Bump the prod-deps group across 1 directory with 7 updates

[dependabot]

Bumps the prod-deps group with 7 updates in the / directory:

Package	From	To
io.quarkus.platform:quarkus-bom	3.30.1	3.31.1
io.quarkus.platform:quarkus-maven-plugin	3.30.1	3.31.1
org.jetbrains.kotlin:kotlin-stdlib	2.2.21	2.3.0
org.jetbrains.kotlin:kotlin-maven-allopen	2.2.21	2.3.0
org.jetbrains.kotlin:kotlin-maven-plugin	2.2.21	2.3.0
org.assertj:assertj-core	3.27.6	3.27.7
org.apache.sshd:sshd-core	2.16.0	2.17.1

Updates io.quarkus.platform:quarkus-bom from 3.30.1 to 3.31.1

Commits

• a7b3d85 [maven-release-plugin] prepare release 3.31.1
• b9da149 Merge pull request #1734 from gsmet/quarkus-3.31.1
• 2e11454 Upgrade to Quarkus 3.31.1
• 6af5965 Merge pull request #1732 from jmartisk/qlc4j-1.5.0
• 7dbeecd Disable jlama integration tests
• d14eeb8 Upgrade to Quarkus LangChain4j 1.5.0
• 2f30bd0 Merge pull request #1730 from qosdk-bot/qosdk-release-7.5.1-main
• e1b00af Update QOSDK to 7.5.1
• f92f193 Merge pull request #1721 from jamesnetherton/camel-quarkus-3.31.0
• 1ca78b7 Upgrade Camel Quarkus to 3.31.0
• Additional commits viewable in compare view

Updates io.quarkus.platform:quarkus-maven-plugin from 3.30.1 to 3.31.1

Commits

• a7b3d85 [maven-release-plugin] prepare release 3.31.1
• b9da149 Merge pull request #1734 from gsmet/quarkus-3.31.1
• 2e11454 Upgrade to Quarkus 3.31.1
• 6af5965 Merge pull request #1732 from jmartisk/qlc4j-1.5.0
• 7dbeecd Disable jlama integration tests
• d14eeb8 Upgrade to Quarkus LangChain4j 1.5.0
• 2f30bd0 Merge pull request #1730 from qosdk-bot/qosdk-release-7.5.1-main
• e1b00af Update QOSDK to 7.5.1
• f92f193 Merge pull request #1721 from jamesnetherton/camel-quarkus-3.31.0
• 1ca78b7 Upgrade Camel Quarkus to 3.31.0
• Additional commits viewable in compare view

Updates org.jetbrains.kotlin:kotlin-stdlib from 2.2.21 to 2.3.0

Release notes

Sourced from org.jetbrains.kotlin:kotlin-stdlib's releases.

Kotlin 2.3.0

Changelog

Analysis API

• KT-80082 K2. False positive "Cannot resolve method" for self-bounded generic with wildcard return type in Java interop
• KT-80303 Move :native:analysis-api-klib-reader to :libraries:tools

Analysis API. Code Compilation

• KT-70860 K2 IDE / Kotlin Debugger: CCE “java.lang.String cannot be cast to java.lang.Void” on evaluating not-null variable on the line with assigning null to that var
• KT-78554 K2 IDE / Kotlin Debugger: ISE “No override for FUN IR_EXTERNAL_DECLARATION_STUB” on calling toString() for local class instance during evaluation
• KT-73201 K2 IDE: Error while evaluating expressions with local classes

Analysis API. FIR

• KT-81378 Expected expression 'FirFunctionCallImpl' to be resolved caused by suspend {}
• KT-80473 Add events for tracking LL activities
• KT-46375 Analysis API: Support cross-file class redeclaration checks using indices
• KT-80471 Analysis API: Deduplicate equivalent call candidates in resolveToCallCandidates
• KT-79653 [Analysis API] ContextCollector: BODY context of enum classes doesn't contain enum entries
• KT-75858 K2 AA: False positive 'property must be initialized' on incremental analysis with 'field' usage and semicolon in setter
• KT-80231 AnnotationArgumentsStateKeepers doesn't restore the initial annotation in some cases
• KT-80233 Pull mutation out of AnnotationArgumentsStateKeepers
• KT-71466 LLFirBuiltinsSessionFactory uses createCompositeSymbolProvider
• KT-76432 JavaClassUseSiteMemberScope: Expected FirResolvedTypeRef with ConeKotlinType but was FirUserTypeRefImpl

Analysis API. Infrastructure

• KT-80717 Support IntelliJ Bazel build in the Kotlin Coop development mode

Analysis API. Light Classes

• KT-80656 Duplicate no-args constructor in PSI
• KT-60490 Symbol Light Classes: Property accessors from a delegated interface don't present in the delegating class
• KT-79689 SymbolLightClassForClassLike.toString() causes PSI tree loading
• KT-80690 Private interface functions are not present in light classes
• KT-80256 K2: Certain actions in JPA code causes infinite PIEAE: "Element class CompositeElement of type REFERENCE_EXPRESSION (class KtNameReferenceExpressionElementType)"
• KT-79012 Add a high-level overview of light classes

Analysis API. Providers and Caches

Fixes

• KT-81476 Analysis API: AlreadyDisposedException from low-memory cache cleanup
• KT-80911 Analysis API: Execute session invalidation in a non-cancelable section
• KT-81242 Analysis API: Add UUID/lifetime properties to LL FIR session structure logging
• KT-80622 Analysis API: Visualise LL FIR session structure & weight
• KT-80904 Analysis API: "Invalid dangling file module" exception during session invalidation
• KT-78882 K2 AA: Calling containingSymbol on getProgressionLastElement causes exception

... (truncated)

Changelog

Sourced from org.jetbrains.kotlin:kotlin-stdlib's changelog.

2.3.0

Analysis API

• KT-80082 K2. False positive "Cannot resolve method" for self-bounded generic with wildcard return type in Java interop
• KT-80303 Move :native:analysis-api-klib-reader to :libraries:tools

Analysis API. Code Compilation

• KT-70860 K2 IDE / Kotlin Debugger: CCE “java.lang.String cannot be cast to java.lang.Void” on evaluating not-null variable on the line with assigning null to that var
• KT-78554 K2 IDE / Kotlin Debugger: ISE “No override for FUN IR_EXTERNAL_DECLARATION_STUB” on calling toString() for local class instance during evaluation
• KT-73201 K2 IDE: Error while evaluating expressions with local classes

Analysis API. FIR

• KT-81378 Expected expression 'FirFunctionCallImpl' to be resolved caused by suspend {}
• KT-80473 Add events for tracking LL activities
• KT-46375 Analysis API: Support cross-file class redeclaration checks using indices
• KT-80471 Analysis API: Deduplicate equivalent call candidates in resolveToCallCandidates
• KT-79653 [Analysis API] ContextCollector: BODY context of enum classes doesn't contain enum entries
• KT-75858 K2 AA: False positive 'property must be initialized' on incremental analysis with 'field' usage and semicolon in setter
• KT-80231 AnnotationArgumentsStateKeepers doesn't restore the initial annotation in some cases
• KT-80233 Pull mutation out of AnnotationArgumentsStateKeepers
• KT-71466 LLFirBuiltinsSessionFactory uses createCompositeSymbolProvider
• KT-76432 JavaClassUseSiteMemberScope: Expected FirResolvedTypeRef with ConeKotlinType but was FirUserTypeRefImpl

Analysis API. Infrastructure

• KT-80717 Support IntelliJ Bazel build in the Kotlin Coop development mode

Analysis API. Light Classes

• KT-80656 Duplicate no-args constructor in PSI
• KT-60490 Symbol Light Classes: Property accessors from a delegated interface don't present in the delegating class
• KT-79689 SymbolLightClassForClassLike.toString() causes PSI tree loading
• KT-80690 Private interface functions are not present in light classes
• KT-80256 K2: Certain actions in JPA code causes infinite PIEAE: "Element class CompositeElement of type REFERENCE_EXPRESSION (class KtNameReferenceExpressionElementType)"
• KT-79012 Add a high-level overview of light classes

Analysis API. Providers and Caches

Fixes

• KT-81476 Analysis API: AlreadyDisposedException from low-memory cache cleanup
• KT-80911 Analysis API: Execute session invalidation in a non-cancelable section
• KT-81242 Analysis API: Add UUID/lifetime properties to LL FIR session structure logging
• KT-80622 Analysis API: Visualise LL FIR session structure & weight
• KT-80904 Analysis API: "Invalid dangling file module" exception during session invalidation
• KT-78882 K2 AA: Calling containingSymbol on getProgressionLastElement causes exception
• KT-58325 Analysis API: Combine LLKotlinStubBasedLibrarySymbolProviders in session dependencies (optimization)

... (truncated)

Commits

• f95cb2f Add ChangeLog for 2.3.0-RC3
• 9d65a2e KT-82901: Fix issue with converting Long.MIN_VALUE to Duration
• 35a9a82 FE: Postpone DiscriminateSuspendInOverloadResolution
• e0b7eea FE: Add tests for KT-82869
• e66298c Add ChangeLog for 2.3.0-RC2
• e490802 [K/JS] Introduce a compiler argument to enable export of suspend functions
• 585094b FIR2IR: Avoid generation of incorrect suspend adapter for custom implementation
• c69adc7 FIR2IR: Rename and clarify contracts for suspicious utility function
• b4bb8bf FIR2IR: Pass original expected type to applySuspendConversionIfNeeded
• 4718830 FIR2IR: Add tests for KT-82590
• Additional commits viewable in compare view

Updates org.jetbrains.kotlin:kotlin-maven-allopen from 2.2.21 to 2.3.0

Updates org.jetbrains.kotlin:kotlin-maven-plugin from 2.2.21 to 2.3.0

Updates org.assertj:assertj-core from 3.27.6 to 3.27.7

Release notes

Sourced from org.assertj:assertj-core's releases.

v3.27.7

🔒 Security

Core

• Fix XXE vulnerability in isXmlEqualTo assertion (CVE-2026-24400)
  • See GHSA-rqfh-9r24-8c9r for details; many thanks to @​wxt201 and @​Song-Li for responsibly reporting it!

🚫 Deprecated

Core

• Deprecate XmlStringPrettyFormatter with no replacement

🐛 Bug Fixes

Guava

• Navigation to assertj-core or guava types from assertj-guava Javadoc site has unnecessary header #3478

🔨 Dependency Upgrades

Core

• Upgrade to Byte Buddy 1.18.3
• Upgrade to JUnit BOM 5.14.1

Guava

• Upgrade to Guava 33.5.0-jre

Commits

• e840716 [maven-release-plugin] prepare release assertj-build-3.27.7
• 85ca7eb Deprecate XmlStringPrettyFormatter
• 77081dc Merge commit from fork
• b68fc24 Bump github/codeql-action from 4.31.9 to 4.31.10 in the github-actions group ...
• 0cf5bb6 Bump kotlin.version from 2.1.0 to 2.2.21
• d393ef1 Abort tests when symbolic links cannot be created (#3788)
• 2212433 Add IntelliJ custom inspection for test class names
• 5717d02 Update JetBrains icon
• a8ec20b Add icon for JetBrains products
• c05fb3d Bump Maven to 3.9.12 and Wrapper to 3.3.4
• Additional commits viewable in compare view

Updates org.apache.sshd:sshd-core from 2.16.0 to 2.17.1

Release notes

Sourced from org.apache.sshd:sshd-core's releases.

Apache MINA SSHD 2.17.1

This patch release fixes the broken Maven deployment of 2.17.0. (The root pom was missing).

There were no code changes, only a pom update to work around a tooling bug that caused the problem with 2.17.0:

• GH-875 Use Apache Parent POM 36

For the real changes since version 2.16.0 see the 2.17.0 change notes.

Apache MINA SSHD 2.17.0

Warning: the publication of this release to Maven Central somehow went wrong; it is missing the root POM.

Use the 2.17.1 release instead.

See the change log.

New Contributors

• @​JannuMies made their first contribution in apache/mina-sshd#832
• @​bemoty made their first contribution in apache/mina-sshd#843
• @​chrjohn made their first contribution in apache/mina-sshd#849
• @​denyshorman made their first contribution in apache/mina-sshd#870

Full Changelog: apache/mina-sshd@sshd-2.16.0...sshd-2.17.0

Changelog

Sourced from org.apache.sshd:sshd-core's changelog.

Previous Versions

• Version 2.1.0 to 2.2.0
• Version 2.2.0 to 2.3.0
• Version 2.3.0 to 2.4.0
• Version 2.4.0 to 2.5.0
• Version 2.5.0 to 2.5.1
• Version 2.5.1 to 2.6.0
• Version 2.6.0 to 2.7.0
• Version 2.7.0 to 2.8.0
• Version 2.8.0 to 2.9.0
• Version 2.9.0 to 2.9.1
• Version 2.9.1 to 2.9.2
• Version 2.9.2 to 2.10.0
• Version 2.10.0 to 2.11.0
• Version 2.11.0 to 2.12.0
• Version 2.12.0 to 2.12.1
• Version 2.12.1 to 2.13.0
• Version 2.13.0 to 2.13.1
• Version 2.13.1 to 2.13.2
• Version 2.13.2 to 2.14.0
• Version 2.14.0 to 2.15.0
• Version 2.15.0 to 2.16.0
• Version 2.16.0 to 2.17.0

Latest Version

• Version 2.17.0 to 2.17.1

Planned for Next Version

Bug Fixes

New Features

Potential Compatibility Issues

Major Code Re-factoring

Commits

• 03df246 [maven-release-plugin] prepare release sshd-2.17.1
• e661b4a GH-875: Update Apache Parent POM
• 42d2c7d [maven-release-plugin] prepare for next development iteration
• 9308c1e [maven-release-plugin] prepare release sshd-2.17.0
• 5f6bef6 Prepare documentation for a 2.17.0 release
• 5ee81f4 Fix duplicate character echoing in ProcessShell
• b6848c0 Mock git configuration in git-related tests
• d839c95 Bump JUnit 5 to latest patch version
• 7a7f2bb CoreTestSupportUtils: fix test framework
• 7b397c7 [releng] Build with Java 25 in CI
• Additional commits viewable in compare view

Updates org.jetbrains.kotlin:kotlin-maven-allopen from 2.2.21 to 2.3.0

Updates io.quarkus.platform:quarkus-maven-plugin from 3.30.1 to 3.31.1

Commits

• a7b3d85 [maven-release-plugin] prepare release 3.31.1
• b9da149 Merge pull request #1734 from gsmet/quarkus-3.31.1
• 2e11454 Upgrade to Quarkus 3.31.1
• 6af5965 Merge pull request #1732 from jmartisk/qlc4j-1.5.0
• 7dbeecd Disable jlama integration tests
• d14eeb8 Upgrade to Quarkus LangChain4j 1.5.0
• 2f30bd0 Merge pull request #1730 from qosdk-bot/qosdk-release-7.5.1-main
• e1b00af Update QOSDK to 7.5.1
• f92f193 Merge pull request #1721 from jamesnetherton/camel-quarkus-3.31.0
• 1ca78b7 Upgrade Camel Quarkus to 3.31.0
• Additional commits viewable in compare view

Updates org.jetbrains.kotlin:kotlin-maven-plugin from 2.2.21 to 2.3.0

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud