chore: bump the maven-low-risk group across 1 directory with 10 updates #554

dependabot · 2025-12-01T01:08:54Z

Bumps the maven-low-risk group with 10 updates in the / directory:

Package	From	To
commons-io:commons-io	`2.20.0`	`2.21.0`
io.github.bonigarcia:webdrivermanager	`6.3.2`	`6.3.3`
org.apache.commons:commons-lang3	`3.19.0`	`3.20.0`
com.fasterxml.jackson.core:jackson-databind	`2.20.0`	`2.20.1`
org.junit.vintage:junit-vintage-engine	`6.0.0`	`6.0.1`
com.github.eirslett:frontend-maven-plugin	`1.15.1`	`1.15.4`
org.apache.maven.plugins:maven-source-plugin	`3.3.1`	`3.4.0`
com.microsoft.playwright:playwright	`1.55.0`	`1.56.0`
commons-codec:commons-codec	`1.19.0`	`1.20.0`
org.jacoco:jacoco-maven-plugin	`0.8.13`	`0.8.14`

Updates commons-io:commons-io from 2.20.0 to 2.21.0

Changelog

Sourced from commons-io:commons-io's changelog.

Apache Commons IO 2.21.0 Release Notes

The Apache Commons IO team is pleased to announce the release of Apache Commons IO 2.21.0.

Introduction

The Apache Commons IO library contains utility classes, stream implementations, file filters, file comparators, endian transformation classes, and much more.

Version 2.21.0: Java 8 or later is required.

New features

o FileUtils#byteCountToDisplaySize() supports Zettabyte, Yottabyte, Ronnabyte and Quettabyte #763. Thanks to strangelookingnerd, Gary Gregory. o Add org.apache.commons.io.FileUtils.ONE_RB #763. Thanks to strangelookingnerd, Gary Gregory. o Add org.apache.commons.io.FileUtils.ONE_QB #763. Thanks to strangelookingnerd, Gary Gregory. o Add org.apache.commons.io.output.ProxyOutputStream.writeRepeat(byte[], int, int, long). Thanks to Gary Gregory. o Add org.apache.commons.io.output.ProxyOutputStream.writeRepeat(byte[], long). Thanks to Gary Gregory. o Add org.apache.commons.io.output.ProxyOutputStream.writeRepeat(int, long). Thanks to Gary Gregory. o Add length unit support in FileSystem limits. Thanks to Piotr P. Karwasz. o Add IOUtils.toByteArray(InputStream, int, int) for safer chunked reading with size validation. Thanks to Piotr P. Karwasz. o Add org.apache.commons.io.file.PathUtils.getPath(String, String). Thanks to Gary Gregory. o Add org.apache.commons.io.channels.ByteArraySeekableByteChannel. Thanks to Gary Gregory. o Add IOIterable.asIterable(). Thanks to Gary Gregory. o Add NIO channel support to AbstractStreamBuilder. Thanks to Piotr P. Karwasz. o Add CloseShieldChannel to close-shielded NIO Channels #786. Thanks to Piotr P. Karwasz. o Added IOUtils.checkFromIndexSize as a Java 8 backport of Objects.checkFromIndexSize #790. Thanks to Piotr P. Karwasz.

Fixed Bugs

o When testing on Java 21 and up, enable -XX:+EnableDynamicAgentLoading. Thanks to Gary Gregory. o When testing on Java 24 and up, don't fail FileUtilsListFilesTest for a different behavior in the JRE. Thanks to Gary Gregory. o ValidatingObjectInputStream does not validate dynamic proxy interfaces. Thanks to Stanislav Fort, Gary Gregory. o BoundedInputStream.getRemaining() now reports Long.MAX_VALUE instead of 0 when no limit is set. Thanks to Piotr P. Karwasz. o BoundedInputStream.available() correctly accounts for the maximum read limit. Thanks to Piotr P. Karwasz. o Deprecate IOUtils.readFully(InputStream, int) in favor of toByteArray(InputStream, int). Thanks to Gary Gregory, Piotr P. Karwasz. o IOUtils.toByteArray(InputStream) now throws IOException on byte array overflow. Thanks to Piotr P. Karwasz. o Javadoc general improvements. Thanks to Gary Gregory, Piotr P. Karwasz. o IOUtils.toByteArray() now throws EOFException when not enough data is available #796. Thanks to Piotr P. Karwasz. o Fix IOUtils.skip() usage in concurrent scenarios. Thanks to Piotr P. Karwasz. o [javadoc] Fix XmlStreamReader Javadoc to indicate the correct class that is built #806. Thanks to J Hawkins.

Changes

o Bump org.apache.commons:commons-parent from 85 to 91 #774, #783, #808. Thanks to Gary Gregory, Dependabot.

... (truncated)

Commits

54073d3 Prepare for the release candidate 2.21.0 RC1
f141f09 Prepare for the next release candidate
adcf135 Add license header
0f499d0 Use new oak logo
34a961c Use HTTPS in URL
9e51118 Use HTTPS in URL
d715865 Add dependabot email [skip ci]
3d6a7e1 Javadoc
ad875d5 Bump actions/upload-artifact from 4.6.2 to 5.0.0 (#810)
bc01dee Bump github/codeql-action from 4.30.9 to 4.31.2 (#811)
Additional commits viewable in compare view

Updates io.github.bonigarcia:webdrivermanager from 6.3.2 to 6.3.3

Changelog

Sourced from io.github.bonigarcia:webdrivermanager's changelog.

[6.3.3] - 2025-11-08

Changed

Use https://msedgedriver.microsoft.com/ for downloading msedgedriver (#1535)

Change Docker base image to eclipse-temurin:17-jre-jammy

Commits

22acbb1 [maven-release-plugin] prepare release webdrivermanager-6.3.3
f1bfd47 Update CHANGELOG for version 6.3.3
8ac53c7 Disable proxy test using mockserver (broken in JUnit 6)
6284c1a Temporary disabling record test (broken in Chrome 142)
988a650 Fix Edge manager test
1c13ad0 Use https://msedgedriver.microsoft.com/ for downloading msedgedriver (#1535)
fac6a61 Bump Java version for tests to 17
860a541 Bump org.junit.jupiter:junit-jupiter from 6.0.0 to 6.0.1 (#1534)
d12cc02 Update mirror info (Fri Oct 31 00:08:10 UTC 2025)
f7173aa Bump org.asciidoctor:asciidoctorj-pdf from 2.3.21 to 2.3.23 (#1533)
Additional commits viewable in compare view

Updates org.apache.commons:commons-lang3 from 3.19.0 to 3.20.0

Updates com.fasterxml.jackson.core:jackson-databind from 2.20.0 to 2.20.1

Commits

See full diff in compare view

Updates org.junit.vintage:junit-vintage-engine from 6.0.0 to 6.0.1

Release notes

Sourced from org.junit.vintage:junit-vintage-engine's releases.

JUnit 6.0.1 = Platform 6.0.1 + Jupiter 6.0.1 + Vintage 6.0.1

See Release Notes.

Full Changelog: junit-team/junit-framework@r6.0.0...r6.0.1

Commits

d774b9c Release 6.0.1 (second attempt)
8178545 Mark module as deprecated for removal
7b43fcc Back to snapshots for further development
a5ef746 Release 6.0.1
008be8d Finalize 5.14.1 release notes
b2c55a8 Finalize 6.0.1 release notes
866c01a Add note about duplicate test execution with @Suite (#5080)
de88e88 Fix broken links in documentation
9dd132d Add Valhalla EA to workflow matrix
fedda88 Make jdk.jfr import optional in OSGi manifest (#5092)
Additional commits viewable in compare view

Updates com.github.eirslett:frontend-maven-plugin from 1.15.1 to 1.15.4

Changelog

Sourced from com.github.eirslett:frontend-maven-plugin's changelog.

1.15.4

Fix https (TLS 1.3) issue

Commits

1f5dc4a [maven-release-plugin] prepare release frontend-plugins-1.15.4
580644a Fix missing <name> data
63a9644 [maven-release-plugin] rollback the release of frontend-plugins-1.15.3
bccce60 [maven-release-plugin] prepare for next development iteration
cc79127 [maven-release-plugin] prepare release frontend-plugins-1.15.3
664ed95 New attempt: try to fix publishing
825aba9 Try to fix publishing
8871dd4 [maven-release-plugin] prepare for next development iteration
e65b185 [maven-release-plugin] prepare release frontend-plugins-1.15.2
ad6b309 readme: replace unresolving badge with pointer to github actions
Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-source-plugin from 3.3.1 to 3.4.0

Release notes

Sourced from org.apache.maven.plugins:maven-source-plugin's releases.

3.4.0

🐛 Bug Fixes

[MSOURCES-140] - fail only if re-attach different files (#24) @hboutemy

👻 Maintenance

Bump m-invoker-p to 3.9.1 (#251) @slachiewicz

Allow to manually execute release drafter (#58) @slawekjaranowski

GH Issues (Maven 3 branch) (#57) @Bukama

[MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#49) @Bukama

📦 Dependency updates

Use plexus-utils version from parent (#252) @slachiewicz

Bump commons-io:commons-io from 2.20.0 to 2.21.0 (#247) @dependabot[bot]

Bump org.codehaus.plexus:plexus-archiver from 4.10.3 to 4.10.4 (#248) @dependabot[bot]

Bump org.apache.maven:maven-archiver from 3.6.4 to 3.6.5 (#241) @dependabot[bot]

Bump org.codehaus.plexus:plexus-archiver from 4.10.1 to 4.10.3 (#242) @dependabot[bot]

Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.3.0 to 3.4.0 (#246) @dependabot[bot]

Bump mavenVersion from 3.2.5 to 3.9.11 (#221) @dependabot[bot]

Bump org.codehaus.plexus:plexus-archiver from 4.10.0 to 4.10.1 (#233) @dependabot[bot]

Bump org.apache.maven:maven-archiver from 3.6.3 to 3.6.4 (#229) @dependabot[bot]

Bump org.apache.maven.plugins:maven-plugins from 41 to 45 (#218) @dependabot[bot]

Bump org.codehaus.plexus:plexus-utils from 3.5.1 to 3.6.0 (#226) @dependabot[bot]

Bump commons-io:commons-io from 2.19.0 to 2.20.0 (#222) @dependabot[bot]

Bump commons-io:commons-io from 2.16.1 to 2.19.0 (#68) @dependabot[bot]

Bump org.codehaus.plexus:plexus-archiver from 4.9.2 to 4.10.0 (#63) @dependabot[bot]

Bump org.apache.maven:maven-archiver from 3.6.2 to 3.6.3 (#66) @dependabot[bot]

Bump commons-io:commons-io from 2.16.0 to 2.16.1 (#27) @dependabot[bot]

[MSOURCES-147] - Bump org.codehaus.plexus:plexus-archiver from 4.9.1 to 4.9.2 (#23) @dependabot[bot]

[MSOURCES-146] - Bump commons-io:commons-io from 2.11.0 to 2.16.0 (#25) @dependabot[bot]

[MSOURCES-145] - Bump org.apache.maven:maven-archiver from 3.6.1 to 3.6.2 (#26) @dependabot[bot]

Commits

ecf937a [maven-release-plugin] prepare release maven-source-plugin-3.4.0
95b3bf4 Revert "[maven-release-plugin] prepare for next development iteration"
7a9a770 [maven-release-plugin] prepare for next development iteration
292c1ce Use plexus-utils version from parent
bf79b71 Bump m-invoker-p to 3.9.1
4f3fcb9 Bump commons-io:commons-io from 2.20.0 to 2.21.0
a867442 Bump org.codehaus.plexus:plexus-archiver from 4.10.3 to 4.10.4
51c66ac Bump org.apache.maven:maven-archiver from 3.6.4 to 3.6.5
267df46 Bump org.codehaus.plexus:plexus-archiver from 4.10.1 to 4.10.3
ef85324 Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness
Additional commits viewable in compare view

Updates com.microsoft.playwright:playwright from 1.55.0 to 1.56.0

Release notes

Sourced from com.microsoft.playwright:playwright's releases.

v1.56.0

New APIs

New methods page.consoleMessages() and page.pageErrors() for retrieving the most recent console messages from the page

New method page.requests() for retrieving the most recent network requests from the page

Breaking Changes

Event browserContext.onBackgroundPage has been deprecated and will not be emitted. Method browserContext.backgroundPages() will return an empty list

Miscellaneous

Aria snapshots render and compare input placeholder

Browser Versions

Chromium 141.0.7390.37

Mozilla Firefox 142.0.1

WebKit 26.0

Commits

4e48d88 chore: mark v1.56.0 (#1852)
eceeea2 cherry-pick(#1855): chore: roll 1.56.1 (#1856)
a2555dd chore(deps): bump the all group with 4 updates (#1846)
0deadc2 chore: roll driver to 1.56.0-beta (#1849)
eb1fea9 fix(trace): waitForLoadState title (#1840)
dd99ce8 chore(deps): bump the actions group with 2 updates (#1838)
ed8e9c4 chore(deps): bump the all group across 1 directory with 7 updates (#1839)
See full diff in compare view

Updates commons-codec:commons-codec from 1.19.0 to 1.20.0

Changelog

Sourced from commons-codec:commons-codec's changelog.

Apache Commons Codec 1.20.0 Release Notes

The Apache Commons Codec team is pleased to announce the release of Apache Commons Codec 1.20.0.

The Apache Commons Codec component contains encoders and decoders for formats such as Base16, Base32, Base64, digest, and Hexadecimal. In addition to these widely used encoders and decoders, the codec package also maintains a collection of phonetic encoding utilities.

This is a feature and maintenance release. Java 8 or later is required.

New features
        Add org.apache.commons.codec.digest.Crc16. Thanks to Fredrik Kjellberg, Gary Gregory.
        Add builders to org.apache.commons.codec.digest streams and deprecate some old constructors. Thanks to Gary Gregory.
        Add builder to Base16 streams and deprecate some old constructors. Thanks to Gary Gregory.
        Add support for SHAKE128-256 and SHAKE256-512 to `DigestUtils` and `MessageDigestAlgorithms` on Java 25 and up. Thanks to Gary Gregory.
        Add BaseNCodec.AbstractBuilder.setDecodeTable(byte[]) and refactor subclasses. Thanks to Gary Gregory.
Changes
        Deprecate all but one Base32 constructor in favor of the builder added in version 1.17.0. Thanks to Gary Gregory.
        Deprecate all but one Base64 constructor in favor of the builder added in version 1.17.0. Thanks to Gary Gregory.
        BaseNCodecInputStream subclasses are now type-safe to match its matching BaseNCodec. Thanks to Gary Gregory.
        BaseNCodecOutputStream subclasses are now type-safe to match its matching BaseNCodec. Thanks to Gary Gregory.
        Bump org.apache.commons:commons-parent from 85 to 91. Thanks to Gary Gregory, Dependabot.
        [test] Bump org.apache.commons:commons-lang3 from 3.18.0 to 3.19.0. Thanks to Gary Gregory.
For complete information on Apache Commons Codec, including instructions on how to submit bug reports, patches, or suggestions for improvement, see the Apache Commons Codec website:

https://commons.apache.org/proper/commons-codec/

Download page: https://commons.apache.org/proper/commons-codec/download_codec.cgi

Commits

b20db1f Merge branch 'master' into release
cb344d6 Use leaf in overview
004966b Better package description
1320800 Use HTTPS in URL
fcb8bf6 Use component logo
af58c1a Use final
4368bfe Add dependabot email [skip ci]
cb2b7b6 Clarify comment
48bb283 Bump github/codeql-action from 4.30.9 to 4.31.2 (#414)
f61c2e6 Bump actions/upload-artifact from 4.6.2 to 5.0.0 (#413)
Additional commits viewable in compare view

Updates org.jacoco:jacoco-maven-plugin from 0.8.13 to 0.8.14

Release notes

Sourced from org.jacoco:jacoco-maven-plugin's releases.

0.8.14

New Features

JaCoCo now officially supports Java 25 (GitHub #1950).

Experimental support for Java 26 class files (GitHub #1870).

Branches added by the Kotlin compiler for default argument number 33 or higher are filtered out during generation of report (GitHub #1655).

Part of bytecode generated by the Kotlin compiler for elvis operator that follows safe call operator is filtered out during generation of report (GitHub #1814, #1954).

Part of bytecode generated by the Kotlin compiler for more cases of chained safe call operators is filtered out during generation of report (GitHub #1956).

Part of bytecode generated by the Kotlin compiler for invocations of suspendCoroutineUninterceptedOrReturn intrinsic is filtered out during generation of report (GitHub #1929).

Part of bytecode generated by the Kotlin compiler for suspending lambdas with parameters is filtered out during generation of report (GitHub #1945).

Part of bytecode generated by the Kotlin compiler for suspending functions and lambdas with suspension points that return inline value class is filtered out during generation of report (GitHub #1871).

Part of bytecode generated by the Kotlin Compose compiler plugin for pausable composition is filtered out during generation of report (GitHub #1911).

Methods generated by the Kotlin serialization compiler plugin are filtered out (GitHub #1885, #1970, #1971).

Fixed bugs

Fixed handling of implicit else clause of when with String subject in Kotlin (GitHub #1813, #1940).

Fixed handling of implicit default clause of switch by String in Java when compiled by ECJ (GitHub #1813, #1940). Fixed handling of exceptions in chains of safe call operators in Kotlin (GitHub #1819).

Non-functional Changes

JaCoCo now depends on ASM 9.9 (GitHub #1965).

Commits

2eb2483 Prepare release v0.8.14
de76181 KotlinSerializableFilter should filter more methods (#1971)
89c4bd5 Fix NPE in KotlinSerializableFilter (#1970)
0981128 Migrate release staging to the Central Publisher Portal (#1968)
d07bc6b Add filter for bytecode generated by Kotlin serialization compiler plugin (#1...
5e35fd5 Upgrade maven-dependency-plugin to 3.9.0 (#1966)
c2fe5cc Upgrade ASM to 9.9 (#1965)
b0f8e23 KotlinSafeCallOperatorFilter should filter "unoptimized" safe call followed b...
c7bd3f4 Upgrade spotless-maven-plugin to 3.0.0 (#1961)
faa289d KotlinSafeCallOperatorFilter should not be affected by presence of pseudo ins...
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

No QA required

Bumps the maven-low-risk group with 10 updates in the / directory: | Package | From | To | | --- | --- | --- | | [commons-io:commons-io](https://github.com/apache/commons-io) | `2.20.0` | `2.21.0` | | [io.github.bonigarcia:webdrivermanager](https://github.com/bonigarcia/webdrivermanager) | `6.3.2` | `6.3.3` | | org.apache.commons:commons-lang3 | `3.19.0` | `3.20.0` | | [com.fasterxml.jackson.core:jackson-databind](https://github.com/FasterXML/jackson) | `2.20.0` | `2.20.1` | | [org.junit.vintage:junit-vintage-engine](https://github.com/junit-team/junit-framework) | `6.0.0` | `6.0.1` | | [com.github.eirslett:frontend-maven-plugin](https://github.com/eirslett/frontend-maven-plugin) | `1.15.1` | `1.15.4` | | [org.apache.maven.plugins:maven-source-plugin](https://github.com/apache/maven-source-plugin) | `3.3.1` | `3.4.0` | | [com.microsoft.playwright:playwright](https://github.com/microsoft/playwright-java) | `1.55.0` | `1.56.0` | | [commons-codec:commons-codec](https://github.com/apache/commons-codec) | `1.19.0` | `1.20.0` | | [org.jacoco:jacoco-maven-plugin](https://github.com/jacoco/jacoco) | `0.8.13` | `0.8.14` | Updates `commons-io:commons-io` from 2.20.0 to 2.21.0 - [Changelog](https://github.com/apache/commons-io/blob/master/RELEASE-NOTES.txt) - [Commits](apache/commons-io@rel/commons-io-2.20.0...rel/commons-io-2.21.0) Updates `io.github.bonigarcia:webdrivermanager` from 6.3.2 to 6.3.3 - [Release notes](https://github.com/bonigarcia/webdrivermanager/releases) - [Changelog](https://github.com/bonigarcia/webdrivermanager/blob/master/CHANGELOG.md) - [Commits](bonigarcia/webdrivermanager@webdrivermanager-6.3.2...webdrivermanager-6.3.3) Updates `org.apache.commons:commons-lang3` from 3.19.0 to 3.20.0 Updates `com.fasterxml.jackson.core:jackson-databind` from 2.20.0 to 2.20.1 - [Commits](https://github.com/FasterXML/jackson/commits) Updates `org.junit.vintage:junit-vintage-engine` from 6.0.0 to 6.0.1 - [Release notes](https://github.com/junit-team/junit-framework/releases) - [Commits](junit-team/junit-framework@r6.0.0...r6.0.1) Updates `com.github.eirslett:frontend-maven-plugin` from 1.15.1 to 1.15.4 - [Changelog](https://github.com/eirslett/frontend-maven-plugin/blob/master/CHANGELOG.md) - [Commits](eirslett/frontend-maven-plugin@frontend-plugins-1.15.1...frontend-plugins-1.15.4) Updates `org.apache.maven.plugins:maven-source-plugin` from 3.3.1 to 3.4.0 - [Release notes](https://github.com/apache/maven-source-plugin/releases) - [Commits](apache/maven-source-plugin@maven-source-plugin-3.3.1...maven-source-plugin-3.4.0) Updates `com.microsoft.playwright:playwright` from 1.55.0 to 1.56.0 - [Release notes](https://github.com/microsoft/playwright-java/releases) - [Commits](microsoft/playwright-java@v1.55.0...v1.56.0) Updates `commons-codec:commons-codec` from 1.19.0 to 1.20.0 - [Changelog](https://github.com/apache/commons-codec/blob/master/RELEASE-NOTES.txt) - [Commits](apache/commons-codec@rel/commons-codec-1.19.0...rel/commons-codec-1.20.0) Updates `org.jacoco:jacoco-maven-plugin` from 0.8.13 to 0.8.14 - [Release notes](https://github.com/jacoco/jacoco/releases) - [Commits](jacoco/jacoco@v0.8.13...v0.8.14) --- updated-dependencies: - dependency-name: commons-io:commons-io dependency-version: 2.21.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-low-risk - dependency-name: io.github.bonigarcia:webdrivermanager dependency-version: 6.3.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: maven-low-risk - dependency-name: org.apache.commons:commons-lang3 dependency-version: 3.20.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-low-risk - dependency-name: com.fasterxml.jackson.core:jackson-databind dependency-version: 2.20.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: maven-low-risk - dependency-name: org.junit.vintage:junit-vintage-engine dependency-version: 6.0.1 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: maven-low-risk - dependency-name: com.github.eirslett:frontend-maven-plugin dependency-version: 1.15.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: maven-low-risk - dependency-name: org.apache.maven.plugins:maven-source-plugin dependency-version: 3.4.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-low-risk - dependency-name: com.microsoft.playwright:playwright dependency-version: 1.56.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-low-risk - dependency-name: commons-codec:commons-codec dependency-version: 1.20.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-low-risk - dependency-name: org.jacoco:jacoco-maven-plugin dependency-version: 0.8.14 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: maven-low-risk ... Signed-off-by: dependabot[bot] <support@github.com>

CLAassistant · 2025-12-12T19:20:13Z

Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
_{You have signed the CLA already but the status is still pending? Let us recheck it.}

dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code minor labels Dec 1, 2025

dependabot bot requested a review from a team as a code owner December 1, 2025 01:08

dependabot bot added dependencies Pull requests that update a dependency file minor java Pull requests that update Java code labels Dec 1, 2025

Merge branch 'develop' into dependabot/maven/maven-low-risk-78cf689c87

091ffb9

scottmries approved these changes Dec 12, 2025

View reviewed changes

scottmries merged commit b917a46 into develop Dec 19, 2025
15 of 17 checks passed

scottmries deleted the dependabot/maven/maven-low-risk-78cf689c87 branch December 19, 2025 19:08

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

chore: bump the maven-low-risk group across 1 directory with 10 updates #554

chore: bump the maven-low-risk group across 1 directory with 10 updates #554

dependabot bot commented on behalf of github Dec 1, 2025 •

edited by scottmries

Loading

Uh oh!

CLAassistant commented Dec 12, 2025

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

chore: bump the maven-low-risk group across 1 directory with 10 updates #554

chore: bump the maven-low-risk group across 1 directory with 10 updates #554

Conversation

dependabot bot commented on behalf of github Dec 1, 2025 • edited by scottmries Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Introduction

New features

Fixed Bugs

Changes

[6.3.3] - 2025-11-08

Changed

1.15.4

3.4.0

🐛 Bug Fixes

👻 Maintenance

📦 Dependency updates

v1.56.0

New APIs

Breaking Changes

Miscellaneous

Browser Versions

Apache Commons Codec 1.20.0 Release Notes

New features

Changes

0.8.14

New Features

Fixed bugs

Non-functional Changes

Uh oh!

CLAassistant commented Dec 12, 2025

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

dependabot bot commented on behalf of github Dec 1, 2025 •

edited by scottmries

Loading