auto upgrade request: bump com.github.ben-manes.caffeine:caffeine from 2.9.3 to 3.2.4

[dependabot]

Bumps com.github.ben-manes.caffeine:caffeine from 2.9.3 to 3.2.4.

Release notes

Sourced from com.github.ben-manes.caffeine:caffeine's releases.

3.2.4

• Improved access expiration's read performance by avoiding false sharing effects caused by the timestamp update
• Fixed head-of-line blocking of expiration queues caused by in-flight async entries (#1954)
• Fixed various minor issues found using AI audits
• Added ObjectInputFilter support to JCache

3.2.3

• Fixed frequency tracking of weak keys to use the object's identity hash code (#1902)
• Added support for underscores in CaffeineSpec when using numeric literals (#1890)
• Improved the external api to no longer lock when querying for the maximum size or weighted size (#1897)
• Added detection and recovery when a custom CompletableFuture is in an inconsistent state (quarkus#50513)

3.2.2

• Fixed characteristics returned by Spliterators (#1883)

3.2.1

• Fixed computeIfAbsent for an async cache's synchronous view to retry if incomplete
• Improved CaffeineSpec when being reflectively constructed (#1839)
• Improved the handling of negative durations with variable expiration
• Fixed intermittent null after replacing a weak/soft value (#1820)

3.2.0

Cache

• Added Sigstore signing of maven artifacts
• Added Expiry static factory methods (#1499)
• Migrated to JSpecify annotations (was checker framework)
• Fixed variable expiration calculation when nearing overflow
• Added logging when an async cache's removal listener fails
• Added an expiration write optimization to more operations (#1320)
• Fixed when a Weigher or Expiry fail on an async completion (#1687)
• Fixed cases when the expiration ticker was also used for statistics (#1678)
• Fixed refresh handling to skip if the async cache's entry is still loading (#1478)
• Fixed containsKey for an async cache's synchronous view while in-flight (#1626)
• Fixed premature expiration for an async cache when using nearly immediate expiration (#1623)
• For a bulk async load returning extra mappings, wait to be added to the cache before returning (#1409)

Guava

• Relaxed the OSGi version requirement (#1160)

JCache

• Allow hibernate.javax.cache.uri to load the configuration from a jar (#1347)

3.1.8

• Added a workaround for a possible JDK concurrency bug with method handles (#1111)

3.1.7

Cache

• Improved builder construction time (#905)

JCache

... (truncated)

Commits

• 836b65c use a consistent expiration tolerance calculation
• 0dc7daf resurrect in-flight async entries on expiration
• 0bac8b5 handle head-of-line blocking of expiration queues (fixes #1954)
• ff25836 test polish
• f3a6176 Fix JCache close/createCache races and recursive teardown
• 622fbe7 Fix removal in identity views and widen hill-climber counters
• 8da5a7a defer weighing the entry until after the putIfAbsent hit fast-path
• 94ad0ff Record eviction stats before notifying the removal listener consistently
• f94c011 Auto-assert eviction stats alongside notifications.withCause.exclusively
• 2e945e0 Skip timestamp writes within tolerance on the read path.
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)