Bump the maven-dependencies group with 6 updates

[dependabot]

Bumps the maven-dependencies group with 6 updates:

Package	From	To
io.grpc:grpc-bom	1.75.0	1.76.0
org.junit:junit-bom	5.14.0	6.0.1
com.github.javaparser:javaparser-core	3.27.0	3.27.1
com.google.protobuf:protobuf-java	4.32.1	4.33.0
com.puppycrawl.tools:checkstyle	10.26.1	12.1.1
org.apache.maven.plugins:maven-dependency-plugin	3.8.1	3.9.0

Updates io.grpc:grpc-bom from 1.75.0 to 1.76.0

Release notes

Sourced from io.grpc:grpc-bom's releases.

v1.76.0

Bug Fixes

• xds: ClusterResolverLb has been converted to use XdsDepManager, which finishes the changes for gRFC A74 xDS Config Tears. This change should resolve some unnecessary reconnections introduced in v1.75.0 when using weighted_round_robin and maybe other policies.
• netty: Remove Netty version detection since grpc-netty-shaded can't reliably determine its Netty version when multiple copies of Netty are present (even when shaded). This fixes the resurfacing of the Netty 4.1.111 corruption fixed in 1.65.0. That version fixed grpc-netty, but v1.75.0 upgraded grpc-netty-shaded to Netty 4.1.111 and exposed the Netty version detection problem. This fixes corruption, so the error messages range wildly, but one of them is "RESOURCE_EXHAUSTED: gRPC message exceeds maximum size"
• compiler: A fix has been implemented for the blockingV2 stub to mangle generated method names that conflict with java.lang.Object methods.
• servlet: A race condition in AsyncServletOutputStreamWriter has been fixed to prevent threads from getting stuck.
• servlet: An issue where AsyncContext.complete() was called multiple times, causing an IllegalStateException, has been resolved.
• binder: The REMOTE_UID is now required to hold the exact UID passed to the SecurityPolicy.
• binder: The server will now only accept post-setup transactions from the authorized server UID.
• util: AdvancedTlsX509TrustManager now errors with a message to say that files don’t exist instead of the previous “Files were unmodified before their initial update. Probably a bug.”
• android: A fix has been implemented for network change handling on API levels below 24.

Improvements

• api: Allocations of Attributes.Builder have been reduced. This mostly benefits attributes.toBuilder(), but that’s not expected to be visible in regular workloads.
• api: An empty array allocation in LoadBalancer.CreateSubchannelArgs.Builder has been avoided. It is a small optimization and is not expected to have any performance impact.
• servlet: A configurable methodNameResolver has been added to configure the mapping from servlet request paths to gRPC method name
• servlet: Avoid a race by increasing the AsyncContext timeout by 5 seconds. The gRPC Context timeout should trigger first
• xds: Pretty-print envoy.service.discovery.v3.Resource in debug logs
• bazel: The java/proto rules from rules_java/rules_proto are now used instead of native rules.
• bazel: Unnecessary direct build dependencies were removed from some targets
• netty: Support for the BCJSSE provider has been added in GrpcSslContexts.
• netty: Huffman coding in server response headers has been disabled; it was already disabled for client request headers
• netty: Include allow header for HTTP response code 405
• okhttp: Include allow header for HTTP response code 405
• binder: Error descriptions for ServiceConnection callbacks have been improved
• binder: Apps can now call SecurityPolicy.checkAuthorization() by PeerUid.

New Features

• stub: Trailers are now propagated in StatusException when thrown by BlockingClientCall.
• compiler: Support for macOS aarch64 with a universal binary has been added.
• opentelemetry: grpc.subchannel.* metrics as described in gRFC A94 OTel metrics for Subchannels have been added. grpc.disconnect_error will show as “unknown” until transports implement support
• binder: A NameResolver for Android's intent: URIs has been introduced.
• binder: A basic SocketStats with just the local and remote addresses has been added for channelz.

Documentation

• SECURITY.md: The documentation now describes how to use gcompat with LD_PRELOAD for Alpine.
• examples: The documentation now explains Bazel BCR releases and the git_override option.

Dependencies

• Upgraded Guava version to 33.4.8.
• The org.apache.tomcat:annotations-api dependency has been removed from the examples.

Thanks to

@JoeCqupt

... (truncated)

Commits

• d0db129 Bump version to 1.76.0
• aa672ca Update README etc to reference 1.76.0
• 70b7249 netty: Unconditionally disable adaptive cumulator (#12390)
• f89d1d8 api: remove nullable from StatusOr value methods (#12338)
• 040665f examples: Explain Bazel BCR releases and git_override option
• 4995700 xds: Remove verify TODO for onResult2 error status
• afe7222 SECURITY.md: Mention gcompat for Alpine (#12365)
• 1a7042a android: fix network change handling on API levels < 24
• 8f0db07 api: Avoid allocating empty array in LoadBalancer (#12337)
• 0c179e3 xds: Convert ClusterResolverLb to XdsDepManager
• Additional commits viewable in compare view

Updates org.junit:junit-bom from 5.14.0 to 6.0.1

Release notes

Sourced from org.junit:junit-bom's releases.

JUnit 6.0.1 = Platform 6.0.1 + Jupiter 6.0.1 + Vintage 6.0.1

See Release Notes.

Full Changelog: junit-team/junit-framework@r6.0.0...r6.0.1

JUnit 6.0.0 = Platform 6.0.0 + Jupiter 6.0.0 + Vintage 6.0.0

See Release Notes.

New Contributors

• @​2897robo made their first contribution in junit-team/junit-framework#4525
• @​strangelookingnerd made their first contribution in junit-team/junit-framework#4683
• @​eric6iese made their first contribution in junit-team/junit-framework#4717
• @​raccoonback made their first contribution in junit-team/junit-framework#4822
• @​currenjin made their first contribution in junit-team/junit-framework#4823
• @​mehulimukherjee made their first contribution in junit-team/junit-framework#4913
• @​lslonina made their first contribution in junit-team/junit-framework#4629

Full Changelog: junit-team/junit-framework@r5.14.0...r6.0.0

JUnit 6.0.0-RC3 = Platform 6.0.0-RC3 + Jupiter 6.0.0-RC3 + Vintage 6.0.0-RC3

See Release Notes.

New Contributors

• @​mehulimukherjee made their first contribution in junit-team/junit-framework#4913
• @​lslonina made their first contribution in junit-team/junit-framework#4629

Full Changelog: junit-team/junit-framework@r6.0.0-RC2...r6.0.0-RC3

JUnit 6.0.0-RC2 = Platform 6.0.0-RC2 + Jupiter 6.0.0-RC2 + Vintage 6.0.0-RC2

See Release Notes.

Full Changelog: junit-team/junit-framework@r6.0.0-RC1...r6.0.0-RC2

JUnit 6.0.0-RC1 = Platform 6.0.0-RC1 + Jupiter 6.0.0-RC1 + Vintage 6.0.0-RC1

See Release Notes.

New Contributors

• @​raccoonback made their first contribution in junit-team/junit-framework#4822
• @​currenjin made their first contribution in junit-team/junit-framework#4823

Full Changelog: junit-team/junit-framework@r6.0.0-M2...r6.0.0-RC1

JUnit 6.0.0-M2 = Platform 6.0.0-M2 + Jupiter 6.0.0-M2 + Vintage 6.0.0-M2

See Release Notes.

... (truncated)

Commits

• d774b9c Release 6.0.1 (second attempt)
• 8178545 Mark module as deprecated for removal
• 7b43fcc Back to snapshots for further development
• a5ef746 Release 6.0.1
• 008be8d Finalize 5.14.1 release notes
• b2c55a8 Finalize 6.0.1 release notes
• 866c01a Add note about duplicate test execution with @​Suite (#5080)
• de88e88 Fix broken links in documentation
• 9dd132d Add Valhalla EA to workflow matrix
• fedda88 Make jdk.jfr import optional in OSGi manifest (#5092)
• Additional commits viewable in compare view

Updates com.github.javaparser:javaparser-core from 3.27.0 to 3.27.1

Release notes

Sourced from com.github.javaparser:javaparser-core's releases.

javaparser-parent-3.27.1

Changed

• fix: switch expression improvement (PR #4823 by @​seokjun7410)

Fixed

• Fix: Adjusts the range limits of lambda expression parameters to ignore brackets. (PR #4860 by @​jlerbsc)
• Fix issue 4846 (PR #4855 by @​PiTheGuy)
• Revert checkstyle plugin upgrade (PR #4836 by @​jlerbsc)
• Fix: issue 4832 Resolving type of fully qualified varargs invocation throws IndexOutOfBoundsException (PR #4835 by @​jlerbsc)
• Fix: Issue 4829 Infinite loop in DifferenceElementCalculator when calling setPermittedTypes (PR #4834 by @​jlerbsc)
• XmlPrinter: fix duplicate attribute name in generated xml (PR #4806 by @​sgqy)
• Use lambda parameter counts and block bodies for improved resolution (PR #4796 by @​johannescoetzee)
• Fix issue #4791 (PR #4792 by @​bannmann)

Developer Changes

• fix(deps): update dependency org.checkerframework:checker-qual to v3.51.1 (PR #4862 by @​renovate[bot])
• chore(deps): update dependency org.apache.maven.plugins:maven-javadoc-plugin to v3.12.0 (PR #4843 by @​renovate[bot])
• fix(deps): update dependency com.google.guava:guava to v33.5.0-jre (PR #4839 by @​renovate[bot])
• chore(deps): update codecov/codecov-action action to v5.5.1 (PR #4827 by @​renovate[bot])
• fix(deps): update dependency org.checkerframework:checker-qual to v3.50.0 (PR #4825 by @​renovate[bot])
• chore(deps): update actions/setup-java action to v5 (PR #4822 by @​renovate[bot])
• chore(deps): update actions/checkout action to v5 (PR #4811 by @​renovate[bot])
• chore(deps): update dependency com.puppycrawl.tools:checkstyle to v11 (PR #4808 by @​renovate[bot])
• chore(deps): update dependency org.apache.maven.plugins:maven-surefire-plugin to v3.5.4 (PR #4701 by @​renovate[bot])

Uncategorised

• Improves documentation on LexicalPreservingPrinter (PR #4820 by @​jlerbsc)
• Improves documentation on the raw langage level (PR #4819 by @​jlerbsc)
• Fix javadoc of Name class (PR #4789 by @​bannmann)
• Fix NormalAnnotationExpr Javadoc (PR #4784 by @​bannmann)

❤️ Contributors

Thank You to all contributors who worked on this release!

• @​seokjun7410
• @​bannmann
• @​sgqy
• @​johannescoetzee
• @​PiTheGuy
• @​jlerbsc

Changelog

Sourced from com.github.javaparser:javaparser-core's changelog.

Version 3.27.1

issues resolved

Changed

• fix: switch expression improvement (PR #4823 by @​seokjun7410)

Fixed

• Fix: Adjusts the range limits of lambda expression parameters to ignore brackets. (PR #4860 by @​jlerbsc)
• Fix issue 4846 (PR #4855 by @​PiTheGuy)
• Revert checkstyle plugin upgrade (PR #4836 by @​jlerbsc)
• Fix: issue 4832 Resolving type of fully qualified varargs invocation throws IndexOutOfBoundsException (PR #4835 by @​jlerbsc)
• Fix: Issue 4829 Infinite loop in DifferenceElementCalculator when calling setPermittedTypes (PR #4834 by @​jlerbsc)
• XmlPrinter: fix duplicate attribute name in generated xml (PR #4806 by @​sgqy)
• Use lambda parameter counts and block bodies for improved resolution (PR #4796 by @​johannescoetzee)
• Fix issue #4791 (PR #4792 by @​bannmann)

Developer Changes

• fix(deps): update dependency org.checkerframework:checker-qual to v3.51.1 (PR #4862 by @​renovate[bot])
• chore(deps): update dependency org.apache.maven.plugins:maven-javadoc-plugin to v3.12.0 (PR #4843 by @​renovate[bot])
• fix(deps): update dependency com.google.guava:guava to v33.5.0-jre (PR #4839 by @​renovate[bot])
• chore(deps): update codecov/codecov-action action to v5.5.1 (PR #4827 by @​renovate[bot])
• fix(deps): update dependency org.checkerframework:checker-qual to v3.50.0 (PR #4825 by @​renovate[bot])
• chore(deps): update actions/setup-java action to v5 (PR #4822 by @​renovate[bot])
• chore(deps): update actions/checkout action to v5 (PR #4811 by @​renovate[bot])
• chore(deps): update dependency com.puppycrawl.tools:checkstyle to v11 (PR #4808 by @​renovate[bot])
• chore(deps): update dependency org.apache.maven.plugins:maven-surefire-plugin to v3.5.4 (PR #4701 by @​renovate[bot])

Uncategorised

• Improves documentation on LexicalPreservingPrinter (PR #4820 by @​jlerbsc)
• Improves documentation on the raw langage level (PR #4819 by @​jlerbsc)
• Fix javadoc of Name class (PR #4789 by @​bannmann)
• Fix NormalAnnotationExpr Javadoc (PR #4784 by @​bannmann)

❤️ Contributors

Thank You to all contributors who worked on this release!

• @​seokjun7410
• @​bannmann
• @​sgqy
• @​johannescoetzee
• @​PiTheGuy
• @​jlerbsc

Commits

• b87bb5d Migration to Central Publisher Portal 3 - Adding required properties
• 9897582 Migration to Central Publisher Portal 3 - Plugin declaration issue
• 0ab2944 Migration to Central Publisher Portal 3 - Artifact exclusion issues (try anot...
• f83857f Migration to Central Publisher Portal 3 - Artifact exclusion issues
• 92b44d3 Migration to Central Publisher Portal 3 - Configuration issues
• 532ac86 Migration to Central Publisher Portal 3 - excludes artifacts and resolves mav...
• 26f063a Migration to Central Publisher Portal 2
• 60c8cd4 Migration to Central Publisher Portal
• 0bcf677 [maven-release-plugin] prepare release javaparser-parent-3.27.1
• 387ad84 update readme
• Additional commits viewable in compare view

Updates com.google.protobuf:protobuf-java from 4.32.1 to 4.33.0

Commits

• See full diff in compare view

Updates com.puppycrawl.tools:checkstyle from 10.26.1 to 12.1.1

Release notes

Sourced from com.puppycrawl.tools:checkstyle's releases.

checkstyle-12.1.1

Checkstyle 12.1.1 - https://checkstyle.org/releasenotes.html#Release_12.1.1

Bug fixes:

#17975 - Incorrect encoding in non-English properties files causing garbled characters in localized messages #17681 - Google style config and formatter differ on blank line separation #3110 - some messages are still hardcoded in english

checkstyle-12.1.0

Checkstyle 12.1.0 - https://checkstyle.org/releasenotes.html#Release_12.1.0

New:

#16836 - New check: HexLiteralCase, Hexadecimal literals should use upper case letters A-F

... (truncated)

Commits

• d902be8 [maven-release-plugin] prepare release checkstyle-12.1.1
• b2ff396 doc: release notes for 12.1.1
• 8c87a5c Issue #17975: Standardize the properties files to UTF-8
• bbf23fc Issue #17882: add Javadoc for CUSTOM_BLOCK_TAG of JavadocCommentsTokenTypes t...
• d13e710 Issue #17882: Update SEE_BLOCK_TAG to new format of AST print
• a65b39c Issue #17487: Add importOrder
• 37d1206 Issue #17939: Wrap AtclauseOrder properties table to prevent horizontal scrol...
• c2fe3c4 Issue #17681: Fix multiple blank line separation
• e23179b Issue #10086: Add profile to pitest-misc
• a673b83 dependency: bump actions/upload-artifact from 4 to 5
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-dependency-plugin from 3.8.1 to 3.9.0

Release notes

Sourced from org.apache.maven.plugins:maven-dependency-plugin's releases.

3.9.0

🚀 New features and improvements

• Use Resolver API in go-offline for dependencies resolving (#1533) @​slawekjaranowski
• Use Resolver API in go-offline for plugins resolving (#1532) @​slawekjaranowski
• Fixes #1522, add render-dependencies mojo (#1523) @​rmannibucau
• Use Resolver API in resolve-plugin (#1521) @​slawekjaranowski
• [MEDP-964] - unconditionally ignore dependencies known to be loaded by reflection (#1492) @​elharo
• Update maven-dependency-analyzer to support Java24 (#528) @​talios
• [MDEP-972] - copy-dependencies: copy signatures alongside artifacts (#514) @​Ndacyayisenga-droid
• [MDEP-776] - Warn when multiple dependencies have the same file name (#463) @​elharo
• [MDEP-966] - Migrate AnalyzeDepMgt to Sisu (#473) @​elharo
• [MDEP-957] - By default, don't report slf4j-simple as unused (#433) @​elharo

🐛 Bug Fixes

• ProjectBuildingRequest should not be modified (#1520) @​slawekjaranowski
• Fix - markersDirectory is not working when unpack goal is executed from command line (#537) @​vaibhavbatra15
• Fix broken link for analyze-exclusions-mojo on usage-page (#521) @​Bukama
• [MDEP-839] - Avoid extra blank lines in file (#495) @​elharo
• Update collect URL (#510) @​elharo
• [MDEP-689] - Fixes ignored dependency filtering in go-offline goal (#417) @​ldhardy
• [MDEP-960] - Repair silent logging (#447) @​elharo

📝 Documentation updates

• [MDEP-933] - Document dependency tree output formats (#535) @​Ndacyayisenga-droid
• Add additional comment to clarify the minimal supported version of ou… (#465) @​gluxhappy
• [MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#511) @​Bukama
• Unix file separators (#507) @​elharo

👻 Maintenance

• Simplify usage of RepositoryManager and DependencyResolver (#1518) @​slawekjaranowski
• Use Resolver API in copy and unpack (#1514) @​slawekjaranowski
• Update site descriptor to 2.0.0 (#1508) @​slawekjaranowski
• Enable prevent branch protection rules (#1503) @​slawekjaranowski
• Fix [MDEP-931] - Replace PrintWriter with Writer in AbstractSerializing Visitor and subclasses (#530) @​Ndacyayisenga-droid
• Cleanups dependencies (#1496) @​slawekjaranowski
• Copy edit parameter descriptions (#1488) @​elharo
• Small Javadoc clarifications (#533) @​elharo
• [MDEP-967] - Change info to debug logging in AbstractFromConfigurationMojo (#529) @​Ndacyayisenga-droid
• fix: remove duplicate maven-resolver-api and maven-resolver-util dependencies in pom.xml (#526) @​Ndacyayisenga-droid
• Enable GH issues (#522) @​Bukama
• Remove redundant/unneeded code (#519) @​elharo
• Add PR Automation and Stale actions (#513) @​slawekjaranowski
• Keep files in temporary directory to be deleted after test (#508) @​pzygielo
• Drop unnecessary call (#509) @​pzygielo
• Avoid deprecated ArtifactFactory (#489) @​elharo

... (truncated)

Commits

• 826e5f0 [maven-release-plugin] prepare release maven-dependency-plugin-3.9.0
• 0db1acc Use Resolver API in go-offline for dependencies resolving (#1533)
• e50031a Use Resolver API in go-offline for plugins resolving
• 6ed4b1a Bump org.apache.commons:commons-lang3 from 3.18.0 to 3.19.0
• 8776c61 Bump org.assertj:assertj-core from 3.27.5 to 3.27.6
• d2af78e Ignore Mockito 5.x and SLF4j 2.x by dependabot
• dcd4b7d Bump org.assertj:assertj-core from 3.27.4 to 3.27.5
• 7523948 Strict check of dependencies usage
• 23186d4 Fixes #1522, add render-dependencies mojo (#1523)
• bc1893f Use Resolver API in resolve-plugin
• Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
com.puppycrawl.tools:checkstyle	[>= 11.a0, < 12]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[haroon-sheikh]

Bundled into #936

[haroon-sheikh]

@dependabot rebase

[dependabot]

Looks like these dependencies are no longer updatable, so this is no longer needed.