-SNAPSHOT\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/0bcc3feb54a6d99caac70969ee5f8334aad1fbaf\"\u003e\u003ccode\u003e0bcc3fe\u003c/code\u003e\u003c/a\u003e\nprepare release 1.5.23\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/4627dbd618cbb2365a09c8013ec3fc00d349743e\"\u003e\u003ccode\u003e4627dbd\u003c/code\u003e\u003c/a\u003e\nbetter to use BufferedOutputStream during ZIP and XZ compression,\nespecially ...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/299f091d3211ad38869aadadbf7b2f66f231ad52\"\u003e\u003ccode\u003e299f091\u003c/code\u003e\u003c/a\u003e\nadd collision test in presence of conditional processing\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/qos-ch/logback/commit/b446f3f06188f4041cea827832ffb8a90fb07241\"\u003e\u003ccode\u003eb446f3f\u003c/code\u003e\u003c/a\u003e\nIn Context, remove collision map\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/qos-ch/logback/compare/v_1.5.21...v_1.5.24\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "a602e6a21e6a783dd1a23403ee7614ef6031516d", "tree": "85f2b7129e7db7559eb94b9cd482c7c7a5c47a77", "parents": [ "794277963b4c42cd019230ec096f354c2cb685f1" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Sat Jan 10 10:05:07 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Sat Jan 10 10:05:07 2026 +0100" }, "message": "MINOR: Bump org.immutables:value-annotations from 2.10.1 to 2.11.7 (#917)\n\nBumps\n[org.immutables:value-annotations](https://github.com/immutables/immutables)\nfrom 2.10.1 to 2.11.7.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/immutables/immutables/releases\"\u003eorg.immutables:value-annotations\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.11.7\u003c/h2\u003e\n\u003ch1\u003eMaintenance \u0026amp; refinements release\u003c/h1\u003e\n\u003cp\u003eThank you for the bug reports and suggestions!\u003c/p\u003e\n\u003ch2\u003eIssues\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1621\"\u003e#1621\u003c/a\u003e\nVersion 2.11.7 tag not present on GitHub\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1611\"\u003e#1611\u003c/a\u003e\nJspecify Nullable doesn\u0027t work properly with generics\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1612\"\u003e#1612\u003c/a\u003e\nConflicting constructor on empty interfaces when \u003ccode\u003eallParameters \u003d\ntrue\u003c/code\u003e, and \u003ccode\u003eprivateNoArgConstructor \u003d true\u003c/code\u003e/\n\u003ccode\u003eprotectedNoArgConstructor \u003d true\u003c/code\u003e (edge case regression\nafter \u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1604\"\u003e#1604\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1579\"\u003e#1579\u003c/a\u003e\nTYPE_USE Nullable annotation not respected in the builder for arrays\n(arrays/elements annotation mirrors are missing)\n(addressed with some source code parsing, which requires\n\u003ccode\u003e-sourcepath\u003c/code\u003e to be provided during compilation)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ePRs\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003e.unset*()\u003c/code\u003e for modifiable with primitive field and\ndefault value. by \u003ca\nhref\u003d\"https://github.com/aquariusrick\"\u003e\u003ccode\u003e@​aquariusrick\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/pull/1606\"\u003eimmutables/immutables#1606\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove redundant cast of optional record property wither methods by\n\u003ca href\u003d\"https://github.com/werli\"\u003e\u003ccode\u003e@​werli\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/pull/1616\"\u003eimmutables/immutables#1616\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/aquariusrick\"\u003e\u003ccode\u003e@​aquariusrick\u003c/code\u003e\u003c/a\u003e\nmade their first contribution in \u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/pull/1606\"\u003eimmutables/immutables#1606\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/werli\"\u003e\u003ccode\u003e@​werli\u003c/code\u003e\u003c/a\u003e made\ntheir first contribution in \u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/pull/1616\"\u003eimmutables/immutables#1616\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca\nhref\u003d\"https://github.com/immutables/immutables/compare/2.11.6...2.11.7\"\u003ehttps://github.com/immutables/immutables/compare/2.11.6...2.11.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e2.11.6\u003c/h2\u003e\n\u003ch1\u003eMaintenance \u0026amp; refinements release\u003c/h1\u003e\n\u003cp\u003eThank you for the bug reports and suggestions!\u003c/p\u003e\n\u003ch2\u003eIssues\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1602\"\u003e#1602\u003c/a\u003e\nAvoid calling check/validation method twice when using plain public\nconstructors (\u003ccode\u003e@Style(of \u003d \u0026quot;new\u0026quot;\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1603\"\u003e#1603\u003c/a\u003e\nFixed compilation error with staged builders and complex generics\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1604\"\u003e#1604\u003c/a\u003e\nparameterless constructor when there\u0027s no attributes, but\n\u003ccode\u003eallParameters\u003dtrue\u003c/code\u003e or\n\u003ccode\u003eallMandatoryParameters\u003dtrue\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca\nhref\u003d\"https://github.com/immutables/immutables/compare/2.11.5...2.11.6\"\u003ehttps://github.com/immutables/immutables/compare/2.11.5...2.11.6\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e2.11.5\u003c/h2\u003e\n\u003ch1\u003eMaintenance \u0026amp; refinements release\u003c/h1\u003e\n\u003cp\u003eThank you for the bug reports and PRs!\u003c/p\u003e\n\u003ch2\u003eIssues\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1602\"\u003e#1602\u003c/a\u003e\n\u003ccode\u003e@Check\u003c/code\u003e methods (returning \u003ccode\u003evoid\u003c/code\u003e i.e.\nnon-normalizing) now works from plain public constructors\n(\u003ccode\u003e@Style(of \u003d \u0026quot;new\u0026quot;\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1583\"\u003e#1583\u003c/a\u003e\nStaged builder now works for \u0026quot;outside\u0026quot;/top-level class\nbuilders, including record builders (with \u003ccode\u003e*BuildStages\u003c/code\u003e\nclass generated to hold stage interfaces)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1598\"\u003e#1598\u003c/a\u003e\nfixed: \u003ccode\u003e@Data\u003c/code\u003e from \u003ccode\u003eorg.immutables:datatype\u003c/code\u003e can\nbe used as meta-annotation\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1433\"\u003e#1433\u003c/a\u003e\n\u003ccode\u003eadditionalStrictContainerConstructor\u003dfalse\u003c/code\u003e can be used to\nsuppress redundant strict factory method (constructor) overload\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ePRs\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1600\"\u003e#1600\u003c/a\u003e\nStop infinite recursion for annotations applying to themselves by \u003ca\nhref\u003d\"https://github.com/aldexis\"\u003e\u003ccode\u003e@​aldexis\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/pull/1601\"\u003eimmutables/immutables#1601\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/aldexis\"\u003e\u003ccode\u003e@​aldexis\u003c/code\u003e\u003c/a\u003e made\ntheir first contribution in \u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/pull/1601\"\u003eimmutables/immutables#1601\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/immutables/immutables/commit/2148f2832d885468fa6100b42563985c378282b4\"\u003e\u003ccode\u003e2148f28\u003c/code\u003e\u003c/a\u003e\nv2.11.7\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/immutables/immutables/commit/e65fa8019a41dfd98d9ec13f39dc4efc403d134b\"\u003e\u003ccode\u003ee65fa80\u003c/code\u003e\u003c/a\u003e\n\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1614\"\u003e#1614\u003c/a\u003e\ninvestigating \u0026quot;duplicate\u0026quot; nullable annotations\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/immutables/immutables/commit/d2ac4f1b9c3c5ee44a47e3b3fdec96ddfd16eef7\"\u003e\u003ccode\u003ed2ac4f1\u003c/code\u003e\u003c/a\u003e\nMerge pull request \u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1616\"\u003e#1616\u003c/a\u003e\nfrom werli/fix-build-with-optional\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/immutables/immutables/commit/1470f17d1aae21b812871892b4882bafde3235ca\"\u003e\u003ccode\u003e1470f17\u003c/code\u003e\u003c/a\u003e\nConditionally remove unnecessary cast for optional record wither\nmethods\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/immutables/immutables/commit/c56f0829889dd2ec6fba2c25b6a9c088fe4e9d02\"\u003e\u003ccode\u003ec56f082\u003c/code\u003e\u003c/a\u003e\n\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1611\"\u003e#1611\u003c/a\u003e\n\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1579\"\u003e#1579\u003c/a\u003e\nadvancing hacks and workarounds for type_use / nullable annotations\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/immutables/immutables/commit/95df0cd851b444a2a36756c2d3ac44049ad82c7f\"\u003e\u003ccode\u003e95df0cd\u003c/code\u003e\u003c/a\u003e\nCustom nullable in \u003ccode\u003enullableAnnotation\u003c/code\u003e should not use\nqualified notation\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/immutables/immutables/commit/f7a662e0404b13143f11d7083b15297217323922\"\u003e\u003ccode\u003ef7a662e\u003c/code\u003e\u003c/a\u003e\n\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1610\"\u003e#1610\u003c/a\u003e\nderived arrays, nullable array cloning\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/immutables/immutables/commit/9001c8204ee5ed89c132ae7956c752f6f227b082\"\u003e\u003ccode\u003e9001c82\u003c/code\u003e\u003c/a\u003e\n\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1612\"\u003e#1612\u003c/a\u003e\nfalse negative in test\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/immutables/immutables/commit/eecbc5be8cdaa8961b3cb63b4e7e79d1df77f9d9\"\u003e\u003ccode\u003eeecbc5b\u003c/code\u003e\u003c/a\u003e\n\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1612\"\u003e#1612\u003c/a\u003e\nfixing and refining no-arg constructors\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/immutables/immutables/commit/b659a65e5b5314f84f5904185dfb6eedd90085fe\"\u003e\u003ccode\u003eb659a65\u003c/code\u003e\u003c/a\u003e\nwhatever to build\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/immutables/immutables/compare/2.10.1...2.11.7\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dorg.immutables:value-annotations\u0026package-manager\u003dmaven\u0026previous-version\u003d2.10.1\u0026new-version\u003d2.11.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nYou can trigger a rebase of this PR by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\n\u003e **Note**\n\u003e Automatic rebases have been disabled on this pull request as it has\nbeen open for over 30 days.\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "794277963b4c42cd019230ec096f354c2cb685f1", "tree": "db1a1682592b45b71679445a60a2a4c8486633f6", "parents": [ "7d4cf21bd6502fc650dfad4a6e9fbe0ae5cf4360" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Sat Jan 10 07:25:50 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Sat Jan 10 07:25:50 2026 +0100" }, "message": "MINOR: Bump parquet.version from 1.15.2 to 1.16.0 (#913)\n\nBumps `parquet.version` from 1.15.2 to 1.16.0.\nUpdates `org.apache.parquet:parquet-avro` from 1.15.2 to 1.16.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/apache/parquet-mr/releases\"\u003eorg.apache.parquet:parquet-avro\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eApache Parquet Java 1.16.0\u003c/h2\u003e\n\u003ch2\u003eWhat\u0027s Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/2943\"\u003eGH-2943\u003c/a\u003e:\nRemove hadoop-2 support by \u003ca\nhref\u003d\"https://github.com/steveloughran\"\u003e\u003ccode\u003e@​steveloughran\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3061\"\u003eapache/parquet-java#3061\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Use \u003ccode\u003eexec-maven-plugin.version\u003c/code\u003e property by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3047\"\u003eapache/parquet-java#3047\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Add shading for JDK22 specific classes by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3081\"\u003eapache/parquet-java#3081\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Revert \u003ccode\u003ebuildnumber-maven-plugin\u003c/code\u003e to 3.2.0 by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3082\"\u003eapache/parquet-java#3082\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3086\"\u003eGH-3086\u003c/a\u003e:\nAllow for empty beans by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3087\"\u003eapache/parquet-java#3087\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3089\"\u003eGH-3089\u003c/a\u003e:\nAdd missing license header to pom.xml by \u003ca\nhref\u003d\"https://github.com/raulcd\"\u003e\u003ccode\u003e@​raulcd\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3090\"\u003eapache/parquet-java#3090\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3078\"\u003eGH-3078\u003c/a\u003e:\nUse Hadoop FileSystem.openFile() to open files by \u003ca\nhref\u003d\"https://github.com/steveloughran\"\u003e\u003ccode\u003e@​steveloughran\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3079\"\u003eapache/parquet-java#3079\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Bump version to 1.16.0-SNAPSHOT by \u003ca\nhref\u003d\"https://github.com/wgtmac\"\u003e\u003ccode\u003e@​wgtmac\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3097\"\u003eapache/parquet-java#3097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.mojo:exec-maven-plugin from 3.3.0 to 3.5.0 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3092\"\u003eapache/parquet-java#3092\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump commons-logging:commons-logging from 1.3.3 to 1.3.4 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3094\"\u003eapache/parquet-java#3094\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump net.openhft:zero-allocation-hashing from 0.26ea0 to 0.27ea0 by\n\u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3093\"\u003eapache/parquet-java#3093\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump com.google.api.grpc:proto-google-common-protos from 2.41.0 to\n2.50.0 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3109\"\u003eapache/parquet-java#3109\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump jackson.version from 2.18.1 to 2.18.2 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3108\"\u003eapache/parquet-java#3108\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Remove \u003ccode\u003escala\u003c/code\u003e properties from\n\u003ccode\u003epom.xml\u003c/code\u003e by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3104\"\u003eapache/parquet-java#3104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3114\"\u003eGH-3114\u003c/a\u003e:\nFix LogicalType conversions for nested records on Avro \u0026lt;\u003d 1.8 by \u003ca\nhref\u003d\"https://github.com/clairemcginty\"\u003e\u003ccode\u003e@​clairemcginty\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3111\"\u003eapache/parquet-java#3111\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump com.google.truth.extensions:truth-proto-extension from 1.4.3 to\n1.4.4 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3107\"\u003eapache/parquet-java#3107\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.cyclonedx:cyclonedx-maven-plugin from 2.8.0 to 2.9.1 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3120\"\u003eapache/parquet-java#3120\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.commons:commons-text from 1.12.0 to 1.13.0 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3119\"\u003eapache/parquet-java#3119\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Remove Joda as a direct dependency by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3132\"\u003eapache/parquet-java#3132\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.easymock:easymock from 5.4.0 to 5.5.0 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3131\"\u003eapache/parquet-java#3131\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3099\"\u003eGH-3099\u003c/a\u003e\nadd libthrift to parquet-cli shaded jar by \u003ca\nhref\u003d\"https://github.com/Arnaud-Nauwynck\"\u003e\u003ccode\u003e@​Arnaud-Nauwynck\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3100\"\u003eapache/parquet-java#3100\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3127\"\u003eGH-3127\u003c/a\u003e:\nEnabled \u003ccode\u003eparquet.hadoop.vectored.io.enabled\u003c/code\u003e by default by \u003ca\nhref\u003d\"https://github.com/dongjoon-hyun\"\u003e\u003ccode\u003e@​dongjoon-hyun\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3128\"\u003eapache/parquet-java#3128\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3123\"\u003eGH-3123\u003c/a\u003e:\nOmit level histogram for some max levels by \u003ca\nhref\u003d\"https://github.com/wgtmac\"\u003e\u003ccode\u003e@​wgtmac\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3124\"\u003eapache/parquet-java#3124\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3133\"\u003eGH-3133\u003c/a\u003e:\nFix SizeStatistics to handle omitted histogram by \u003ca\nhref\u003d\"https://github.com/wgtmac\"\u003e\u003ccode\u003e@​wgtmac\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3134\"\u003eapache/parquet-java#3134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3125\"\u003eGH-3125\u003c/a\u003e:\nAdd CLI for SizeStatistics by \u003ca\nhref\u003d\"https://github.com/wgtmac\"\u003e\u003ccode\u003e@​wgtmac\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3126\"\u003eapache/parquet-java#3126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGH-3115-Fix int96 read issue in complex type by \u003ca\nhref\u003d\"https://github.com/pratyush-sharma-2025\"\u003e\u003ccode\u003e@​pratyush-sharma-2025\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3118\"\u003eapache/parquet-java#3118\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Remove \u003ccode\u003eparquet-tools\u003c/code\u003e from \u003ccode\u003eNOTICE\u003c/code\u003e by\n\u003ca href\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3140\"\u003eapache/parquet-java#3140\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump com.google.guava:guava from 33.2.1-jre to 33.4.0-jre by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3137\"\u003eapache/parquet-java#3137\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump protobuf.version from 3.25.5 to 3.25.6 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3138\"\u003eapache/parquet-java#3138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Improve exception message in InternalFileDecryptor by \u003ca\nhref\u003d\"https://github.com/zhongyujiang\"\u003e\u003ccode\u003e@​zhongyujiang\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3143\"\u003eapache/parquet-java#3143\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump com.google.api.grpc:proto-google-common-protos from 2.50.0 to\n2.51.0 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3151\"\u003eapache/parquet-java#3151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Remove release script by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3144\"\u003eapache/parquet-java#3144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate Apache Pig integration by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3153\"\u003eapache/parquet-java#3153\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump com.h2database:h2 from 2.3.230 to 2.3.232 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3158\"\u003eapache/parquet-java#3158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump commons-logging:commons-logging from 1.3.4 to 1.3.5 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3159\"\u003eapache/parquet-java#3159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd logical type annotation for \u003ccode\u003eUnknownType\u003c/code\u003e by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3154\"\u003eapache/parquet-java#3154\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3156\"\u003eGH-3156\u003c/a\u003e:\nEnable vectored IO by default. by \u003ca\nhref\u003d\"https://github.com/ahmarsuhail\"\u003e\u003ccode\u003e@​ahmarsuhail\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3155\"\u003eapache/parquet-java#3155\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump it.unimi.dsi:fastutil from 8.5.13 to 8.5.15 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3162\"\u003eapache/parquet-java#3162\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3122\"\u003eGH-3122\u003c/a\u003e:\nCorrect V2 page header compression fields for zero-size data pages by \u003ca\nhref\u003d\"https://github.com/ConeyLiu\"\u003e\u003ccode\u003e@​ConeyLiu\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3148\"\u003eapache/parquet-java#3148\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3163\"\u003eGH-3163\u003c/a\u003e:\nReduce memory and time overhead of ParquetRewriterTests by \u003ca\nhref\u003d\"https://github.com/rahulketch\"\u003e\u003ccode\u003e@​rahulketch\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3164\"\u003eapache/parquet-java#3164\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Reader fails fast when footer size is larger than INT_MAX by\n\u003ca href\u003d\"https://github.com/ConeyLiu\"\u003e\u003ccode\u003e@​ConeyLiu\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3136\"\u003eapache/parquet-java#3136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3168\"\u003eGH-3168\u003c/a\u003e:\nRestrict trusted packages in the parquet-avro module by \u003ca\nhref\u003d\"https://github.com/wgtmac\"\u003e\u003ccode\u003e@​wgtmac\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3169\"\u003eapache/parquet-java#3169\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3172\"\u003eGH-3172\u003c/a\u003e:\nDo not drop blocks with some null values if\n\u003ccode\u003eDictionaryFilter\u003c/code\u003e is applied for\n\u003ccode\u003eUserDefinedPredicate\u003c/code\u003e which keeps null values by \u003ca\nhref\u003d\"https://github.com/ebartkus\"\u003e\u003ccode\u003e@​ebartkus\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3173\"\u003eapache/parquet-java#3173\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump jackson.version from 2.18.2 to 2.18.3 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3170\"\u003eapache/parquet-java#3170\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: update latest version to 1.15.1 by \u003ca\nhref\u003d\"https://github.com/wgtmac\"\u003e\u003ccode\u003e@​wgtmac\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3179\"\u003eapache/parquet-java#3179\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump com.google.api.grpc:proto-google-common-protos from 2.51.0 to\n2.54.1 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3177\"\u003eapache/parquet-java#3177\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump Parquet Format to 2.11 by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3181\"\u003eapache/parquet-java#3181\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[MINOR] Enable jitpack.io repo only when brotli is required by \u003ca\nhref\u003d\"https://github.com/pan3793\"\u003e\u003ccode\u003e@​pan3793\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3180\"\u003eapache/parquet-java#3180\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/402c3810c372d29603e181771acebfecc71bef61\"\u003e\u003ccode\u003e402c381\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release apache-parquet-1.16.0-rc2\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/0e279eff80cba89ef7a67c4e8da412e140480335\"\u003e\u003ccode\u003e0e279ef\u003c/code\u003e\u003c/a\u003e\nAdd comparator for \u003ccode\u003eUnknownLogicalType\u003c/code\u003e (\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3292\"\u003e#3292\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3295\"\u003e#3295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/f85f083ed7a54c27d202746a93b3d7b13da268df\"\u003e\u003ccode\u003ef85f083\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare for next development iteration\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/36d18808e0d5206cadbb643dc82750027fb1aaf7\"\u003e\u003ccode\u003e36d1880\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release apache-parquet-1.16.0-rc1\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/2d463ee126da61628ae746115e13cf8af58d0650\"\u003e\u003ccode\u003e2d463ee\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare for next development iteration\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/1e3d70101a39e52186ff08e9270909b3d520a832\"\u003e\u003ccode\u003e1e3d701\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release apache-parquet-1.16.0-rc0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/7ef2f914965699834f7f16cf1a75463031413806\"\u003e\u003ccode\u003e7ef2f91\u003c/code\u003e\u003c/a\u003e\nbump parquet-plugins to 1.16.0 for release\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/0d25e13ff6d6a3e0582f79b972fb622d7a0c9b60\"\u003e\u003ccode\u003e0d25e13\u003c/code\u003e\u003c/a\u003e\nMINOR: Bump parquet-format to 2.12.0 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3285\"\u003e#3285\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/299b0aea128645312badc329479920ddf8736577\"\u003e\u003ccode\u003e299b0ae\u003c/code\u003e\u003c/a\u003e\nMINOR: Bump thrift to 0.22.0 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3229\"\u003e#3229\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/36a5f9cf8c1ce2c19631a0ec376665c5e41ea215\"\u003e\u003ccode\u003e36a5f9c\u003c/code\u003e\u003c/a\u003e\nBump jackson.version from 2.19.0 to 2.19.2 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3266\"\u003e#3266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/apache/parquet-mr/compare/apache-parquet-1.15.2...apache-parquet-1.16.0\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.apache.parquet:parquet-hadoop` from 1.15.2 to 1.16.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/apache/parquet-mr/releases\"\u003eorg.apache.parquet:parquet-hadoop\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eApache Parquet Java 1.16.0\u003c/h2\u003e\n\u003ch2\u003eWhat\u0027s Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/2943\"\u003eGH-2943\u003c/a\u003e:\nRemove hadoop-2 support by \u003ca\nhref\u003d\"https://github.com/steveloughran\"\u003e\u003ccode\u003e@​steveloughran\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3061\"\u003eapache/parquet-java#3061\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Use \u003ccode\u003eexec-maven-plugin.version\u003c/code\u003e property by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3047\"\u003eapache/parquet-java#3047\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Add shading for JDK22 specific classes by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3081\"\u003eapache/parquet-java#3081\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Revert \u003ccode\u003ebuildnumber-maven-plugin\u003c/code\u003e to 3.2.0 by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3082\"\u003eapache/parquet-java#3082\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3086\"\u003eGH-3086\u003c/a\u003e:\nAllow for empty beans by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3087\"\u003eapache/parquet-java#3087\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3089\"\u003eGH-3089\u003c/a\u003e:\nAdd missing license header to pom.xml by \u003ca\nhref\u003d\"https://github.com/raulcd\"\u003e\u003ccode\u003e@​raulcd\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3090\"\u003eapache/parquet-java#3090\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3078\"\u003eGH-3078\u003c/a\u003e:\nUse Hadoop FileSystem.openFile() to open files by \u003ca\nhref\u003d\"https://github.com/steveloughran\"\u003e\u003ccode\u003e@​steveloughran\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3079\"\u003eapache/parquet-java#3079\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Bump version to 1.16.0-SNAPSHOT by \u003ca\nhref\u003d\"https://github.com/wgtmac\"\u003e\u003ccode\u003e@​wgtmac\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3097\"\u003eapache/parquet-java#3097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.mojo:exec-maven-plugin from 3.3.0 to 3.5.0 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3092\"\u003eapache/parquet-java#3092\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump commons-logging:commons-logging from 1.3.3 to 1.3.4 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3094\"\u003eapache/parquet-java#3094\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump net.openhft:zero-allocation-hashing from 0.26ea0 to 0.27ea0 by\n\u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3093\"\u003eapache/parquet-java#3093\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump com.google.api.grpc:proto-google-common-protos from 2.41.0 to\n2.50.0 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3109\"\u003eapache/parquet-java#3109\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump jackson.version from 2.18.1 to 2.18.2 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3108\"\u003eapache/parquet-java#3108\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Remove \u003ccode\u003escala\u003c/code\u003e properties from\n\u003ccode\u003epom.xml\u003c/code\u003e by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3104\"\u003eapache/parquet-java#3104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3114\"\u003eGH-3114\u003c/a\u003e:\nFix LogicalType conversions for nested records on Avro \u0026lt;\u003d 1.8 by \u003ca\nhref\u003d\"https://github.com/clairemcginty\"\u003e\u003ccode\u003e@​clairemcginty\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3111\"\u003eapache/parquet-java#3111\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump com.google.truth.extensions:truth-proto-extension from 1.4.3 to\n1.4.4 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3107\"\u003eapache/parquet-java#3107\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.cyclonedx:cyclonedx-maven-plugin from 2.8.0 to 2.9.1 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3120\"\u003eapache/parquet-java#3120\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.commons:commons-text from 1.12.0 to 1.13.0 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3119\"\u003eapache/parquet-java#3119\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Remove Joda as a direct dependency by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3132\"\u003eapache/parquet-java#3132\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.easymock:easymock from 5.4.0 to 5.5.0 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3131\"\u003eapache/parquet-java#3131\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3099\"\u003eGH-3099\u003c/a\u003e\nadd libthrift to parquet-cli shaded jar by \u003ca\nhref\u003d\"https://github.com/Arnaud-Nauwynck\"\u003e\u003ccode\u003e@​Arnaud-Nauwynck\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3100\"\u003eapache/parquet-java#3100\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3127\"\u003eGH-3127\u003c/a\u003e:\nEnabled \u003ccode\u003eparquet.hadoop.vectored.io.enabled\u003c/code\u003e by default by \u003ca\nhref\u003d\"https://github.com/dongjoon-hyun\"\u003e\u003ccode\u003e@​dongjoon-hyun\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3128\"\u003eapache/parquet-java#3128\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3123\"\u003eGH-3123\u003c/a\u003e:\nOmit level histogram for some max levels by \u003ca\nhref\u003d\"https://github.com/wgtmac\"\u003e\u003ccode\u003e@​wgtmac\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3124\"\u003eapache/parquet-java#3124\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3133\"\u003eGH-3133\u003c/a\u003e:\nFix SizeStatistics to handle omitted histogram by \u003ca\nhref\u003d\"https://github.com/wgtmac\"\u003e\u003ccode\u003e@​wgtmac\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3134\"\u003eapache/parquet-java#3134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3125\"\u003eGH-3125\u003c/a\u003e:\nAdd CLI for SizeStatistics by \u003ca\nhref\u003d\"https://github.com/wgtmac\"\u003e\u003ccode\u003e@​wgtmac\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3126\"\u003eapache/parquet-java#3126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGH-3115-Fix int96 read issue in complex type by \u003ca\nhref\u003d\"https://github.com/pratyush-sharma-2025\"\u003e\u003ccode\u003e@​pratyush-sharma-2025\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3118\"\u003eapache/parquet-java#3118\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Remove \u003ccode\u003eparquet-tools\u003c/code\u003e from \u003ccode\u003eNOTICE\u003c/code\u003e by\n\u003ca href\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3140\"\u003eapache/parquet-java#3140\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump com.google.guava:guava from 33.2.1-jre to 33.4.0-jre by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3137\"\u003eapache/parquet-java#3137\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump protobuf.version from 3.25.5 to 3.25.6 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3138\"\u003eapache/parquet-java#3138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Improve exception message in InternalFileDecryptor by \u003ca\nhref\u003d\"https://github.com/zhongyujiang\"\u003e\u003ccode\u003e@​zhongyujiang\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3143\"\u003eapache/parquet-java#3143\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump com.google.api.grpc:proto-google-common-protos from 2.50.0 to\n2.51.0 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3151\"\u003eapache/parquet-java#3151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Remove release script by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3144\"\u003eapache/parquet-java#3144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate Apache Pig integration by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3153\"\u003eapache/parquet-java#3153\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump com.h2database:h2 from 2.3.230 to 2.3.232 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3158\"\u003eapache/parquet-java#3158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump commons-logging:commons-logging from 1.3.4 to 1.3.5 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3159\"\u003eapache/parquet-java#3159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd logical type annotation for \u003ccode\u003eUnknownType\u003c/code\u003e by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3154\"\u003eapache/parquet-java#3154\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3156\"\u003eGH-3156\u003c/a\u003e:\nEnable vectored IO by default. by \u003ca\nhref\u003d\"https://github.com/ahmarsuhail\"\u003e\u003ccode\u003e@​ahmarsuhail\u003c/code\u003e\u003c/a\u003e in\n\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3155\"\u003eapache/parquet-java#3155\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump it.unimi.dsi:fastutil from 8.5.13 to 8.5.15 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3162\"\u003eapache/parquet-java#3162\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3122\"\u003eGH-3122\u003c/a\u003e:\nCorrect V2 page header compression fields for zero-size data pages by \u003ca\nhref\u003d\"https://github.com/ConeyLiu\"\u003e\u003ccode\u003e@​ConeyLiu\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3148\"\u003eapache/parquet-java#3148\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3163\"\u003eGH-3163\u003c/a\u003e:\nReduce memory and time overhead of ParquetRewriterTests by \u003ca\nhref\u003d\"https://github.com/rahulketch\"\u003e\u003ccode\u003e@​rahulketch\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3164\"\u003eapache/parquet-java#3164\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: Reader fails fast when footer size is larger than INT_MAX by\n\u003ca href\u003d\"https://github.com/ConeyLiu\"\u003e\u003ccode\u003e@​ConeyLiu\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3136\"\u003eapache/parquet-java#3136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3168\"\u003eGH-3168\u003c/a\u003e:\nRestrict trusted packages in the parquet-avro module by \u003ca\nhref\u003d\"https://github.com/wgtmac\"\u003e\u003ccode\u003e@​wgtmac\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3169\"\u003eapache/parquet-java#3169\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3172\"\u003eGH-3172\u003c/a\u003e:\nDo not drop blocks with some null values if\n\u003ccode\u003eDictionaryFilter\u003c/code\u003e is applied for\n\u003ccode\u003eUserDefinedPredicate\u003c/code\u003e which keeps null values by \u003ca\nhref\u003d\"https://github.com/ebartkus\"\u003e\u003ccode\u003e@​ebartkus\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3173\"\u003eapache/parquet-java#3173\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump jackson.version from 2.18.2 to 2.18.3 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3170\"\u003eapache/parquet-java#3170\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMINOR: update latest version to 1.15.1 by \u003ca\nhref\u003d\"https://github.com/wgtmac\"\u003e\u003ccode\u003e@​wgtmac\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3179\"\u003eapache/parquet-java#3179\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump com.google.api.grpc:proto-google-common-protos from 2.51.0 to\n2.54.1 by \u003ca\nhref\u003d\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot]\nin \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3177\"\u003eapache/parquet-java#3177\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump Parquet Format to 2.11 by \u003ca\nhref\u003d\"https://github.com/Fokko\"\u003e\u003ccode\u003e@​Fokko\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3181\"\u003eapache/parquet-java#3181\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[MINOR] Enable jitpack.io repo only when brotli is required by \u003ca\nhref\u003d\"https://github.com/pan3793\"\u003e\u003ccode\u003e@​pan3793\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-java/pull/3180\"\u003eapache/parquet-java#3180\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/402c3810c372d29603e181771acebfecc71bef61\"\u003e\u003ccode\u003e402c381\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release apache-parquet-1.16.0-rc2\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/0e279eff80cba89ef7a67c4e8da412e140480335\"\u003e\u003ccode\u003e0e279ef\u003c/code\u003e\u003c/a\u003e\nAdd comparator for \u003ccode\u003eUnknownLogicalType\u003c/code\u003e (\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3292\"\u003e#3292\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3295\"\u003e#3295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/f85f083ed7a54c27d202746a93b3d7b13da268df\"\u003e\u003ccode\u003ef85f083\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare for next development iteration\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/36d18808e0d5206cadbb643dc82750027fb1aaf7\"\u003e\u003ccode\u003e36d1880\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release apache-parquet-1.16.0-rc1\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/2d463ee126da61628ae746115e13cf8af58d0650\"\u003e\u003ccode\u003e2d463ee\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare for next development iteration\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/1e3d70101a39e52186ff08e9270909b3d520a832\"\u003e\u003ccode\u003e1e3d701\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release apache-parquet-1.16.0-rc0\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/7ef2f914965699834f7f16cf1a75463031413806\"\u003e\u003ccode\u003e7ef2f91\u003c/code\u003e\u003c/a\u003e\nbump parquet-plugins to 1.16.0 for release\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/0d25e13ff6d6a3e0582f79b972fb622d7a0c9b60\"\u003e\u003ccode\u003e0d25e13\u003c/code\u003e\u003c/a\u003e\nMINOR: Bump parquet-format to 2.12.0 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3285\"\u003e#3285\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/299b0aea128645312badc329479920ddf8736577\"\u003e\u003ccode\u003e299b0ae\u003c/code\u003e\u003c/a\u003e\nMINOR: Bump thrift to 0.22.0 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3229\"\u003e#3229\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/apache/parquet-java/commit/36a5f9cf8c1ce2c19631a0ec376665c5e41ea215\"\u003e\u003ccode\u003e36a5f9c\u003c/code\u003e\u003c/a\u003e\nBump jackson.version from 2.19.0 to 2.19.2 (\u003ca\nhref\u003d\"https://redirect.github.com/apache/parquet-mr/issues/3266\"\u003e#3266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/apache/parquet-mr/compare/apache-parquet-1.15.2...apache-parquet-1.16.0\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nYou can trigger a rebase of this PR by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\n\u003e **Note**\n\u003e Automatic rebases have been disabled on this pull request as it has\nbeen open for over 30 days.\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "7d4cf21bd6502fc650dfad4a6e9fbe0ae5cf4360", "tree": "a539631a14f60341cae480e31dd26eb46e513155", "parents": [ "bd3a6ee4efbd637e814867637b6e7b7f8f09bcc8" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Fri Jan 09 15:22:30 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Fri Jan 09 15:22:30 2026 +0100" }, "message": "MINOR: Bump io.netty:netty-bom from 4.1.119.Final to 4.2.7.Final (#887)\n\nBumps [io.netty:netty-bom](https://github.com/netty/netty) from\n4.1.119.Final to 4.2.7.Final.\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/511cbacea64c3348078948e8cb424749afeaeefc\"\u003e\u003ccode\u003e511cbac\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release netty-4.2.7.Final\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/bf1cad6920d65d1a2eac2b0d2efbb58cfcc04cf4\"\u003e\u003ccode\u003ebf1cad6\u003c/code\u003e\u003c/a\u003e\nAdjust plugin config to not publish testsuite artifacts\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/690f56f205ce6921e69bcb240939e633b31799b9\"\u003e\u003ccode\u003e690f56f\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] rollback the release of netty-4.2.7.Final\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/63b523210bd63c7010c44ef31fd89833a1710746\"\u003e\u003ccode\u003e63b5232\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare for next development iteration\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/9f99dfd9bade906ed000d757905be6f8fabce44c\"\u003e\u003ccode\u003e9f99dfd\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release netty-4.2.7.Final\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/551c32aa8caedc552a8dfb5f535b0ad694a60503\"\u003e\u003ccode\u003e551c32a\u003c/code\u003e\u003c/a\u003e\nUpgrade publishing plugin\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/a6660fe54fedc4cc420da710fea9b8bb052c3bcc\"\u003e\u003ccode\u003ea6660fe\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] rollback the release of netty-4.2.7.Final\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/297b7c1dcced0382d40e61495f6295eb01a2a272\"\u003e\u003ccode\u003e297b7c1\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare for next development iteration\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/2c89a17886bf2615d98ca6402bc58df61c28babb\"\u003e\u003ccode\u003e2c89a17\u003c/code\u003e\u003c/a\u003e\n[maven-release-plugin] prepare release netty-4.2.7.Final\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/netty/netty/commit/1782e8c2060a244c4d4e6f9d9112d5517ca05120\"\u003e\u003ccode\u003e1782e8c\u003c/code\u003e\u003c/a\u003e\nMerge commit from fork\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/netty/netty/compare/netty-4.1.119.Final...netty-4.2.7.Final\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dio.netty:netty-bom\u0026package-manager\u003dmaven\u0026previous-version\u003d4.1.119.Final\u0026new-version\u003d4.2.7.Final)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nYou can trigger a rebase of this PR by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\n\u003e **Note**\n\u003e Automatic rebases have been disabled on this pull request as it has\nbeen open for over 30 days.\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "bd3a6ee4efbd637e814867637b6e7b7f8f09bcc8", "tree": "623e4eb5719c79a6a0c5bc6df22869b4d6e4557c", "parents": [ "30eb4cf8cae6b18c9eb934956230888fa2a804e6" ], "author": { "name": "Tamas Mate", "email": "50709850+tmater@users.noreply.github.com", "time": "Fri Jan 09 13:43:33 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Fri Jan 09 13:43:33 2026 +0100" }, "message": "MINOR: Add private constructor to UuidType singleton (#945)\n\nAdd private constructor to UuidType singleton." }, { "commit": "30eb4cf8cae6b18c9eb934956230888fa2a804e6", "tree": "561db7b1ace7f304e9b3cf96f70fabd847d69baa", "parents": [ "65c558fc2b5914a95ef5edf8f23369429e157d02" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Fri Jan 09 11:40:31 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Fri Jan 09 11:40:31 2026 +0100" }, "message": "MINOR: Bump com.google.api.grpc:proto-google-common-protos from 2.56.0 to 2.63.1 (#920)\n\nBumps\n[com.google.api.grpc:proto-google-common-protos](https://github.com/googleapis/sdk-platform-java)\nfrom 2.56.0 to 2.63.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/releases\"\u003ecom.google.api.grpc:proto-google-common-protos\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.63.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/compare/v2.62.3...v2.63.0\"\u003e2.63.0\u003c/a\u003e\n(2025-10-16)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003elibrariangen:\u003c/strong\u003e add bazel package (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3940\"\u003e#3940\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/feabef32c4c45be0fb1db3615568365b902ece24\"\u003efeabef3\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003elibrariangen:\u003c/strong\u003e add execv package (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3932\"\u003e#3932\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/f6b0b47a14eddd9c76540362b5922a5acc56b5d4\"\u003ef6b0b47\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003elibrariangen:\u003c/strong\u003e add protoc package (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3935\"\u003e#3935\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/598de0697957ea3b05b1347c0898108648c3d7d1\"\u003e598de06\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003elibrariangen:\u003c/strong\u003e add request package (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3933\"\u003e#3933\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/fe44aede2aba9627db4aa0397d2ac4de353cea03\"\u003efe44aed\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003elibrariangen:\u003c/strong\u003e scaffold Java language container for\nLibrarian (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3926\"\u003e#3926\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/29d188d20e530570f46774b37d88703822774a33\"\u003e29d188d\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump errorprone-annotations to v2.42.0 (\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/8d6c1f915ba5f0c4ac9b89120e63dddd62e37a22\"\u003e8d6c1f9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump guava to v33.5.0 (\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/8d6c1f915ba5f0c4ac9b89120e63dddd62e37a22\"\u003e8d6c1f9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump j2objc-annotations to v3.1 (\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/8d6c1f915ba5f0c4ac9b89120e63dddd62e37a22\"\u003e8d6c1f9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate google auth library dependencies to v1.40.0 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3945\"\u003e#3945\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/1d7466332b5dc13fde6ed687247873135a5fa919\"\u003e1d74663\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade Google Http Java Client to v2.0.2 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3946\"\u003e#3946\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/7fb4f155eef478c1a66bc2f1fdecd7565d225b3e\"\u003e7fb4f15\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.62.3\u003c/h2\u003e\n\u003ch2\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/compare/v2.62.2...v2.62.3\"\u003e2.62.3\u003c/a\u003e\n(2025-10-02)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003emtls:\u003c/strong\u003e Fix EndpointContext\u0027s determineEndpoint logic\nto respect env var (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3912\"\u003e#3912\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/e5948d0cf27a2ee0ff03da3541524e0463356629\"\u003ee5948d0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.62.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/compare/v2.62.1...v2.62.2\"\u003e2.62.2\u003c/a\u003e\n(2025-09-18)\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate google api dependencies (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3885\"\u003e#3885\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/3694fed91e65966d074471942bd2e36075ba70d1\"\u003e3694fed\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate google auth library dependencies to v1.39.1 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3907\"\u003e#3907\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/e86a4f6535bc43b5382f22e790ccf2c76e8e9b23\"\u003ee86a4f6\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.62.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/compare/v2.62.0...v2.62.1\"\u003e2.62.1\u003c/a\u003e\n(2025-09-05)\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate auth to 1.39.0 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3898\"\u003e#3898\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/9a8443d71cdbdb7a693b6da08db72edb85490807\"\u003e9a8443d\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.62.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/compare/v2.61.0...v2.62.0\"\u003e2.62.0\u003c/a\u003e\n(2025-08-19)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/blob/main/CHANGELOG.md\"\u003ecom.google.api.grpc:proto-google-common-protos\u0027s\nchangelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/compare/v2.64.0...v2.64.1\"\u003e2.64.1\u003c/a\u003e\n(2025-11-07)\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebump opentelemetry.version to 1.52.0 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3979\"\u003e#3979\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/764778cd63da247037e65d9a8ec3db93caccc806\"\u003e764778c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/compare/v2.63.0...v2.64.0\"\u003e2.64.0\u003c/a\u003e\n(2025-10-31)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[common-protos] Add \u003ccode\u003eCarousel\u003c/code\u003e widget (\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/1e4a7e5088c88e5752cc24cbe44b14b3ce409778\"\u003e1e4a7e5\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003elibrariangen:\u003c/strong\u003e add generate package (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3952\"\u003e#3952\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/2f6c75da3021d030c7a192f1fbb4b30908ef9dad\"\u003e2f6c75d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003elibrariangen:\u003c/strong\u003e generate grpc stubs and resource\nhelpers (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3967\"\u003e#3967\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/452d703b703ab3222fd1a7060ed5e1ac6363322b\"\u003e452d703\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump grpc-java to v1.76.0 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3942\"\u003e#3942\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/ffb557ce8f3460f722b27b30af5e470edd93431b\"\u003effb557c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/compare/v2.62.3...v2.63.0\"\u003e2.63.0\u003c/a\u003e\n(2025-10-16)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003elibrariangen:\u003c/strong\u003e add bazel package (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3940\"\u003e#3940\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/feabef32c4c45be0fb1db3615568365b902ece24\"\u003efeabef3\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003elibrariangen:\u003c/strong\u003e add execv package (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3932\"\u003e#3932\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/f6b0b47a14eddd9c76540362b5922a5acc56b5d4\"\u003ef6b0b47\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003elibrariangen:\u003c/strong\u003e add protoc package (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3935\"\u003e#3935\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/598de0697957ea3b05b1347c0898108648c3d7d1\"\u003e598de06\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003elibrariangen:\u003c/strong\u003e add request package (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3933\"\u003e#3933\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/fe44aede2aba9627db4aa0397d2ac4de353cea03\"\u003efe44aed\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003elibrariangen:\u003c/strong\u003e scaffold Java language container for\nLibrarian (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3926\"\u003e#3926\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/29d188d20e530570f46774b37d88703822774a33\"\u003e29d188d\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump errorprone-annotations to v2.42.0 (\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/8d6c1f915ba5f0c4ac9b89120e63dddd62e37a22\"\u003e8d6c1f9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump guava to v33.5.0 (\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/8d6c1f915ba5f0c4ac9b89120e63dddd62e37a22\"\u003e8d6c1f9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump j2objc-annotations to v3.1 (\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/8d6c1f915ba5f0c4ac9b89120e63dddd62e37a22\"\u003e8d6c1f9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate google auth library dependencies to v1.40.0 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3945\"\u003e#3945\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/1d7466332b5dc13fde6ed687247873135a5fa919\"\u003e1d74663\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade Google Http Java Client to v2.0.2 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3946\"\u003e#3946\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/7fb4f155eef478c1a66bc2f1fdecd7565d225b3e\"\u003e7fb4f15\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/compare/v2.62.2...v2.62.3\"\u003e2.62.3\u003c/a\u003e\n(2025-10-02)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003emtls:\u003c/strong\u003e Fix EndpointContext\u0027s determineEndpoint logic\nto respect env var (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3912\"\u003e#3912\u003c/a\u003e)\n(\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/e5948d0cf27a2ee0ff03da3541524e0463356629\"\u003ee5948d0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/4aaea1ec89737ea150acb918584a234fcf426810\"\u003e\u003ccode\u003e4aaea1e\u003c/code\u003e\u003c/a\u003e\nchore(main): release 2.55.1 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3695\"\u003e#3695\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/272574489bc40b8b6379e5edb6ea5161b57bd687\"\u003e\u003ccode\u003e2725744\u003c/code\u003e\u003c/a\u003e\ndeps: revert \u0026quot;deps: update arrow.version to v18.2.0\u0026quot; (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3694\"\u003e#3694\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/3d06ab7a9ce74a37bf0bfffca3c52a3428e32ecc\"\u003e\u003ccode\u003e3d06ab7\u003c/code\u003e\u003c/a\u003e\nchore(main): release 2.55.1-SNAPSHOT (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3692\"\u003e#3692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/a38020afe0ec6159adc0e66b52f94c6c9bf27e1c\"\u003e\u003ccode\u003ea38020a\u003c/code\u003e\u003c/a\u003e\nchore(main): release 2.55.0 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3669\"\u003e#3669\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/8fd7b6273424c279ea73fd4eb738f021d8ed95e2\"\u003e\u003ccode\u003e8fd7b62\u003c/code\u003e\u003c/a\u003e\nbuild(deps): update dependency\ncom.google.cloud:google-cloud-shared-config to...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/2562a7d7a55c8a5a333a29b1250531461cca7d50\"\u003e\u003ccode\u003e2562a7d\u003c/code\u003e\u003c/a\u003e\nchore: update googleapis commit at Thu Feb 27 02:27:38 UTC 2025 (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3666\"\u003e#3666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/542d98d6255621e7bd1fabd6024ee79571c1d5a4\"\u003e\u003ccode\u003e542d98d\u003c/code\u003e\u003c/a\u003e\nchore: add aliases to generate command options. (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3689\"\u003e#3689\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/5192426dc1010b97c7bead505712cf995e9b1e31\"\u003e\u003ccode\u003e5192426\u003c/code\u003e\u003c/a\u003e\nchore: add java 8 compatibility check (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3688\"\u003e#3688\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/25d310189a7b88f20c1fa2d16ae824339a99df0d\"\u003e\u003ccode\u003e25d3101\u003c/code\u003e\u003c/a\u003e\nchore: fix logback-classic version for testing (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3686\"\u003e#3686\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/commit/0932605f527a594f483f9b583a150bf0ec70a8b8\"\u003e\u003ccode\u003e0932605\u003c/code\u003e\u003c/a\u003e\ntest: Reduce the LRO timeout value in Showcase tests (\u003ca\nhref\u003d\"https://redirect.github.com/googleapis/sdk-platform-java/issues/3684\"\u003e#3684\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/googleapis/sdk-platform-java/compare/v2.56.0...gax/v2.63.1\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dcom.google.api.grpc:proto-google-common-protos\u0026package-manager\u003dmaven\u0026previous-version\u003d2.56.0\u0026new-version\u003d2.63.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nYou can trigger a rebase of this PR by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\n\u003e **Note**\n\u003e Automatic rebases have been disabled on this pull request as it has\nbeen open for over 30 days.\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "65c558fc2b5914a95ef5edf8f23369429e157d02", "tree": "ab19a3f6e52d9b209a15a78b9ca9870134737790", "parents": [ "32ea946a99d1a0276fc61390eefd2b9b12a8fcf7" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Fri Jan 09 10:29:22 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Fri Jan 09 10:29:22 2026 +0100" }, "message": "MINOR: Bump org.immutables:value from 2.10.1 to 2.11.7 (#922)\n\nBumps [org.immutables:value](https://github.com/immutables/immutables)\nfrom 2.10.1 to 2.11.7.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/immutables/immutables/releases\"\u003eorg.immutables:value\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.11.7\u003c/h2\u003e\n\u003ch1\u003eMaintenance \u0026amp; refinements release\u003c/h1\u003e\n\u003cp\u003eThank you for the bug reports and suggestions!\u003c/p\u003e\n\u003ch2\u003eIssues\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1621\"\u003e#1621\u003c/a\u003e\nVersion 2.11.7 tag not present on GitHub\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1611\"\u003e#1611\u003c/a\u003e\nJspecify Nullable doesn\u0027t work properly with generics\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1612\"\u003e#1612\u003c/a\u003e\nConflicting constructor on empty interfaces when \u003ccode\u003eallParameters \u003d\ntrue\u003c/code\u003e, and \u003ccode\u003eprivateNoArgConstructor \u003d true\u003c/code\u003e/\n\u003ccode\u003eprotectedNoArgConstructor \u003d true\u003c/code\u003e (edge case regression\nafter \u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1604\"\u003e#1604\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1579\"\u003e#1579\u003c/a\u003e\nTYPE_USE Nullable annotation not respected in the builder for arrays\n(arrays/elements annotation mirrors are missing)\n(addressed with some source code parsing, which requires\n\u003ccode\u003e-sourcepath\u003c/code\u003e to be provided during compilation)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ePRs\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003e.unset*()\u003c/code\u003e for modifiable with primitive field and\ndefault value. by \u003ca\nhref\u003d\"https://github.com/aquariusrick\"\u003e\u003ccode\u003e@​aquariusrick\u003c/code\u003e\u003c/a\u003e\nin \u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/pull/1606\"\u003eimmutables/immutables#1606\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove redundant cast of optional record property wither methods by\n\u003ca href\u003d\"https://github.com/werli\"\u003e\u003ccode\u003e@​werli\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/pull/1616\"\u003eimmutables/immutables#1616\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/aquariusrick\"\u003e\u003ccode\u003e@​aquariusrick\u003c/code\u003e\u003c/a\u003e\nmade their first contribution in \u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/pull/1606\"\u003eimmutables/immutables#1606\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/werli\"\u003e\u003ccode\u003e@​werli\u003c/code\u003e\u003c/a\u003e made\ntheir first contribution in \u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/pull/1616\"\u003eimmutables/immutables#1616\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca\nhref\u003d\"https://github.com/immutables/immutables/compare/2.11.6...2.11.7\"\u003ehttps://github.com/immutables/immutables/compare/2.11.6...2.11.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e2.11.6\u003c/h2\u003e\n\u003ch1\u003eMaintenance \u0026amp; refinements release\u003c/h1\u003e\n\u003cp\u003eThank you for the bug reports and suggestions!\u003c/p\u003e\n\u003ch2\u003eIssues\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1602\"\u003e#1602\u003c/a\u003e\nAvoid calling check/validation method twice when using plain public\nconstructors (\u003ccode\u003e@Style(of \u003d \u0026quot;new\u0026quot;\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1603\"\u003e#1603\u003c/a\u003e\nFixed compilation error with staged builders and complex generics\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1604\"\u003e#1604\u003c/a\u003e\nparameterless constructor when there\u0027s no attributes, but\n\u003ccode\u003eallParameters\u003dtrue\u003c/code\u003e or\n\u003ccode\u003eallMandatoryParameters\u003dtrue\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca\nhref\u003d\"https://github.com/immutables/immutables/compare/2.11.5...2.11.6\"\u003ehttps://github.com/immutables/immutables/compare/2.11.5...2.11.6\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e2.11.5\u003c/h2\u003e\n\u003ch1\u003eMaintenance \u0026amp; refinements release\u003c/h1\u003e\n\u003cp\u003eThank you for the bug reports and PRs!\u003c/p\u003e\n\u003ch2\u003eIssues\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1602\"\u003e#1602\u003c/a\u003e\n\u003ccode\u003e@Check\u003c/code\u003e methods (returning \u003ccode\u003evoid\u003c/code\u003e i.e.\nnon-normalizing) now works from plain public constructors\n(\u003ccode\u003e@Style(of \u003d \u0026quot;new\u0026quot;\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1583\"\u003e#1583\u003c/a\u003e\nStaged builder now works for \u0026quot;outside\u0026quot;/top-level class\nbuilders, including record builders (with \u003ccode\u003e*BuildStages\u003c/code\u003e\nclass generated to hold stage interfaces)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1598\"\u003e#1598\u003c/a\u003e\nfixed: \u003ccode\u003e@Data\u003c/code\u003e from \u003ccode\u003eorg.immutables:datatype\u003c/code\u003e can\nbe used as meta-annotation\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1433\"\u003e#1433\u003c/a\u003e\n\u003ccode\u003eadditionalStrictContainerConstructor\u003dfalse\u003c/code\u003e can be used to\nsuppress redundant strict factory method (constructor) overload\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ePRs\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1600\"\u003e#1600\u003c/a\u003e\nStop infinite recursion for annotations applying to themselves by \u003ca\nhref\u003d\"https://github.com/aldexis\"\u003e\u003ccode\u003e@​aldexis\u003c/code\u003e\u003c/a\u003e in \u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/pull/1601\"\u003eimmutables/immutables#1601\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/aldexis\"\u003e\u003ccode\u003e@​aldexis\u003c/code\u003e\u003c/a\u003e made\ntheir first contribution in \u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/pull/1601\"\u003eimmutables/immutables#1601\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/immutables/immutables/commit/2148f2832d885468fa6100b42563985c378282b4\"\u003e\u003ccode\u003e2148f28\u003c/code\u003e\u003c/a\u003e\nv2.11.7\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/immutables/immutables/commit/e65fa8019a41dfd98d9ec13f39dc4efc403d134b\"\u003e\u003ccode\u003ee65fa80\u003c/code\u003e\u003c/a\u003e\n\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1614\"\u003e#1614\u003c/a\u003e\ninvestigating \u0026quot;duplicate\u0026quot; nullable annotations\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/immutables/immutables/commit/d2ac4f1b9c3c5ee44a47e3b3fdec96ddfd16eef7\"\u003e\u003ccode\u003ed2ac4f1\u003c/code\u003e\u003c/a\u003e\nMerge pull request \u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1616\"\u003e#1616\u003c/a\u003e\nfrom werli/fix-build-with-optional\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/immutables/immutables/commit/1470f17d1aae21b812871892b4882bafde3235ca\"\u003e\u003ccode\u003e1470f17\u003c/code\u003e\u003c/a\u003e\nConditionally remove unnecessary cast for optional record wither\nmethods\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/immutables/immutables/commit/c56f0829889dd2ec6fba2c25b6a9c088fe4e9d02\"\u003e\u003ccode\u003ec56f082\u003c/code\u003e\u003c/a\u003e\n\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1611\"\u003e#1611\u003c/a\u003e\n\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1579\"\u003e#1579\u003c/a\u003e\nadvancing hacks and workarounds for type_use / nullable annotations\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/immutables/immutables/commit/95df0cd851b444a2a36756c2d3ac44049ad82c7f\"\u003e\u003ccode\u003e95df0cd\u003c/code\u003e\u003c/a\u003e\nCustom nullable in \u003ccode\u003enullableAnnotation\u003c/code\u003e should not use\nqualified notation\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/immutables/immutables/commit/f7a662e0404b13143f11d7083b15297217323922\"\u003e\u003ccode\u003ef7a662e\u003c/code\u003e\u003c/a\u003e\n\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1610\"\u003e#1610\u003c/a\u003e\nderived arrays, nullable array cloning\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/immutables/immutables/commit/9001c8204ee5ed89c132ae7956c752f6f227b082\"\u003e\u003ccode\u003e9001c82\u003c/code\u003e\u003c/a\u003e\n\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1612\"\u003e#1612\u003c/a\u003e\nfalse negative in test\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/immutables/immutables/commit/eecbc5be8cdaa8961b3cb63b4e7e79d1df77f9d9\"\u003e\u003ccode\u003eeecbc5b\u003c/code\u003e\u003c/a\u003e\n\u003ca\nhref\u003d\"https://redirect.github.com/immutables/immutables/issues/1612\"\u003e#1612\u003c/a\u003e\nfixing and refining no-arg constructors\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/immutables/immutables/commit/b659a65e5b5314f84f5904185dfb6eedd90085fe\"\u003e\u003ccode\u003eb659a65\u003c/code\u003e\u003c/a\u003e\nwhatever to build\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/immutables/immutables/compare/2.10.1...2.11.7\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dorg.immutables:value\u0026package-manager\u003dmaven\u0026previous-version\u003d2.10.1\u0026new-version\u003d2.11.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nYou can trigger a rebase of this PR by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\n\u003e **Note**\n\u003e Automatic rebases have been disabled on this pull request as it has\nbeen open for over 30 days.\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "32ea946a99d1a0276fc61390eefd2b9b12a8fcf7", "tree": "e6088f999c04ab18036bdfa2316c3fecdc89492c", "parents": [ "007744191764d93628bdbf29084cc77c3c6aac5a" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Thu Jan 08 17:25:06 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Thu Jan 08 17:25:06 2026 +0100" }, "message": "MINOR: Bump org.jacoco:jacoco-maven-plugin from 0.8.13 to 0.8.14 (#924)\n\nBumps [org.jacoco:jacoco-maven-plugin](https://github.com/jacoco/jacoco)\nfrom 0.8.13 to 0.8.14.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/jacoco/jacoco/releases\"\u003eorg.jacoco:jacoco-maven-plugin\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.8.14\u003c/h2\u003e\n\u003ch2\u003eNew Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eJaCoCo now officially supports Java 25 (GitHub \u003ca\nhref\u003d\"https://redirect.github.com/jacoco/jacoco/issues/1950\"\u003e#1950\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eExperimental support for Java 26 class files (GitHub \u003ca\nhref\u003d\"https://redirect.github.com/jacoco/jacoco/issues/1807\"\u003e#1870\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eBranches added by the Kotlin compiler for default argument number 33\nor higher are filtered out during generation of report (GitHub \u003ca\nhref\u003d\"https://redirect.github.com/jacoco/jacoco/issues/1655\"\u003e#1655\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003ePart of bytecode generated by the Kotlin compiler for elvis operator\nthat follows safe call operator is filtered out during generation of\nreport (GitHub \u003ca\nhref\u003d\"https://redirect.github.com/jacoco/jacoco/issues/1814\"\u003e#1814\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/jacoco/jacoco/issues/1954\"\u003e#1954\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003ePart of bytecode generated by the Kotlin compiler for more cases of\nchained safe call operators is filtered out during generation of report\n(GitHub \u003ca\nhref\u003d\"https://redirect.github.com/jacoco/jacoco/issues/1956\"\u003e#1956\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003ePart of bytecode generated by the Kotlin compiler for invocations of\nsuspendCoroutineUninterceptedOrReturn intrinsic is filtered out during\ngeneration of report (GitHub \u003ca\nhref\u003d\"https://redirect.github.com/jacoco/jacoco/issues/1929\"\u003e#1929\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003ePart of bytecode generated by the Kotlin compiler for suspending\nlambdas with parameters is filtered out during generation of report\n(GitHub \u003ca\nhref\u003d\"https://redirect.github.com/jacoco/jacoco/issues/1945\"\u003e#1945\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003ePart of bytecode generated by the Kotlin compiler for suspending\nfunctions and lambdas with suspension points that return inline value\nclass is filtered out during generation of report (GitHub \u003ca\nhref\u003d\"https://redirect.github.com/jacoco/jacoco/issues/1871\"\u003e#1871\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003ePart of bytecode generated by the Kotlin Compose compiler plugin for\npausable composition is filtered out during generation of report (GitHub\n\u003ca\nhref\u003d\"https://redirect.github.com/jacoco/jacoco/issues/1911\"\u003e#1911\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eMethods generated by the Kotlin serialization compiler plugin are\nfiltered out (GitHub \u003ca\nhref\u003d\"https://redirect.github.com/jacoco/jacoco/issues/1885\"\u003e#1885\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/jacoco/jacoco/issues/1970\"\u003e#1970\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/jacoco/jacoco/issues/1971\"\u003e#1971\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eFixed bugs\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed handling of implicit else clause of when with String subject\nin Kotlin (GitHub \u003ca\nhref\u003d\"https://redirect.github.com/jacoco/jacoco/issues/1813\"\u003e#1813\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/jacoco/jacoco/issues/1940\"\u003e#1940\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed handling of implicit default clause of switch by String in\nJava when compiled by ECJ (GitHub \u003ca\nhref\u003d\"https://redirect.github.com/jacoco/jacoco/issues/1813\"\u003e#1813\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/jacoco/jacoco/issues/1940\"\u003e#1940\u003c/a\u003e).\nFixed handling of exceptions in chains of safe call operators in Kotlin\n(GitHub \u003ca\nhref\u003d\"https://redirect.github.com/jacoco/jacoco/issues/1819\"\u003e#1819\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNon-functional Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eJaCoCo now depends on ASM 9.9 (GitHub \u003ca\nhref\u003d\"https://redirect.github.com/jacoco/jacoco/issues/1965\"\u003e#1965\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/jacoco/jacoco/commit/2eb248366f0eb63fd964fc7a81804b27229a6edd\"\u003e\u003ccode\u003e2eb2483\u003c/code\u003e\u003c/a\u003e\nPrepare release v0.8.14\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/jacoco/jacoco/commit/de76181b207b18c5b727051f8d62c115dc2c976c\"\u003e\u003ccode\u003ede76181\u003c/code\u003e\u003c/a\u003e\nKotlinSerializableFilter should filter more methods (\u003ca\nhref\u003d\"https://redirect.github.com/jacoco/jacoco/issues/1971\"\u003e#1971\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/jacoco/jacoco/commit/89c4bd5ff39deae410f2a899289fe96739a63c13\"\u003e\u003ccode\u003e89c4bd5\u003c/code\u003e\u003c/a\u003e\nFix NPE in KotlinSerializableFilter (\u003ca\nhref\u003d\"https://redirect.github.com/jacoco/jacoco/issues/1970\"\u003e#1970\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/jacoco/jacoco/commit/098112865bb957084cc9abc1a9ca3f5bbff7219b\"\u003e\u003ccode\u003e0981128\u003c/code\u003e\u003c/a\u003e\nMigrate release staging to the Central Publisher Portal (\u003ca\nhref\u003d\"https://redirect.github.com/jacoco/jacoco/issues/1968\"\u003e#1968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/jacoco/jacoco/commit/d07bc6b7e47959503f878563cc4d18060223f2de\"\u003e\u003ccode\u003ed07bc6b\u003c/code\u003e\u003c/a\u003e\nAdd filter for bytecode generated by Kotlin serialization compiler\nplugin (\u003ca\nhref\u003d\"https://redirect.github.com/jacoco/jacoco/issues/1\"\u003e#1\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/jacoco/jacoco/commit/5e35fd5e1968c9477948f24991368b872e8014b9\"\u003e\u003ccode\u003e5e35fd5\u003c/code\u003e\u003c/a\u003e\nUpgrade maven-dependency-plugin to 3.9.0 (\u003ca\nhref\u003d\"https://redirect.github.com/jacoco/jacoco/issues/1966\"\u003e#1966\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/jacoco/jacoco/commit/c2fe5cc54472f188c0d0f1158a0f987295217138\"\u003e\u003ccode\u003ec2fe5cc\u003c/code\u003e\u003c/a\u003e\nUpgrade ASM to 9.9 (\u003ca\nhref\u003d\"https://redirect.github.com/jacoco/jacoco/issues/1965\"\u003e#1965\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/jacoco/jacoco/commit/b0f8e23d91d59431124b2863b8e35bdd1b71f7b9\"\u003e\u003ccode\u003eb0f8e23\u003c/code\u003e\u003c/a\u003e\nKotlinSafeCallOperatorFilter should filter \u0026quot;unoptimized\u0026quot; safe\ncall followed b...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/jacoco/jacoco/commit/c7bd3f4e96540d1a8f58690d5d52a94eebf4c471\"\u003e\u003ccode\u003ec7bd3f4\u003c/code\u003e\u003c/a\u003e\nUpgrade spotless-maven-plugin to 3.0.0 (\u003ca\nhref\u003d\"https://redirect.github.com/jacoco/jacoco/issues/1961\"\u003e#1961\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/jacoco/jacoco/commit/faa289d2a370fa4f724bed3a09e8591be08cd6c2\"\u003e\u003ccode\u003efaa289d\u003c/code\u003e\u003c/a\u003e\nKotlinSafeCallOperatorFilter should not be affected by presence of\npseudo ins...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/jacoco/jacoco/compare/v0.8.13...v0.8.14\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dorg.jacoco:jacoco-maven-plugin\u0026package-manager\u003dmaven\u0026previous-version\u003d0.8.13\u0026new-version\u003d0.8.14)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nYou can trigger a rebase of this PR by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\n\u003e **Note**\n\u003e Automatic rebases have been disabled on this pull request as it has\nbeen open for over 30 days.\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "007744191764d93628bdbf29084cc77c3c6aac5a", "tree": "522d4c3bf7369d37694c9fdcde41eb8ebd72f3c4", "parents": [ "94dfea8cb20a8e92efe5a188cc7fe5fd28702231" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Thu Jan 08 15:46:59 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Thu Jan 08 15:46:59 2026 +0100" }, "message": "MINOR: Bump checker.framework.version from 3.52.0 to 3.52.1 (#927)\n\nBumps `checker.framework.version` from 3.52.0 to 3.52.1.\nUpdates `org.checkerframework:checker-qual` from 3.52.0 to 3.52.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/releases\"\u003eorg.checkerframework:checker-qual\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eChecker Framework 3.52.1\u003c/h2\u003e\n\u003ch2\u003eVersion 3.52.1 (2025-12-02)\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eUser-visible changes:\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eAdded \u003ccode\u003eOpt.ifPresentOrElse()\u003c/code\u003e method.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eClosed issues:\u003c/strong\u003e\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7243\"\u003e#7243\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7398\"\u003e#7398\u003c/a\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/blob/master/docs/CHANGELOG.md\"\u003eorg.checkerframework:checker-qual\u0027s\nchangelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eVersion 3.52.1 (2025-12-02)\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eUser-visible changes:\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eAdded \u003ccode\u003eOpt.ifPresentOrElse()\u003c/code\u003e method.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eClosed issues:\u003c/strong\u003e\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7243\"\u003e#7243\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7398\"\u003e#7398\u003c/a\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/72c0de5faf42a399d1159f8ff228f7e9539635ad\"\u003e\u003ccode\u003e72c0de5\u003c/code\u003e\u003c/a\u003e\nnew release 3.52.1\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/0549f00cbea514f03945acfa755225d8e9099fbf\"\u003e\u003ccode\u003e0549f00\u003c/code\u003e\u003c/a\u003e\nRemove link.\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/85842ab0d9c352e5a1f3982ba2248c316611b6a7\"\u003e\u003ccode\u003e85842ab\u003c/code\u003e\u003c/a\u003e\nPrep for release.\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/294c7ca6e42b6bb244589c119d66b8f6e7e5935a\"\u003e\u003ccode\u003e294c7ca\u003c/code\u003e\u003c/a\u003e\nFix the dataflow shaded jars that are published. (\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7404\"\u003e#7404\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/cd7c953271f5b83c718162357f7778773cd21375\"\u003e\u003ccode\u003ecd7c953\u003c/code\u003e\u003c/a\u003e\nUpdate cimg/base Docker tag to v2025.12 (\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7403\"\u003e#7403\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/026bd52c3febc3475268a771b32fe5e5983a7394\"\u003e\u003ccode\u003e026bd52\u003c/code\u003e\u003c/a\u003e\nLink from the developer manual to \u0026quot;building from source\u0026quot; in\nthe manual (\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7385\"\u003e#7385\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/e086cba851b63ccc4711392a04310af74a440c39\"\u003e\u003ccode\u003ee086cba\u003c/code\u003e\u003c/a\u003e\nMore signature annotations\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/31ca5d396c3c1eeaecbaa5f9f41c99585dfbc998\"\u003e\u003ccode\u003e31ca5d3\u003c/code\u003e\u003c/a\u003e\nCorrect shaded dataflow jars. (\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7402\"\u003e#7402\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/08cc5d14b72eee1a66402c7f0422463c91f29179\"\u003e\u003ccode\u003e08cc5d1\u003c/code\u003e\u003c/a\u003e\nUpdate dependency com.amazonaws:aws-java-sdk-bom to v1.12.794 (\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7401\"\u003e#7401\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/4a22556f57af94afc661727be71960da24cb5725\"\u003e\u003ccode\u003e4a22556\u003c/code\u003e\u003c/a\u003e\nNullness annotations for \u003ccode\u003ejava.lang.classfile\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/compare/checker-framework-3.52.0...checker-framework-3.52.1\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.checkerframework:checker` from 3.52.0 to 3.52.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/releases\"\u003eorg.checkerframework:checker\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eChecker Framework 3.52.1\u003c/h2\u003e\n\u003ch2\u003eVersion 3.52.1 (2025-12-02)\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eUser-visible changes:\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eAdded \u003ccode\u003eOpt.ifPresentOrElse()\u003c/code\u003e method.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eClosed issues:\u003c/strong\u003e\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7243\"\u003e#7243\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7398\"\u003e#7398\u003c/a\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/blob/master/docs/CHANGELOG.md\"\u003eorg.checkerframework:checker\u0027s\nchangelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eVersion 3.52.1 (2025-12-02)\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eUser-visible changes:\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eAdded \u003ccode\u003eOpt.ifPresentOrElse()\u003c/code\u003e method.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eClosed issues:\u003c/strong\u003e\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7243\"\u003e#7243\u003c/a\u003e,\n\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7398\"\u003e#7398\u003c/a\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/72c0de5faf42a399d1159f8ff228f7e9539635ad\"\u003e\u003ccode\u003e72c0de5\u003c/code\u003e\u003c/a\u003e\nnew release 3.52.1\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/0549f00cbea514f03945acfa755225d8e9099fbf\"\u003e\u003ccode\u003e0549f00\u003c/code\u003e\u003c/a\u003e\nRemove link.\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/85842ab0d9c352e5a1f3982ba2248c316611b6a7\"\u003e\u003ccode\u003e85842ab\u003c/code\u003e\u003c/a\u003e\nPrep for release.\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/294c7ca6e42b6bb244589c119d66b8f6e7e5935a\"\u003e\u003ccode\u003e294c7ca\u003c/code\u003e\u003c/a\u003e\nFix the dataflow shaded jars that are published. (\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7404\"\u003e#7404\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/cd7c953271f5b83c718162357f7778773cd21375\"\u003e\u003ccode\u003ecd7c953\u003c/code\u003e\u003c/a\u003e\nUpdate cimg/base Docker tag to v2025.12 (\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7403\"\u003e#7403\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/026bd52c3febc3475268a771b32fe5e5983a7394\"\u003e\u003ccode\u003e026bd52\u003c/code\u003e\u003c/a\u003e\nLink from the developer manual to \u0026quot;building from source\u0026quot; in\nthe manual (\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7385\"\u003e#7385\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/e086cba851b63ccc4711392a04310af74a440c39\"\u003e\u003ccode\u003ee086cba\u003c/code\u003e\u003c/a\u003e\nMore signature annotations\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/31ca5d396c3c1eeaecbaa5f9f41c99585dfbc998\"\u003e\u003ccode\u003e31ca5d3\u003c/code\u003e\u003c/a\u003e\nCorrect shaded dataflow jars. (\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7402\"\u003e#7402\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/08cc5d14b72eee1a66402c7f0422463c91f29179\"\u003e\u003ccode\u003e08cc5d1\u003c/code\u003e\u003c/a\u003e\nUpdate dependency com.amazonaws:aws-java-sdk-bom to v1.12.794 (\u003ca\nhref\u003d\"https://redirect.github.com/typetools/checker-framework/issues/7401\"\u003e#7401\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/commit/4a22556f57af94afc661727be71960da24cb5725\"\u003e\u003ccode\u003e4a22556\u003c/code\u003e\u003c/a\u003e\nNullness annotations for \u003ccode\u003ejava.lang.classfile\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca\nhref\u003d\"https://github.com/typetools/checker-framework/compare/checker-framework-3.52.0...checker-framework-3.52.1\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" } ], "next": "94dfea8cb20a8e92efe5a188cc7fe5fd28702231" }