fix(deps): update all patch dependencies (master)

[renovate]

Coming soon: The Renovate bot (GitHub App) will be renamed to Mend. PRs from Renovate will soon appear from 'Mend'. Learn more here.

This PR contains the following updates:

Package	Change	Age	Confidence
com.gradleup.shadow	8.3.8 -> 8.3.9
io.swagger.core.v3:swagger-annotations	2.2.34 -> 2.2.37
org.postgresql:postgresql (source)	42.7.3 -> 42.7.8
org.mariadb.jdbc:mariadb-java-client (source)	3.5.3 -> 3.5.6
org.junit.jupiter:junit-jupiter (source)	5.13.2 -> 5.13.4
org.junit:junit-bom (source)	5.13.2 -> 5.13.4
com.networknt:json-schema-validator	1.5.8 -> 1.5.9
org.glassfish.jersey.media:jersey-media-multipart (source)	3.1.10 -> 3.1.11
org.glassfish.jersey.media:jersey-media-json-jackson (source)	3.1.10 -> 3.1.11
org.glassfish.jersey.inject:jersey-hk2 (source)	3.1.10 -> 3.1.11
org.glassfish.jersey.containers:jersey-container-jdk-http (source)	3.1.10 -> 3.1.11
jakarta.xml.bind:jakarta.xml.bind-api	4.0.2 -> 4.0.4
com.hivemq:hivemq-mqtt-client	1.3.6 -> 1.3.9
io.dropwizard.metrics:metrics-logback (source)	4.2.33 -> 4.2.37
io.dropwizard.metrics:metrics-jvm (source)	4.2.33 -> 4.2.37
io.dropwizard.metrics:metrics-jmx (source)	4.2.33 -> 4.2.37
io.dropwizard.metrics:metrics-core (source)	4.2.33 -> 4.2.37
com.digitalpetri.modbus:modbus-tcp	2.1.0 -> 2.1.3
net.bytebuddy:byte-buddy	1.17.5 -> 1.17.7
org.assertj:assertj-core (source)	3.27.3 -> 3.27.5

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

swagger-api/swagger-core (io.swagger.core.v3:swagger-annotations)

v2.2.37: Swagger-core 2.2.37 released!

• fix: prevent leaking properties to enum schema when Schema#implementa… (#​4970)
• refs enumAsRef Issue 4932 (#​4969)
• fix: add booleanSchemaValue to Schema's hashCode and equals (#​4958)
• fix: Fix missing items on nested @​ArraySchema items in OAS 3.1 (#​4949)

v2.2.36: Swagger-core 2.2.36 released!

• fix: Fix ClassCastException on resolving JsonSchema. This solves issu… (#​4950)

v2.2.35: Swagger-core 2.2.35 released!

Compare Source

• chore: bump jackson versions to 2.19.2 (#​4943)
• Bump github classgraph version to 4.8.181 (#​4940)
• chore: update common lang3 to 3.18 (#​4938)
• chore: add GitHub issue and pull request templates (#​4934)
• docs: provide a better formatting for README (#​4930)
• Revert temp workarounds for sonatype 502 (#​4922)
• Ticket-4910 | Added FailedApiResponse.java (#​4911)

pgjdbc/pgjdbc (org.postgresql:postgresql)

v42.7.8

Added

• feat: Add configurable boolean-to-numeric conversion for ResultSet getters PR #​3796

Changed

• perf: remove QUERY_ONESHOT flag when calling getMetaData PR #​3783
• perf: use BufferedInputStream with FileInputStream PR #​3750
• perf: enable server-prepared statements for DatabaseMetaData

Fixed

• fix: avoid NullPointerException when cancelling a query if cancel key is not known yet
• fix: Change "PST" timezone in TimestampTest to "Pacific Standard Time" PR #​3774
• fix: traverse the current dimension to get the correct pos in PgArray#calcRemainingDataLength PR #​3746
• fix: make sure getImportedExportedKeys returns columns in consistent order
• fix: Add "SELF_REFERENCING_COL_NAME" field to getTables' ResultSetMetaData to fix NullPointerException PR #​3660
• fix: unable to open replication connection to servers < 12
• fix: avoid closing statement caused by driver's internal ResultSet#close()
• fix: return empty metadata for empty catalog names as it was before
• fix: Incorrect class comparison in PGXmlFactoryFactory validation

v42.7.7

Security

• security: Client Allows Fallback to Insecure Authentication Despite channelBinding=require configuration.
  Fix channel binding required handling to reject non-SASL authentication
  Previously, when channel binding was set to "require", the driver would silently ignore this
  requirement for non-SASL authentication methods. This could lead to a false sense of security
  when channel binding was explicitly requested but not actually enforced. The fix ensures that when
  channel binding is set to "require", the driver will reject connections that use
  non-SASL authentication methods or when SASL authentication has not completed properly.
  See the Security Advisory for more detail. Reported by George MacKerron
  The following CVE-2025-49146 has been issued

Added

• test: Added ChannelBindingRequiredTest to verify proper behavior of channel binding settings

v42.7.6

Features

• fix: Enhanced DatabaseMetadata.getIndexInfo() method, added index comment as REMARKS property PR #​3513

Performance Improvements

• performance: Improve ResultSetMetadata.fetchFieldMetaData by using IN row values instead of UNION ALL for improved query performance (later reverted) PR #​3510
• feat:Use a single simple query for all startup parameters, so groupStartupParameters is no longer needed PR #​3613

v42.7.5

Added

• ci: Test with Java 23 PR #​3381

Fixed

• regression: revert change in fc60537 PR #​3476
• fix: PgDatabaseMetaData implementation of catalog as param and return value PR #​3390
• fix: Support default GSS credentials in the Java Postgres client PR #​3451
• fix: return only the transactions accessible by the current_user in XAResource.recover PR #​3450
• feat: don't force send extra_float_digits for PostgreSQL >= 12 fix Issue #​3432 PR #​3446
• fix: exclude "include columns" from the list of primary keys PR #​3434
• perf: Enhance the meta query performance by specifying the oid. PR #​3427
• feat: support getObject(int, byte[].class) for bytea PR #​3274
• docs: document infinity and some minor edits PR #​3407
• fix: Added way to check for major server version, fixed check for RULE PR #​3402
• docs: fixed remaining paragraphs PR #​3398
• docs: fixed paragraphs in javadoc comments PR #​3397
• fix: Reuse buffers and reduce allocations in GSSInputStream addresses Issue #​3251 PR #​3255
• chore: Update Gradle to 8.10.2 PR #​3388
• fix: getSchemas() PR #​3386
• fix: Update rpm postgresql-jdbc.spec.tpl with scram-client PR #​3324
• fix: Clearing thisRow and rowBuffer on close() of ResultSet Issue #​3383 PR #​3384
• fix: Package was renamed to maven-bundle-plugin PR #​3382
• fix: As of version 18 the RULE privilege has been removed PR #​3378
• fix: use buffered inputstream to create GSSInputStream PR #​3373
• test: get rid of 8.4, 9.0 pg versions and use >= jdk version 17 PR #​3372
• Changed docker-compose version and renamed script file in instructions to match the real file name PR #​3363
• test:Do not assume "test" database in DatabaseMetaDataTransactionIsolationTest PR #​3364
• try to categorize dependencies PR #​3362

v42.7.4

Added

• chore: SCRAM dependency to 3.1 and support channel binding PR #​3188
• chore: Add PostgreSQL 15, 16, and 17beta1 to CI tests PR #​3299
• test: Update to 17beta3 PR #​3308
• chore: Implement direct SSL ALPN connections PR #​3252
• translation: Add Korean translation file PR #​3276

Fixed

• fix: PgInterval ignores case for represented interval string PR #​3344
• perf: Avoid extra copies when receiving int4 and int2 in PGStream PR #​3295
• fix: Add support for Infinity::numeric values in ResultSet.getObject PR #​3304
• fix: Ensure order of results for getDouble PR #​3301
• perf: Replace BufferedOutputStream with unsynchronized PgBufferedOutputStream, allow configuring different Java and SO_SNDBUF buffer sizes PR #​3248
• fix: Fix SSL tests PR #​3260
• fix: Support bytea in preferQueryMode=simple PR #​3243
• fix: Fix #​3234 - Return -1 as update count for stored procedure calls PR #​3235
• fix: Fix #​3224 - conversion for TIME '24:00' to LocalTime breaks in binary-mode PR #​3225
• perf: Speed up getDate by parsing bytes instead of String PR #​3141
• fix: support PreparedStatement.setBlob(1, Blob) and PreparedStatement.setClob(1, Clob) for lobs that return -1 for length PR #​3136
• fix: Validates resultset Params in PGStatement constructor. uses assertThro… PR #​3171
• fix: Validates resultset parameters PR #​3167
• docs: Replace greater to with greater than PR #​3315
• docs: Clarify binaryTransfer and prepareThreshold PR #​3338
• docs: use.md, typo PR #​3314
• test: Use docker v2 which changes docker-compose to docker compose #​3339
• refactor: Merge PgPreparedStatement#setBinaryStream int and long methods PR #​3165
• test: Test both binaryMode=true,false when creating connections in DatabaseMetaDataTest PR #​3231
• docs: Fixed typos in all source code and documentations PR #​3242
• chore: Remove self-hosted runner PR #​3227
• docs: Add cancelSignalTimeout in README PR #​3190
• docs: Document READ_ONLY_MODE in README PR #​3175
• test: Test for +/- infinity double values PR #​3294
• test: Switch localhost and auth-test around for test-gss PR #​3343
• fix: remove preDescribe from internalExecuteBatch PR #​2883
• deps: Update dependency om.ongres.scram:scram-client to 3.2

Deprecated

• test: Deprecate all PostgreSQL versions older than 9.1 PR #​3335

mariadb-corporation/mariadb-connector-j (org.mariadb.jdbc:mariadb-java-client)

v3.5.6

Compare Source

Full Changelog

Key Enhancements

• CONJ-1238 - rewriteBatchStatements implementation
• CONJ-1274 - server prepared statement client failover to client prepared statement

Issues Resolved

• CONJ-1278 - prepared statement caching enablement correction, same than 2.x
• CONJ-1279 - metadata table name addition for 12.1 after MDEV-28933
• CONJ-1280 - permit having multiple command with initSql option
• CONJ-1276 - Connection#isValid(int timeout) does not obey the passed in timeout if the network is down.

v3.5.5

Compare Source

Full Changelog

Issues Resolved

• CONJ-1265 - ensure rollback and release savepoint operation to be sent to server, even when there is no transaction in progress
• CONJ-1270 - forceConnectionTimeZoneToSession doesn't always set the timezone to server

v3.5.4

Compare Source

Full Changelog

Key Enhancements

• CONJ-1261 - Added caching option for loadCodecs results to improve performance

Issues Resolved

• CONJ-1234 - Fixed incorrect type definitions in DatabaseMetaData.getTypeInfo()
• CONJ-1247 - Resolved potential race condition that could cause NullPointerException
• CONJ-1250 - avoids redundant queries for CallableStatement.getParameterMetaData()
• CONJ-1251 - Fixed SSL configuration issue where zero SSL settings only functioned without explicit SSL configuration
• CONJ-1252 - Resolved GSSAPI authentication error when server exchanges begin with 0x01 byte
• CONJ-1254 - Corrected DatabaseMetadata.getTypeInfo() returning incorrect values for AUTO_INCREMENT, FIXED_PREC_SCALE, and CASE_SENSITIVE fields
• CONJ-1255 - Fixed getString method on BIT(1) fields to properly honor transformedBitIsBoolean configuration
• CONJ-1259 - Enhanced metadata compatibility with MariaDB version 12.0
• CONJ-1260 - Improved performance of DatabaseMetaData.getExportedKeys method
• CONJ-1256 - Fixed issue to ensure correct catalog name is returned

networknt/json-schema-validator (com.networknt:json-schema-validator)

v1.5.9

Compare Source

Added

Changed

• Fix idn-hostname format and update json schema test suite (#​1191) Thanks @​justin-tay
• Fix JoniRegularExpression compatibility issues with ECMA-262 (#​1193) Thanks @​justin-tay
• Fix time format validation (#​1188) Thanks @​justin-tay
• Fix eclipse junit issue due to m2e-core (#​1189) Thanks @​justin-tay
• Support readOnly and writeOnly for required validation (#​1186) Thanks @​justin-tay
• Spanish translations (#​1183) Thanks @​MickMonaghanGW
• Upgrade to ITU 1.14.0 (#​1184) Thanks @​ethlo
• Add mpenet/legba to list of librairies (#​1181) Thanks @​mpenet

eclipse-ee4j/jersey (org.glassfish.jersey.media:jersey-media-multipart)

v3.1.11

Compare Source

[Pull 5676] - [3.1] Helidon 4.x container

[Pull 5823] - Improve multipart behaviour to comply with MP REST Client 4.0 TCK tests

[Pull 5831] - Support MP REST Client 4.0

[Pull 5844] - Do not stuck Netty on header-setting exception

[Pull 5857] - Compatibility with RestEasy injecting no Configuration

[Pull 5868] - Bug Fix: SSE Events lines MUST NOT contain \r

[Pull 5870] - Do not include port -1 in the HOST header.

[Pull 5877] - jnh-connector: Fixed issue where FirstByteCachingStream failed to inc…

[Pull 5887] - File upload handling after redirect

[Pull 5903] - Fix for #​5902; support optional @​FormParam

[Pull 5917] - Replace String UTF-8 with a charset

[Pull 5944] - Versions update [3.1]

[Pull 5958] - Support Helidon3 and Helidon4 (precedence) by helidon connector.

[Pull 5960] - Support for ValidatorContext#{clockProvider,addValueExtractor}

jakartaee/jaxb-api (jakarta.xml.bind:jakarta.xml.bind-api)

v4.0.4

Compare Source

v4.0.3

Compare Source

hivemq/hivemq-mqtt-client (com.hivemq:hivemq-mqtt-client)

v1.3.9: 1.3.9

What's Changed

• Update actions/setup-java action to v5 (master) by @​renovate[bot] in #​704
• Update dependency nl.jqno.equalsverifier:equalsverifier to v4.0.9 (master) by @​renovate[bot] in #​705
• Add on event so that PRs targeting master also run check workflow by @​MicWalter in #​707
• ImmutableIntList of four does not store 2nd and 3rd element correctly. by @​wilx in #​681
• Update dependency org.jetbrains:annotations to v26.0.2-1 (master) by @​renovate[bot] in #​709
• Update non-major netty dependencies to v4.1.126.Final (master) by @​renovate[bot] in #​710
• Update plugin shadow to v9.1.0 (master) by @​renovate[bot] in #​708
• Update dependency nl.jqno.equalsverifier:equalsverifier to v4.1 (master) by @​renovate[bot] in #​711
• Bump version to 1.3.9 by @​Donnerbart in #​712
• Fix Gradle Shadow config by @​Donnerbart in #​713

New Contributors

• @​wilx made their first contribution in #​681

Full Changelog: hivemq/hivemq-mqtt-client@v1.3.8...v1.3.9

v1.3.8: 1.3.8

What's Changed

• Update all patch dependencies to v3.7.7 (master) by @​renovate[bot] in #​688
• Update non-major netty dependencies to v4.1.123.Final (master) by @​renovate[bot] in #​690
• Update all patch dependencies to v3.7.8 (master) by @​renovate[bot] in #​689
• Migrate renovate config by @​renovate[bot] in #​692
• Update actions/checkout action to v5 (master) by @​renovate[bot] in #​693
• Update non-major netty dependencies to v4.1.124.Final (master) by @​renovate[bot] in #​694
• Update all patch dependencies to v3.7.9 (master) by @​renovate[bot] in #​695
• Update Gradle to 8.11.1 by @​Donnerbart in #​696
• Update all minor dependencies (master) by @​renovate[bot] in #​697
• Update dependency org.mockito:mockito-core to v5 (master) by @​renovate[bot] in #​699
• Update dependency nl.jqno.equalsverifier:equalsverifier to v4 (master) by @​renovate[bot] in #​700
• Update dependency com.google.guava:guava to v33 (master) by @​renovate[bot] in #​701
• Bump version to 1.3.8 by @​Donnerbart in #​702
• Fix Maven publish by @​Donnerbart in #​703

Full Changelog: hivemq/hivemq-mqtt-client@v1.3.7...v1.3.8

v1.3.7: 1.3.7

What's Changed

• Add an option to resubscribe if session is present by @​tlopesPT in #​685
• Migrate to Central Portal by @​ymengesha in #​684

New Contributors

• @​tlopesPT made their first contribution in #​685
• @​ymengesha made their first contribution in #​684

Full Changelog: hivemq/hivemq-mqtt-client@v1.3.6...v1.3.7

dropwizard/metrics (io.dropwizard.metrics:metrics-logback)

v4.2.37

What's Changed

• chore(deps): update actions/stale action to v10 (release/4.2.x) by @​renovate[bot] in #​4937
• fix(deps): update jetty monorepo to v12.1.1 (release/4.2.x) (patch) by @​renovate[bot] in #​4939
• chore(deps): update maven plugins (release/4.2.x) (patch) by @​renovate[bot] in #​4941
• Optimize SlidingTimeWindowMovingAverages sumBuckets by @​schlosna in #​4936

Full Changelog: dropwizard/metrics@v4.2.36...v4.2.37

v4.2.36

What's Changed

• chore: remove Checker framework from metrics-caffeine3 by @​joschi in #​4926
• chore(deps): update dependency org.ehcache:ehcache to v3.11.1 (release/4.2.x) by @​renovate[bot] in #​4927
• fix(deps): update dependency org.apache.httpcomponents.core5:httpcore5 to v5.3.5 (release/4.2.x) by @​renovate[bot] in #​4928
• chore: remove Checker framework from metrics-caffeine by @​joschi in #​4933

Full Changelog: dropwizard/metrics@v4.2.35...v4.2.36

v4.2.35

What's Changed

• build: remove empty distributionManagement from POM by @​joschi in #​4921

Full Changelog: dropwizard/metrics@v4.2.34...v4.2.35

v4.2.34

What's Changed

• fix(deps): update dependency org.checkerframework:checker-qual to v3.49.5 (release/4.2.x) by @​renovate[bot] in #​4849
• chore(deps): update dependency org.apache.maven.plugins:maven-enforcer-plugin to v3.6.0 (release/4.2.x) by @​renovate[bot] in #​4852
• chore(deps): update dependency org.apache.maven.plugins:maven-gpg-plugin to v3.2.8 (release/4.2.x) by @​renovate[bot] in #​4848
• Automatically assign milestone on PR creation by @​joschi in #​4853
• fix(deps): update jetty monorepo to v12.0.23 (release/4.2.x) (patch) by @​renovate[bot] in #​4850
• fix(deps): update dependency com.github.ben-manes.caffeine:caffeine to v3.2.2 (release/4.2.x) by @​renovate[bot] in #​4858
• fix(deps): update log4j2 monorepo to v2.25.1 (release/4.2.x) (patch) by @​renovate[bot] in #​4859
• chore(deps): update dependency org.apache.commons:commons-lang3 to v3.18.0 (release/4.2.x) by @​renovate[bot] in #​4861
• chore(deps): update dependency maven to v3.9.11 (release/4.2.x) by @​renovate[bot] in #​4867
• chore(deps): update dependency org.apache.maven.plugins:maven-enforcer-plugin to v3.6.1 (release/4.2.x) by @​renovate[bot] in #​4868
• build: change repository URLs to Portal OSSRH Staging API by @​joschi in #​4857
• chore(config): migrate renovate config by @​renovate[bot] in #​4873
• build: migrate from nexus-staging-maven-plugin to central-publishing-maven-plugin by @​joschi in #​4875
• fix(deps): update dependency com.rabbitmq:amqp-client to v5.26.0 (release/4.2.x) by @​renovate[bot] in #​4877
• fix(deps): update dependency org.glassfish.jersey:jersey-bom to v3.1.11 (release/4.2.x) by @​renovate[bot] in #​4884
• chore(deps): update dependency org.assertj:assertj-core to v3.27.4 (release/4.2.x) by @​renovate[bot] in #​4883
• chore(deps): update actions/cache action to v4.2.4 (release/4.2.x) by @​renovate[bot] in #​4882
• fix(deps): update jetty monorepo to v12.0.25 (release/4.2.x) (patch) by @​renovate[bot] in #​4885
• chore(deps): update github actions to v5 (release/4.2.x) (major) by @​renovate[bot] in #​4897
• fix(deps): update dependency net.bytebuddy:byte-buddy to v1.17.7 (release/4.2.x) by @​renovate[bot] in #​4909
• chore(deps): update dependency org.apache.maven.plugins:maven-javadoc-plugin to v3.11.3 (release/4.2.x) by @​renovate[bot] in #​4908
• fix(deps): update jetty monorepo (release/4.2.x) (patch) by @​renovate[bot] in #​4910
• chore(deps): update dependency org.mockito:mockito-core to v5.19.0 (release/4.2.x) by @​renovate[bot] in #​4900
• fix(deps): update jetty monorepo to v12.1.0 (release/4.2.x) (minor) by @​renovate[bot] in #​4901
• chore(deps): update dependency org.ehcache:ehcache to v3.11.0 (release/4.2.x) by @​renovate[bot] in #​4911
• Add modules to support Jetty 12 for Jakarta EE 11 by @​joschi in #​4912
• chore: retry flaky tests in metrics-jetty12-ee* by @​joschi in #​4919
• chore(deps): update github actions to v5 (release/4.2.x) (major) by @​renovate[bot] in #​4915

Full Changelog: dropwizard/metrics@v4.2.33...v4.2.34

digitalpetri/modbus (com.digitalpetri.modbus:modbus-tcp)

v2.1.3

What's Changed

• Update netty-channel-fsm to version 1.0.2 by @​kevinherron in #​127
• Update dependency versions by @​kevinherron in #​128
• Update Maven plugin dependency versions by @​kevinherron in #​129

Full Changelog: digitalpetri/modbus@v2.1.2...v2.1.3

v2.1.2

What's Changed

• Allow customization of ChannelFsmConfigBuilder by @​kevinherron in #​116
• Add getters for config and transport in servers by @​kevinherron in #​120
• Handle empty response PDU in ModbusTcpClient by @​kevinherron in #​122
• Handle malformed exception response PDU in ModbusTcpClient by @​kevinherron in #​123
• Fix TimeoutHandle memory leak in ModbusRtuClient by @​kevinherron in #​125

Full Changelog: digitalpetri/modbus@v2.1.1...v2.1.2

v2.1.1

What's Changed

• Encode WriteMultipleRegistersRequest using values length by @​kevinherron in #​102
• Update all dependencies to latest versions by @​kevinherron in #​104
• Dependency updates by @​kevinherron in #​109
• Add getters for config and transport in clients by @​kevinherron in #​110
• Add ConnectionListener support to NettyRtuClientTransport by @​kevinherron in #​111
• Add "setter" methods for all builder fields by @​kevinherron in #​112
• Replace nexus-staging-maven-plugin with central-publishing-maven-plugin by @​kevinherron in #​113

Full Changelog: digitalpetri/modbus@v2.1.0...v2.1.1

---

Configuration

📅 Schedule: Branch creation - Only on Sunday and Saturday ( * * * * 0,6 ) (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[vanch3d]

deprecated