Bump the gradle-dependencies group with 13 updates

[dependabot]

Bumps the gradle-dependencies group with 13 updates:

Package	From	To
com.gradle.common-custom-user-data-gradle-plugin	2.0.1	2.0.2
com.oracle.coherence.ce:coherence	22.06.2	24.03
com.google.inject:guice	6.0.0	7.0.0
com.hazelcast:hazelcast	5.3.7	5.4.0
org.jfree:jfreechart	1.5.4	1.5.5
net.sourceforge.pmd:pmd	7.2.0	7.3.0
net.sourceforge.pmd:pmd-ant	7.2.0	7.3.0
net.sourceforge.pmd:pmd-java	7.2.0	7.3.0
com.google.protobuf:protobuf-java	4.27.1	4.27.2
com.github.spotbugs:spotbugs	4.8.5	4.8.6
com.google.truth:truth	1.4.2	1.4.3
net.ltgt.errorprone	4.0.0	4.0.1
com.github.spotbugs	6.0.17	6.0.18

Updates com.gradle.common-custom-user-data-gradle-plugin from 2.0.1 to 2.0.2

Updates com.oracle.coherence.ce:coherence from 22.06.2 to 24.03

Release notes

Sourced from com.oracle.coherence.ce:coherence's releases.

Coherence CE 24.03

This is the Coherence CE v24.03 release.

Requirements:

• Java 17 or higher
• Some features will work only on Java 21 or higher

New Features in CE 24.03

Coherence CE 24.03 is now compatible with both Helidon 3.x and Helidon 4.x.

1. COH-29737 Improved deserialization performance of very large byte arrays (> 100MB)
2. COH-29199 Added the ability to configure the number of worker threads used by the concurrent cache service using system properties: coherence.concurrent.distributed.threads.{min|max}. The concurrent cache service will honor the global system properties coherence.distributed.threads.{min|max} if provided and the concurrent cache specific system properties are not set.
3. COH-29020 Added additional columns to the memory status report to show memory information in megabytes. Additionally ensured that in all reports the display of report values never uses exponential notation.
4. COH-28849 Added the ability to pass a custom Executor to AsyncNamedCache to use to complete the invoked futures instead of using the Coherence common pool. This is useful if it is a requirement to strictly enforce order of completion of async futures.
5. COH-28810 Added a message to stdout which prints the Coherence logging configuration when the Coherence logger is set to level 6 or higher.
6. COH-28809 Reduced the frequency of the messages displayed (to once every 60 seconds) when the BinaryMemoryCalculator cannot calculate the index size.
7. COH-28726 An internal ForkJoinPool is now used to run queries in parallel across all owned partitions.
8. COH-28725 Improved the Coherence Gradle Plugin POF instrumentation support for multi-module Gradle builds.
9. COH-28615 The distributed executor service will now distribute tasks to executors in a round-robin fashion.
10. COH-28601 Integrated support for OpenTelemetry. See the documentation for further details.
11. COH-28572 Re-enabled the Coherence Gradle Plugin, upgraded to Gradle 8.4 and provided Java 21 support.
12. COH-28552 Improved the filter reordering logic for composite filters.
13. COH-28550 Improved performance of filter-based aggregators by leveraging partitioned index.
14. COH-28549 Improved performance of filter-based entry processors by leveraging partitioned index.
15. COH-28458 Fixed an issue where JPMS --add-exports java.management/sun.management=com.oracle.coherence was required when using Berkeley Database JE database for storage, enabled by bdb-store-manager.
16. COH-28314 Added the ability to insert JSON data via CohQL.
17. COH-28004 Fixed "Started Cluster" log message to clarify that a JOINING member's version is a transport protocol compatibility version, not the member's actual Coherence version.
18. COH-27990 Added the ClearCount attribute to the StorageManager MBean which shows how many times clear() has been called on a cache.
19. COH-27952 Enhanced the Gradle plugin to provide incremental build support for POF classes.
20. COH-27105 Added the reportPartitionStats operation to the StorageManager MBean to report cache partition sizes for a cache.
21. COH-25882 Added getClusterDescription, getServiceDescription and getNodeDescription operations to the Cluster, Service and ClusterNode MBeans to retrieve details about a cluster, service and member.
22. COH-25729 Added write-behind support for cache store erase() and eraseAll() operations.
23. COH-24445 Added cache backed implementations of java.util Queue and Deque and java.util.concurrent BlockingQueue and BlockingDeque.

For more information see the Core Improvements documentation.

Breaking changes in CE 24.03

The following lists subset of bugs fixed that are considered "breaking" changes:

• COH-28501 Removed the coherence-helidon-grpc, coherence-helidon-client and coherence-helidon-proxy modules. While a Coherence gRPC server and client still work in a Helidon application, it is no longer possible to automatically serve Coherence gRPC proxy endpoints on the Helidon MP gRPC server. Coherence configures and creates its own independent gRPC clients and server.

Bugs Fixed since Coherence CE 23.09

1. COH-29765 Fixed an issue where multiple long running tasks may prevent other tasks from being executed by concurrent Executors.
2. COH-29725 Fixed an issue where the executor service would recreate a failed-over task upon re-execution after a yield.
3. COH-29647 Fixed an issue where the executor service would incorrectly increment the tasks-in-progress count when re-executing a yielded task.
4. COH-29571 Fixed an issue where an IllegalArgumentException could be thrown when looking up a named executor when using POF.
5. COH-29569 Fixed an issue where deserialization of 4-byte UTF-8 sequences would fail.
6. COH-29537 Fixed an issue where the NodeId column was missing from the view report.

... (truncated)

Commits

• b4c1834 release: update poms to version 24.03
• 3683962 Bug 36426729 - [36426181->24.03] Update the default value of 100 for coherenc...
• acaba5c Minor Queue change
• 4f6ea0f Bug 36409014 - Build: Intermittent failure in queues.GrpcClientDequeTests.sho...
• cc9acb2 Enh 35900901 - [35884452->24.03] Improve filter re-ordering algorithm for com...
• a53bb05 Bug 36405782 - Build: *RemoteCountDownLatchIT -> shouldAcquireAndCountDownWit...
• 501157e Enh 35900901 - [35884452->24.03] Improve filter re-ordering algorithm for com...
• 5150be3 Enh 36420686 - [36420651->24.03] Improve deserialization performance of very ...
• 4651fee Fix template check error for not containg reference to Contributing (ce/main ...
• c3f7e77 Queue changes for non-Java clients using JSON
• Additional commits viewable in compare view

Updates com.google.inject:guice from 6.0.0 to 7.0.0

Release notes

Sourced from com.google.inject:guice's releases.

Guice 7.0.0

See https://github.com/google/guice/wiki/Guice700 for release notes.

Guice 7.0.0-rc1

See https://github.com/google/guice/wiki/Guice700 for release notes.

Commits

• b0e1d0f set 7.0.0 release #s.
• f4a66b7 Make error_prone_annotations dependency optional
• 654032a Internal change.
• bee813b Improve MissingImplementationError to lazily calculate suggestions and standa...
• 2d64067 Use linked bindings for MapBinder/Multibinder/OptionalBinder aliases, instead...
• be0141c Internal change
• 40a5bcf Avoid re-initializing factories that are already initialized. This is necessa...
• 9ac4767 Change the way we reference what 6.0 supports in the README, so it doesn't ge...
• 24324ca Prepare for the Guice 6.0 & 7.0 releases. This change does the following:
• 49b1a33 Remove redundant references to javax.{inject,persistence,servlet} and replace...
• See full diff in compare view

Updates com.hazelcast:hazelcast from 5.3.7 to 5.4.0

Release notes

Sourced from com.hazelcast:hazelcast's releases.

v5.4.0

This document lists the new features, enhancements, fixed issues and, removed or deprecated features for Hazelcast Platform 5.4.0 release. The numbers in the square brackets refer to the issues and pull requests in Hazelcast's GitHub repository.

[!CAUTION] Starting with this release of Hazelcast Platform, the minimum supported Java version is 17.

New Features

• Enterprise User Code Namespaces: Enable deployment and redeployment of your custom classes. See the User Code Namespaces documentation.
• Enterprise CPMap: Added CPMap as a minimal key-value CP data structure. See CPMap documentation. #25802
• Enterprise Thread-Per-Core (TPC): TPC is now generally available. You can enable this feature on the clients and cluster members for improved performance. See the Thread-Per-Core (TPC) documentation.

Breaking Changes

• The MergingValue interface within the SPI package now requires the getDeserializedValue() method to be defined within implementations, replacing the getValue() definition. #25942
• Moved the MongoDB connector to the extensions module, that is, its classes and related dependencies relocated; if you are using Maven to install the connector, you must add <classifier>jar-with-dependencies</classifier> to your pom.xml. Also removed the permissions for MongoDB connector. #25744, #25701
• Method names used as parameters in SecurityInterceptor checks were reviewed and unified into a single place - class com.hazelcast.security.SecurityInterceptorConstants. Some client messages have the method name changed to reflect their purpose better. Some client messages are newly covered by SecurityInterceptor checks now. #25020
• Renamed the service port for Hazelcast clusters deployed in Kubernetes environments to hazelcast. The previous name, hazelcast-service-port, caused member auto-discovery for embedded deployments to fail. #24834, #24705, #24688
• Fixed an issue where Hazelcast was not failing fast when a member is started with a blank public address. This has been fixed by introducing a configuration validation that might break any existing, but invalid, configuration. #24729

Enhancements

SQL/Jet Engine

• Removed the beta annotations from the data connection classes. #26000
• Replaced the user-defined types (UDTs) feature flag with the cyclic UDT feature flag, to prevent querying such type data. #25977
• Added support for loading and storing a single column as the value using the GenericMapStore. #25878
• Each Jet engine job was creating a client for connecting to the remote cluster, resulting in an excessive number of clients. This has been fixed by introducing a single data connection, which can be reused for all job instances. #25754, #25731
• Added support for resolving fields from Avro schemas in Kafka mappings. #25935
• Changed the exception type from CancellationException to CancellationByUserException when the user cancels a job before it is initialized. #25383
• Added nested field support for Avro serialization format. #25269
• Removed the redundant sort and merge operations in sorted index scans, for the computations where the index order is not needed, for example, aggregations. #25180
• Updated the data comparator to improve the performance of sorted index operations. #25196
• Added support for partition pruning for the __key filters. #25105
• Added support for partitioned edges in Jet engine's partition pruning. #25062
• Added a new mechanism to compute the required partitions to be scanned, if attribute partitioning strategy is applied. #25006
• Added the condition type to the EXPLAIN PLAN statement outputs for all physical joins. #24899
• Added support for nullable types when reading Avro files. #24840
• Added the ability to pass parameters for JDBC configuration, such as the fetch size for large tables. #24835
• Added support for partition pruning for SQL queries that have trivial filter predicates. #24813
• Reflected the change of javax.jms to jakarta.jms in Hazelcast distributions. #24804
• Added support for member pruning for Platform jobs to optimize a job's performance by picking up only the members required for the job. #24689
• Added the stream() method to the SQL service to return the stream of result rows. #24525
• Introduced a new configuration object to control the exact initial partition offsets when consuming records from Kafka via the Jet engine. #21546
• Aligned the behavior of hashCode() method of KeyedWindowResult with that of Map.Entry. #697
• Boxing of partitionId is now avoided in the getPartitionAssignment() method when the partition pruning is not used. #486
• Added the ability to limit the creation of objects through reflection. #296
• Added the ability to use reusable processor meta supplier for forceTotalParallelismOne () on random members without permissions. #227

... (truncated)

Commits

• 3175d2c Upgrade version to 5.4.0
• 7f4448b Adding RN for 5.4.0 OS RN (#1084)
• a76e44f Remove todo from javadoc [5.4.0] (#1081)
• 5718766 Fix NPE from SecurityContext startup order, add tests [5.4.0] (#1070)
• d6f8ef0 Fix processorOrder doubled when members without local parallelism [HZ-4562] [...
• 27f90d3 Revert exclusion of META-INF/THIRD-PARTY.txt [HZ-4561] (#1048)
• de5b1f4 Replace mysql license [5.4.0] (#1008)
• f0f8f07 Fix republishing logic in WanPutBackupOperation [5.4.0] (#1014)
• 62dad91 NLCModeLicenseTest Mockito + Azul fix [HZ-4483] (#943)
• eee9541 Bump software.amazon.awssdk:bom from 2.24.12 to 2.24.13 (#952)
• Additional commits viewable in compare view

Updates org.jfree:jfreechart from 1.5.4 to 1.5.5

Release notes

Sourced from org.jfree:jfreechart's releases.

JFreeChart 1.5.5

Version 1.5.5 (23 June 2024)

• added XYBezierRenderer by Javier Robes (#286)
• fix cross-hair painting (#340)
• parameter range check for CompassPlot (#397)

Note: some (supposed) security vulnerabilities have been reported for v1.5.4:

• CVE-2023-52070 : an ArrayIndexOutOfBoundsException in CompassPlot
  No fix is considered necessary, however (#397) has been applied.

• CVE-2024-22949 : a possible NullPointerException in CategoryLineAnnotation
  No fix is considered necessary.

• CVE-2024-23076 : a possible NullPointerException in BubbleXYItemLabelGenerator
  No fix is considered necessary.

Commits

• cb8ff67 Update for release
• 704d659 Fix SonarLint issues
• 098202c Prepare for release
• 6a072f8 Fix SonarLint warnings
• 9d0649b Added XYBezierRenderer by Javier Robes
• b8ebff3 Fix SonarLint warnings
• 34f1b14 Update versions for build dependencies
• 2f3754d Merge pull request #397 from trashgod/CVE-2024-23077
• d609dd4 Update versions for test dependencies
• 6e7f7d2 CVE-2024-23077.
• Additional commits viewable in compare view

Updates net.sourceforge.pmd:pmd from 7.2.0 to 7.3.0

Release notes

Sourced from net.sourceforge.pmd:pmd's releases.

PMD 7.3.0 (28-June-2024)

28-June-2024 - 7.3.0

The PMD team is pleased to announce PMD 7.3.0.

This is a minor release.

Table Of Contents

• 🚀 New and noteworthy
  • ✨ New Rules
  • 💥 pmd-compat6 removed (https://github.com/pmd/pmd/blob/HEAD/breaking)
• 🐛 Fixed Issues
• 🚨 API Changes
  • CPD Report Format XML
  • CLI
  • Ant
  • Deprecated API
  • Breaking changes: pmd-compat6 removed
• 📈 Stats

🚀 New and noteworthy

✨ New Rules

• The new Java rule UseEnumCollections reports usages for HashSet and HashMap when the keys are of an enum type. The specialized enum collections are more space- and time-efficient.

💥 pmd-compat6 removed (breaking)

The already deprecated PMD 6 compatibility module (pmd-compat6) has been removed. It was intended to be used with older versions of the maven-pmd-plugin, but since maven-pmd-plugin 3.22.0, PMD 7 is supported directly and this module is not needed anymore.

If you currently use this dependency (net.sourceforge.pmd:pmd-compat6), remove it and upgrade maven-pmd-plugin to the latest version (3.23.0 or newer).

See also Maven PMD Plugin.

🐛 Fixed Issues

• cli
  • #2827: [cli] Consider processing errors in exit status
• core
  • #4396: [core] CPD is always case sensitive
  • #4992: [core] CPD: Include processing errors in XML report
  • #5066: [core] CPD throws java.lang.OutOfMemoryError: Java heap space (since 7.1.0)

... (truncated)

Commits

• c5dbc29 [release] prepare release pmd_releases/7.3.0
• 2d07aa7 Prepare pmd release 7.3.0
• 93e3020 [doc] Update all-contributors
• 52b2b52 [plsql,tsql] Fix CPD being case sensitive in PLSQL and TSQL (#4943)
• 3222807 [core] Fix memory usage regression in CPD (#5090)
• a9d43d0 [doc] Update release notes (#5090, #5066)
• 10bfa39 Explicitely use no-arg constructor
• 12b9ece [doc] Update release notes (#4396)
• 70296ae [plsql] Fix unit tests after KEYWORD_UNRESERVED is removed
• 9b20ec5 [core] Remove AntlrLexerBehavior
• Additional commits viewable in compare view

Updates net.sourceforge.pmd:pmd-ant from 7.2.0 to 7.3.0

Release notes

Sourced from net.sourceforge.pmd:pmd-ant's releases.

PMD 7.3.0 (28-June-2024)

28-June-2024 - 7.3.0

The PMD team is pleased to announce PMD 7.3.0.

This is a minor release.

Table Of Contents

• 🚀 New and noteworthy
  • ✨ New Rules
  • 💥 pmd-compat6 removed (https://github.com/pmd/pmd/blob/HEAD/breaking)
• 🐛 Fixed Issues
• 🚨 API Changes
  • CPD Report Format XML
  • CLI
  • Ant
  • Deprecated API
  • Breaking changes: pmd-compat6 removed
• 📈 Stats

🚀 New and noteworthy

✨ New Rules

• The new Java rule UseEnumCollections reports usages for HashSet and HashMap when the keys are of an enum type. The specialized enum collections are more space- and time-efficient.

💥 pmd-compat6 removed (breaking)

The already deprecated PMD 6 compatibility module (pmd-compat6) has been removed. It was intended to be used with older versions of the maven-pmd-plugin, but since maven-pmd-plugin 3.22.0, PMD 7 is supported directly and this module is not needed anymore.

If you currently use this dependency (net.sourceforge.pmd:pmd-compat6), remove it and upgrade maven-pmd-plugin to the latest version (3.23.0 or newer).

See also Maven PMD Plugin.

🐛 Fixed Issues

• cli
  • #2827: [cli] Consider processing errors in exit status
• core
  • #4396: [core] CPD is always case sensitive
  • #4992: [core] CPD: Include processing errors in XML report
  • #5066: [core] CPD throws java.lang.OutOfMemoryError: Java heap space (since 7.1.0)

... (truncated)

Commits

• c5dbc29 [release] prepare release pmd_releases/7.3.0
• 2d07aa7 Prepare pmd release 7.3.0
• 93e3020 [doc] Update all-contributors
• 52b2b52 [plsql,tsql] Fix CPD being case sensitive in PLSQL and TSQL (#4943)
• 3222807 [core] Fix memory usage regression in CPD (#5090)
• a9d43d0 [doc] Update release notes (#5090, #5066)
• 10bfa39 Explicitely use no-arg constructor
• 12b9ece [doc] Update release notes (#4396)
• 70296ae [plsql] Fix unit tests after KEYWORD_UNRESERVED is removed
• 9b20ec5 [core] Remove AntlrLexerBehavior
• Additional commits viewable in compare view

Updates net.sourceforge.pmd:pmd-java from 7.2.0 to 7.3.0

Release notes

Sourced from net.sourceforge.pmd:pmd-java's releases.

PMD 7.3.0 (28-June-2024)

28-June-2024 - 7.3.0

The PMD team is pleased to announce PMD 7.3.0.

This is a minor release.

Table Of Contents

• 🚀 New and noteworthy
  • ✨ New Rules
  • 💥 pmd-compat6 removed (https://github.com/pmd/pmd/blob/HEAD/breaking)
• 🐛 Fixed Issues
• 🚨 API Changes
  • CPD Report Format XML
  • CLI
  • Ant
  • Deprecated API
  • Breaking changes: pmd-compat6 removed
• 📈 Stats

🚀 New and noteworthy

✨ New Rules

• The new Java rule UseEnumCollections reports usages for HashSet and HashMap when the keys are of an enum type. The specialized enum collections are more space- and time-efficient.

💥 pmd-compat6 removed (breaking)

The already deprecated PMD 6 compatibility module (pmd-compat6) has been removed. It was intended to be used with older versions of the maven-pmd-plugin, but since maven-pmd-plugin 3.22.0, PMD 7 is supported directly and this module is not needed anymore.

If you currently use this dependency (net.sourceforge.pmd:pmd-compat6), remove it and upgrade maven-pmd-plugin to the latest version (3.23.0 or newer).

See also Maven PMD Plugin.

🐛 Fixed Issues

• cli
  • #2827: [cli] Consider processing errors in exit status
• core
  • #4396: [core] CPD is always case sensitive
  • #4992: [core] CPD: Include processing errors in XML report
  • #5066: [core] CPD throws java.lang.OutOfMemoryError: Java heap space (since 7.1.0)

... (truncated)

Commits

• c5dbc29 [release] prepare release pmd_releases/7.3.0
• 2d07aa7 Prepare pmd release 7.3.0
• 93e3020 [doc] Update all-contributors
• 52b2b52 [plsql,tsql] Fix CPD being case sensitive in PLSQL and TSQL (#4943)
• 3222807 [core] Fix memory usage regression in CPD (#5090)
• a9d43d0 [doc] Update release notes (#5090, #5066)
• 10bfa39 Explicitely use no-arg constructor
• 12b9ece [doc] Update release notes (#4396)
• 70296ae [plsql] Fix unit tests after KEYWORD_UNRESERVED is removed
• 9b20ec5 [core] Remove AntlrLexerBehavior
• Additional commits viewable in compare view

Updates net.sourceforge.pmd:pmd-ant from 7.2.0 to 7.3.0

Release notes

Sourced from net.sourceforge.pmd:pmd-ant's releases.

PMD 7.3.0 (28-June-2024)

28-June-2024 - 7.3.0

The PMD team is pleased to announce PMD 7.3.0.

This is a minor release.

Table Of Contents

• 🚀 New and noteworthy
  • ✨ New Rules
  • 💥 pmd-compat6 removed (https://github.com/pmd/pmd/blob/HEAD/breaking)
• 🐛 Fixed Issues
• 🚨 API Changes
  • CPD Report Format XML
  • CLI
  • Ant
  • Deprecated API
  • Breaking changes: pmd-compat6 removed
• 📈 Stats

🚀 New and noteworthy

✨ New Rules

• The new Java rule UseEnumCollections reports usages for HashSet and HashMap when the keys are of an enum type. The specialized enum collections are more space- and time-efficient.

💥 pmd-compat6 removed (breaking)

The already deprecated PMD 6 compatibility module (pmd-compat6) has been removed. It was intended to be used with older versions of the maven-pmd-plugin, but since maven-pmd-plugin 3.22.0, PMD 7 is supported directly and this module is not needed anymore.

If you currently use this dependency (net.sourceforge.pmd:pmd-compat6), remove it and upgrade maven-pmd-plugin to the latest version (3.23.0 or newer).

See also Maven PMD Plugin.

🐛 Fixed Issues

• cli
  • #2827: [cli] Consider processing errors in exit status
• core
  • #4396: [core] CPD is always case sensitive
  • #4992: [core] CPD: Include processing errors in XML report
  • #5066: [core] CPD throws java.lang.OutOfMemoryError: Java heap space (since 7.1.0)

... (truncated)

Commits

• c5dbc29 [release] prepare release pmd_releases/7.3.0
• 2d07aa7 Prepare pmd release 7.3.0
• 93e3020 [doc] Update all-contributors
• 52b2b52 [plsql,tsql] Fix CPD being case sensitive in PLSQL and TSQL (#4943)
• 3222807 [core] Fix memory usage regression in CPD (#5090)
• a9d43d0 [doc] Update release notes (#5090, #5066)
• 10bfa39 Explicitely use no-arg constructor
• 12b9ece [doc] Update release notes (#4396)
• 70296ae [plsql] Fix unit tests after KEYWORD_UNRESERVED is removed
• 9b20ec5 [core] Remove AntlrLexerBehavior
• Additional commits viewable in compare view

Updates net.sourceforge.pmd:pmd-java from 7.2.0 to 7.3.0

Release notes

Sourced from net.sourceforge.pmd:pmd-java's releases.

PMD 7.3.0 (28-June-2024)

28-June-2024 - 7.3.0

The PMD team is pleased to announce PMD 7.3.0.

This is a minor release.

Table Of Contents

• 🚀 New and noteworthy
  • ✨ New Rules
  • 💥 pmd-compat6 removed (https://github.com/pmd/pmd/blob/HEAD/breaking)
• 🐛 Fixed Issues
• 🚨 API Changes
  • CPD Report Format XML
  • CLI
  • Ant
  • Deprecated API
  • Breaking changes: pmd-compat6 removed
• 📈 Stats

🚀 New and noteworthy

✨ New Rules

• The new Java rule UseEnumCollections reports usages for HashSet and HashMap when the keys are of an enum type. The specialized enum collections are more space- and time-efficient.

💥 pmd-compat6 removed (breaking)

The already deprecated PMD 6 compatibility module (pmd-compat6) has been removed. It was intended to be used with older versions of the maven-pmd-plugin, but since maven-pmd-plugin 3.22.0, PMD 7 is supported directly and this module is not needed anymore.

If you currently use this dependency (net.sourceforge.pmd:pmd-compat6), remove it and upgrade maven-pmd-plugin to the latest version (3.23.0 or newer).

See also Maven PMD Plugin.

🐛 Fixed Issues

• cli
  • #2827: [cli] Consider processing errors in exit status
• core
  • #4396: [core] CPD is always case sensitive
  • #4992: [core] CPD: Include processing errors in XML report
  • #5066: [core] CPD throws java.lang.OutOfMemoryError: Java heap space (since 7.1.0)

... (truncated)

Commits

• c5dbc29 [release] prepare release pmd_releases/7.3.0
• 2d07aa7 Prepare pmd release 7.3.0
• 93e3020 [doc] Update all-contributors
• 52b2b52 [plsql,tsql] Fix CPD being case sensitive in PLSQL and TSQL (#4943)
• 3222807 [core] Fix memory usage regression in CPD (#5090)
• a9d43d0 [doc] Update release notes (#5090, #5066)
• 10bfa39 Explicitely use no-arg constructor
• 12b9ece [doc] Update release notes (#4396)
• 70296ae [plsql] Fix unit tests after KEYWORD_UNRESERVED is removed
• 9b20ec5 [core] Remove AntlrLexerBehavior
• Additional commits viewable in compare view

Updates com.google.protobuf:protobuf-java from 4.27.1 to 4.27.2

Commits

• See full diff in compare view

Updates com.github.spotbugs:spotbugs from 4.8.5 to 4.8.6

Release notes

Sourced from com.github.spotbugs:spotbugs's releases.

SpotBugs 4.8.6

CHANGELOG

Fixed

• Do not report BC_UNCONFIRMED_CAST for Java 21's type switches when the switch instruction is TABLESWITCH (#2782)
• Do not throw exception when inspecting empty switch statements (#2995)
• Adjust priority since relaxed mode reports even IGNORED_PRIORITY (#2994)
• Fix duplicated log4j2 jar in distribution (#3001)

CHECKSUM

file	checksum (sha256)
spotbugs-4.8.6-javadoc.jar	e0af15063395b5eb8002a896dad1d02da869dbc53a7a4b1eee76e9e0f0444fbc
spotbugs-4.8.6-sources.jar	fc38f6b06cf134a6b065e4e73747b17a8d9b107d935c828ebb1b8bee89527da1
spotbugs-4.8.6.tgz	b9d4d25e53cd4202b2dc19c549c0ff54f8a72fc76a71a8c40dee94422c67ebea
spotbugs-4.8.6.zip	67cdc52cceb17eae394f8fc3660f21659cf354908f818e4d1f45a6935c2e4425
spotbugs-annotations-4.8.6-javadoc.jar	0f095f2d0c766b3e2c21ebc226b4f228898fa8c141736f7615a47a2e3be14ba7
spotbugs-annotations-4.8.6-sources.jar	b5d0110b70b9c44915f2c3375d1b700acb6d409152baf70030787d17a684469b
spotbugs-annotations.jar	4548b74a815ed44f5480ca4f06204a8b00809dc7e5f6a825a9edf18f40377b65
spotbugs-ant-4.8.6-javadoc.jar	58f477c4fc59d8355a6c3ec972f216537baa2d30cb9afd38f16b511a31baaa89
spotbugs-ant-4.8.6-sources.jar	9f1431331363f45ceb9b91c0e5246eab574fbff81c56eff0e385f572d346de61
spotbugs-ant.jar	a798346790437cdc18217379fa54a7e6b044ba2070891ebe01faee28af79af6c
spotbugs.jar	69fde8787971a26b2372d416015d806bf7df4f847f7121bd5eeef239324cf180
test-harness-4.8.6-javadoc.jar	1a220e01369a892e765f5956a38c7ebf1b54111eba623f5f79f430dd0336f901
test-harness-4.8.6-sources.jar	76788749afa9e2a8d6c39231f683bd8e3faab26947975c751c0ab0fbdfc3c17a
test-harness-4.8.6.jar	04c7c8e778a1688ab9636ab58b55f1236ae99bb5428a934a7ba0f54857263c74
test-harness-core-4.8.6-javadoc.jar	4a88789a52b52b4227d1f8384caa59f12e503dbb4ae266d4b5c3270e977afa35
test-harness-core-4.8.6-sources.jar	f5db3e4ebf3f90c9bbf4815824c9d94f93fb740c9610b6f70a64bf7896a4e082
test-harness-core-4.8.6.jar	30c2b71900f38b77fb0e4a788b8ae1ea5b9e54f42636111576e338085c9c53dd
test-harness-jupiter-4.8.6-javadoc.jar	49ae6407f1ff6a72a6d49a19b3de55eae791223129ff3b56079f26b3f3a85b1f
test-harness-jupiter-4.8.6-sources.jar	0aefbc5c8bd406e5dc0b1d59bc3afc6889c02010d486b22242f4f19a1a935800
test-harness-jupiter-4.8.6.jar	94c5ceecb79b93f5e357b5d9805f0a7a22536a52c70a376182faa14923d86021

Changelog

Sourced from com.github.spotbugs:spotbugs's changelog.

4.8.6 - 2024-06-17

Fixed

• Do not report BC_UNCONFIRMED_CAST for Java 21's type switches when the switch instruction is TABLESWITCH (#2782)
• Do not throw exception when inspecting empty switch statements (#2995)
• Adjust priority since relaxed mode reports even IGNORED_PRIORITY (#2994)
• Fix duplicated log4j2 jar in distribution (#3001)

Commits

• 6cf7b2c release v4.8.6
• 760571c [sonatype] Use token for sonatype as now enforced
• 7f4ea03 prepare for the next release
• d419a05 release v4.8.6
• 8db7979 Release/4.8.6 (#3015)
• c5d4ca0 chore(deps): update plugin com.github.spotbugs to v6.0.17 (#3009)
• bd2fe15 Update spotbugs plugin to 6.0.16 (#3013)
• 6aecbaf fix: incorrect formatting for links and moved 3001 to unreleased (#3012)
• c246473 fix(deps): update dependency org.springframework:spring-core to v5.3.37 (#3011)
• 4deffa6 chore(deps): update plugin com.gradle.develocity to v3.17.5 (#3010)
• Additional commits viewable in compare view

Updates com.google.truth:truth from 1.4.2 to 1.4.3

Release notes

Sourced from com.google.truth:truth's releases.

1.4.3

• Added more nullness information to our APIs (in the form of JSpecify annotations). This could lead to additional warnings (or even errors) for users of Kotlin and other nullness checkers. Please report any problems. (ee680cbaf)
• Deprecated Subject.Factory methods for Java 8 types. We won't remove them, but you can simplify your code by migrating off them: Just replace assertAbout(foos()).that(foo) with assertThat(foo) (or about(foos()).that(foo) with that(foo)). (59e7a5065)

Commits

• 758a836 Set version number for truth-parent to 1.4.3.
• afda443 Annotate formattingDiffsUsing methods as supporting nullable element/value ...
• ee680cb Use JSpecify annotations in the public release.
• d39e722 Bump org.apache.maven.plugins:maven-jar-plugin from 3.4.1 to 3.4.2 in the dep...
• d58e133 Bump actions/checkout from 4.1.6 to 4.1.7 in the github-actions group
• 6380af7 Remove @​J2ktIncompatible from TruthJUnit
• 35848d4 Bump the dependencies group with 2 updates
• 5274586 Minor grammar correction in comment
• cef5d45 Bump com.google.protobuf:protobuf-java from 4.27.0 to 4.27.1 in the dependenc...
• 95cbdff Group all dependabot updates together in the same commit to avoid merge confl...
• Additional commits viewable in compare view

Updates net.ltgt.errorprone from 4.0.0 to 4.0.1

Updates com.github.spotbugs from 6.0.17 to 6.0.18

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific depe...

Description has been truncated

[dependabot]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml