Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.

Rate-Limited

The following updates are currently rate-limited. To force their creation now, click on a checkbox below.

• Update dependency org.apache.maven.plugins:maven-release-plugin to v3.3.1
• Update dependency org.apache.maven.plugins:maven-source-plugin to v3.4.0
• Update actions/cache action to v5
• Update actions/checkout action to v6
• Update actions/upload-artifact action to v6
• 🔐 Create all rate-limited PRs at once 🔐

Open

The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.

• Update dependency org.apache.logging.log4j:log4j-core to v2.25.3 [SECURITY]
• Update dependency org.apache.commons:commons-csv to v1.14.1
• Update dependency org.apache.logging.log4j:log4j-api to v2.25.3
• Update dependency org.apache.maven.plugins:maven-surefire-plugin to v3.5.4
• Update dependency org.jacoco:jacoco-maven-plugin to v0.8.14
• Update dependency com.fasterxml.jackson.core:jackson-databind to v2.20.1
• Update dependency commons-io:commons-io to v2.21.0
• Update dependency org.apache.maven.plugins:maven-javadoc-plugin to v3.12.0
• Update dependency org.codehaus.mojo:exec-maven-plugin to v3.6.3
• Update actions/setup-java action to v5
• Update github/codeql-action action to v4
• Click on this checkbox to rebase all open PRs at once

PR Closed (Blocked)

The following updates are blocked by an existing closed PR. To recreate the PR, click on a checkbox below.

• Update dependency org.mockito:mockito-inline to v5

Detected Dependencies

github-actions (6)

.github/workflows/codeql-analysis.yml (3)

• actions/checkout v4 → [Updates: v6]
• github/codeql-action v3 → [Updates: v4]
• github/codeql-action v3 → [Updates: v4]

.github/workflows/main.yml

.github/workflows/maven-pr-analyze.yml (4)

• actions/checkout v4 → [Updates: v6]
• actions/setup-java v4 → [Updates: v5]
• actions/cache v4 → [Updates: v5]
• actions/cache v4 → [Updates: v5]

.github/workflows/maven-publish-deploy.yml (3)

• actions/checkout v4 → [Updates: v6]
• actions/setup-java v4 → [Updates: v5]
• actions/cache v4 → [Updates: v5]

.github/workflows/maven-publish-release.yml (3)

• actions/checkout v4 → [Updates: v6]
• actions/setup-java v4 → [Updates: v5]
• actions/cache v4 → [Updates: v5]

.github/workflows/onPushSimpleTest.yml (4)

• actions/checkout v4 → [Updates: v6]
• actions/setup-java v4 → [Updates: v5]
• codecov/codecov-action v5
• actions/upload-artifact v4 → [Updates: v6]

maven (1)

pom.xml (22)

• org.apache.maven.plugins:maven-surefire-plugin 3.5.3 → [Updates: 3.5.4]
• com.mycila:license-maven-plugin 5.0.0
• org.sonatype.plugins:nexus-staging-maven-plugin 1.7.0
• org.apache.maven.plugins:maven-source-plugin 3.3.1 → [Updates: 3.4.0]
• org.apache.maven.plugins:maven-javadoc-plugin 3.11.2 → [Updates: 3.12.0]
• org.apache.maven.plugins:maven-gpg-plugin 3.2.8
• org.apache.maven.plugins:maven-release-plugin 3.1.1 → [Updates: 3.3.1]
• org.codehaus.mojo:exec-maven-plugin 3.5.1 → [Updates: 3.6.3]
• org.jacoco:jacoco-maven-plugin 0.8.13 → [Updates: 0.8.14]
• org.apache.maven.plugins:maven-gpg-plugin 3.2.8
• org.sonatype.plugins:nexus-staging-maven-plugin 1.7.0
• org.apache.maven.plugins:maven-javadoc-plugin 3.11.2 → [Updates: 3.12.0]
• org.testng:testng 7.11.0
• org.apache.logging.log4j:log4j-core 2.25.0 → [Updates: 2.25.3]
• org.apache.logging.log4j:log4j-api 2.25.0 → [Updates: 2.25.3]
• commons-lang:commons-lang 2.6
• org.hamcrest:hamcrest 3.0
• com.fasterxml.jackson.core:jackson-databind 2.19.1 → [Updates: 2.20.1]
• org.mockito:mockito-inline 4.11.0 → [Updates: 5.2.0]
• commons-io:commons-io 2.19.0 → [Updates: 2.21.0]
• org.apache.commons:commons-csv 1.14.0 → [Updates: 1.14.1]
• com.github.javafaker:javafaker 1.0.2

---

• Check this box to trigger a request for Renovate to run again on this repository

[baubakg]

Dealing with this one by one