Skip to content

build(deps): bump the dependencies group with 16 updates#3975

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/maven/dependencies-bdf8668ecb
Open

build(deps): bump the dependencies group with 16 updates#3975
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/maven/dependencies-bdf8668ecb

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 6, 2026

Copy link
Copy Markdown
Contributor

Bumps the dependencies group with 16 updates:

Package From To
com.github.jknack:handlebars 4.5.2 4.5.3
org.apache.logging.log4j:log4j-core 2.26.0 2.26.1
org.apache.logging.log4j:log4j-slf4j-impl 2.26.0 2.26.1
org.hibernate.orm:hibernate-core 7.4.3.Final 7.4.4.Final
org.hibernate.orm:hibernate-scan-jandex 7.4.3.Final 7.4.4.Final
io.ebean:ebean 19.0.0 19.2.0
io.ebean:ebean-querybean 19.0.0 19.2.0
io.ebean:querybean-generator 19.0.0 19.2.0
io.ebean:ebean-test 19.0.0 19.2.0
org.jdbi:jdbi3-core 3.53.0 3.54.0
com.diffplug.spotless:spotless-maven-plugin 3.7.0 3.8.0
net.bytebuddy:byte-buddy 1.18.10 1.18.11
dev.langchain4j:langchain4j-bom 1.17.0 1.17.1
software.amazon.awssdk:bom 2.46.17 2.46.21
org.jline:jline 3.30.14 3.30.15
org.jline:jline-terminal-jna 3.30.14 3.30.15

Updates com.github.jknack:handlebars from 4.5.2 to 4.5.3

Release notes

Sourced from com.github.jknack:handlebars's releases.

handlebars.java 4.5.3

What's Changed

  • Security vulnerability. Arbitrary file read in SpringTemplateLoader via URL-fragment suffix bypass
  • Change in behavior for implicit params in partials in handlebars #1182

Full Changelog: jknack/handlebars.java@v4.5.2...v4.5.3

Commits
  • a733ae1 build: fix windows OS failing test
  • 0a9e359 v4.5.3
  • 7bc9061 Merge commit from fork
  • 3e27b0b build: fix failing tests on windows OS
  • 61f4342 Fix path traversal and suffix bypass in Spring MVC integration
  • c958550 Change in behavior for implicit params in partials in handlebars 4.5.2 fix #1182
  • See full diff in compare view

Updates org.apache.logging.log4j:log4j-core from 2.26.0 to 2.26.1

Updates org.apache.logging.log4j:log4j-slf4j-impl from 2.26.0 to 2.26.1

Updates org.apache.logging.log4j:log4j-slf4j-impl from 2.26.0 to 2.26.1

Updates org.hibernate.orm:hibernate-core from 7.4.3.Final to 7.4.4.Final

Release notes

Sourced from org.hibernate.orm:hibernate-core's releases.

Release 7.4.4

Hibernate ORM 7.4.4.Final released

Today, we published a new release of Hibernate ORM 7.4: 7.4.4.Final.

You can find the full list of 7.4.4.Final changes here.

What's new

  • See the website for requirements and compatibilities.
  • See the What's New guide for details about new features and capabilities.
  • See the Migration Guide for details about migration.

Conclusion

For additional details, see:

See also the following resources related to supported APIs:

Visit the website for details on getting in touch with us.

Changelog

Sourced from org.hibernate.orm:hibernate-core's changelog.

