Bump sonar.java.version from 8.9.0.37768 to 8.10.0.38194

[dependabot]

Bumps sonar.java.version from 8.9.0.37768 to 8.10.0.38194.
Updates org.sonarsource.java:sonar-java-plugin from 8.9.0.37768 to 8.10.0.38194

Release notes

Sourced from org.sonarsource.java:sonar-java-plugin's releases.

8.10.0.38194

Release notes - SonarJava - 8.10

New Feature

SONARJAVA-5317 S7178: Injecting data into static fields is not supported by Spring

SONARJAVA-5318 S7180: @Cache\* annotations should only be applied on concrete classes

SONARJAVA-5319 S7184: @Scheduled annotation should only be applied to no-arg methods

SONARJAVA-5320 S7186: Methods returning "Page" or "Slice" must take "Pageable" as an input parameter

SONARJAVA-5321 S7179: @Cacheable and @CachePut should not be combined

SONARJAVA-5322 S7177: @DirtiesContext should be properly configured

SONARJAVA-5323 S7183: @InitBinder methods should have void return type

SONARJAVA-5325 S7185: @eventlistener methods should have one parameter

SONARJAVA-5328 S7190: Methods annotated with @BeforeTransaction or @AfterTransaction must respect the contract

False Positive

SONARJAVA-4876 FP in rule S2386 when collection was created with `Stream.toList()`

SONARJAVA-4954 FP in S5838: Don't report when there may be ambiguity

SONARJAVA-5128 S3553 should not report on spring @Autowired methods

SONARJAVA-5146 S5411 raises false positive within method map of Optional

SONARJAVA-5147 FP S1905 when the type cast expression is used to call "getClass()"

SONARJAVA-5256 FP in rule S2699 on BDDAssertion

SONARJAVA-5262 FP on S2187 with JUnit5 Cucumber runner

SONARJAVA-5273 FP for S125 for Apache 2.0 license header

SONARJAVA-5336 FP in automatic analysis on S1068 with @Getter on a class

Bug

SONARJAVA-5304 Wrong issue message for S6201 when cast happens in function call

Task

SONARJAVA-5254 Update RSPEC before 8.10 release

... (truncated)

Commits

• 017d16b SONARJAVA-5342 Update spotbugs rules (#5031)
• 40fcf37 SONARJAVA-5344 Fix quality flaws (#5032)
• 777ae04 SONARJAVA-5254 Update RSPEC before 8.10 release (#5030)
• b5eac20 SONARJAVA-5324 FP, modify S6856 to support PatchMapping annotation (#5029)
• 7f28869 SONARJAVA-5318 modify S7180 to not raise in interface annotated with spring d...
• b8cbc1c SONARJAVA-5041 S5786 should raise an issue on JUnit5 annotated lifecycle meth...
• c771db2 SONARJAVA-5146 Fix S5411 IndexOutOfBoundsException for lambda parameter (#5026)
• 5899138 SONARJAVA-5336 S1068 Fix FP with @​Getter and @​Setter annotations in automatic...
• 34326b0 SONARJAVA-5324 @​PathVariable must have path template placeholder (#5016)
• 1c58437 SONARJAVA-5304 Improve issue message in case of array type cast in S6201 (#5019)
• Additional commits viewable in compare view

Updates org.sonarsource.java:java-checks-testkit from 8.9.0.37768 to 8.10.0.38194

Release notes

Sourced from org.sonarsource.java:java-checks-testkit's releases.

8.10.0.38194

Release notes - SonarJava - 8.10

New Feature

SONARJAVA-5317 S7178: Injecting data into static fields is not supported by Spring

SONARJAVA-5318 S7180: @Cache\* annotations should only be applied on concrete classes

SONARJAVA-5319 S7184: @Scheduled annotation should only be applied to no-arg methods

SONARJAVA-5320 S7186: Methods returning "Page" or "Slice" must take "Pageable" as an input parameter

SONARJAVA-5321 S7179: @Cacheable and @CachePut should not be combined

SONARJAVA-5322 S7177: @DirtiesContext should be properly configured

SONARJAVA-5323 S7183: @InitBinder methods should have void return type

SONARJAVA-5325 S7185: @eventlistener methods should have one parameter

SONARJAVA-5328 S7190: Methods annotated with @BeforeTransaction or @AfterTransaction must respect the contract

False Positive

SONARJAVA-4876 FP in rule S2386 when collection was created with `Stream.toList()`

SONARJAVA-4954 FP in S5838: Don't report when there may be ambiguity

SONARJAVA-5128 S3553 should not report on spring @Autowired methods

SONARJAVA-5146 S5411 raises false positive within method map of Optional

SONARJAVA-5147 FP S1905 when the type cast expression is used to call "getClass()"

SONARJAVA-5256 FP in rule S2699 on BDDAssertion

SONARJAVA-5262 FP on S2187 with JUnit5 Cucumber runner

SONARJAVA-5273 FP for S125 for Apache 2.0 license header

SONARJAVA-5336 FP in automatic analysis on S1068 with @Getter on a class

Bug

SONARJAVA-5304 Wrong issue message for S6201 when cast happens in function call

Task

SONARJAVA-5254 Update RSPEC before 8.10 release

... (truncated)

Commits

• 017d16b SONARJAVA-5342 Update spotbugs rules (#5031)
• 40fcf37 SONARJAVA-5344 Fix quality flaws (#5032)
• 777ae04 SONARJAVA-5254 Update RSPEC before 8.10 release (#5030)
• b5eac20 SONARJAVA-5324 FP, modify S6856 to support PatchMapping annotation (#5029)
• 7f28869 SONARJAVA-5318 modify S7180 to not raise in interface annotated with spring d...
• b8cbc1c SONARJAVA-5041 S5786 should raise an issue on JUnit5 annotated lifecycle meth...
• c771db2 SONARJAVA-5146 Fix S5411 IndexOutOfBoundsException for lambda parameter (#5026)
• 5899138 SONARJAVA-5336 S1068 Fix FP with @​Getter and @​Setter annotations in automatic...
• 34326b0 SONARJAVA-5324 @​PathVariable must have path template placeholder (#5016)
• 1c58437 SONARJAVA-5304 Improve issue message in case of array type cast in S6201 (#5019)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)