Update all patch versions (3.31) (patch)

[renovate]

This PR contains the following updates:

Package	Type	Update	Change	Age	Adoption	Passing	Confidence
tomcat	final	patch	9.0.95-jdk11-temurin-jammy -> 9.0.96-jdk11-temurin-jammy
com.amazonaws:aws-java-sdk-s3 (source)	dependencies	patch	1.12.772 -> 1.12.777
ch.qos.logback:logback-access (source, changelog)	dependencies	patch	1.5.8 -> 1.5.12
ch.qos.logback:logback-classic (source, changelog)	dependencies	patch	1.5.8 -> 1.5.12
net.sf.jasperreports:jasperreports-functions (source)	dependencies	patch	6.21.3 -> 6.21.4
net.sf.jasperreports:jasperreports-fonts (source)	dependencies	patch	6.21.3 -> 6.21.4
net.sf.jasperreports:jasperreports (source)	dependencies	patch	6.21.3 -> 6.21.4
io.dropwizard.metrics:metrics-logback (source)	dependencies	patch	4.2.27 -> 4.2.28
io.dropwizard.metrics:metrics-jmx (source)	dependencies	patch	4.2.27 -> 4.2.28
io.dropwizard.metrics:metrics-jvm (source)	dependencies	patch	4.2.27 -> 4.2.28
io.dropwizard.metrics:metrics-servlets (source)	dependencies	patch	4.2.27 -> 4.2.28
io.dropwizard.metrics:metrics-httpclient (source)	dependencies	patch	4.2.27 -> 4.2.28
io.dropwizard.metrics:metrics-servlet (source)	dependencies	patch	4.2.27 -> 4.2.28
io.dropwizard.metrics:metrics-core (source)	dependencies	patch	4.2.27 -> 4.2.28
org.springframework.security:spring-security-web (source)	dependencies	patch	5.8.14 -> 5.8.15
org.springframework.security:spring-security-config (source)	dependencies	patch	5.8.14 -> 5.8.15

---

Release Notes

aws/aws-sdk-java (com.amazonaws:aws-java-sdk-s3)

v1.12.777

Compare Source

v1.12.776

Compare Source

v1.12.775

Compare Source

v1.12.774

Compare Source

Amazon Simple Storage Service

• Features

  • Add support for the new optional bucket-region and prefix query parameters in the ListBuckets API. For ListBuckets requests that express pagination, Amazon S3 will now return both the bucket names and associated AWS regions in the response.

v1.12.773

Compare Source

TIBCOSoftware/jasperreports (net.sf.jasperreports:jasperreports-functions)

v6.21.4: JasperReports 6.21.4

Compare Source

• various dependencies upgrades including: Jackson 2.17.1, RequireJS 2.3.7, Apache POI 5.3.0
  and Apache Xalan 2.7.3;

• minor bug fixes and improvements;

dropwizard/metrics (io.dropwizard.metrics:metrics-logback)

v4.2.28

What's Changed

• Update dependency org.apache.maven.plugins:maven-deploy-plugin to v3.1.3 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4375
• Update github/codeql-action digest to 883d858 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4374
• Update dependency org.jdbi:jdbi3-core to v3.45.4 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4376
• Update dependency org.eclipse.jetty:jetty-bom to v10.0.23 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4378
• Update dependency org.eclipse.jetty:jetty-bom to v11.0.23 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4379
• Update github/codeql-action digest to f0f3afe (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4380
• Update dependency org.python:jython-standalone to v2.7.4 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4381
• Update github/codeql-action digest to 2c779ab (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4388
• Update dependency org.apache.maven.plugins:maven-project-info-reports-plugin to v3.7.0 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4386
• Update dependency org.apache.maven.plugins:maven-checkstyle-plugin to v3.5.0 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4384
• Update dependency org.apache.maven.plugins:maven-dependency-plugin to v3.8.0 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4385
• Update dependency net.bytebuddy:byte-buddy to v1.15.0 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4389
• Update dependency org.glassfish.jersey:jersey-bom to v3.0.15 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4373
• Update dependency org.mockito:mockito-core to v5.13.0 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4399
• Update dependency org.glassfish.jersey:jersey-bom to v2.45 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4398
• Update Maven plugins (release/4.2.x) (minor) by @​renovate in https://github.com/dropwizard/metrics/pull/4404
• Update dependency com.google.errorprone:error_prone_core to v2.31.0 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4406
• Update github/codeql-action digest to 4dd1613 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4408
• Update dependency net.bytebuddy:byte-buddy to v1.15.1 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4409
• Update dependency org.apache.commons:commons-lang3 to v3.17.0 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4412
• Update dependency org.eclipse.jetty:jetty-bom to v11.0.24 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4415
• Update dependency org.eclipse.jetty:jetty-bom to v10.0.24 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4414
• Update jetty9.version to v9.4.56.v20240826 (release/4.2.x) (patch) by @​renovate in https://github.com/dropwizard/metrics/pull/4416
• Update dependency org.checkerframework:checker-qual to v3.47.0 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4419
• Update jetty12.version to v12.0.13 (release/4.2.x) (patch) by @​renovate in https://github.com/dropwizard/metrics/pull/4421
• Update log4j2 monorepo to v2.24.0 (release/4.2.x) (minor) by @​renovate in https://github.com/dropwizard/metrics/pull/4423
• Update logback15.version to v1.5.8 (release/4.2.x) (patch) by @​renovate in https://github.com/dropwizard/metrics/pull/4425
• Update actions/setup-java digest to 2dfa201 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4432
• Update dependency org.apache.httpcomponents.core5:httpcore5 to v5.3 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4436
• Update github/codeql-action digest to 8214744 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4438
• Update dependency org.apache.maven.plugins:maven-gpg-plugin to v3.2.6 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4440
• Update dependency com.rabbitmq:amqp-client to v5.22.0 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4442
• Update JetBrains/qodana-action action to v2024.1.11 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4444
• Update dependency org.apache.httpcomponents.client5:httpclient5 to v5.4 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4448
• Update actions/setup-java digest to b36c23c (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4445
• Update dependency org.cyclonedx:cyclonedx-maven-plugin to v2.8.2 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4451
• Update dependency net.bytebuddy:byte-buddy to v1.15.2 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4450
• Update dependency net.bytebuddy:byte-buddy to v1.15.3 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4454
• Update dependency org.apache.maven.plugins:maven-gpg-plugin to v3.2.7 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4456
• Update log4j2 monorepo to v2.24.1 (release/4.2.x) (patch) by @​renovate in https://github.com/dropwizard/metrics/pull/4460
• Update actions/checkout action to v4.2.0 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4452
• Update dependency org.mockito:mockito-core to v5.14.0 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4459
• Update dependency org.mockito:mockito-core to v5.14.1 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4462
• Update dependency org.apache.maven.plugins:maven-javadoc-plugin to v3.10.1 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4472
• Update jetty12.version to v12.0.14 (release/4.2.x) (patch) by @​renovate in https://github.com/dropwizard/metrics/pull/4473
• Update dependency org.checkerframework:checker-qual to v3.48.0 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4474
• Update dependency jakarta.servlet:jakarta.servlet-api to v6.1.0 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4231
• Update dependency jakarta.servlet:jakarta.servlet-api to v6.1.0 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/4230
• InstrumentedExecutorService registered metrics cleanup after shutdown by @​the-thing in https://github.com/dropwizard/metrics/pull/3202
• instrument rejected tasks in ThreadPoolExecutor by @​gal-leib in https://github.com/dropwizard/metrics/pull/4272
• Add check in ScheduledReporter's stop method by @​ummels in https://github.com/dropwizard/metrics/pull/4246
• Fix slowTickIfNecessary with infrequently used EWMA by @​aweisberg in https://github.com/dropwizard/metrics/pull/3929

New Contributors

• @​gal-leib made their first contribution in https://github.com/dropwizard/metrics/pull/4272
• @​ummels made their first contribution in https://github.com/dropwizard/metrics/pull/4246
• @​aweisberg made their first contribution in https://github.com/dropwizard/metrics/pull/3929

Full Changelog: dropwizard/metrics@v4.2.27...v4.2.28

spring-projects/spring-security (org.springframework.security:spring-security-web)

v5.8.15

Compare Source

⭐ New Features

• Address unnecessary method invocation in AbstractRequestMatcherRegistry #​15718
• The SecuredAuthorizationManager can now find @Secured annotations on … #​15014

🪲 Bug Fixes

• Disabling credentials erasure on custom AuthenticationManager is not working #​15683
• Methods annotated with @PostFilter are processed twice by PostFilterAuthorizationMethodInterceptor #​15624
• SecurityJackson2Modules.getModules(): Cannot load module org.springframework.security.cas.jackson2.CasJackson2Module #​15749
• The additionalParameters array parameter of OAuth2AuthorizationRequest causes the authorizationRequestUri to be incorrect #​15533

🔨 Dependency Upgrades

• Bump io.projectreactor.tools:blockhound from 1.0.9.RELEASE to 1.0.10.RELEASE #​15928
• Bump org-eclipse-jetty from 9.4.55.v20240627 to 9.4.56.v20240826 #​15730
• Bump org.springframework.ldap:spring-ldap-core from 2.4.1 to 2.4.2 #​15941

🔩 Build Updates

• Bump @antora/collector-extension from 1.0.0-beta.2 to 1.0.0-beta.3 in /docs #​15908
• Bump @springio/asciidoctor-extensions from 1.0.0-alpha.13 to 1.0.0-alpha.14 in /docs #​15837
• Migrate slack notifications to GChat #​15503
• Release 5.8.15 #​15963

❤️ Contributors

We'd like to thank all the contributors who worked on this release!

• @​chenzhenjia
• @​tugjg
• @​abimael-turing
• @​dependabot[bot]

---

Configuration

📅 Schedule: Branch creation - "after 5pm on the first day of the month" in timezone Europe/Zurich, Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.