Bump the prod-deps group with 9 updates

[dependabot]

Bumps the prod-deps group with 9 updates:

Package	From	To
com.fasterxml.jackson:jackson-bom	2.16.0	2.17.0
org.jacoco:jacoco-maven-plugin	0.8.11	0.8.12
org.apache.maven.plugins:maven-compiler-plugin	3.11.0	3.13.0
org.sonarsource.scanner.maven:sonar-maven-plugin	3.10.0.2594	3.11.0.3922
org.apache.maven.plugins:maven-jar-plugin	3.3.0	3.4.1
org.apache.maven.plugins:maven-surefire-plugin	3.2.2	3.2.5
org.codehaus.mojo:flatten-maven-plugin	1.5.0	1.6.0
org.apache.maven.plugins:maven-source-plugin	3.3.0	3.3.1
org.apache.maven.plugins:maven-failsafe-plugin	3.2.2	3.2.5

Updates com.fasterxml.jackson:jackson-bom from 2.16.0 to 2.17.0

Commits

• 518dce9 [maven-release-plugin] prepare release jackson-bom-2.17.0
• 09f3f57 Prepare for 2.17.0 release
• e35f5af Update to 2.17 jackson-parent
• 8e000a1 Merge branch '2.16' into 2.17
• 78fc05f Back to snapshot deps
• 5cc2410 [maven-release-plugin] prepare for next development iteration
• c8ad938 [maven-release-plugin] prepare release jackson-bom-2.16.2
• 9f3a1c1 Prepare for 2.16.2 release
• 80aef2e Back to snapshot deps
• d465ba2 [maven-release-plugin] prepare for next development iteration
• Additional commits viewable in compare view

Updates org.jacoco:jacoco-maven-plugin from 0.8.11 to 0.8.12

Release notes

Sourced from org.jacoco:jacoco-maven-plugin's releases.

0.8.12

New Features

• JaCoCo now officially supports Java 22 (GitHub #1596).
• Experimental support for Java 23 class files (GitHub #1553).

Fixed bugs

• Branches added by the Kotlin compiler for functions with default arguments and having more than 32 parameters are filtered out during generation of report (GitHub #1556).
• Branch added by the Kotlin compiler version 1.5.0 and above for reading from lateinit property is filtered out during generation of report (GitHub #1568).

Non-functional Changes

• JaCoCo now depends on ASM 9.7 (GitHub #1600).

Commits

• dbfb6f2 Prepare release 0.8.12
• a50585b Upgrade maven-plugin-plugin to 3.6.4 (#1604)
• fd63cc5 Configure labels that Dependabot assigns to PRs (#1603)
• 03a5333 Add configuration for Dependabot to simplify updates of ASM (#1601)
• 40ff9fb Upgrade ASM to 9.7 (#1600)
• 9077178 Happy birthday Java 22! (#1596)
• 7edd1b5 Bump actions/setup-java from 4.1.0 to 4.2.1 (#1594)
• e50b547 Upgrade ECJ to 3.37.0 (#1590)
• a1144d0 Upgrade maven-site-plugin to 3.12.1 (#1586)
• 04b0141 Bump actions/setup-java from 4.0.0 to 4.1.0 (#1587)
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-compiler-plugin from 3.11.0 to 3.13.0

Release notes

Sourced from org.apache.maven.plugins:maven-compiler-plugin's releases.

3.13.0

🚀 New features and improvements

• [MCOMPILER-574] - Propagate cause of exception in AbstractCompilerMojo (#232) @​slawekjaranowski
• [MCOMPILER-582] - Automatic detection of release option for JDK < 9 (#228) @​slawekjaranowski
• [MCOMPILER-583] - Require Maven 3.6.3 (#229) @​slawekjaranowski
• [MCOMPILER-577] - Rename parameter "forceJavacCompilerUse" (#225) @​kwin
• [MCOMPILER-570] - Add links to javac documentation of JDK17 (#224) @​kwin
• [MCOMPILER-576] - Deprecate parameter "compilerVersion" (#223) @​kwin

📦 Dependency updates

• [MCOMPILER-575] - Bump plexusCompilerVersion from 2.14.2 to 2.15.0 (#227) @​dependabot
• Bump apache/maven-gh-actions-shared from 3 to 4 (#226) @​dependabot

📝 Documentation updates

• [MCOMPILER-548] - JDK 21 throws annotations processing warning that can not be turned off (#200) @​hgschmie

👻 Maintenance

• [MCOMPILER-584] - Refresh page - Using Non-Javac Compilers (#231) @​slawekjaranowski
• [MCOMPILER-585] - Refresh plugins versions in ITs (#230) @​slawekjaranowski
• subject verb agreement (#221) @​elharo

3.12.1

🐛 Bug Fixes

• [MCOMPILER-567] - Fail to compile if the generated-sources/annotation… (#218) @​jorsol

📦 Dependency updates

• [MCOMPILER-568] - Bump plexusCompilerVersion from 2.14.1 to 2.14.2 (#220) @​dependabot

3.12.0

🚀 New features and improvements

• [MCOMPILER-562] - Add property maven.compiler.outputDirectory to CompilerMojo (#213) @​jGauravGupta
• [MCOMPILER-381] - Refactor incremental detection (#181) @​jorsol
• [MCOMPILER-542] - Clean JDK patch version in module-info.class (#208) @​jorsol
• [MCOMPILER-558] - compileSourceRoots in testCompile should be writable (#209) @​lorenzsimon
• [MCOMPILER-559] - Warn if overwriting the project's artifact's file to a different value (#211) @​gnodet
• [MCOMPILER-550] - make outputDirectory writable (#202) @​bmarwell
• [MCOMPILER-549] - Improve log message in case of recompilation - fix jenkins build (#203) @​slawekjaranowski
• [MCOMPILER-549] - Improve log message in case of recompilation (#201) @​BrowneMonke
• [MCOMPILER-391] - Use dep mgmt when resolving annotation processors and their deps (#180) @​psiroky
• [MCOMPILER-531] - Prepare for Java 20(-ea) (#184) @​slachiewicz

... (truncated)

Commits

• a1415aa [maven-release-plugin] prepare release maven-compiler-plugin-3.13.0
• b2b9196 [MCOMPILER-574] Propagate cause of exception in AbstractCompilerMojo
• 6d2ce5a [MCOMPILER-584] Refresh page - Using Non-Javac Compilers
• eebad60 [MCOMPILER-585] Refresh plugins versions in ITs
• ceacf68 [MCOMPILER-582] Automatic detection of release option for JDK < 9
• 110293f [MCOMPILER-583] Require Maven 3.6.3
• 90131df [MCOMPILER-575] Bump plexusCompilerVersion from 2.14.2 to 2.15.0 (#227)
• 74cfc72 [MCOMPILER-548] JDK 21 throws annotations processing warning that can not be ...
• f85aa27 Bump apache/maven-gh-actions-shared from 3 to 4
• d59ef49 extract Maven 3.3.1 specific method call
• Additional commits viewable in compare view

Updates org.sonarsource.scanner.maven:sonar-maven-plugin from 3.10.0.2594 to 3.11.0.3922

Release notes

Sourced from org.sonarsource.scanner.maven:sonar-maven-plugin's releases.

3.11.0.3922

Release notes - Sonar Scanner for Maven - 3.11

Bug

MSONAR-205 Undesired behaviour when sonar.projectKey is specified in root pom or as user property

Documentation

MSONAR-203 Update license headers

Task

MSONAR-208 Migrate tests to JUnit 5

Improvement

MSONAR-202 Improve logging : log information about Maven options, Java version and the OS

MSONAR-204 "SonarQube version" is not displayed when communicating with SonarCloud

MSONAR-207 The scanner for Maven collects files outside of conventional sonar.sources

Commits

• 250195e Upgrade release action to version 5.2.1 (#208)
• f25764d MSONAR-205 Remove sonar.projectKey for submodules
• 9059ca0 Fix quality flaw: refactor "findMavenProject" method
• bce0bd0 MSONAR-211 Remove compatibility with old SQ modules( > 7.6 ) in ITs (#205)
• 495d1c9 MSONAR-202 Improve logging with information about Maven options, Java versio...
• b637acd MSONAR-212 Fix performance regression in our ITs with [LATEST_RELEASE] & [DE...
• 4b86947 MSONAR-204 "SonarQube version" shouldn't be displayed when communicating with...
• dd4f9cd MSONAR-208 Add junit-jupiter-api to enable the execution of tests from Intell...
• 0faeade MSONAR-209 Bump maven-invoker-plugin to the latest version 3.6.0 (#198)
• f2ab7c9 MSONAR-208 Migrate tests to JUnit 5 (#197)
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-jar-plugin from 3.3.0 to 3.4.1

Release notes

Sourced from org.apache.maven.plugins:maven-jar-plugin's releases.

3.4.1

🐛 Bug Fixes

• [MJAR-307] - Wrong version of commons-io cause a ClassNotFound o.a.commons.io.file.attribute.FileTimes (#83) @​slawekjaranowski

📦 Dependency updates

• [MJAR-308] - Bump org.apache.maven.plugins:maven-plugins from 41 to 42 (#85) @​dependabot

3.4.0

🚀 New features and improvements

• [MJAR-296] - Allow including files excluded by default. (#67) @​redzi
• [MJAR-302] - Require Maven 3.6.3 (#77) @​slawekjaranowski
• [MJAR-292] - Detect MRJAR and add Multi-Release manifest entry (#57) @​jorsol

🐛 Bug Fixes

• [MJAR-62] - Set Build-Jdk according to used toolchain (#73) @​slawekjaranowski

📦 Dependency updates

• [MJAR-306] - Use properties for plugins versions in LifecycleMapping (#82) @​slawekjaranowski
• Bump org.junit:junit-bom from 5.10.1 to 5.10.2 (#74) @​dependabot
• [MJAR-298] - Update Maven-Archiver to 3.6.2 (#78) @​slawekjaranowski
• Bump apache/maven-gh-actions-shared from 2 to 4 (#72) @​dependabot
• Bump commons-io:commons-io from 2.14.0 to 2.15.1 (#68) @​dependabot
• [MJAR-297] - Update Parent to 40 (#64) @​jorsol
• [MJAR-298] - Update Maven-Archiver to 3.6.1 (#65) @​jorsol
• [MJAR-293] - Update Parent to 39 (#59) @​jorsol

👻 Maintenance

• [MJAR-304] - Refresh download page (#80) @​slawekjaranowski
• [MJAR-303] - Cleanup declared dependencies (#79) @​slawekjaranowski
• Remove dependency on plexus (#63) @​elharo

Commits

• 8b29adc [maven-release-plugin] prepare release maven-jar-plugin-3.4.1
• 325b299 [MJAR-308] Bump org.apache.maven.plugins:maven-plugins from 41 to 42 (#85)
• 52111cc [MJAR-307] Wrong version of commons-io cause a ClassNotFound o.a.commons.io.f...
• 902d4c5 [maven-release-plugin] prepare for next development iteration
• 992f44a [maven-release-plugin] prepare release maven-jar-plugin-3.4.0
• 5e31b99 [MJAR-296] Allow including files excluded by default. (#67)
• ddfb635 [MJAR-306] Use properties for plugins versions in LifecycleMapping
• aeffa39 [MJAR-304] Refresh download page
• ee85d59 [MJAR-303] Cleanup declared dependencies
• 845c120 Bump org.junit:junit-bom from 5.10.1 to 5.10.2
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-surefire-plugin from 3.2.2 to 3.2.5

Release notes

Sourced from org.apache.maven.plugins:maven-surefire-plugin's releases.

3.2.5

JIRA link

Release Notes - Maven Surefire - Version 3.2.5

---

What's Changed

• Bump org.htmlunit:htmlunit from 3.8.0 to 3.9.0 by @​dependabot in apache/maven-surefire#695
• Bump org.fusesource.jansi:jansi from 2.4.0 to 2.4.1 by @​dependabot in apache/maven-surefire#684
• Bump doxiaVersion from 1.11.1 to 1.12.0 by @​dependabot in apache/maven-surefire#609
• [SUREFIRE-2221] Document minimum supported Java version for Toolchains by @​sbernard31 in apache/maven-surefire#701
• [SUREFIRE-2224] StatelessXmlReporter#getTestProblems() does not properly reflect report schema structure by @​michael-o in apache/maven-surefire#702
• [SUREFIRE-2223] Surefire evaluates parameter jvm before skip by @​michael-o in apache/maven-surefire#703
• Use uppercase convention for enum member names by @​michael-o in apache/maven-surefire#704
• [SUREFIRE-2225] Surefire ITs fail when project directory contains space by @​michael-o in apache/maven-surefire#705
• Run CI tests also with Java 21 by @​slachiewicz in apache/maven-surefire#707
• Bump org.apache.maven.wagon:wagon-http-lightweight from 3.5.1 to 3.5.3 by @​dependabot in apache/maven-surefire#699
• Bump org.htmlunit:htmlunit from 3.8.0 to 3.9.0 in /maven-failsafe-plugin/src/it/jetty-war-test-failing by @​dependabot in apache/maven-surefire#694
• Bump org.htmlunit:htmlunit from 3.8.0 to 3.9.0 in /maven-failsafe-plugin/src/it/jetty-war-test-passing by @​dependabot in apache/maven-surefire#693
• Bump commons-io:commons-io from 2.15.0 to 2.15.1 by @​dependabot in apache/maven-surefire#712
• Bump net.java.dev.javacc:javacc from 7.0.12 to 7.0.13 by @​dependabot in apache/maven-surefire#711
• Bump org.apache.maven.plugins:maven-docck-plugin from 1.1 to 1.2 by @​dependabot in apache/maven-surefire#713
• [SUREFIRE-2231] JaCoCo 0.8.11 fails with old TestNG releases on Java 17+ by @​michael-o in apache/maven-surefire#710
• Bump org.assertj:assertj-core from 3.24.2 to 3.25.1 by @​dependabot in apache/maven-surefire#714
• Bump org.codehaus.plexus:plexus-component-metadata from 2.1.1 to 2.2.0 by @​dependabot in apache/maven-surefire#715

... (truncated)

Commits

• 4b3a271 [maven-release-plugin] prepare release surefire-3.2.5
• eb3f1d9 Bump org.codehaus.plexus:plexus-component-metadata from 2.1.1 to 2.2.0
• 430c406 Bump org.assertj:assertj-core from 3.24.2 to 3.25.1
• 2d92f2d [SUREFIRE-2231] JaCoCo 0.8.11 fails with old TestNG releases on Java 17+
• 3290740 Bump org.apache.maven.plugins:maven-docck-plugin from 1.1 to 1.2
• 25a9776 Bump net.java.dev.javacc:javacc from 7.0.12 to 7.0.13
• 7752f7e Bump commons-io:commons-io from 2.15.0 to 2.15.1
• 8874add Revert "Bump jacocoVersion from 0.8.8 to 0.8.11"
• c0f7755 Fix formatting
• e5f4545 Bump jacocoVersion from 0.8.8 to 0.8.11
• Additional commits viewable in compare view

Updates org.codehaus.mojo:flatten-maven-plugin from 1.5.0 to 1.6.0

Release notes

Sourced from org.codehaus.mojo:flatten-maven-plugin's releases.

1.6.0

🚀 New features and improvements

• Require Maven 3.6.3 as minimum (#399) @​slawekjaranowski
• Make the default operation configurable (#371) @​hgschmie
• Add skip flags (#385) @​korthout
• Make more elements configurable in pomElements (#370) @​hgschmie

🐛 Bug Fixes

• Fix next ITs for Maven 4 (#393) @​slawekjaranowski
• #376 🐛 - Support interpolation for external profile properties (#378) @​CedricMtta

📦 Dependency updates

• Bump plexus-utils from 3.5.1 to 4.0.0 (#359) @​dependabot
• Bump org.codehaus.mojo:mojo-parent from 77 to 78 (#392) @​dependabot
• Bump org.assertj:assertj-core from 3.24.2 to 3.25.1 (#391) @​dependabot
• Bump org.codehaus.plexus:plexus-interpolation from 1.26 to 1.27 (#389) @​dependabot
• Bump commons-io:commons-io from 2.15.0 to 2.15.1 (#388) @​dependabot
• Bump commons-io:commons-io from 2.14.0 to 2.15.0 (#381) @​dependabot
• Bump org.codehaus.mojo:mojo-parent from 76 to 77 (#380) @​dependabot
• Bump commons-io:commons-io from 2.13.0 to 2.14.0 (#375) @​dependabot
• upgrade sisu.inject: fixes Reproducible Builds (#357) @​hboutemy
• Bump guava from 31.1-jre to 32.0.0-jre in /src/it/projects/bom-pomElements/bom (#364) @​dependabot
• Bump guava from 31.1-jre to 32.0.0-jre in /src/it/projects/flatten-shaded-drp (#365) @​dependabot
• Bump guava from 31.1-jre to 32.0.0-jre in /src/it/projects/bom-flattenMode/bom (#363) @​dependabot
• Bump mojo-parent from 74 to 76 (#366) @​dependabot
• Bump commons-io from 2.12.0 to 2.13.0 (#361) @​dependabot
• Bump commons-io from 2.11.0 to 2.12.0 (#358) @​dependabot

👻 Maintenance

• upgrade sisu.inject: fixes Reproducible Builds (#357) @​hboutemy

🔧 Build

• Use default config for build (#398) @​slawekjaranowski
• Use Shared ASF Action from Release Drafter - fix (#396) @​slawekjaranowski
• Use Shared ASF Action from Release Drafter (#395) @​slawekjaranowski
• Use Maven 3.9.6 for build (#394) @​slawekjaranowski

Commits

• e2dcb2a [maven-release-plugin] prepare release 1.6.0
• d709190 Require Maven 3.6.3 as minimum
• 96d1acd Use default config for build
• 33b4219 Bump plexus-utils from 3.5.1 to 4.0.0 (#359)
• df9e9e8 Use Shared ASF Action from Release Drafter - fix
• d30a84d Use Shared ASF Action from Release Drafter
• c6f8e45 Make the default operation configurable
• 9065dba Use Maven 3.9.6 for build
• 9aa051f Fix next ITs for Maven 4
• adcac60 Bump org.codehaus.mojo:mojo-parent from 77 to 78
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-source-plugin from 3.3.0 to 3.3.1

Commits

• f80596e [maven-release-plugin] prepare release maven-source-plugin-3.3.1
• 7626998 Bump apache/maven-gh-actions-shared from 3 to 4
• 83c963c Bump org.apache.maven.plugins:maven-plugins from 39 to 41 (#18)
• 40ae495 Bump org.codehaus.plexus:plexus-archiver from 4.8.0 to 4.9.1 (#20)
• 073462b Bump org.apache.maven:maven-archiver from 3.6.0 to 3.6.1 (#21)
• 0b1c823 Fix typos in AbstractSourceJarMojo exception
• 099c65a [MSOURCES-142] Bump org.codehaus.plexus:plexus-archiver from 4.7.1 to 4.8.0 (...
• 1edeea4 [MSOURCES-139] Fix typo in AbstractSourceJarMojo exception
• 436966e [maven-release-plugin] prepare for next development iteration
• See full diff in compare view

Updates org.apache.maven.plugins:maven-failsafe-plugin from 3.2.2 to 3.2.5

Release notes

Sourced from org.apache.maven.plugins:maven-failsafe-plugin's releases.

3.2.5

JIRA link

Release Notes - Maven Surefire - Version 3.2.5

---

What's Changed

• Bump org.htmlunit:htmlunit from 3.8.0 to 3.9.0 by @​dependabot in apache/maven-surefire#695
• Bump org.fusesource.jansi:jansi from 2.4.0 to 2.4.1 by @​dependabot in apache/maven-surefire#684
• Bump doxiaVersion from 1.11.1 to 1.12.0 by @​dependabot in apache/maven-surefire#609
• [SUREFIRE-2221] Document minimum supported Java version for Toolchains by @​sbernard31 in apache/maven-surefire#701
• [SUREFIRE-2224] StatelessXmlReporter#getTestProblems() does not properly reflect report schema structure by @​michael-o in apache/maven-surefire#702
• [SUREFIRE-2223] Surefire evaluates parameter jvm before skip by @​michael-o in apache/maven-surefire#703
• Use uppercase convention for enum member names by @​michael-o in apache/maven-surefire#704
• [SUREFIRE-2225] Surefire ITs fail when project directory contains space by @​michael-o in apache/maven-surefire#705
• Run CI tests also with Java 21 by @​slachiewicz in apache/maven-surefire#707
• Bump org.apache.maven.wagon:wagon-http-lightweight from 3.5.1 to 3.5.3 by @​dependabot in apache/maven-surefire#699
• Bump org.htmlunit:htmlunit from 3.8.0 to 3.9.0 in /maven-failsafe-plugin/src/it/jetty-war-test-failing by @​dependabot in apache/maven-surefire#694
• Bump org.htmlunit:htmlunit from 3.8.0 to 3.9.0 in /maven-failsafe-plugin/src/it/jetty-war-test-passing by @​dependabot in apache/maven-surefire#693
• Bump commons-io:commons-io from 2.15.0 to 2.15.1 by @​dependabot in apache/maven-surefire#712
• Bump net.java.dev.javacc:javacc from 7.0.12 to 7.0.13 by @​dependabot in apache/maven-surefire#711
• Bump org.apache.maven.plugins:maven-docck-plugin from 1.1 to 1.2 by @​dependabot in apache/maven-surefire#713
• [SUREFIRE-2231] JaCoCo 0.8.11 fails with old TestNG releases on Java 17+ by @​michael-o in apache/maven-surefire#710
• Bump org.assertj:assertj-core from 3.24.2 to 3.25.1 by @​dependabot in apache/maven-surefire#714
• Bump org.codehaus.plexus:plexus-component-metadata from 2.1.1 to 2.2.0 by @​dependabot in apache/maven-surefire#715

... (truncated)

Commits

• 4b3a271 [maven-release-plugin] prepare release surefire-3.2.5
• eb3f1d9 Bump org.codehaus.plexus:plexus-component-metadata from 2.1.1 to 2.2.0
• 430c406 Bump org.assertj:assertj-core from 3.24.2 to 3.25.1
• 2d92f2d [SUREFIRE-2231] JaCoCo 0.8.11 fails with old TestNG releases on Java 17+
• 3290740 Bump org.apache.maven.plugins:maven-docck-plugin from 1.1 to 1.2
• 25a9776 Bump net.java.dev.javacc:javacc from 7.0.12 to 7.0.13
• 7752f7e Bump commons-io:commons-io from 2.15.0 to 2.15.1
• 8874add Revert "Bump jacocoVersion from 0.8.8 to 0.8.11"
• c0f7755 Fix formatting
• e5f4545 Bump jacocoVersion from 0.8.8 to 0.8.11
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.