Dependency Dashboard

[dnastack-renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.

Config Migration Needed

See Config Migration PR: #149.

Repository problems

Renovate tried to run on this repository, but found these problems.

• WARN: Found renovate config warnings

Rate-Limited

The following updates are currently rate-limited. To force their creation now, click on a checkbox below.

• [CU-86b4umhm1] Update EnricoMi/publish-unit-test-result-action digest to 27d65e1
• [CU-86b4umhm1] Update dependency com.dnastack:spring-boot-audit-event-logger to v1.0.21
• [CU-86b4umhm1] Update dependency com.github.gavlyukovskiy:p6spy-spring-boot-starter to v1.12.1
• [CU-86b4umhm1] Update dependency commons-validator:commons-validator to v1.10.1
• [CU-86b4umhm1] Update dependency io.rest-assured:rest-assured to v5.5.7
• [CU-86b4umhm1] Update dependency maven to v3.9.12
• [CU-86b4umhm1] Update dependency org.springframework.boot:spring-boot-starter-parent to v3.5.9
• [CU-86b4umhm1] Update dependency com.fasterxml.jackson.core:jackson-databind to v2.21.0
• [CU-86b4umhm1] Update dependency com.google.auth:google-auth-library-oauth2-http to v1.41.0
• [CU-86b4umhm1] Update dependency io.zonky.test:embedded-database-spring-test to v2.7.1
• [CU-86b4umhm1] Update dependency io.zonky.test:embedded-postgres to v2.2.0
• [CU-86b4umhm1] Update dependency org.apache.commons:commons-lang3 to v3.20.0
• [CU-86b4umhm1] Update dependency org.bouncycastle:bcprov-jdk18on to v1.83
• [CU-86b4umhm1] Update dependency org.jdbi:jdbi3-bom to v3.51.0
• [CU-86b4umhm1] Update dependency org.mockito:mockito-core to v5.21.0
• [CU-86b4umhm1] Update junit-framework monorepo (org.junit.jupiter:junit-jupiter, org.junit.jupiter:junit-jupiter-api, org.junit.platform:junit-platform-launcher)
• [CU-86b4umhm1] Update actions/checkout action to v6
• [CU-86b4umhm1] Update amazoncorretto Docker tag to v25
• [CU-86b4umhm1] Update dependency com.github.gavlyukovskiy:p6spy-spring-boot-starter to v2
• [CU-86b4umhm1] Update dependency io.rest-assured:rest-assured to v6
• [CU-86b4umhm1] Update dependency io.trino:trino-jdbc to v479
• [CU-86b4umhm1] Update dependency org.springframework.boot:spring-boot-starter-parent to v4
• [CU-86b4umhm1] Update junit-framework monorepo to v6 (major) (org.junit.jupiter:junit-jupiter, org.junit.jupiter:junit-jupiter-api, org.junit.platform:junit-platform-launcher)
• 🔐 Create all rate-limited PRs at once 🔐

Pending Status Checks

The following updates await pending status checks. To force their creation now, click on a checkbox below.

• [CU-86b4umhm1] Update logback monorepo to v1.5.27 (ch.qos.logback:logback-core, ch.qos.logback:logback-classic)
• [CU-86b4umhm1] Update dependency org.apache.maven.plugins:maven-compiler-plugin to v3.15.0

Open

The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.

• [CU-86b4umhm1] Update dependency com.nimbusds:nimbus-jose-jwt to v10 [SECURITY]
• [CU-86b4umhm1] Update dependency org.codehaus.plexus:plexus-utils to v3 [SECURITY]
• [CU-86b4umhm1] Update actions/checkout digest to 93cb6ef
• [CU-86b4umhm1] Update actions/setup-java digest to be666c2
• [CU-86b4umhm1] Update amazoncorretto:21-alpine Docker digest to c64034b
• [CU-86b4umhm1] Update amazoncorretto Docker tag to v21.0.9-alpine
• [CU-86b4umhm1] Update dependency com.google.guava:guava to v33
• [CU-86b4umhm1] Update dependency com.squareup.okhttp3:okhttp to v5
• [CU-86b4umhm1] Update dependency org.springframework.cloud:spring-cloud-dependencies to v2025
• [CU-86b4umhm1] Update slf4j monorepo to v2 (major) (org.slf4j:jcl-over-slf4j, org.slf4j:slf4j-simple, org.slf4j:slf4j-api)
• Click on this checkbox to rebase all open PRs at once

Detected dependencies

dockerfile

ci/e2e-tests/Dockerfile

• amazoncorretto 21-alpine@sha256:fda60fd7965970ce7ed7ce789b18418647b56ac6112fc17df006337bdc6355c4
• amazoncorretto 21-alpine@sha256:fda60fd7965970ce7ed7ce789b18418647b56ac6112fc17df006337bdc6355c4

ci/impl/Dockerfile

• amazoncorretto 21-alpine@sha256:fda60fd7965970ce7ed7ce789b18418647b56ac6112fc17df006337bdc6355c4
• amazoncorretto 21-alpine@sha256:fda60fd7965970ce7ed7ce789b18418647b56ac6112fc17df006337bdc6355c4

ci/predeploy/Dockerfile

• gcr.io/dnastack-container-store/liquibase-docker-image 1.0-2-gf48af98@sha256:ce4a85cc6cb6d3a6914cac6d1abb4eff2b718435c8565930c05fae564379be25

cloud-init-docker/Dockerfile

• gcr.io/dnastack-container-store/cloud-deployment-scripts NOT_A_REAL_VERSION

github-actions

.github/workflows/java-tests.yml

• actions/checkout v5@08c6903cd8c0fde910a37f88322edcfb5dd907a8
• actions/setup-java v5@dded0888837ed1f317902acf8a20df0ad188d165
• EnricoMi/publish-unit-test-result-action v2@3a74b2957438d0b6e2e61d67b05318aa25c9e6c6

helmv3

helm/Chart.yaml

• publisher-helm-library 1.1-39-g796514f

maven

e2e-tests/pom.xml

• org.junit.jupiter:junit-jupiter-api 5.13.4
• ch.qos.logback:logback-classic 1.5.25
• ch.qos.logback:logback-core 1.5.25
• org.jspecify:jspecify 1.0.0
• com.dnastack:actuator-e2e-test 1.0.5
• io.trino:trino-jdbc 359
• org.projectlombok:lombok 1.18.42
• org.junit.jupiter:junit-jupiter 5.13.4
• org.slf4j:slf4j-api 1.7.36
• org.slf4j:slf4j-simple 1.7.36
• org.slf4j:jcl-over-slf4j 1.7.36
• com.fasterxml.jackson.core:jackson-databind 2.20.0
• io.rest-assured:rest-assured 5.5.6
• com.google.guava:guava 33.5.0-jre
• com.google.auth:google-auth-library-oauth2-http 1.39.1
• commons-validator:commons-validator 1.10.0
• org.assertj:assertj-core 3.27.7
• org.awaitility:awaitility 4.3.0
• com.dnastack:logback-extensions 1.0.1
• ch.qos.logback.contrib:logback-jackson 0.1.5
• org.apache.maven.plugins:maven-compiler-plugin 3.14.1
• org.apache.maven.plugins:maven-surefire-plugin 3.5.4
• de.qaware.maven:go-offline-maven-plugin 1.2.8
• org.apache.maven.surefire:surefire-junit-platform 3.5.4
• org.junit.platform:junit-platform-launcher 1.13.4
• org.codehaus.plexus:plexus-utils 1.1

pom.xml

• org.springframework.boot:spring-boot-starter-parent 3.5.6
• org.springframework.cloud:spring-cloud-dependencies 2021.0.9
• joda-time:joda-time 2.14.0
• org.jdbi:jdbi3-bom 3.49.5
• ch.qos.logback:logback-classic 1.5.25
• ch.qos.logback:logback-core 1.5.25
• org.projectlombok:lombok 1.18.42
• com.github.gavlyukovskiy:p6spy-spring-boot-starter 1.12.0
• org.bouncycastle:bcprov-jdk18on 1.82
• com.squareup.okhttp3:okhttp 4.12.0
• com.nimbusds:nimbus-jose-jwt 9.48
• com.google.guava:guava 32.1.3-jre
• org.apache.commons:commons-lang3 3.19.0
• joda-time:joda-time 2.14.0
• org.assertj:assertj-core 3.27.7
• org.skyscreamer:jsonassert 1.5.3
• org.mockito:mockito-core 5.20.0
• io.github.openfeign:feign-core 13.6
• io.github.openfeign.form:feign-form 3.8.0
• io.github.openfeign:feign-okhttp 13.6
• io.github.openfeign:feign-jackson 13.6
• io.github.resilience4j:resilience4j-retry 2.3.0
• io.github.resilience4j:resilience4j-core 2.3.0
• com.dnastack:dnastack-token-validator 1.0.18
• com.dnastack:spring-boot-audit-event-logger 1.0.20
• com.dnastack:dnastack-oauth-client-factory-spring-starter 1.0.5
• com.dnastack:logback-extensions 1.0.1
• io.zonky.test:embedded-database-spring-test 2.6.0
• io.zonky.test:embedded-postgres 2.1.1
• de.qaware.maven:go-offline-maven-plugin 1.2.8
• org.projectlombok:lombok 1.18.42

maven-wrapper

.mvn/wrapper/maven-wrapper.properties

• maven 3.9.11

---

• Check this box to trigger a request for Renovate to run again on this repository