Changes in 7.4.4.Final (July 05, 2026)

https://hibernate.atlassian.net/projects/HHH/versions/39929

** Bug * HHH-20647 Binding an NClob attribute fails on PostgreSQL with "Could not convert 'java.sql.NClob' to 'java.sql.Clob'" * HHH-20634 Property based id generator configuration no longer working for EmbeddedId * HHH-20633 Unnecessary cast to SessionFactoryImplementor in AuditLogFactory * HHH-20614 AnnotationBasedGenerator is not initialized when the interface is implemented by an (abstract) superclass instead of the concrete class (after upgrading to hibernate 7.3/7.4) * HHH-20586 GlobalRegistrationsImpl is not extracting query hints correctly * HHH-20582 Envers ToOneRelationMetadataGenerator.checkMappedByAudited fails when inverse @OneToOne mappedBy points to a property declared on a superclass @Entity * HHH-20550 SqmSelectStatement.createCountQuery() doesn't copy CTE statements * HHH-20467 StackOverflow with Converters with unbounded Generics * HHH-20318 Unable to update CLOB column * HHH-20146 Cascade delete with bytecode enhancement throws transient exception * HHH-19569 Hibernate 6 alias injection in native query problem when using Joined Inheritance

** Task * HHH-20642 Handle renaming of Panache Next to Quarkus Data in hibernate-processor and add name SPI

Commits
  • 0f115c4 [Jenkins release job] Preparing release 7.4.4.Final
  • 3578615 [Jenkins release job] changelog.txt updated by release build 7.4.4.Final
  • 0ac8b71 HHH-20647 Handle Clob unwrap/wrap in NClobJavaType
  • 1621b05 HHH-20318 Fix CCE in Clob/NClob unwrap CharacterStream branch
  • bfd89d8 HHH-20622 locate() with start position returns wrong value when pattern is no...
  • e187168 HHH-20467 Resolve type variables to bounds when context is not parameterized
  • 057a026 HHH-20146: Fix multi-level cascade delete with bytecode enhancement
  • c23d31a HHH-20582 Accommodate PR feedback in tests
  • 68a0f61 HHH-20582 Walk superclass auditing data when resolving @​OneToOne mappedBy
  • 86c220c HHH-20642 Extract Quarkus Data type names into a ServiceLoader SPI
  • Additional commits viewable in compare view

Updates org.hibernate.orm:hibernate-scan-jandex from 7.4.3.Final to 7.4.4.Final

Release notes

Sourced from org.hibernate.orm:hibernate-scan-jandex's releases.

Release 7.4.4

Hibernate ORM 7.4.4.Final released

Today, we published a new release of Hibernate ORM 7.4: 7.4.4.Final.

You can find the full list of 7.4.4.Final changes here.

What's new

  • See the website for requirements and compatibilities.
  • See the What's New guide for details about new features and capabilities.
  • See the Migration Guide for details about migration.

Conclusion

For additional details, see:

See also the following resources related to supported APIs:

Visit the website for details on getting in touch with us.

Changelog

Sourced from org.hibernate.orm:hibernate-scan-jandex's changelog.

Changes in 7.4.4.Final (July 05, 2026)

https://hibernate.atlassian.net/projects/HHH/versions/39929

** Bug * HHH-20647 Binding an NClob attribute fails on PostgreSQL with "Could not convert 'java.sql.NClob' to 'java.sql.Clob'" * HHH-20634 Property based id generator configuration no longer working for EmbeddedId * HHH-20633 Unnecessary cast to SessionFactoryImplementor in AuditLogFactory * HHH-20614 AnnotationBasedGenerator is not initialized when the interface is implemented by an (abstract) superclass instead of the concrete class (after upgrading to hibernate 7.3/7.4) * HHH-20586 GlobalRegistrationsImpl is not extracting query hints correctly * HHH-20582 Envers ToOneRelationMetadataGenerator.checkMappedByAudited fails when inverse @OneToOne mappedBy points to a property declared on a superclass @Entity * HHH-20550 SqmSelectStatement.createCountQuery() doesn't copy CTE statements * HHH-20467 StackOverflow with Converters with unbounded Generics * HHH-20318 Unable to update CLOB column * HHH-20146 Cascade delete with bytecode enhancement throws transient exception * HHH-19569 Hibernate 6 alias injection in native query problem when using Joined Inheritance

** Task * HHH-20642 Handle renaming of Panache Next to Quarkus Data in hibernate-processor and add name SPI

Commits
  • 0f115c4 [Jenkins release job] Preparing release 7.4.4.Final
  • 3578615 [Jenkins release job] changelog.txt updated by release build 7.4.4.Final
  • 0ac8b71 HHH-20647 Handle Clob unwrap/wrap in NClobJavaType
  • 1621b05 HHH-20318 Fix CCE in Clob/NClob unwrap CharacterStream branch
  • bfd89d8 HHH-20622 locate() with start position returns wrong value when pattern is no...
  • e187168 HHH-20467 Resolve type variables to bounds when context is not parameterized
  • 057a026 HHH-20146: Fix multi-level cascade delete with bytecode enhancement
  • c23d31a HHH-20582 Accommodate PR feedback in tests
  • 68a0f61 HHH-20582 Walk superclass auditing data when resolving @​OneToOne mappedBy
  • 86c220c HHH-20642 Extract Quarkus Data type names into a ServiceLoader SPI
  • Additional commits viewable in compare view

Updates io.ebean:ebean from 19.0.0 to 19.2.0

Commits

Updates io.ebean:ebean-querybean from 19.0.0 to 19.2.0

Commits

Updates io.ebean:querybean-generator from 19.0.0 to 19.2.0

Commits

Updates io.ebean:ebean-test from 19.0.0 to 19.2.0

Commits

Updates io.ebean:ebean-querybean from 19.0.0 to 19.2.0

Commits

Updates io.ebean:querybean-generator from 19.0.0 to 19.2.0

Commits

Updates io.ebean:ebean-test from 19.0.0 to 19.2.0

Commits

Updates org.jdbi:jdbi3-core from 3.53.0 to 3.54.0

Release notes

Sourced from org.jdbi:jdbi3-core's releases.

3.54.0

  • fix deadlock in configuration caching (#2980)
  • fix prepared batch first-time-null binding (#2975)
  • Add @SqlPreflight (Alpha) for SQL Object methods. The annotation runs a literal SQL statement on the same Handle, immediately before the method's main statement, binding the method's arguments. This is useful for setting scoped/session variables before a query (e.g. a Postgres trigram threshold). It is repeatable and may be placed on a method or a SQL Object type. See issue #2979.
  • update postgres driver due to CVE-2026-42198
Changelog

Sourced from org.jdbi:jdbi3-core's changelog.

3.54.0

  • fix deadlock in configuration caching (#2980)
  • fix prepared batch first-time-null binding (#2975)
  • Add @SqlPreflight (Alpha) for SQL Object methods. The annotation runs a literal SQL statement on the same Handle, immediately before the method's main statement, binding the method's arguments. This is useful for setting scoped/session variables before a query (e.g. a Postgres trigram threshold). It is repeatable and may be placed on a method or a SQL Object type. See issue #2979.
  • update postgres driver due to CVE-2026-42198
Commits

Updates com.diffplug.spotless:spotless-maven-plugin from 3.7.0 to 3.8.0

Release notes

Sourced from com.diffplug.spotless:spotless-maven-plugin's releases.

Maven Plugin v3.8.0

Added

  • Add support for custom string format for license header copyright year via yearStringFormat(). (#2965)

Fixed

  • <expandWildcardImports> no longer triggers a full transitive dependency resolution on every build. Dependency resolution is now deferred until the step actually runs, so projects that do not use <expandWildcardImports> (or that use version ranges) are no longer penalized. (#2983)
Changelog

Sourced from com.diffplug.spotless:spotless-maven-plugin's changelog.

spotless-lib and spotless-lib-extra releases

If you are a Spotless user (as opposed to developer), then you are probably looking for:

This document is intended for Spotless developers.

We adhere to the keepachangelog format (starting after version 1.27.0).

[Unreleased]

[4.8.0] - 2026-06-29

Added

  • Add support for custom string format for license header copyright year via yearStringFormat(). (#2965)

[4.7.0] - 2026-06-16

Added

  • Add support for AsciiDoc formatting via adocfmt. (#2960)
  • flexmark step now supports arbitrary formatter options via a formatterOptions map. (#2968)

Fixed

  • FenceStep.preserveWithin now forwards lints from nested steps while still suppressing lints inside preserved blocks. (#2962)
  • Support ktfmt 0.63 and use its new builder API for formatting options to better avoid future breaking changes.
  • Parse standard git year output in LicenseHeaderStep. (#2940)
  • Fix StringIndexOutOfBoundsException in scenarios where copyright year is surrounded by whitespace. (#2973)

Changes

  • Bump default greclipse version to latest 4.35 -> 4.39. (#2924)

[4.6.2] - 2026-05-27

Fixed

  • P2Provisioner now passes cache directory overrides directly to Solstice. (#2944)
  • forbidWildcardImports and forbidModuleImports now detect imports that have leading whitespace (indentation/tabs). (#2939)
  • versionCatalog step no longer splits long inline tables across multiple lines — Gradle's TOML 1.0 parser cannot read multi-line inline tables. The maxLineLength option has been removed. (#2948)

Changes

  • EclipseJdtFormtterStep now can conditionally set compiler source/compliance options. Allows for better parsing of AST Node for newer language features and more correct sorting; e.g. records or seal classes. (#2942)
  • Formatter no longer recomputes line-ending normalization (LineEnding.toUnix) a second time for every formatter step that changes content, removing redundant O(n) work from the core formatting loop. (#2934)
  • expandWildcardImports support pom type dependency. (#2839)

[4.6.1] - 2026-05-15

Fixed

  • LicenseHeaderStep in SET_FROM_GIT year mode no longer invokes git log through bash -c / cmd /c, eliminating a shell-injection vector when processing repositories that contain files whose names include shell metacharacters.

[4.6.0] - 2026-05-14

Added

  • scalafmt() now reads the version from the version field in the scalafmt config file when no version is explicitly set in the plugin config, falling back to the built-in default only if neither is available. (#2922)
  • Add versionCatalog step for formatting and sorting Gradle version catalog (.toml) files. (#2916)
  • Add javaparserVersion option to the Cleanthat step, allowing callers to override the JavaParser version pulled in transitively by Cleanthat. (#2903)

Fixed

... (truncated)

Commits
  • 03d43ba Published maven/3.8.0
  • 8b80c13 Published gradle/8.8.0
  • 8ee6cf9 Published lib/4.8.0
  • 6c02c0b Add missing changelog entry.
  • 264f4cc Add regression test for forbidWildcardImports inside toggleOffOn (#2982)
  • 6abb064 fix #2983, expandWildcardImports triggers a full transitive reso… (#2984)
  • f4536d4 Update plugin spotbugs to v6.5.8 (#2987)
  • 873454a Update plugin spotbugs to v6.5.8
  • 000b8a8 Update dependency org.junit.jupiter:junit-jupiter to v6.1.1 (#2985)
  • 84ebcab Update dependency org.junit.jupiter:junit-jupiter to v6.1.1
  • Additional commits viewable in compare view

Updates net.bytebuddy:byte-buddy from 1.18.10 to 1.18.11

Release notes

Sourced from net.bytebuddy:byte-buddy's releases.

Byte Buddy 1.18.11

  • Add SBOM to published artifacts.
  • Check for traversable paths injected into class files as a rather hypothetical attack vector.
Changelog

Sourced from net.bytebuddy:byte-buddy's changelog.

2. July 2026: version 1.18.11

  • Add SBOM to published artifacts.
  • Check for traversable paths injected into class files as a rather hypothetical attack vector.
Commits
  • 88dd0a3 [publish] Releasing Byte Buddy 1.18.11
  • 46fcade [release] Release new version
  • 6a68de6 Prevent path traversal from crafted type names when writing class files to fo...
  • 9ba4ab6 Pin ClusterFuzzLite base image and actions by hash.
  • dd4f81e Add SBOM to build.
  • 7dd9a0d Update internal Byte Buddy and release notes
  • d6b3e15 [publish] Start next development iteration 1.18.11-SNAPSHOT
  • See full diff in compare view

Updates dev.langchain4j:langchain4j-bom from 1.17.0 to 1.17.1

Commits
  • 36d478b Release versions 1.17.1 and 1.17.1-beta27
  • 9c97ada Workaround HHH-20500 for runtimes that haven't updated to the latest Hibernat...
  • See full diff in compare view

Updates org.hibernate.orm:hibernate-scan-jandex from 7.4.3.Final to 7.4.4.Final

Release notes

Sourced from org.hibernate.orm:hibernate-scan-jandex's releases.

Release 7.4.4

Hibernate ORM 7.4.4.Final released

Today, we published a new release of Hibernate ORM 7.4: 7.4.4.Final.

You can find the full list of 7.4.4.Final changes here.

What's new

  • See the website for requirements and compatibilities.
  • See the What's New guide for details about new features and capabilities.
  • See the Migration Guide for details about migration.

Conclusion

For additional details, see:

See also the following resources related to supported APIs:

Visit the website for details on getting in touch with us.

Changelog

Sourced from org.hibernate.orm:hibernate-scan-jandex's changelog.

Changes in 7.4.4.Final (July 05, 2026)

https://hibernate.atlassian.net/projects/HHH/versions/39929

** Bug * HHH-20647 Binding an NClob attribute fails on PostgreSQL with "Could not convert 'java.sql.NClob' to 'java.sql.Clob'" * HHH-20634 Property based id generator configuration no longer working for EmbeddedId * HHH-20633 Unnecessary cast to SessionFactoryImplementor in AuditLogFactory * HHH-20614 AnnotationBasedGenerator is not initialized when the interface is implemented by an (abstract) superclass instead of the concrete class (after upgrading to hibernate 7.3/7.4) * HHH-20586 GlobalRegistrationsImpl is not extracting query hints correctly * HHH-20582 Envers ToOneRelationMetadataGenerator.checkMappedByAudited fails when inverse @OneToOne mappedBy points to a property declared on a superclass @Entity * HHH-20550 SqmSelectStatement.createCountQuery() doesn't copy CTE statements * HHH-20467 StackOverflow with Converters with unbounded Generics * HHH-20318 Unable to update CLOB column * HHH-20146 Cascade delete with bytecode enhancement throws transient exception * HHH-19569 Hibernate 6 alias injection in native query problem when using Joined Inheritance

** Task * HHH-20642 Handle renaming of Panache Next to Quarkus Data in hibernate-processor and add name SPI

Commits
  • 0f115c4 [Jenkins release job] Preparing release 7.4.4.Final
  • 3578615 [Jenkins release job] changelog.txt updated by release build 7.4.4.Final
  • 0ac8b71 HHH-20647 Handle Clob unwrap/wrap in NClobJavaType
  • 1621b05 HHH-20318 Fix CCE in Clob/NClob unwrap CharacterStream branch
  • bfd89d8 HHH-20622 locate() with start position returns wrong value when pattern is no...
  • e187168 HHH-20467 Resolve type variables to bounds when context is not parameterized
  • 057a026 HHH-20146: Fix multi-level cascade delete with bytecode enhancement
  • c23d31a HHH-20582 Accommodate PR feedback in tests
  • 68a0f61 HHH-20582 Walk superclass auditing data when resolving @​OneToOne mappedBy
  • 86c220c HHH-20642 Extract Quarkus Data type names into a ServiceLoader SPI
  • Additional commits viewable in compare view

Updates software.amazon.awssdk:bom from 2.46.17 to 2.46.21

Updates org.jline:jline from 3.30.14 to 3.30.15

Release notes

Sourced from org.jline:jline's releases.

JLine 3.30.15 is a security patch release addressing ReDoS and other security vulnerabilities.

🔒 Security Fixes

  • fix: guard regex matching against catastrophic backtracking (ReDoS) (#2018, backport of #2012) @​gnodet
  • fix: backport security hardening (#1986, #1995)
    • Create persisted history file with owner-only permissions
    • Use exclusive create for extracted native library temp files

🐛 Bug Fixes

  • fix: warn on insecure permissions when history file created concurrently @​gnodet

📦 Dependency Updates

  • chore: bump eu.maveniverse.maven.njord:extension3 from 0.9.8 to 0.9.9 (#1999)
  • chore: bump com.palantir.javaformat:palantir-java-format (#1991)
  • chore: bump actions/cache from 5 to 6 (#1989)

Full Changelog: jline/jline3@jline-3.30.14...jline-3.30.15

Commits
  • b880666 [maven-release-plugin] prepare release jline-3.30.15
  • 341ee69 fix: guard regex matching against catastrophic backtracking (ReDoS)
  • 1d12a0d fix: warn on insecure permissions when history file created concurrently
  • e307915 fix: backport security hardening to jline-3.x (#1986, #1995)
  • 6212e6c chore: Bump eu.maveniverse.maven.njord:extension3 from 0.9.8 to 0.9.9 (#1999)
  • 6c80118 chore: Bump com.palantir.javaformat:palantir-java-format (#1991)
  • 04287c4 chore: Bump actions/cache from 5 to 6 (#1989)
  • febc3b3 [maven-release-plugin] prepare for next development iteration
  • See full diff in compare view

Updates org.jline:jline-terminal-jna from 3.30.14 to 3.30.15

Release notes

Sourced from org.jline:jline-terminal-jna's releases.

JLine 3.30.15 is a security patch release addressing ReDoS and other security vulnerabilities.

🔒 Security Fixes

  • fix: guard regex matching against catastrophic backtracking (ReDoS) (#2018, backport of #2012) @​gnodet
  • fix: backport security hardening (#1986, #1995)
    • Create persisted history file with owner-only permissions
    • Use exclusive create for extracted native library temp files

🐛 Bug Fixes

  • fix: warn on insecure permissions when history file created concurrently @​gnodet

📦 Dependency Updates

  • chore: bump eu.maveniverse.maven.njord:extension3 from 0.9.8 to 0.9.9 (#1999)
  • chore: bump com.palantir.javaformat:palantir-java-format (#1991)
  • chore: bump actions/cache from 5 to 6 (#1989)

Full Changelog: jline/jline3@jline-3.30.14...jline-3.30.15

Commits
  • b880666 [maven-release-plugin] prepare release jline-3.30.15
  • 341ee69 fix: guard regex matching against catastrophic backtracking (ReDoS)
  • 1d12a0d fix: warn on insecure permissions when history file created concurrently
  • e307915 fix: backport security hardening to jline-3.x (#1986, #1995)
  • 6212e6c chore: Bump eu.maveniverse.maven.njord:extension3 from 0.9.8 to 0.9.9 (#1999)
  • 6c80118 chore: Bump com.palantir.javaformat:palantir-java-format (#1991)
  • 04287c4 chore: Bump actions/cache from 5 to 6 (#1989)
  • febc3b3 [maven-release-plugin] prepare for next development iteration
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the dependencies group with 16 updates:

| Package | From | To |
| --- | --- | --- |
| [com.github.jknack:handlebars](https://github.com/jknack/handlebars.java) | `4.5.2` | `4.5.3` |
| org.apache.logging.log4j:log4j-core | `2.26.0` | `2.26.1` |
| org.apache.logging.log4j:log4j-slf4j-impl | `2.26.0` | `2.26.1` |
| [org.hibernate.orm:hibernate-core](https://github.com/hibernate/hibernate-orm) | `7.4.3.Final` | `7.4.4.Final` |
| [org.hibernate.orm:hibernate-scan-jandex](https://github.com/hibernate/hibernate-orm) | `7.4.3.Final` | `7.4.4.Final` |
| [io.ebean:ebean](https://github.com/ebean-orm/ebean) | `19.0.0` | `19.2.0` |
| [io.ebean:ebean-querybean](https://github.com/ebean-orm/ebean) | `19.0.0` | `19.2.0` |
| [io.ebean:querybean-generator](https://github.com/ebean-orm/ebean) | `19.0.0` | `19.2.0` |
| [io.ebean:ebean-test](https://github.com/ebean-orm/ebean) | `19.0.0` | `19.2.0` |
| [org.jdbi:jdbi3-core](https://github.com/jdbi/jdbi) | `3.53.0` | `3.54.0` |
| [com.diffplug.spotless:spotless-maven-plugin](https://github.com/diffplug/spotless) | `3.7.0` | `3.8.0` |
| [net.bytebuddy:byte-buddy](https://github.com/raphw/byte-buddy) | `1.18.10` | `1.18.11` |
| [dev.langchain4j:langchain4j-bom](https://github.com/langchain4j/langchain4j) | `1.17.0` | `1.17.1` |
| software.amazon.awssdk:bom | `2.46.17` | `2.46.21` |
| [org.jline:jline](https://github.com/jline/jline3) | `3.30.14` | `3.30.15` |
| [org.jline:jline-terminal-jna](https://github.com/jline/jline3) | `3.30.14` | `3.30.15` |


Updates `com.github.jknack:handlebars` from 4.5.2 to 4.5.3
- [Release notes](https://github.com/jknack/handlebars.java/releases)
- [Commits](jknack/handlebars.java@v4.5.2...v4.5.3)

Updates `org.apache.logging.log4j:log4j-core` from 2.26.0 to 2.26.1

Updates `org.apache.logging.log4j:log4j-slf4j-impl` from 2.26.0 to 2.26.1

Updates `org.apache.logging.log4j:log4j-slf4j-impl` from 2.26.0 to 2.26.1

Updates `org.hibernate.orm:hibernate-core` from 7.4.3.Final to 7.4.4.Final
- [Release notes](https://github.com/hibernate/hibernate-orm/releases)
- [Changelog](https://github.com/hibernate/hibernate-orm/blob/7.4.4/changelog.txt)
- [Commits](hibernate/hibernate-orm@7.4.3...7.4.4)

Updates `org.hibernate.orm:hibernate-scan-jandex` from 7.4.3.Final to 7.4.4.Final
- [Release notes](https://github.com/hibernate/hibernate-orm/releases)
- [Changelog](https://github.com/hibernate/hibernate-orm/blob/7.4.4/changelog.txt)
- [Commits](hibernate/hibernate-orm@7.4.3...7.4.4)

Updates `io.ebean:ebean` from 19.0.0 to 19.2.0
- [Release notes](https://github.com/ebean-orm/ebean/releases)
- [Commits](https://github.com/ebean-orm/ebean/commits)

Updates `io.ebean:ebean-querybean` from 19.0.0 to 19.2.0
- [Release notes](https://github.com/ebean-orm/ebean/releases)
- [Commits](https://github.com/ebean-orm/ebean/commits)

Updates `io.ebean:querybean-generator` from 19.0.0 to 19.2.0
- [Release notes](https://github.com/ebean-orm/ebean/releases)
- [Commits](https://github.com/ebean-orm/ebean/commits)

Updates `io.ebean:ebean-test` from 19.0.0 to 19.2.0
- [Release notes](https://github.com/ebean-orm/ebean/releases)
- [Commits](https://github.com/ebean-orm/ebean/commits)

Updates `io.ebean:ebean-querybean` from 19.0.0 to 19.2.0
- [Release notes](https://github.com/ebean-orm/ebean/releases)
- [Commits](https://github.com/ebean-orm/ebean/commits)

Updates `io.ebean:querybean-generator` from 19.0.0 to 19.2.0
- [Release notes](https://github.com/ebean-orm/ebean/releases)
- [Commits](https://github.com/ebean-orm/ebean/commits)

Updates `io.ebean:ebean-test` from 19.0.0 to 19.2.0
- [Release notes](https://github.com/ebean-orm/ebean/releases)
- [Commits](https://github.com/ebean-orm/ebean/commits)

Updates `org.jdbi:jdbi3-core` from 3.53.0 to 3.54.0
- [Release notes](https://github.com/jdbi/jdbi/releases)
- [Changelog](https://github.com/jdbi/jdbi/blob/master/RELEASE_NOTES.md)
- [Commits](jdbi/jdbi@v3.53.0...v3.54.0)

Updates `com.diffplug.spotless:spotless-maven-plugin` from 3.7.0 to 3.8.0
- [Release notes](https://github.com/diffplug/spotless/releases)
- [Changelog](https://github.com/diffplug/spotless/blob/main/CHANGES.md)
- [Commits](diffplug/spotless@maven/3.7.0...maven/3.8.0)

Updates `net.bytebuddy:byte-buddy` from 1.18.10 to 1.18.11
- [Release notes](https://github.com/raphw/byte-buddy/releases)
- [Changelog](https://github.com/raphw/byte-buddy/blob/master/release-notes.md)
- [Commits](raphw/byte-buddy@byte-buddy-1.18.10...byte-buddy-1.18.11)

Updates `dev.langchain4j:langchain4j-bom` from 1.17.0 to 1.17.1
- [Release notes](https://github.com/langchain4j/langchain4j/releases)
- [Commits](langchain4j/langchain4j@1.17.0...1.17.1)

Updates `org.hibernate.orm:hibernate-scan-jandex` from 7.4.3.Final to 7.4.4.Final
- [Release notes](https://github.com/hibernate/hibernate-orm/releases)
- [Changelog](https://github.com/hibernate/hibernate-orm/blob/7.4.4/changelog.txt)
- [Commits](hibernate/hibernate-orm@7.4.3...7.4.4)

Updates `software.amazon.awssdk:bom` from 2.46.17 to 2.46.21

Updates `org.jline:jline` from 3.30.14 to 3.30.15
- [Release notes](https://github.com/jline/jline3/releases)
- [Commits](jline/jline3@jline-3.30.14...jline-3.30.15)

Updates `org.jline:jline-terminal-jna` from 3.30.14 to 3.30.15
- [Release notes](https://github.com/jline/jline3/releases)
- [Commits](jline/jline3@jline-3.30.14...jline-3.30.15)

---
updated-dependencies:
- dependency-name: com.github.jknack:handlebars
  dependency-version: 4.5.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: org.apache.logging.log4j:log4j-core
  dependency-version: 2.26.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: org.apache.logging.log4j:log4j-slf4j-impl
  dependency-version: 2.26.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: org.apache.logging.log4j:log4j-slf4j-impl
  dependency-version: 2.26.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: org.hibernate.orm:hibernate-core
  dependency-version: 7.4.4.Final
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: org.hibernate.orm:hibernate-scan-jandex
  dependency-version: 7.4.4.Final
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: io.ebean:ebean
  dependency-version: 19.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: io.ebean:ebean-querybean
  dependency-version: 19.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: io.ebean:querybean-generator
  dependency-version: 19.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: io.ebean:ebean-test
  dependency-version: 19.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: io.ebean:ebean-querybean
  dependency-version: 19.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: io.ebean:querybean-generator
  dependency-version: 19.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: io.ebean:ebean-test
  dependency-version: 19.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: org.jdbi:jdbi3-core
  dependency-version: 3.54.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: com.diffplug.spotless:spotless-maven-plugin
  dependency-version: 3.8.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: net.bytebuddy:byte-buddy
  dependency-version: 1.18.11
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: dev.langchain4j:langchain4j-bom
  dependency-version: 1.17.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: org.hibernate.orm:hibernate-scan-jandex
  dependency-version: 7.4.4.Final
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: software.amazon.awssdk:bom
  dependency-version: 2.46.21
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: org.jline:jline
  dependency-version: 3.30.15
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: org.jline:jline-terminal-jna
  dependency-version: 3.30.15
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Jul 6, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file java Pull requests that update Java code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants