chore(deps): bump the all-dependencies group across 1 directory with 10 updates

[dependabot]

Bumps the all-dependencies group with 10 updates in the / directory:

Package	From	To
io.swagger.core.v3:swagger-core	2.2.36	2.2.41
com.azure:azure-monitor-opentelemetry-autoconfigure	1.3.0	1.4.0
net.logstash.logback:logstash-logback-encoder	8.1	9.0
org.hibernate.validator:hibernate-validator	9.0.1.Final	9.1.0.Final
org.apache.commons:commons-text	1.14.0	1.15.0
com.fasterxml.jackson.core:jackson-databind	2.20.0	2.20.1
org.junit:junit-bom	5.13.4	6.0.1
io.rest-assured:rest-assured	5.5.6	6.0.0
com.github.ben-manes.versions	0.52.0	0.53.0
org.cyclonedx.bom	2.3.1	3.1.0

Updates io.swagger.core.v3:swagger-core from 2.2.36 to 2.2.41

Release notes

Sourced from io.swagger.core.v3:swagger-core's releases.

Swagger-core 2.2.41 released!

• Fix/annotated type caching 5003 (#5005)
• #4852 Unit test and fix to allow recursive models to process without StackOverflow (#5004)
• fix: Refactor JsonAssert and apply to json/yaml assertions (#5002)
• fix: use arraySchema when deciding required of an array (#4998)
• fix: NotBlank and NotEmpty annotations follow NotNull behavior (#4968)

Swagger-core 2.2.40 released!

• fix: remove superfluous ref for a composed schema. Fixes #4959 (#5000)
• Bump classgraph version to 4.8.184 (#4992)
• fix(test): Make serialization tests robust against key reordering (#4990)

Swagger-core 2.2.39 released!

• chore: remove System.out and printStackTrace to align with Sonar rules S106 and S1148 (#4988)
• fix: adjust docs about RequiredMode.AUTO + small refactor (#4982)
• Fix a non-deterministic assertion in ServletUtilsTest (#4981)
• Fix(core): Prevent redundant schema resolution by fixing AnnotatedType equality (#4975)

Swagger-core 2.2.38 released!

• honor array schema description when generating OpenAPI 3.1 (#4942)

Swagger-core 2.2.37 released!

• fix: prevent leaking properties to enum schema when Schema#implementa… (#4970)
• refs enumAsRef Issue 4932 (#4969)
• fix: add booleanSchemaValue to Schema's hashCode and equals (#4958)
• fix: Fix missing items on nested @​ArraySchema items in OAS 3.1 (#4949)

Commits

• fae397a prepare release 2.2.41 (#5022)
• cf11db7 fix: use arraySchema when deciding required of an array (#4998) Fixes: #4341
• 2546511 fix: stops reprocessing parameters extracted from nested BeanParam Fixes: #39...
• 23d2971 fix: NotBlank and NotEmpty annotations follow NotNull behavior (#4968)
• 75af075 fix: Refactor JsonAssert and apply to json/yaml assertions (#5002)
• 0a5556a #4852 fix: allow recursive models to process without StackOverflow (#5004)
• 8260e8f Fix/annotated type caching 5003 (#5005)
• 99ba4cd bump snapshot 2.2.41-SNAPSHOT
• 1b170bf prepare release 2.2.40
• 24ade8e Bump classgraph version to 4.8.184
• Additional commits viewable in compare view

Updates com.azure:azure-monitor-opentelemetry-autoconfigure from 1.3.0 to 1.4.0

Commits

• 56c7913 Prepare azure-json and azure-xml for February 2025 release (#43948)
• cf5a43b Port OpenRewrite to Main (#43884)
• 0f86c1a Improve token credential object caching logic for identity extension (#43936)
• 7f0d67f Sync eng/common directory with azure-sdk-tools for PR 9687 (#43909)
• 62e88e4 Move CI version overrides to matrix based approach (#43913)
• 4bd28aa Change ClientCore's baseline to Java 8 and make it a multi-release JAR (#43931)
• b50fa28 Sparse checkout 1espt auto-baselining file by default (#43921)
• 71c2ecf Add necessary condition (#43933)
• 00c4511 Increment package versions for resourcemanager releases (#43928)
• 4783bce Increment package versions for kusto releases (#43929)
• Additional commits viewable in compare view

Updates net.logstash.logback:logstash-logback-encoder from 8.1 to 9.0

Release notes

Sourced from net.logstash.logback:logstash-logback-encoder's releases.

logstash-logback-encoder-9.0

This major release migrates to Jackson 3, and bumps the minimum Java version to 17.

The migration to Jackson 3 introduced some backwards incompatibilities. See #1095 for upgrade details.

Special thanks to new contributors @​tommyulfsparre, @​patrickjbarry, and @​maxxedev!

What's Changed

⚠️ Update considerations and deprecations

• Bump minimum version of Java to 17 by @​philsttr in logfellow/logstash-logback-encoder#1088
• Migrate to Jackson 3 by @​philsttr in logfellow/logstash-logback-encoder#1095

✨ New features and improvements

• Add ability to suppress messages from stacktrace by @​patrickjbarry in logfellow/logstash-logback-encoder#1104
• Make it possible to pretty print throwables as array of strings. by @​maxxedev in logfellow/logstash-logback-encoder#1043

🐞 Bug fixes

• Allow setting droppedWarnFrequency=0 to disable logging dropped message warnings by @​tommyulfsparre in logfellow/logstash-logback-encoder#1086
• Fix flaky flushWithNullOutputStream test by @​philsttr in logfellow/logstash-logback-encoder#1101

📖 Documentation, Tests and Build

• Migrate artifact publishing to Maven Central Portal by @​philsttr in logfellow/logstash-logback-encoder#1090
• Switch release flow to manual GitHub action trigger by @​philsttr in logfellow/logstash-logback-encoder#1091
• Bump CodeQL action to v3 by @​philsttr in logfellow/logstash-logback-encoder#1102
• Bump maven to 3.9.11 by @​philsttr in logfellow/logstash-logback-encoder#1103
• Document Thread and ThreadLocal cleanup by @​philsttr in logfellow/logstash-logback-encoder#1105

🆙 Dependency Upgrades

• Bump org.junit:junit-bom from 5.12.1 to 6.0.0 by @​dependabot[bot] in logfellow/logstash-logback-encoder#1085
• Bump org.jacoco:jacoco-maven-plugin from 0.8.12 to 0.8.13 by @​dependabot[bot] in logfellow/logstash-logback-encoder#1066
• Bump mockito.version from 5.16.1 to 5.20.0 by @​dependabot[bot] in logfellow/logstash-logback-encoder#1067
• Bump org.apache.felix:maven-bundle-plugin from 5.1.9 to 6.0.0 by @​dependabot[bot] in logfellow/logstash-logback-encoder#1068
• Upgrade various dependencies and plugins by @​philsttr in logfellow/logstash-logback-encoder#1089
• Bump org.jacoco:jacoco-maven-plugin from 0.8.13 to 0.8.14 by @​dependabot[bot] in logfellow/logstash-logback-encoder#1092
• Bump com.puppycrawl.tools:checkstyle from 12.0.0 to 12.0.1 by @​dependabot[bot] in logfellow/logstash-logback-encoder#1093
• Upgrade lmax disruptor to 4.0.0 by @​philsttr in logfellow/logstash-logback-encoder#1096
• Bump org.codehaus.mojo:xml-maven-plugin from 1.1.0 to 1.2.0 by @​dependabot[bot] in logfellow/logstash-logback-encoder#1098
• Bump com.puppycrawl.tools:checkstyle from 12.0.1 to 12.1.0 by @​dependabot[bot] in logfellow/logstash-logback-encoder#1099
• Bump tools.jackson:jackson-bom from 3.0.0 to 3.0.1 by @​dependabot[bot] in logfellow/logstash-logback-encoder#1100
• Bump logback-core.version from 1.5.19 to 1.5.20 by @​dependabot[bot] in logfellow/logstash-logback-encoder#1097

New Contributors

• @​patrickjbarry made their first contribution in logfellow/logstash-logback-encoder#1104
• @​tommyulfsparre made their first contribution in logfellow/logstash-logback-encoder#1086
• @​maxxedev made their first contribution in logfellow/logstash-logback-encoder#1043

Full Changelog: logfellow/logstash-logback-encoder@logstash-logback-encoder-8.1...logstash-logback-encoder-9.0

Commits

• e8a1c8e [maven-release-plugin] prepare release logstash-logback-encoder-9.0
• eecb205 Add link to discussions in contributing.md
• 572543c fix build badge in readme
• c64b998 Use alert at top of readme
• f74c821 Make it possible to pretty print throwables as array of strings. (#1043)
• 358f644 Document Thread and ThreadLocal cleanup (#1105)
• 0d553cf Add ability to suppress messages from stacktrace (#1104)
• c9318cd Bump maven to 3.9.11 (#1103)
• ef58694 Bump codeql action to v3 (#1102)
• 3059741 Bump logback-core.version from 1.5.19 to 1.5.20 (#1097)
• Additional commits viewable in compare view

Updates org.hibernate.validator:hibernate-validator from 9.0.1.Final to 9.1.0.Final

Release notes

Sourced from org.hibernate.validator:hibernate-validator's releases.

Release 9.1.0.Final

Hibernate Validator 9.1.0.Final released

We are pleased to announce the release of Hibernate Validator 9.1: 9.1.0.Final.

You can find the full list of 9.1.0.Final changes here.

What's new

This release mainly targets to improve performance. At the same time it contains a few other improvements, new constraints and more. See the "what's new" page to learn more.

You can also find the report on validation performace improvements at our blog.

Conclusion

For additional details, see:

• the release page
• the Migration Guide
• the Getting started
• the Reference Guide
• the API docs

Visit the website for details on getting in touch with us.

Changelog

Sourced from org.hibernate.validator:hibernate-validator's changelog.

9.1.0.Final (2025-11-07)

https://hibernate.atlassian.net/projects/HV/versions/35947

** Improvement * HV-2154 Include hibernate-validator-test-utils in the dist bundle * HV-2153 Create migration guide as part of the project sources * HV-2152 Add a "What's New" document for series

9.1.0.CR1 (2025-10-29)

** Bug * HV-2151 CachingTraversableResolverForSingleValidation won't work

** Improvement * HV-2148 Update Hibernate asciidoc theme to 6.1.1.Final

** Task * HV-2150 Test against wildfly-preview 38.0.0.Final * HV-2149 Lower the log level for some resource bundle messages

9.1.0.Beta1 (2025-10-22)

** Improvement * HV-2147 Bump Apache Groovy to 5.0.2 * HV-2145 Require JDK 25 for the build * HV-2144 Update to com.fasterxml:classmate 1.7.1 * HV-2143 Apply the unified Hibernate Documentation theme

** New Feature * HV-2137 Add IpAddress constraint

** Task * HV-2142 Stage documentation and javadocs to projectroot/target/staging-deploy/documentation

9.1.0.Alpha2 (2025-09-19)

** Improvement * HV-2140 Bump Apache Groovy to 5.0.1 * HV-2139 Introduce a RandomAccessPath as an extension of the org.hibernate.validator.path.Path * HV-2138 Include license file in the META-INF of published artifacts * HV-2135 Do not initialize the alreadyProcessedGroups unless necessary in BeanValueContext * HV-2004 add constant pool for @​Pattern

** Task

... (truncated)

Commits

• 6a1892c [Jenkins release job] Preparing release 9.1.0.Final
• 24e2fa2 [Jenkins release job] changelog.txt updated by release build 9.1.0.Final
• f3d68ef [Jenkins release job] README.md updated by release build 9.1.0.Final
• b907d99 Fix file permissions on XMLs
• 9739153 Use alternative Release Scripts
• a9822c6 Bump the build-dependencies group with 4 updates
• 109c5f8 HV-2152 Adjust the previous stable version
• e020246 HV-2154 Include hibernate-validator-test-utils in the dist bundle
• 42ee1b0 HV-2152 Add a "What's New" document for series / HV-2153 Create migration gui...
• f394975 Bump the workflow-actions group with 2 updates
• Additional commits viewable in compare view

Updates org.apache.commons:commons-text from 1.14.0 to 1.15.0

Changelog

Sourced from org.apache.commons:commons-text's changelog.

Apache Commons Text 1.15.0 Release Notes

The Apache Commons Text team is pleased to announce the release of Apache Commons Text 1.15.0.

Apache Commons Text is a set of utility functions and reusable components for processing and manipulating text in a Java environment.

Release 1.15.0. This is a feature and maintenance release. Java 8 or later is required.

New features

•        Add experimental CycloneDX VEX file [#683](https://github.com/apache/commons-text/issues/683). Thanks to Piotr P. Karwasz, Gary Gregory.
  

• TEXT-235: Add Damerau-Levenshtein distance #687. Thanks to LorgeN, Gary Gregory.

•        Add unit tests to increase coverage [#719](https://github.com/apache/commons-text/issues/719). Thanks to Michael Hausegger, Gary Gregory.
  

•        Add new test for CharSequenceTranslator#with() [#725](https://github.com/apache/commons-text/issues/725). Thanks to Michael Hausegger, Gary Gregory.
  

•        Add tests and assertions to org.apache.commons.text.similarity to get to 100% code coverage [#727](https://github.com/apache/commons-text/issues/727), [#728](https://github.com/apache/commons-text/issues/728). Thanks to Michael Hausegger.
  

Fixed Bugs

•        Fix exception message typo in XmlStringLookup.XmlStringLookup(Map, Path...). Thanks to Gary Gregory.
  

• TEXT-236: Inserting at the end of a TextStringBuilder throws a StringIndexOutOfBoundsException. Thanks to Pierre Post, Sumit Bera, Alex Herbert, Gary Gregory.

•        Fix TextStringBuilderTest.testAppendToCharBuffer() to use proper argument type [#724](https://github.com/apache/commons-text/issues/724). Thanks to Michael Hausegger.
  

•        Fix Apache RAT plugin console warnings. Thanks to Gary Gregory.
  

•        Fix site XML to use version 2.0.0 XML schema. Thanks to Gary Gregory.
  

•        Removed unreachable threshold verification code in src/main/java/org/apache/commons/text/similarity [#730](https://github.com/apache/commons-text/issues/730). Thanks to Michael Hausegger.
  

•        Enable secure processing for the XML parser in XmlStringLookup in case the underlying JAXP implementation doesn't [#729](https://github.com/apache/commons-text/issues/729). Thanks to 김민재 (minjas0507), Gary Gregory, Piotr Karwasz.
  

Changes

•        Bump org.apache.commons:commons-parent from 85 to 93 [#704](https://github.com/apache/commons-text/issues/704), [#723](https://github.com/apache/commons-text/issues/723), [#726](https://github.com/apache/commons-text/issues/726). Thanks to Gary Gregory.
  

•        Bump commons.bytebuddy.version from 1.17.6 to 1.18.2 [#696](https://github.com/apache/commons-text/issues/696), [#722](https://github.com/apache/commons-text/issues/722). Thanks to Gary Gregory.
  

•        Bump graalvm.version from 24.2.2 to 25.0.1 [#703](https://github.com/apache/commons-text/issues/703), [#716](https://github.com/apache/commons-text/issues/716). Thanks to Gary Gregory, Dependabot.
  

•        Bump org.apache.commons:commons-lang3 from 3.18.0 to 3.20.0. Thanks to Gary Gregory.
  

•        Bump commons-io:commons-io from 2.20.0 to 2.21.0. Thanks to Gary Gregory.
  

Historical list of changes: https://commons.apache.org/proper/commons-text/changes.html

For complete information on Apache Commons Text, including instructions on how to submit bug reports, patches, or suggestions for improvement, see the Apache Commons Text website:

https://commons.apache.org/proper/commons-text

Download page: https://commons.apache.org/proper/commons-text/download_text.cgi

... (truncated)

Commits

• 04e9374 Prepare for the release candidate 1.15.0 RC1
• 502c4c4 Prepare for the next release candidate
• c6e17ec Use direct access
• 58e1e12 Simplify XML FSP (#731)
• b5052c9 Bump actions/setup-java from 5.0.0 to 5.1.0
• 2e2d4bc Revert "Bump actions/setup-java from 5.0.0 to 5.1.0"
• b0ddbd1 Bump actions/setup-java from 5.0.0 to 5.1.0
• 1c2d382 Add tests with external DTD
• ed3df4b Internal clean up
• bb508f3 Bump actions/checkout from 6.0.0 to 6.0.1
• Additional commits viewable in compare view

Updates com.fasterxml.jackson.core:jackson-databind from 2.20.0 to 2.20.1

Commits

• See full diff in compare view

Updates org.junit:junit-bom from 5.13.4 to 6.0.1

Release notes

Sourced from org.junit:junit-bom's releases.

JUnit 6.0.1 = Platform 6.0.1 + Jupiter 6.0.1 + Vintage 6.0.1

See Release Notes.

Full Changelog: junit-team/junit-framework@r6.0.0...r6.0.1

JUnit 6.0.0 = Platform 6.0.0 + Jupiter 6.0.0 + Vintage 6.0.0

See Release Notes.

New Contributors

• @​2897robo made their first contribution in junit-team/junit-framework#4525
• @​strangelookingnerd made their first contribution in junit-team/junit-framework#4683
• @​eric6iese made their first contribution in junit-team/junit-framework#4717
• @​raccoonback made their first contribution in junit-team/junit-framework#4822
• @​currenjin made their first contribution in junit-team/junit-framework#4823
• @​mehulimukherjee made their first contribution in junit-team/junit-framework#4913
• @​lslonina made their first contribution in junit-team/junit-framework#4629

Full Changelog: junit-team/junit-framework@r5.14.0...r6.0.0

JUnit 6.0.0-RC3 = Platform 6.0.0-RC3 + Jupiter 6.0.0-RC3 + Vintage 6.0.0-RC3

See Release Notes.

New Contributors

• @​mehulimukherjee made their first contribution in junit-team/junit-framework#4913
• @​lslonina made their first contribution in junit-team/junit-framework#4629

Full Changelog: junit-team/junit-framework@r6.0.0-RC2...r6.0.0-RC3

JUnit 6.0.0-RC2 = Platform 6.0.0-RC2 + Jupiter 6.0.0-RC2 + Vintage 6.0.0-RC2

See Release Notes.

Full Changelog: junit-team/junit-framework@r6.0.0-RC1...r6.0.0-RC2

JUnit 6.0.0-RC1 = Platform 6.0.0-RC1 + Jupiter 6.0.0-RC1 + Vintage 6.0.0-RC1

See Release Notes.

New Contributors

• @​raccoonback made their first contribution in junit-team/junit-framework#4822
• @​currenjin made their first contribution in junit-team/junit-framework#4823

Full Changelog: junit-team/junit-framework@r6.0.0-M2...r6.0.0-RC1

JUnit 6.0.0-M2 = Platform 6.0.0-M2 + Jupiter 6.0.0-M2 + Vintage 6.0.0-M2

See Release Notes.

... (truncated)

Commits

• d774b9c Release 6.0.1 (second attempt)
• 8178545 Mark module as deprecated for removal
• 7b43fcc Back to snapshots for further development
• a5ef746 Release 6.0.1
• 008be8d Finalize 5.14.1 release notes
• b2c55a8 Finalize 6.0.1 release notes
• 866c01a Add note about duplicate test execution with @​Suite (#5080)
• de88e88 Fix broken links in documentation
• 9dd132d Add Valhalla EA to workflow matrix
• fedda88 Make jdk.jfr import optional in OSGi manifest (#5092)
• Additional commits viewable in compare view

Updates io.rest-assured:rest-assured from 5.5.6 to 6.0.0

Changelog

Sourced from io.rest-assured:rest-assured's changelog.

Changelog 6.0.0 (2025-12-12)

• spring-mock-mvc module now supports Spring 7.x
• spring-web-test-client now supports Spring 7.x
• Upgraded commons-lang3 from 3.18.0 to 3.19.0
• The spring modules now required Spring 5.3+ (previously 5.1 was required)
• New minimum Java baseline is now 17
• New minimum Groovy base is now 5.x
• Support for Jackson 3 object mapping
• Support for Yasson 3 object mapping
• Support for jakarta JsonB/Johnzon 3 object mapping
• Migrate json-path fully to Java, bypass GroovyShell for evaluation (#1844) (thanks to Michael Edgar for PR)
  • This fixed some nasty memory leaks when using JsonPath heavily in long running processes
• Stop resetting ResponseParserRegistrar during build (#1759, #1505, #1207 & #978) (thanks to Marc Easen for PR)
• Skip Null filters in FilterContextImpl (#1834) (thanks to Boyarshinov Alexander for PR)
• Upgraded Kotlin extension module to use Kotlin 2.2.21

Commits

• 0b3a0d9 [maven-release-plugin] prepare release rest-assured-6.0.0
• bd55281 [ci skip] Add exclusions for jackson3-example and spring7-mvc-webapp in pom.xml
• eb141e2 [maven-release-plugin] prepare for next development iteration
• 4c1a241 [maven-release-plugin] prepare release rest-assured-6.0.0
• 2f11520 Using newer version of dokka and using stdlib for kotlin instead of jdk8
• 6d9362c Ability to exclude osgi-tests in release
• 24380db Revert osgi-tests back to JUnit 4
• 9c12601 Upgraded Kotlin extension module to use Kotlin 2.2.21
• 4b1ff78 [ci skip] Prepare and perform release in single step
• 931f421 [ci skip] Removed explicit javadoc path workaround for JDK 8
• Additional commits viewable in compare view

Updates com.github.ben-manes.versions from 0.52.0 to 0.53.0

Updates org.cyclonedx.bom from 2.3.1 to 3.1.0

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml