Sourced from com.google.errorprone:error_prone_core's releases.

Error Prone 2.41.0

New checks:

• EffectivelyPrivate: Detect declarations that have public or protected modifiers, but are effectively private

Changes:

• Skip BooleanLiteral findings if the target type is boxed (#5134)

Full changelog: google/error-prone@v2.40.0...v2.41.0

Error Prone 2.40.0

Changes:

• Bug fixes and improvements
• Releases (including snapshots) have migrated from OSSRH to the Central Publisher Portal

Full changelog: google/error-prone@v2.39.0...v2.40.0

• d6539d6 Release Error Prone 2.41.0
• 6161d4e Skip BooleanLiteral findings if the target type is boxed
• 98d83bf Avoid touching parameters of @Subscribe methods.
• 13d46e7 Refactor to use WellKnownKeep
• ef33eee Fix a println statement left over from https://github.com/google/error-prone/...
• ce784a9 Detect non-private, non-override methods in anonymous classes
• 43759cd Recognise com.google.common.inject.components.OtherRequiredBindings as an i...
• ef5073b UnnecessaryQualifier: don't fire on interfaces, in deference to Dagger.
• 3d7b585 TruthIncompatibleType support for MultisetSubject#hasCount.
• b5c6175 Add a test confirming external #5151.
• Additional commits viewable in compare view

Sourced from org.apache.maven.plugins:maven-enforcer-plugin's releases.

3.6.1

🚀 New features and improvements

• Improve performance of transitive dependency checks (#904) @​harrisric

🐛 Bug Fixes

• Fix NPE when a classifier part is specified in bannedDependencies (#905) @​harrisric

📝 Documentation updates

• Move contributing information into README (#911) @​slawekjaranowski
• Rewrite CONTRIBUTING.md to use the Github issue tracker instead of JIRA (#898) @​elharo

👻 Maintenance

• Remove unused javax.annotations dependency (#899) @​elharo
• Remove unused methods (#900) @​elharo
• Remove the from parameter names (#901) @​elharo
• Fix a grab bag of typos and minor grammar errors (#897) @​elharo
• remove unneeded contains check as add already does that (#896) @​elharo

📦 Dependency updates

• Bump org.apache.commons:commons-lang3 from 3.17.0 to 3.18.0 (#910) @dependabot[bot]

• 9b9b705 [maven-release-plugin] prepare release enforcer-3.6.1
• 469f45c Move contributing information into README - fix cla link
• fec424a Move contributing information into README
• 3abe11d Bump org.apache.commons:commons-lang3 from 3.17.0 to 3.18.0 (#910)
• d58be76 Improve performance of transitive dependency checks (#904)
• 1f7ac3c null analysis (#907)
• 3bfbff8 Fix some typos
• 8da0311 Remove unused javax.annotations dependency (#899)
• 06bcf29 Remove unused methods (#900)
• b25c800 Fix NPE when a classifier part is specified but an artifact classifier is nul...
• Additional commits viewable in compare view

Sourced from com.diffplug.spotless:spotless-maven-plugin's releases.

Maven Plugin v2.46.1

Fixed

• spotless:install-git-pre-push-hook didn't work on windows, now fixed. (#2562)

Maven Plugin v2.46.0

Added

• Allow specifying path to Biome JSON config file directly in biome step. Requires biome 2.x. (#2548)
• spotless:install-git-pre-push-hook goal, which installs a Git pre-push hook to run spotless:check and spotless:apply. (#2553)

Changed

• Bump default gson version to latest 2.11.0 -> 2.13.1. (#2414)
• Bump default jackson version to latest 2.18.1 -> 2.19.2. (#2558)
• Bump default gherkin-utils version to latest 9.0.0 -> 9.2.0. (#2408)
• Bump default cleanthat version to latest 2.22 -> 2.23. (#2556)

Maven Plugin v2.45.0

Added

• Support for idea (#2020, #2535)
• Add support for removing wildcard imports via removeWildcardImports step. (#2517)

Fixed

• SortPom disable expandEmptyElements, to avoid empty body warnings. (#2520)
• Fix biome formatter for new major release 2.x of biome (#2537)
• Make sure npm-based formatters use the correct node_modules directory when running in parallel. (#2542)

Changed

• Bump internal dependencies for npm-based formatters (#2542)

Changed

• scalafmt: enforce version consistency between the version configured in Spotless and the version declared in Scalafmt config file (#2460)

• 0572107 Published maven/2.46.1
• 9e11c9d Published gradle/7.2.1
• 314418c Published lib/3.3.1
• 5e9df11 Windows Compatibility Fix for Git Pre-push Hook (#2562)
• 24ca3bc We should run CI for PRs against release also.
• 222085b Update changelogs.
• 776f7d1 execute pre-push hook
• b8e80bc tests fix
• 1042742 spotlessApply
• 4cf8137 git pre push hook windows fix
• Additional commits viewable in compare view

Sourced from com.google.errorprone:error_prone_annotations's releases.

Error Prone 2.41.0

New checks:

• EffectivelyPrivate: Detect declarations that have public or protected modifiers, but are effectively private

Changes:

• Skip BooleanLiteral findings if the target type is boxed (#5134)

Full changelog: google/error-prone@v2.40.0...v2.41.0

Error Prone 2.40.0

Changes:

• Bug fixes and improvements
• Releases (including snapshots) have migrated from OSSRH to the Central Publisher Portal

Full changelog: google/error-prone@v2.39.0...v2.40.0

• d6539d6 Release Error Prone 2.41.0
• 6161d4e Skip BooleanLiteral findings if the target type is boxed
• 98d83bf Avoid touching parameters of @Subscribe methods.
• 13d46e7 Refactor to use WellKnownKeep
• ef33eee Fix a println statement left over from https://github.com/google/error-prone/...
• ce784a9 Detect non-private, non-override methods in anonymous classes
• 43759cd Recognise com.google.common.inject.components.OtherRequiredBindings as an i...
• ef5073b UnnecessaryQualifier: don't fire on interfaces, in deference to Dagger.
• 3d7b585 TruthIncompatibleType support for MultisetSubject#hasCount.
• b5c6175 Add a test confirming external #5151.
• Additional commits viewable in compare view

Sourced from org.moditect:moditect-maven-plugin's releases.

1.3.0.Final

Changelog

🚀 Features

• 4e56341 Use maven-archiver to parse ouputTimestamp
• f9bd055 Reduce code duplication in AddModuleInfoTest

🐛 Fixes

• 634740e Generate multi-release directory JAR entries

🛠 Build

• 5cdd34c Update plugins from parent
• 68618b5 Update changelog configuration
• 0999060 Update release configuration

⚙️ Dependencies

• 2d60d8f Update jcommander to 2.0
• 00abb5b Update build-helper-maven-plugin to 3.6.1
• ab40c70 Update maven-shade-plugin to 3.6.0
• 0fed58f Update maven-plugin-plugin to 3.15.1
• 9e22a5e Update slf4j-api to 2.0.17
• 6c0ded3 Update assertj to 3.27.3
• d21270f Update guava to 33.4.8-jre
• ac7582f Update checker-qual to 3.49.5
• 51e2582 Update javaparser to 3.27.0

---

• 0053e2b Releasing version 1.3.0.Final
• 0de5521 Releasing version 1.3.0
• 8a34717 Use maven-archiver to parse ouputTimestamp
• 8e5fbdb Generate multi-release directory JAR entries
• 2bd52fe Reduce code duplication in AddModuleInfoTest
• 0725a88 Next version 1.3.0-SNAPSHOT
• 1909942 Releasing version 1.2.2.Final

Contributors

We'd like to thank the following people for their contributions:

• Andres Almiray (@​aalmiray)
• Fridrich Štrba (@​fridrich)
• Marcono1234 (@​Marcono1234)

• 0053e2b Releasing version 1.3.0.Final
• 4c86fb8 Merge pull request #264 from aalmiray/main
• 5cdd34c build: Update plugins from parent
• 68618b5 build: Update changelog configuration
• 2d60d8f deps: Update jcommander to 2.0
• 00abb5b deps: Update build-helper-maven-plugin to 3.6.1
• ab40c70 deps: Update maven-shade-plugin to 3.6.0
• 0fed58f deps: Update maven-plugin-plugin to 3.15.1
• 9e22a5e deps: Update slf4j-api to 2.0.17
• 6c0ded3 deps: Update assertj to 3.27.3
• Additional commits viewable in compare view

Sourced from org.junit:junit-bom's releases.

JUnit 5.13.4 = Platform 1.13.4 + Jupiter 5.13.4 + Vintage 5.13.4

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.13.3...r5.13.4

• 8a21048 Release 5.13.4
• 9a38789 Finalize 5.13.4 release notes
• 458325c Log only once per implementation type for CloseableResource types
• 976a110 Protect against potential problems when converting file-based selectors
• e94f728 Allow default package for PackageSource
• b60fecf Fail on classpath resource names that are blank after removing leading /
• 6378c88 Remove java.* packages from Import-Package headers in all jars (#4738)
• 1a360f3 Create initial 5.13.4 release notes from template
• 806fc9a Document #4689 in release notes
• 1653839 Document #4686 in release notes
• Additional commits viewable in compare view

• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions