Update all non-major dependencies

apache · Dec 28, 2024 · 21825e6 · 21825e6
1 parent 23850a1
commit 21825e6
Show file tree

Hide file tree

Showing 6 changed files with 30 additions and 30 deletions.
diff --git a/.github/workflows/build-mariadb.yml b/.github/workflows/build-mariadb.yml
@@ -10,7 +10,7 @@ jobs:
 
     services:
         mariad:
-            image: mariadb:11.5
+            image: mariadb:11.6
             ports:
                 - 3306:3306
             env:

diff --git a/build.gradle b/build.gradle
@@ -97,20 +97,20 @@ plugins {
     id 'com.github.hierynomus.license' version '0.16.1' apply false
     id 'com.github.jk1.dependency-license-report' version '2.9' apply false
     id 'org.zeroturnaround.gradle.jrebel' version '1.2.0' apply false
-    id 'org.springframework.boot' version '3.3.5' apply false
+    id 'org.springframework.boot' version '3.4.1' apply false
     id 'net.ltgt.errorprone' version '4.1.0' apply false
-    id 'io.swagger.core.v3.swagger-gradle-plugin' version '2.2.23' apply false
+    id 'io.swagger.core.v3.swagger-gradle-plugin' version '2.2.27' apply false
     id 'com.gorylenko.gradle-git-properties' version '2.4.2' apply false
     id 'org.asciidoctor.jvm.convert' version '3.3.2' apply false
     id 'org.asciidoctor.jvm.pdf' version '3.3.2' apply false
     id 'com.google.cloud.tools.jib' version '3.4.4' apply false
     id 'org.sonarqube' version '4.4.1.3373'
     id 'com.github.andygoossens.modernizer' version '1.10.0' apply false
     // TODO: upgrade to 6.0.4
-    id 'com.github.spotbugs' version '6.0.26' apply false
+    id 'com.github.spotbugs' version '6.0.27' apply false
     id 'se.thinkcode.cucumber-runner' version '0.0.11' apply false
     id "com.github.davidmc24.gradle.plugin.avro-base" version "1.9.1" apply false
-    id 'org.openapi.generator' version '7.8.0' apply false
+    id 'org.openapi.generator' version '7.10.0' apply false
     id 'com.gradleup.shadow' version '8.3.5' apply false
 }
 

diff --git a/buildSrc/build.gradle b/buildSrc/build.gradle
@@ -20,7 +20,7 @@
 import static org.slf4j.LoggerFactory.*
 
 plugins {
-    id 'io.spring.dependency-management' version '1.1.6'
+    id 'io.spring.dependency-management' version '1.1.7'
     id 'groovy'
     id 'java-gradle-plugin'
     id 'groovy-gradle-plugin'

diff --git a/buildSrc/src/main/groovy/org.apache.fineract.dependencies.gradle b/buildSrc/src/main/groovy/org.apache.fineract.dependencies.gradle
@@ -24,18 +24,18 @@ dependencyManagement {
     imports {
         mavenBom 'com.squareup.okhttp3:okhttp-bom:4.12.0'
         mavenBom 'org.slf4j:slf4j-bom:2.0.16'
-        mavenBom 'io.micrometer:micrometer-bom:1.13.6'
-        mavenBom 'org.springframework:spring-framework-bom:6.1.14'
-        mavenBom 'org.springframework.boot:spring-boot-dependencies:3.3.5'
+        mavenBom 'io.micrometer:micrometer-bom:1.14.2'
+        mavenBom 'org.springframework:spring-framework-bom:6.2.1'
+        mavenBom 'org.springframework.boot:spring-boot-dependencies:3.4.1'
         mavenBom 'io.awspring.cloud:spring-cloud-aws-dependencies:3.2.1'
-        mavenBom 'io.opentelemetry:opentelemetry-bom:1.44.1'
-        mavenBom 'org.jetbrains.kotlin:kotlin-bom:2.0.21'
-        mavenBom 'org.junit:junit-bom:5.11.3'
-        mavenBom 'com.fasterxml.jackson:jackson-bom:2.18.1'
+        mavenBom 'io.opentelemetry:opentelemetry-bom:1.45.0'
+        mavenBom 'org.jetbrains.kotlin:kotlin-bom:2.1.0'
+        mavenBom 'org.junit:junit-bom:5.11.4'
+        mavenBom 'com.fasterxml.jackson:jackson-bom:2.18.2'
         mavenBom 'io.cucumber:cucumber-bom:7.20.1'
-        mavenBom 'io.netty:netty-bom:4.1.114.Final'
+        mavenBom 'io.netty:netty-bom:4.1.116.Final'
         mavenBom 'org.mockito:mockito-bom:5.14.2'
-        mavenBom 'software.amazon.awssdk:bom:2.29.9'
+        mavenBom 'software.amazon.awssdk:bom:2.29.42'
         mavenBom 'io.github.resilience4j:resilience4j-bom:2.2.0'
     }
 
@@ -44,8 +44,8 @@ dependencyManagement {
         // We do not use :+ to get the latest available version available on Maven Central, as that could suddenly break things.
         // We use the Renovate Bot to automatically propose Pull Requests (PRs) when upgrades for all of these versions are available.
 
-        dependency 'ch.qos.logback:logback-core:1.5.12'
-        dependency 'ch.qos.logback:logback-classic:1.5.12'
+        dependency 'ch.qos.logback:logback-core:1.5.15'
+        dependency 'ch.qos.logback:logback-classic:1.5.15'
         dependency 'ch.qos.logback.contrib:logback-json-classic:0.1.5'
         dependency 'ch.qos.logback.contrib:logback-jackson:0.1.5'
         dependency 'org.codehaus.janino:janino:3.1.12'
@@ -56,7 +56,7 @@ dependencyManagement {
         dependency 'com.google.code.gson:gson:2.11.0'
         dependency 'com.google.truth:truth:1.4.4'
         dependency 'com.google.truth.extensions:truth-java8-extension:1.4.4'
-        dependency 'com.google.googlejavaformat:google-java-format:1.24.0'
+        dependency 'com.google.googlejavaformat:google-java-format:1.25.2'
         dependency 'org.apache.commons:commons-collections4:4.4'
         dependency ('software.amazon.msk:aws-msk-iam-auth:2.2.0') {
             exclude 'commons-logging:commons-logging:'
@@ -65,14 +65,14 @@ dependencyManagement {
             exclude 'com.sun.mail:javax.mail'
             exclude 'javax.activation:activation'
         }
-        dependency 'commons-io:commons-io:2.17.0'
+        dependency 'commons-io:commons-io:2.18.0'
         dependency 'com.github.librepdf:openpdf:2.0.3'
         dependency ('org.mnode.ical4j:ical4j:3.2.19') {
             exclude 'com.sun.mail:javax.mail'
             exclude 'org.codehaus.groovy:groovy'
         }
         dependency 'org.apache.commons:commons-csv:1.12.0'
-        dependency 'org.quartz-scheduler:quartz:2.3.2'
+        dependency 'org.quartz-scheduler:quartz:2.5.0'
         dependency 'org.ehcache:ehcache:3.10.8'
         dependency 'com.github.spullara.mustache.java:compiler:0.9.14'
         dependency 'com.jayway.jsonpath:json-path:2.9.0'
@@ -122,7 +122,7 @@ dependencyManagement {
         dependency 'org.apache.bval:org.apache.bval.bundle:3.0.1'
         dependency 'joda-time:joda-time:2.13.0'
 
-        dependency 'io.github.classgraph:classgraph:4.8.177'
+        dependency 'io.github.classgraph:classgraph:4.8.179'
         dependency 'org.awaitility:awaitility:4.2.2'
         // TODO: upgrade to 4.8.3
         dependency 'com.github.spotbugs:spotbugs-annotations:4.8.6'
@@ -154,27 +154,27 @@ dependencyManagement {
         dependency "io.gsonfire:gson-fire:1.9.0"
         dependency "com.google.code.findbugs:jsr305:3.0.2"
         dependency "commons-codec:commons-codec:1.17.1"
-        dependency "org.projectlombok:lombok:1.18.34"
+        dependency "org.projectlombok:lombok:1.18.36"
 
         dependency 'org.bouncycastle:bcpkix-jdk15to18:1.79'
         dependency 'org.bouncycastle:bcprov-jdk15to18:1.79'
         dependency 'org.bouncycastle:bcprov-jdk15on:1.70'
         dependency 'org.bouncycastle:bcpg-jdk15on:1.70'
 
         dependency 'org.eclipse.jgit:org.eclipse.jgit:6.10.0.202406032230-r'
-        dependency 'org.eclipse.jgit:org.eclipse.jgit.ssh.apache:7.0.0.202409031743-r'
+        dependency 'org.eclipse.jgit:org.eclipse.jgit.ssh.apache:7.1.0.202411261347-r'
 
         dependency 'org.tmatesoft.svnkit:svnkit:1.10.11'
         dependency 'com.vdurmont:semver4j:3.1.0'
         dependency 'org.beryx:text-io:3.4.1'
 
-        dependency ('org.springdoc:springdoc-openapi-starter-webmvc-ui:2.6.0') {
+        dependency ('org.springdoc:springdoc-openapi-starter-webmvc-ui:2.7.0') {
             exclude 'io.swagger.core.v3:swagger-core'
         }
 
         dependency 'com.google.cloud.sql:mysql-socket-factory-connector-j-8:1.21.0'
 
-        dependency ('org.apache.activemq:activemq-client:6.1.3') {
+        dependency ('org.apache.activemq:activemq-client:6.1.4') {
             exclude 'javax.annotation:javax.annotation-api'
         }
 
@@ -208,7 +208,7 @@ dependencyManagement {
             exclude 'pull-parser:pull-parser'
         }
 
-        dependency 'org.owasp.esapi:esapi:2.5.5.0'
+        dependency 'org.owasp.esapi:esapi:2.6.0.0'
         dependency 'org.awaitility:awaitility:4.2.2'
 
         dependencySet(group: 'org.apache.poi', version: '5.3.0') {
@@ -230,14 +230,14 @@ dependencyManagement {
 
         dependency "org.apache.avro:avro:1.12.0"
 
-        dependency ('org.mariadb.jdbc:mariadb-java-client:3.5.0') {
+        dependency ('org.mariadb.jdbc:mariadb-java-client:3.5.1') {
             exclude 'org.slf4j:jcl-over-slf4j'
             exclude 'org.slf4j:slf4j-api'
         }
 
         dependency 'org.postgresql:postgresql:42.7.4'
 
-        dependency 'org.assertj:assertj-core:3.26.3'
+        dependency 'org.assertj:assertj-core:3.27.0'
 
         dependency 'org.apache.commons:commons-math3:3.6.1'
 

diff --git a/docker-compose-postgresql-kafka.yml b/docker-compose-postgresql-kafka.yml
@@ -20,7 +20,7 @@
 version: "3.7"
 services:
   kafka:
-    image: "bitnami/kafka:3.8.1-debian-12-r1"
+    image: "bitnami/kafka:3.9.0-debian-12-r4"
     ports:
       - "9092:9092"
     env_file:

diff --git a/gradle/wrapper/gradle-wrapper.properties b/gradle/wrapper/gradle-wrapper.properties
@@ -1,6 +1,6 @@
 distributionBase=GRADLE_USER_HOME
 distributionPath=wrapper/dists
-distributionUrl=https\://services.gradle.org/distributions/gradle-8.10.2-bin.zip
+distributionUrl=https\://services.gradle.org/distributions/gradle-8.12-bin.zip
 networkTimeout=10000
 validateDistributionUrl=true
 zipStoreBase=GRADLE_USER_HOME