Skip to content

chore(deps): bump the gradle-dependencies group in /backend with 4 updates#1567

Merged
imnotjames merged 2 commits into
developfrom
dependabot/gradle/backend/gradle-dependencies-e7797acf4e
May 30, 2026
Merged

chore(deps): bump the gradle-dependencies group in /backend with 4 updates#1567
imnotjames merged 2 commits into
developfrom
dependabot/gradle/backend/gradle-dependencies-e7797acf4e

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 29, 2026

Bumps the gradle-dependencies group in /backend with 4 updates: com.github.RouHim:jaudiotagger, org.apache.tika:tika-core, org.glassfish.jaxb:jaxb-runtime and org.hibernate.orm.

Updates com.github.RouHim:jaudiotagger from 2.0.21 to 2.0.22

Release notes

Sourced from com.github.RouHim:jaudiotagger's releases.

2.0.22

2.0.22 (2026-05-27)

Changelog

Sourced from com.github.RouHim:jaudiotagger's changelog.

2.0.22 (2026-05-27)

Commits
  • 8e4ebc1 chore(release): 2.0.22 [skip ci]
  • 8d3e23e chore(deps): update dependency org.junit.jupiter:junit-jupiter to v6.1.0
  • See full diff in compare view

Updates org.apache.tika:tika-core from 3.3.0 to 3.3.1

Changelog

Sourced from org.apache.tika:tika-core's changelog.

Release 3.3.1 - 5/20/2026

  • Dependency upgrades (TIKA-4695).

  • Use the IANA-registered text/markdown as the primary media type, with text/x-web-markdown and text/x-markdown kept as aliases (TIKA-4724).

  • Fix several potential resource/file-handle leaks across the OOXML and ODF parsers, the HTTP fetcher, the gRPC server, and ForkClient (TIKA-4704).

  • The resourceName of a nested tarball no longer includes the parent directories of its parent gzip file, and fix a typo in the .gz extension (TIKA-4705).

Release 3.3.0 - 3/18/2026

  • Switch to poi-ooxml-full (TIKA-4563).

  • Users need to add "allowAbsolutePaths=true" for the FileSystemFetcher to fetch an absolute path (TIKA-4649).

  • Add a markdown option for content handlers (TIKA-4563).

  • Improve zip parsing (TIKA-4650).

  • Add detection of compressed bmp (TIKA-4511).

  • Allow per file timeouts in tika-pipes (TIKA-4497).

  • Add matroska detector (TIKA-1180).

  • Allow multiple values for many Dublin Core keys (TIKA-4466).

  • Extract macros by default in tika-app's commandline and gui (TIKA-4472).

  • Improve extraction of Javascript from PDFs (TIKA-4465).

Release 3.2.3 - 9/11/2025

  • Allow backwards compatibility with versions of commons-compress before 1.28.0 (TIKA-4469).

  • Fix XFA parsing within PDFs when woodstox is on the classpath as in tika-server (TIKA-4482).

  • Dependency updates.

Release 3.2.2 - 8/6/2025

  • Improve detection of encrypted ODT files (TIKA-4459)

  • Dependency updates (TIKA-4455).

... (truncated)

Commits
  • bf9aa92 [maven-release-plugin] prepare release 3.3.1-rc1
  • bc80738 TIKA-4729 - prep for 3.3.1 release
  • 5a2e4a7 TIKA-4695: update aws, jbig2
  • 75dbf68 TIKA-4695: update aws, enforcer plugin, azure
  • 3b6e1f6 TIKA-4695: update plexus-classworlds
  • 1de9eb9 TIKA-4695: update maven-model
  • 90b43fe TIKA-4695: update aws, junrar
  • 2485c0d TIKA-4695: update aws, asm
  • 687006f TIKA-4695: update slf4j
  • bdaa2af [TIKA-4724] Use IANA-registered text/markdown as primary type (#2806)
  • Additional commits viewable in compare view

Updates org.glassfish.jaxb:jaxb-runtime from 4.0.8 to 4.0.9

Updates org.hibernate.orm from 7.3.5.Final to 7.4.0.Final

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the gradle-dependencies group
6ac2181 
Bumps the gradle-dependencies group in /backend with 4 updates: [com.github.RouHim:jaudiotagger](https://github.com/RouHim/jaudiotagger), [org.apache.tika:tika-core](https://github.com/apache/tika), org.glassfish.jaxb:jaxb-runtime and org.hibernate.orm.


Updates `com.github.RouHim:jaudiotagger` from 2.0.21 to 2.0.22
- [Release notes](https://github.com/RouHim/jaudiotagger/releases)
- [Changelog](https://github.com/RouHim/jaudiotagger/blob/main/CHANGELOG.md)
- [Commits](RouHim/jaudiotagger@2.0.21...2.0.22)

Updates `org.apache.tika:tika-core` from 3.3.0 to 3.3.1
- [Changelog](https://github.com/apache/tika/blob/3.3.1/CHANGES.txt)
- [Commits](apache/tika@3.3.0...3.3.1)

Updates `org.glassfish.jaxb:jaxb-runtime` from 4.0.8 to 4.0.9

Updates `org.hibernate.orm` from 7.3.5.Final to 7.4.0.Final

---
updated-dependencies:
- dependency-name: com.github.RouHim:jaudiotagger
  dependency-version: 2.0.22
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: gradle-dependencies
- dependency-name: org.apache.tika:tika-core
  dependency-version: 3.3.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: gradle-dependencies
- dependency-name: org.glassfish.jaxb:jaxb-runtime
  dependency-version: 4.0.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: gradle-dependencies
- dependency-name: org.hibernate.orm
  dependency-version: 7.4.0.Final
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gradle-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@imnotjames imnotjames merged commit 49a2ad8 into develop May 30, 2026
15 checks passed
@imnotjames imnotjames deleted the dependabot/gradle/backend/gradle-dependencies-e7797acf4e branch May 30, 2026 03:30
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@imnotjames imnotjames imnotjames approved these changes

Assignees

No one assigned

Labels

backend dependencies

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@imnotjames