Dependency Dashboard #1008
Description
This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.
Config Migration Needed
- Select this checkbox to let Renovate create an automated Config Migration PR.
Deprecations / Replacements
Warning
These dependencies are either deprecated or have replacements available:
| Datasource | Package | Replacement PR? |
|---|---|---|
| gradle | com.github.tomakehurst:wiremock-jre8 |  |
| gradle | org.hibernate:hibernate-core | |
Awaiting Schedule
The following updates are awaiting their schedule. To get an update now, click on a checkbox below.
- Update Spring Upgrade - Non Major (
org.springframework.cloud:spring-cloud-starter-openfeign,org.springframework.cloud:spring-cloud-context,org.springframework.boot:spring-boot-starter-validation,org.springframework.security:spring-security-web,org.springframework.security:spring-security-test,org.springframework.security:spring-security-taglibs,org.springframework.security:spring-security-saml2-service-provider,org.springframework.security:spring-security-rsocket,org.springframework.security:spring-security-oauth2-resource-server,org.springframework.security:spring-security-oauth2-jose,org.springframework.security:spring-security-oauth2-core,org.springframework.security:spring-security-oauth2-client,org.springframework.security:spring-security-messaging,org.springframework.security:spring-security-ldap,org.springframework.security:spring-security-data,org.springframework.security:spring-security-crypto,org.springframework.security:spring-security-config,org.springframework.security:spring-security-cas,org.springframework.security:spring-security-aspects,org.springframework.security:spring-security-acl,org.springframework.security:spring-security-core,org.springframework.boot) - Update Logging Dependencies to v2.25.4 (
org.apache.logging.log4j:log4j-to-slf4j,org.apache.logging.log4j:log4j-api) - Update dependency com.launchdarkly:launchdarkly-java-server-sdk to v7.13.2
- Update dependency com.fasterxml.jackson.module:jackson-module-paranamer to v2.21.2
- Update dependency com.github.hmcts:core-case-data-store-client to v5.2.0
- 🔐 Create all awaiting schedule PRs at once 🔐
Rate-Limited
The following updates are currently rate-limited. To force their creation now, click on a checkbox below.
- Update dependency commons-beanutils:commons-beanutils to v1.11.0
- Update dependency commons-fileupload:commons-fileupload to v1.6.0
- Update dependency commons-io:commons-io to v2.21.0
- Update dependency hashicorp/terraform to v1.14.8
- Update dependency io.hypersistence:hypersistence-utils-hibernate-63 to v3.15.2
- Update dependency net.minidev:json-smart to v2.6.0
- Update dependency org.apache.commons:commons-lang3 to v3.20.0
- Update dependency org.apache.httpcomponents.client5:httpclient5 to v5.6
- Update dependency org.awaitility:awaitility to v4.3.0
- Update dependency pmd to v6.55.0
- Update Gradle to v8.14.4
- Update mapstruct monorepo to v1.6.3 (
org.mapstruct:mapstruct-processor,org.mapstruct:mapstruct-jdk8) - Update org.seleniumhq.selenium:4.2.2 to v4.41.0 (
org.seleniumhq.selenium:selenium-support,org.seleniumhq.selenium:selenium-api,org.seleniumhq.selenium:selenium-edge-driver,org.seleniumhq.selenium:selenium-safari-driver,org.seleniumhq.selenium:selenium-chrome-driver,org.seleniumhq.selenium:selenium-firefox-driver,org.seleniumhq.selenium:selenium-remote-driver,org.seleniumhq.selenium:selenium-java) - Update plugin com.github.ben-manes.versions to v0.53.0
- Update plugin io.freefair.lombok to v8.14.4
- Update plugin org.flywaydb.flyway to v9.22.3
- Update versions.logbook to v3.12.3 (
org.zalando:logbook-httpclient5,org.zalando:logbook-spring-boot-starter,org.zalando:logbook-core) - Update actions/stale action to v10
- Update dependency checkstyle to v13
- Update dependency com.github.hmcts.java-logging:logging to v8
- Update dependency com.google.guava:guava-testlib to v33
- Update dependency com.microsoft.azure:applicationinsights-core to v3
- Update dependency org.hibernate:hibernate-core to v7
- Update dependency org.springdoc:springdoc-openapi-starter-webmvc-ui to v3
- Update dependency org.testcontainers:testcontainers-bom to v2
- Update dependency pmd to v7
- Update flyway to v12 (major) (
org.flywaydb:flyway-core,org.flywaydb.flyway) - Update jetty monorepo to v12 (major) (
org.eclipse.jetty:jetty-security,org.eclipse.jetty:jetty-io,org.eclipse.jetty:jetty-util,org.eclipse.jetty:jetty-http,org.eclipse.jetty:jetty-server) - Update junit-framework monorepo to v6 (major) (
org.junit.platform:junit-platform-launcher,org.junit.platform:junit-platform-engine,org.junit.platform:junit-platform-commons,org.junit.vintage:junit-vintage-engine,org.junit.jupiter:junit-jupiter-params,org.junit.jupiter:junit-jupiter-engine,org.junit.jupiter:junit-jupiter-api) - Update plugin io.freefair.lombok to v9
- Update plugin net.serenity-bdd.serenity-gradle-plugin to v5
- Update plugin org.sonarqube to v7
- Update spring boot to v4 (major) (
org.springframework.boot:spring-boot-starter-oauth2-client,org.springframework.boot:spring-boot-starter-validation,org.springframework.boot) - Update spring cloud to v5 (major) (
org.springframework.cloud:spring-cloud-starter-openfeign,org.springframework.cloud:spring-cloud-context) - Update spring security to v7 (major) (
org.springframework.security:spring-security-web,org.springframework.security:spring-security-test,org.springframework.security:spring-security-taglibs,org.springframework.security:spring-security-saml2-service-provider,org.springframework.security:spring-security-rsocket,org.springframework.security:spring-security-oauth2-resource-server,org.springframework.security:spring-security-oauth2-jose,org.springframework.security:spring-security-oauth2-core,org.springframework.security:spring-security-oauth2-client,org.springframework.security:spring-security-messaging,org.springframework.security:spring-security-ldap,org.springframework.security:spring-security-data,org.springframework.security:spring-security-crypto,org.springframework.security:spring-security-config,org.springframework.security:spring-security-cas,org.springframework.security:spring-security-aspects,org.springframework.security:spring-security-acl,org.springframework.security:spring-security-core) - Update versions.logbook to v4 (major) (
org.zalando:logbook-httpclient5,org.zalando:logbook-spring-boot-starter,org.zalando:logbook-core) - Update versions.serenity to v5 (major) (
net.serenity-bdd:serenity-spring,net.serenity-bdd:serenity-rest-assured,net.serenity-bdd:serenity-junit,net.serenity-bdd:serenity-core) - Update versions.tomcat to v11 (major) (
org.apache.tomcat.embed:tomcat-embed-websocket,org.apache.tomcat.embed:tomcat-embed-core) - 🔐 Create all rate-limited PRs at once 🔐
Open
The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.
- Update QA & Nightly Checks - Non Major (
au.com.dius.pact.provider:junit5spring,au.com.dius.pact.provider:spring,au.com.dius.pact.provider:junit5,au.com.dius.pact.consumer:junit,au.com.dius.pact.consumer:junit5,org.pitest:pitest,net.serenity-bdd.serenity-gradle-plugin,au.com.dius.pact,info.solidsoft.pitest) - Update dependency com.auth0:java-jwt to v4.5.1
- Update dependency org.hibernate:hibernate-core to v6.6.46.Final
- Update dependency org.postgresql:postgresql to v42.7.10
- Update versions.tomcat to v10.1.54 (
org.apache.tomcat.embed:tomcat-embed-websocket,org.apache.tomcat.embed:tomcat-embed-core) - Click on this checkbox to rebase all open PRs at once
PR Closed (Blocked)
The following updates are blocked by an existing closed PR. To recreate the PR, click on a checkbox below.
- Update Testing Dependencies - Non Major to v5.23.0 (
org.mockito:mockito-junit-jupiter,org.mockito:mockito-core) - Update dependency org.springdoc:springdoc-openapi-starter-webmvc-ui to v2.8.16
- Update dependency com.github.ben-manes.caffeine:caffeine to v3.2.3
- Update Gradle to v9
Detected Dependencies
docker-compose (1)
docker-compose.yml
dockerfile (1)
Dockerfile (1)
hmctspublic.azurecr.io/base/java 21-distroless
github-actions (2)
.github/workflows/publish-openapi.yml (1)
hmcts/workflow-publish-openapi-spec v1.github/workflows/stale.yml (1)
actions/stale v9→ [Updates:v10]
gradle (2)
build.gradle (116)
io.spring.dependency-management 1.1.7org.springframework.boot 3.4.4→ [Updates:3.5.13,4.0.5]org.owasp.dependencycheck 12.2.0com.github.ben-manes.versions 0.48.0→ [Updates:0.53.0]org.sonarqube 5.1.0.4882→ [Updates:7.2.3.7755]info.solidsoft.pitest 1.15.0→ [Updates:1.19.0]io.freefair.lombok 8.10.2→ [Updates:8.14.4,9.2.0]au.com.dius.pact 4.6.17→ [Updates:4.6.20]net.serenity-bdd.serenity-gradle-plugin 4.2.33→ [Updates:4.3.2,5.3.9]org.flywaydb.flyway 9.3.0→ [Updates:9.22.3,12.3.0]checkstyle 10.26.1→ [Updates:13.4.0]pmd 6.40.0→ [Updates:6.55.0,7.23.0]commons-io:commons-io 2.19.0→ [Updates:2.21.0]org.springframework.security:spring-security-core 6.4.4→ [Updates:6.5.9,7.0.4]org.springframework.security:spring-security-acl 6.4.4→ [Updates:6.5.9,7.0.4]org.springframework.security:spring-security-aspects 6.4.4→ [Updates:6.5.9,7.0.4]org.springframework.security:spring-security-cas 6.4.4→ [Updates:6.5.9,7.0.4]org.springframework.security:spring-security-config 6.4.4→ [Updates:6.5.9,7.0.4]org.springframework.security:spring-security-crypto 6.4.4→ [Updates:6.5.9,7.0.4]org.springframework.security:spring-security-data 6.4.4→ [Updates:6.5.9,7.0.4]org.springframework.security:spring-security-ldap 6.4.4→ [Updates:6.5.9,7.0.4]org.springframework.security:spring-security-messaging 6.4.4→ [Updates:6.5.9,7.0.4]org.springframework.security:spring-security-oauth2-client 6.4.4→ [Updates:6.5.9,7.0.4]org.springframework.security:spring-security-oauth2-core 6.4.4→ [Updates:6.5.9,7.0.4]org.springframework.security:spring-security-oauth2-jose 6.4.4→ [Updates:6.5.9,7.0.4]org.springframework.security:spring-security-oauth2-resource-server 6.4.4→ [Updates:6.5.9,7.0.4]org.springframework.security:spring-security-openid 6.4.4org.springframework.security:spring-security-remoting 6.4.4org.springframework.security:spring-security-rsocket 6.4.4→ [Updates:6.5.9,7.0.4]org.springframework.security:spring-security-saml2-service-provider 6.4.4→ [Updates:6.5.9,7.0.4]org.springframework.security:spring-security-taglibs 6.4.4→ [Updates:6.5.9,7.0.4]org.springframework.security:spring-security-test 6.4.4→ [Updates:6.5.9,7.0.4]org.springframework.security:spring-security-web 6.4.4→ [Updates:6.5.9,7.0.4]org.seleniumhq.selenium:selenium-java 4.2.2→ [Updates:4.41.0]org.seleniumhq.selenium:selenium-remote-driver 4.2.2→ [Updates:4.41.0]org.seleniumhq.selenium:selenium-firefox-driver 4.2.2→ [Updates:4.41.0]org.seleniumhq.selenium:selenium-chrome-driver 4.2.2→ [Updates:4.41.0]org.seleniumhq.selenium:selenium-safari-driver 4.2.2→ [Updates:4.41.0]org.seleniumhq.selenium:selenium-edge-driver 4.2.2→ [Updates:4.41.0]org.seleniumhq.selenium:selenium-api 4.2.2→ [Updates:4.41.0]org.seleniumhq.selenium:selenium-support 4.2.2→ [Updates:4.41.0]ch.qos.logback:logback-classic 1.5.32ch.qos.logback:logback-core 1.5.32org.junit.jupiter:junit-jupiter-api 5.14.3→ [Updates:6.0.3]org.junit.jupiter:junit-jupiter-engine 5.14.3→ [Updates:6.0.3]org.junit.jupiter:junit-jupiter-params 5.14.3→ [Updates:6.0.3]org.junit.platform:junit-platform-commons 1.14.3→ [Updates:6.0.3]org.junit.platform:junit-platform-engine 1.14.3→ [Updates:6.0.3]org.junit.platform:junit-platform-launcher 1.14.3→ [Updates:6.0.3]org.testcontainers:testcontainers-bom 1.21.4→ [Updates:2.0.4]org.mapstruct:mapstruct-jdk8 1.3.0.Final→ [Updates:1.6.3]org.mapstruct:mapstruct-processor 1.3.0.Final→ [Updates:1.6.3]org.springframework.boot:spring-boot-starter-validation 3.4.4→ [Updates:3.5.13,4.0.5]org.springframework.boot:spring-boot-starter-oauth2-client 2.7.18→ [Updates:4.0.5]org.springframework.cloud:spring-cloud-context 4.2.1→ [Updates:4.3.2,5.0.1]org.springframework.cloud:spring-cloud-starter-openfeign 4.2.1→ [Updates:4.3.2,5.0.1]org.springdoc:springdoc-openapi-starter-webmvc-ui 2.8.9→ [Updates:2.8.16,3.0.2]org.apache.httpcomponents.client5:httpclient5 5.5→ [Updates:5.6]org.springframework.security:spring-security-rsa 1.1.5org.zalando:logbook-core 3.9.0→ [Updates:3.12.3,4.0.3]org.zalando:logbook-spring-boot-starter 3.9.0→ [Updates:3.12.3,4.0.3]org.zalando:logbook-httpclient5 3.9.0→ [Updates:3.12.3,4.0.3]org.zalando:problem-spring-web-starter 0.29.1net.minidev:json-smart 2.5.2→ [Updates:2.6.0]com.launchdarkly:launchdarkly-java-server-sdk 7.13.1→ [Updates:7.13.2]org.apache.commons:commons-lang3 3.12.0→ [Updates:3.20.0]commons-fileupload:commons-fileupload 1.5→ [Updates:1.6.0]commons-beanutils:commons-beanutils 1.9.4→ [Updates:1.11.0]com.github.hmcts.java-logging:logging 6.1.9→ [Updates:8.0.0]org.hibernate:hibernate-core 6.6.42.Final→ [Updates:6.6.46.Final,7.3.0.Final]org.hibernate:hibernate-validator 8.0.3.Finalorg.apache.logging.log4j:log4j-api 2.25.3→ [Updates:2.25.4]org.apache.logging.log4j:log4j-to-slf4j 2.25.3→ [Updates:2.25.4]org.slf4j:slf4j-api 2.0.17org.apache.tomcat.embed:tomcat-embed-core 10.1.52→ [Updates:10.1.54,11.0.20]org.apache.tomcat.embed:tomcat-embed-websocket 10.1.52→ [Updates:10.1.54,11.0.20]com.github.hmcts:service-auth-provider-java-client 5.3.3com.github.hmcts:core-case-data-store-client 5.1.1→ [Updates:5.2.0]com.auth0:java-jwt 4.5.0→ [Updates:4.5.1]com.fasterxml.jackson.module:jackson-module-paranamer 2.18.2→ [Updates:2.21.2]org.flywaydb:flyway-core 8.5.13→ [Updates:12.3.0]org.postgresql:postgresql 42.7.9→ [Updates:42.7.10]io.hypersistence:hypersistence-utils-hibernate-63 3.8.3→ [Updates:3.15.2]org.awaitility:awaitility 4.2.2→ [Updates:4.3.0]com.microsoft.azure:applicationinsights-core 2.6.4→ [Updates:3.7.8]com.github.ben-manes.caffeine:caffeine 3.1.8→ [Updates:3.2.3]org.testcontainers:postgresql 1.21.4org.testcontainers:junit-jupiter 1.21.4com.h2database:h2 2.4.240org.mockito:mockito-core 5.21.0→ [Updates:5.23.0]org.mockito:mockito-junit-jupiter 5.21.0→ [Updates:5.23.0]com.github.tomakehurst:wiremock-jre8 3.0.1→ [Updates:3.0.1]org.eclipse.jetty:jetty-server 11.0.26→ [Updates:12.1.8]org.eclipse.jetty:jetty-http 11.0.26→ [Updates:12.1.8]org.eclipse.jetty:jetty-util 11.0.26→ [Updates:12.1.8]org.eclipse.jetty:jetty-io 11.0.26→ [Updates:12.1.8]org.eclipse.jetty:jetty-security 11.0.26→ [Updates:12.1.8]org.eclipse.jetty.http2:http2-server 11.0.26com.github.hmcts:document-management-client 7.0.1org.pitest:pitest 1.16.3→ [Updates:1.23.0]info.solidsoft.gradle.pitest:gradle-pitest-plugin 1.15.0org.codehaus.sonar-plugins:sonar-pitest-plugin 0.5net.serenity-bdd:serenity-core 3.9.8→ [Updates:5.3.10]net.serenity-bdd:serenity-junit 3.9.8→ [Updates:5.3.10]net.serenity-bdd:serenity-rest-assured 3.9.8→ [Updates:5.3.10]net.serenity-bdd:serenity-spring 3.9.8→ [Updates:5.3.10]org.junit.vintage:junit-vintage-engine 5.14.3→ [Updates:6.0.3]com.obsidiandynamics.pojotester:core 0.9.0com.github.hmcts:fortify-client 1.4.10com.google.guava:guava-testlib 32.1.3-jre→ [Updates:33.5.0-jre]com.vladsch.flexmark:flexmark-all 0.64.8au.com.dius.pact.consumer:junit5 4.6.17→ [Updates:4.6.20]au.com.dius.pact.consumer:junit 4.6.17→ [Updates:4.6.20]au.com.dius.pact.provider:junit5 4.6.17→ [Updates:4.6.20]au.com.dius.pact.provider:spring 4.6.17→ [Updates:4.6.20]au.com.dius.pact.provider:junit5spring 4.6.17→ [Updates:4.6.20]gradle.properties
gradle-wrapper (1)
gradle/wrapper/gradle-wrapper.properties (1)
gradle 8.11.1→ [Updates:8.14.4,9.4.1]
helm-values (1)
charts/wa-task-management-api/values.yaml
helmv3 (1)
charts/wa-task-management-api/Chart.yaml (1)
java 5.3.0
renovate-config-presets (1)
.github/renovate.json
terraform (3)
infrastructure/main.tf
infrastructure/sdp.tf
infrastructure/state.tf (2)
azuread 3.8.0azurerm ~> 4.0
terraform-version (1)
infrastructure/.terraform-version (1)
hashicorp/terraform 1.12.2→ [Updates:1.14.8]
- Check this box to trigger a request for Renovate to run again on this repository