Skip to content

Bump the dependencies group across 1 directory with 24 updates#11

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/gradle/dependencies-84b5025995
Open

Bump the dependencies group across 1 directory with 24 updates#11
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/gradle/dependencies-84b5025995

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 18, 2026

Copy link
Copy Markdown

Bumps the dependencies group with 22 updates in the / directory:

Package From To
com.github.rfresh2:JDA 6.4.31 6.4.32
com.github.rfresh2:MCProtocolLib 1.21.4.49 26.2.0.1
io.netty:netty-bom 4.2.12.Final 4.2.15.Final
org.redisson:redisson 4.3.1 4.6.1
com.viaversion:viaversion-common 5.9.0-20260417.203614-32 5.9.1
com.viaversion:viabackwards-common 5.9.0-20260417.203715-15 5.9.1
com.viaversion:viarewind-common 4.1.0-20260409.155713-7 4.1.1
org.jline:jline 4.0.12 4.2.1
com.zaxxer:HikariCP 7.0.2 7.1.0
org.postgresql:postgresql 42.7.10 42.7.11
org.jdbi:jdbi3-postgres 3.52.1 3.53.0
com.google.guava:guava 33.5.0-jre 33.6.0-jre
ch.qos.logback:logback-classic 1.5.32 1.5.34
org.slf4j:slf4j-api 2.0.17 2.0.18
tools.jackson:jackson-bom 3.1.2 3.2.0
org.junit:junit-bom 6.0.3 6.1.0
org.testcontainers:testcontainers 2.0.4 2.0.5
org.graalvm.sdk:nativeimage 25.0.2 25.0.3
org.graalvm.buildtools.native 1.0.0 1.1.2
com.gradleup.shadow 9.4.1 9.4.2
io.freefair.lombok 9.2.0 9.5.0
gradle-wrapper 9.4.1 9.5.1

Updates com.github.rfresh2:JDA from 6.4.31 to 6.4.32

Release notes

Sourced from com.github.rfresh2:JDA's releases.

v5.0.0-alpha.8 | alpha.6 Hotfix 2: Electric Boogaloo

Changelog

This release is a follow up hotfix release for 5.0.0-alpha.6 that wasn't completely mitigated by the 5.0.0-alpha.7 hotfix.

Check out the patch notes on 5.0.0-alpha.6 for the cool new stuff.

New Features

N/A

Changes

Removed

N/A

Full Changelog: discord-jda/JDA@v5.0.0-alpha.7...v5.0.0-alpha.8

Installation

Gradle

repositories {
    mavenCentral()
}
dependencies {
    implementation("net.dv8tion:JDA:5.0.0-alpha.8")
}

Maven

<dependency>
    <groupId>net.dv8tion</groupId>
    <artifactId>JDA</artifactId>
    <version>5.0.0-alpha.8</version> 
</dependency>

v5.0.0-alpha.7 | Hotfix for alpha.6

Changelog

This release is a hotfix release for 5.0.0-alpha.6. Check out the patch notes on that version for the cool stuff.

New Features

N/A

Changes

... (truncated)

Commits

Updates com.github.rfresh2:MCProtocolLib from 1.21.4.49 to 26.2.0.1

Updates io.netty:netty-bom from 4.2.12.Final to 4.2.15.Final

Release notes

Sourced from io.netty:netty-bom's releases.

netty-4.2.15.Final

Security fixes

  • CVE-2026-48059: memory exhaustion in io.netty:netty-codec-haproxy (high).
  • CVE-2026-47691: DNS cache poisoning in io.netty:netty-resolver-dns (high).
  • CVE-2026-50560: DDoS in io.netty:netty-codec-http2.
  • CVE-2026-50011: memory exhaustion in io.netty:netty-codec-redis (high).
  • CVE-2026-44250: memory exhaustion in io.netty:netty-codec-redis (high).
  • CVE-2026-44890: memory exhaustion in io.netty:netty-codec-redis (high).
  • CVE-2026-50009: information disclosure and denial of service in io.netty:netty-codec-classes-quic.
  • CVE-2026-44249: IPv6 subnet filter bypass in io.netty:netty-handler (high).
  • CVE-2026-50020: request smuggling in io.netty:netty-codec-http.
  • CVE-2026-44892: memory exhaustion in io.netty:netty-codec-http3 (high).
  • CVE-2026-44893: memory leak in io.netty:netty-codec-haproxy (high).
  • CVE-2026-44894: traffic amplification in io.netty:netty-codec-classes-quic (high).
  • CVE-2026-50010: TLS hostname verification accidentally disabled in io.netty:netty-handler (high).
  • CVE-2026-45673: DNS cache poisoning in io.netty:netty-resolver-dns.
  • CVE-2026-45416: excessive memory usage from SNIHandler in io.netty:netty-handler (high).
  • CVE-2026-45536: file descriptor leak in io.netty:netty-transport-native-epoll and io.netty:netty-transport-native-kqueue.
  • CVE-2026-45674: DNS cache poisoning in io.netty:netty-resolver-dns (high).
  • CVE-2026-46340: memory exhaustion in io.netty:netty-transport-sctp (high).
  • CVE-2026-47244: denial of service in io.netty:netty-codec-http2.
  • CVE-2026-48006: memory exhaustion in io.netty:netty-codec-redis (high).
  • CVE-2026-48748: memory exhaustion in io.netty:netty-codec-http3 (high).
  • CVE-2026-48043: memory exhaustion in io.netty:netty-codec-http2.

What's Changed

New Contributors

Full Changelog: netty/netty@netty-4.2.14.Final...netty-4.2.15.Final

netty-4.2.14.Final

What's Changed

... (truncated)

Commits
  • a41f7b2 [maven-release-plugin] prepare release netty-4.2.15.Final
  • 2394530 Auto-port 4.2: MQTT: Reject malformed no-payload packets with non-zero Remain...
  • 0bd1657 Add maxWindowLog parameter to ZstdDecoder to bound memory allocation (#16850)
  • 76291f5 Fix SCTP and Redis tests (#16893)
  • e067b6e Fix revapi warnings (#16885)
  • 5a52600 Pass maxAllocation to Brotli and Zstd decoders (#16844)
  • 541add0 Merge commit from fork
  • 270800e Merge commit from fork
  • 3d45a1e Merge commit from fork
  • 75127ca Merge commit from fork
  • Additional commits viewable in compare view

Updates org.redisson:redisson from 4.3.1 to 4.6.1

Release notes

Sourced from org.redisson:redisson's releases.

redisson-4.6.1

Fixed - ConnectionsHolder init-connection double release (thanks to @​yipeng09)
Fixed - AsyncSemaphore.tryRun() over-increment on cancelled waiters (thanks to @​yipeng09)
Fixed - AsyncSemaphore race condition
Fixed - non-cluster lazy initialization can park caller threads indefinitely (thanks to @​yipeng09)
Fixed - RedissonReactiveSubscription.unsubscribe() throws UnsupportedOperationException
Fixed - RLocalCachedMap sharded subscription mode uses PSUBSCRIBE unconditionally
Fixed - Spring Data Redis 4.1 RedissonReactiveStringCommands throws exceptions
Fixed - FT.SEARCH/FT.AGGREGATE don't work in master nodes round robin in Redis Cluster (thanks to @​wushiyuanmaimob)

redisson-4.6.0

Feature - T-digest object added
Feature - Top-k object added
Feature - Spring Boot 4.1.0 integration
Feature - Spring Data Redis 4.1.0 integration
Feature - getFullInfo() and lastItemsReversed() methods added to RArray
Feature - putWithLease(), getWithLease(), removeWithLease() methods added RMapCache (thanks to @​nhancdt2602)

Fixed - Spring Data redisTemplate.opsForZSet().popMin() method throws IndexOutOfBoundsException
Fixed - old value not sent in RMapCache.fastPutIfExistsOperation() update message (thanks to @​kubbidev)
Fixed - adding ability to use useReferences and allowedClasses settings in yaml config for Kryo5Codec

redisson-4.5.0

Feature - Array object added (thanks to @​lamnt2008)
Feature - BitVector Store object added
Feature - Fory lib upgraded to 1.1.0
Feature - Micronaut 5.0 support
Feature - readMode setting added for MapOptions, PlainOptions, LocalCachedMapOptions objects
Feature - extended incrementAndGet() method added to RAtomicLong, RAtomicDouble (thanks to @​lamnt2008)
Feature - contains(), range(), iterator() methods added to RVectorSet object
Feature - RMap.keysAsync() method added (thanks to @​sywu14)
Feature - RVectorSet added to RBatch object (thanks to @​sywu14)

Breaking change - map listeners signature changed, field name added (thanks to @​lamnt2008)

Improvement - refactor: remove unnecessary boxing of primitives (thanks to @​MukjepScarlet)

Fixed - RScoredSortedSet Rx and Reactive must handle empty results as absent (thanks to @​ngyngcphu)
Fixed - RGeo Rx and Reactive must handle empty results as absent (thanks to @​lamnt2008)
Fixed - RSet Rx and Reactive must handle empty results as absent (thanks to @​lamnt2008)
Fixed - RVectorSet Rx and Reactive must handle empty results as absent (thanks to @​lamnt2008)
Fixed - PingConnectionHandler race condition
Fixed - UUID type metadata leak in TypedJsonJacksonCodec (thanks to @​wushiyuanmaimob)
Fixed - UUID type inclusion by TypedJsonJackson3Codec
Fixed - buffer truncation in LZ4CodecV2
Fixed - WRONGPASS error on cluster slaves with TLS when password is set at root Config level (regression since 4.4.0) (thanks to @​seakider)
Fixed - release locks for non-existent keys in transactional RMap.fastRemove() (thanks to @​sywu14)

redisson-4.4.0

Feature - Hibernate 7.3.x support

... (truncated)

Changelog

Sourced from org.redisson:redisson's changelog.

18-June-2026 - 4.6.1 released

Fixed - ConnectionsHolder init-connection double release (thanks to @​yipeng09)
Fixed - AsyncSemaphore.tryRun() over-increment on cancelled waiters (thanks to @​yipeng09)
Fixed - AsyncSemaphore race condition
Fixed - non-cluster lazy initialization can park caller threads indefinitely (thanks to @​yipeng09)
Fixed - RedissonReactiveSubscription.unsubscribe() throws UnsupportedOperationException
Fixed - RLocalCachedMap sharded subscription mode uses PSUBSCRIBE unconditionally
Fixed - Spring Data Redis 4.1 RedissonReactiveStringCommands throws exceptions
Fixed - FT.SEARCH/FT.AGGREGATE don't work in master nodes round robin in Redis Cluster (thanks to @​wushiyuanmaimob)

15-June-2026 - 4.6.0 released

Feature - T-digest object added
Feature - Top-k object added
Feature - Spring Boot 4.1.0 integration
Feature - Spring Data Redis 4.1.0 integration
Feature - getFullInfo() and lastItemsReversed() methods added to RArray
Feature - putWithLease(), getWithLease(), removeWithLease() methods added RMapCache (thanks to @​nhancdt2602)

Fixed - Spring Data redisTemplate.opsForZSet().popMin() method throws IndexOutOfBoundsException
Fixed - old value not sent in RMapCache.fastPutIfExistsOperation() update message (thanks to @​kubbidev)
Fixed - adding ability to use useReferences and allowedClasses settings in yaml config for Kryo5Codec

05-June-2026 - 4.5.0 released

Feature - Array object added (thanks to @​lamnt2008)
Feature - BitVector Store object added
Feature - Fory lib upgraded to 1.0.0
Feature - Micronaut 5.0 support
Feature - readMode setting added for MapOptions, PlainOptions, LocalCachedMapOptions objects
Feature - extended incrementAndGet() method added to RAtomicLong, RAtomicDouble (thanks to @​lamnt2008)
Feature - contains(), range(), iterator() methods added to RVectorSet object
Feature - RMap.keysAsync() method added (thanks to @​sywu14)
Feature - RVectorSet added to RBatch object (thanks to @​sywu14)

Breaking change - map listeners signature changed, field name added (thanks to @​lamnt2008)

Improvement - refactor: remove unnecessary boxing of primitives (thanks to @​MukjepScarlet)

Fixed - RScoredSortedSet Rx and Reactive must handle empty results as absent (thanks to @​ngyngcphu)
Fixed - RGeo Rx and Reactive must handle empty results as absent (thanks to @​lamnt2008)
Fixed - RSet Rx and Reactive must handle empty results as absent (thanks to @​lamnt2008)
Fixed - RVectorSet Rx and Reactive must handle empty results as absent (thanks to @​lamnt2008)
Fixed - PingConnectionHandler race condition
Fixed - UUID type metadata leak in TypedJsonJacksonCodec (thanks to @​wushiyuanmaimob)
Fixed - UUID type inclusion by TypedJsonJackson3Codec
Fixed - buffer truncation in LZ4CodecV2
Fixed - WRONGPASS error on cluster slaves with TLS when password is set at root Config level (regression since 4.4.0) (thanks to @​seakider)
Fixed - release locks for non-existent keys in transactional RMap.fastRemove() (thanks to @​sywu14)

... (truncated)

Commits
  • b31191e [maven-release-plugin] prepare release redisson-4.6.1
  • 87b638c Micronaut 5.1.0 compatiblity
  • 64072a4 Merge branch 'master' of github.com:redisson/redisson
  • 0edfcbe Merge pull request #7183 from redisson/dependabot/maven/org.apache.maven.plug...
  • 5969c30 Merge pull request #7205 from yipeng09/fix-connections-holder-double-release
  • 15bd1ae Fix ConnectionsHolder init-connection double release
  • c44c329 Merge pull request #7206 from yipeng09/fix-asyncsemaphore-cancelled-waiter
  • 2a9275f Fix AsyncSemaphore.tryRun over-increment on cancelled waiters
  • 949cbd8 Merge branch 'master' of github.com:redisson/redisson
  • 7f4c43e Merge pull request #7186 from redisson/dependabot/maven/org.testcontainers-ju...
  • Additional commits viewable in compare view

Updates com.viaversion:viaversion-common from 5.9.0-20260417.203614-32 to 5.9.1

Updates com.viaversion:viabackwards-common from 5.9.0-20260417.203715-15 to 5.9.1

Updates com.viaversion:viarewind-common from 4.1.0-20260409.155713-7 to 4.1.1

Commits

Updates org.jline:jline from 4.0.12 to 4.2.1

Release notes

Sourced from org.jline:jline's releases.

JLine 4.2.1

JLine 4.2.1 is a security patch release addressing two denial-of-service vulnerabilities in the remote-telnet module.

🔒 Security Fixes

🐛 Bug Fixes

📦 Dependency updates

  • chore: Bump com.diffplug.spotless:spotless-maven-plugin from 3.6.0 to 3.7.0 (#1973) @dependabot[bot]

JLine 4.2.0

JLine 4.2.0 is a minor release that bumps the version to reflect API and behavioral changes since the 4.1.x series.

Highlights:

  • java.logging module dependency dropped — JLine now uses System.Logger (JEP 264), removing the java.logging module requirement and making JLine friendlier in custom JPMS runtimes (#1934)
  • ScreenTerminal unified — the two divergent copies (builtins vs terminal) are consolidated into org.jline.utils.ScreenTerminal, with a fix for stale status rows when using bordered status displays (#1971)
  • Exit command made configurable — the built-in exit command is now a regular, configurable command rather than hardcoded (#1870)
  • Prompt module — list and checkbox prompts now support per-item footers (#1933)
  • Robustness fixes — EOF propagation in PtyInputStream, signal handling with ISIG cleared, resize sync, graphics protocol detection on basic terminals, and several out-of-bounds guards

🚀 New features and improvements

  • refactor: unify ScreenTerminal — move from builtins to terminal module (#1971) @​gnodet
  • feat(prompt): add optional per-item footer to list and checkbox prompts (#1933) @​ingokegel
  • refactor: drop the java.logging module dependency and use System.Logger instead (#1934) @​ingokegel
  • refactor: make exit command a regular, configurable command (#1870) @​Elec332
  • feat: add custom name parameter to PicocliCommandRegistry (#1947) @​gnodet

🐛 Bug Fixes

📦 Dependency updates

  • chore: Bump com.palantir.javaformat:palantir-java-format from 2.92.0 to 2.93.0 (#1964) @dependabot[bot]
  • chore: Bump org.codehaus.gmavenplus:gmavenplus-plugin from 4.3.1 to 5.0.0 (#1938) @dependabot[bot]

... (truncated)

Commits
  • ee6981e chore: Bump com.diffplug.spotless:spotless-maven-plugin (#1973)
  • 561d0f2 fix: add compiled groovy classes to javadoc classpath (#1972)
  • 733eb35 Merge commit from fork
  • 934f09e Merge commit from fork
  • a5b4ca6 refactor: unify ScreenTerminal and fix stale status rows (#1971)
  • 41537ce fix: sync LineReader display model on resize (fixes #1940)
  • b018d30 test: add LineReader EOF tests for different terminal providers (#1961) (#1968)
  • b3260e4 chore: Bump com.palantir.javaformat:palantir-java-format (#1964)
  • a86915d fix: propagate EOF in PtyInputStream to avoid infinite loop (#1961) (#1963)
  • fd2741e fix: override bulk write in NonCloseableOutputStream to avoid byte-at-a-time ...
  • Additional commits viewable in compare view

Updates com.zaxxer:HikariCP from 7.0.2 to 7.1.0

Changelog

Sourced from com.zaxxer:HikariCP's changelog.

HikariCP Changes

Changes in 7.1.0

  • merged #2402 avoid virtual-thread yield spin in ConcurrentBag. Thanks to @​ittaigolde for addressing this and deep investigation into the issue.

Changes in 7.0.2

  • decrease thread yield frequency in ConcurrentBag.unreserve()

Changes in 7.0.1

  • merged #2346 fix regression with setSchema behavior

  • decrease thread yield frequency in ConcurrentBag.requite()

Changes in 7.0.0

  • merged #2340 NoSuchMethodException error that is thrown when setting a metric registry, fixes to UtilityElf reflection code to use the correct method signature.

  • fixed #1294 add support for HikariCredentialsProvider class

  • fixed #2265 bail out of the pool filling loop if the thread is interrupted

Changes in 6.3.3

  • backport #2340 NoSuchMethodException error that is thrown when setting a metric registry, fixes to UtilityElf reflection code to use the correct method signature.

Changes in 6.3.2

  • fixed #2342 restore module-info.class to jar file, which was lost in 6.3.1

  • fixed #2256 add support for legacy override of getUsername()/getPassword() of HikariDataSource. See project page for documentation of system property com.zaxxer.hikari.legacy.supportUserPassDataSourceOverride.

  • fixed #2323 right or wrong (wrt driver behavior) return to previous Connection.get/setSchema behavior

  • fixed #2288 upgrade dependencies and fix build warnings

Changes in 6.3.1

  • fixed #2315 source jar contains also binary .class files and missing some .java files

  • fixed #2307 remove improper hardcoded timout, use validationTimeout

  • fixed #2305 keep properties key and values as is rather than forcing stringification. Also fixes #2286 and #2304

... (truncated)

Commits
  • e4c04e8 [maven-release-plugin] prepare release HikariCP-7.1.0
  • b7c5afe upgrade fabric8 docker dependency for tests
  • 315ab1c update testcontainer dependency and postgresql test dependency
  • a400521 fix compiler warnings
  • 37167dc prepare for v7.1.0 release
  • 5e63223 Avoid virtual-thread yield spin in ConcurrentBag (#2402)
  • bba167f Update README.md
  • 62d720b update CHANGES for backport release 6.3.3, fix micrometrics dep version
  • c3a2473 Update README.md
  • 25663ef [maven-release-plugin] prepare for next development iteration
  • See full diff in compare view

Updates org.postgresql:postgresql from 42.7.10 to 42.7.11

Release notes

Sourced from org.postgresql:postgresql's releases.

v42.7.11

Security

  • fix: Limit SCRAM PBKDF2 iterations accepted from the server. pgjdbc was vulnerable to a client-side denial of service in SCRAM-SHA-256 authentication, where a malicious or compromised PostgreSQL server could specify an extremely large PBKDF2 iteration count, causing the client to consume unbounded CPU and potentially exhaust connection pools. The fix introduces a new scramMaxIterations connection property (defaulting to 100,000) to cap iteration counts before computation begins. See the Security Advisory for more detail. The following CVE-2026-42198 has been issued.

Changes

🐛 Bug Fixes

  • fix: ensure extended protocol messages end with Sync message @​vlsi (#3728)
  • fix: enable cursor-based fetching in extended protocol when transaction started via SQL command @​vlsi (#3996)
  • fix: retry with SSL on IOException when sslMode=ALLOW @​vlsi (#3973)
  • fix: allow fallback to non-SSL connection when sslMode=prefer and sslResponseTimeout kicks in @​vlsi (#3968)
  • fix: catch SecurityException from setContextClassLoader on ForkJoinPool workers @​vlsi (#3962)
  • fix: use compareTo for LogSequenceNumber comparison @​vlsi (#3961)
  • fix: release COPY lock on IOException to prevent connection hang (#3957) @​vlsi (#3960)

🧰 Maintenance

⬆️ Dependencies

... (truncated)

Changelog

Sourced from org.postgresql:postgresql's changelog.

[42.7.11] (2026-04-28)

Security

  • fix: Limit SCRAM PBKDF2 iterations accepted from the server. pgjdbc was vulnerable to a client-side denial of service in SCRAM-SHA-256 authentication, where a malicious or compromised PostgreSQL server could specify an extremely large PBKDF2 iteration count, causing the client to consume unbounded CPU and potentially exhaust connection pools. The fix introduces a new scramMaxIterations connection property (defaulting to 100,000) to cap iteration counts before computation begins. See the Security Advisory for more detail. The following CVE-2026-42198 has been issued.

Added

Changed

Fixed

Commits
  • 78e261f fix: Add sources and javadocs to shaded published lib generation
  • 1e09fa0 update Changelog and website for release of 42.7.11 (#4042)
  • d479fa5 Fix scram fix location in changelog and update published artifact developer l...
  • b04fc46 docs: Add scram max iters fix to changelog
  • cf54822 test: Disable scram test on older version without scram_iterations GUC
  • 7dbcc79 test: Add SCRAM max iteration tests
  • c9d41d1 fix: Limit SCRAM PBKDF2 iterations accepted from the server
  • a340cb2 style: replace @​exception with @​throws in getBoolean javadoc
  • 77837f8 fix(deps): update dependency org.openrewrite.rewrite:org.openrewrite.rewrite....
  • 23af03b chore(deps): update actions/checkout action to v6
  • Additional commits viewable in compare view

Updates org.jdbi:jdbi3-postgres from 3.52.1 to 3.53.0

Release notes

Sourced from org.jdbi:jdbi3-postgres's releases.

3.53.0

Fixes: Jdbi-Freemarker Security Advisory GHSA-mggx-p7jf-jgw4

The Freemarker configuration allows templates to construct arbitrary Java types, including freemarker.template.utility.Execute.

While exploiting this requires other unsafe practices (letting a user dictate template input), it seems prudent to disable template class resolution.

Please see GHSA-mggx-p7jf-jgw4 for more details.

Upgrade to testcontainers 2.x

While this required no code changes, the testcontainers project has renamed a number of their jar files. Jdbi still supports testcontainers 1.x and now also testcontainers 2.x:

If you are using testcontainers with Jdbi today and can not update to 2.x, make sure that you reference the org.testcontainers:jdbc and org.testcontainers:junit-jupiter dependencies. Those used to be available as transitive dependency from jdbi3-testcontainers.

If you upgrade to testcontainers 2.x, the org.testcontainers:testcontainers-jdbc and org.testcontainers:testcontainers-junit-jupiter dependencies must be available.

  • Update testcontainers dependency to 2.0.5 (from 1.21.4)
  • Add StatementContext parameter to SqlExceptionHandler and remove return value
Changelog

Sourced from org.jdbi:jdbi3-postgres's changelog.

3.53.0

Fixes: Jdbi-Freemarker Security Advisory GHSA-mggx-p7jf-jgw4

The Freemarker configuration allows templates to construct arbitrary Java types, including freemarker.template.utility.Execute.

While exploiting this requires other unsafe practices (letting a user dictate template input), it seems prudent to disable template class resolution.

Please see GHSA-mggx-p7jf-jgw4 for more details.

Upgrade to testcontainers 2.x

While this required no code changes, the testcontainers project has renamed a number of their jar files. Jdbi still supports testcontainers 1.x and now also testcontainers 2.x:

If you are using testcontainers with Jdbi today and can not update to 2.x, make sure that you reference the org.testcontainers:jdbc and org.testcontainers:junit-jupiter dependencies. Those used to be available as transitive dependency from jdbi3-testcontainers.

If you upgrade to testcontainers 2.x, the org.testcontainers:testcontainers-jdbc and org.testcontainers:testcontainers-junit-jupiter dependencies must be available.

  • Update testcontainers dependency to 2.0.5 (from 1.21.4)
  • Add StatementContext parameter to SqlExceptionHandler and remove return value
Commits
  • 5361840 [maven-release-plugin] prepare release v3.53.0
  • 59a8376 Release notes 3.53.0
  • 1f1a5c5 freemarker: disable template class resolution
  • 83465ac Merge remote-tracking branch 'origin/master' into sqlexception-handler-statem...
  • 5d4191f Merge pull request #2969 from hgschmie/testcontainers2
  • 05f9bdb align mysql docker image property name
  • ce9f12c align oracle docker image property name
  • ebceb8a move to testcontainers 2.x
  • 9a42863 add documentation and example
  • d53118f SqlExceptionHandler: add StatementContext parameter, remove confusing return ...
  • Additional commits viewable in compare view

Updates com.google.guava:guava from 33.5.0-jre to 33.6.0-jre

Release notes

Sourced from com.google.guava:guava's releases.

33.6.0

Maven

<dependency>
  <groupId>com.google.guava</groupId>
  <artifactId>guava</artifactId>
  <version>33.6.0-jre</version>
  <!-- or, for Android: -->
  <version>33.6.0-android</version>
</dependency>

Jar files

Guava requires one runtime dependency, which you can download here:

Bumps the dependencies group with 22 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [com.github.rfresh2:JDA](https://github.com/discord-jda/JDA) | `6.4.31` | `6.4.32` |
| com.github.rfresh2:MCProtocolLib | `1.21.4.49` | `26.2.0.1` |
| [io.netty:netty-bom](https://github.com/netty/netty) | `4.2.12.Final` | `4.2.15.Final` |
| [org.redisson:redisson](https://github.com/redisson/redisson) | `4.3.1` | `4.6.1` |
| com.viaversion:viaversion-common | `5.9.0-20260417.203614-32` | `5.9.1` |
| com.viaversion:viabackwards-common | `5.9.0-20260417.203715-15` | `5.9.1` |
| [com.viaversion:viarewind-common](https://github.com/ViaVersion/viarewind-common) | `4.1.0-20260409.155713-7` | `4.1.1` |
| [org.jline:jline](https://github.com/jline/jline3) | `4.0.12` | `4.2.1` |
| [com.zaxxer:HikariCP](https://github.com/brettwooldridge/HikariCP) | `7.0.2` | `7.1.0` |
| [org.postgresql:postgresql](https://github.com/pgjdbc/pgjdbc) | `42.7.10` | `42.7.11` |
| [org.jdbi:jdbi3-postgres](https://github.com/jdbi/jdbi) | `3.52.1` | `3.53.0` |
| [com.google.guava:guava](https://github.com/google/guava) | `33.5.0-jre` | `33.6.0-jre` |
| [ch.qos.logback:logback-classic](https://github.com/qos-ch/logback) | `1.5.32` | `1.5.34` |
| org.slf4j:slf4j-api | `2.0.17` | `2.0.18` |
| [tools.jackson:jackson-bom](https://github.com/FasterXML/jackson-bom) | `3.1.2` | `3.2.0` |
| [org.junit:junit-bom](https://github.com/junit-team/junit-framework) | `6.0.3` | `6.1.0` |
| [org.testcontainers:testcontainers](https://github.com/testcontainers/testcontainers-java) | `2.0.4` | `2.0.5` |
| [org.graalvm.sdk:nativeimage](https://github.com/oracle/graal) | `25.0.2` | `25.0.3` |
| [org.graalvm.buildtools.native](https://github.com/graalvm/native-build-tools) | `1.0.0` | `1.1.2` |
| [com.gradleup.shadow](https://github.com/GradleUp/shadow) | `9.4.1` | `9.4.2` |
| [io.freefair.lombok](https://github.com/freefair/gradle-plugins) | `9.2.0` | `9.5.0` |
| [gradle-wrapper](https://github.com/gradle/gradle) | `9.4.1` | `9.5.1` |



Updates `com.github.rfresh2:JDA` from 6.4.31 to 6.4.32
- [Release notes](https://github.com/discord-jda/JDA/releases)
- [Commits](https://github.com/discord-jda/JDA/commits)

Updates `com.github.rfresh2:MCProtocolLib` from 1.21.4.49 to 26.2.0.1

Updates `io.netty:netty-bom` from 4.2.12.Final to 4.2.15.Final
- [Release notes](https://github.com/netty/netty/releases)
- [Commits](netty/netty@netty-4.2.12.Final...netty-4.2.15.Final)

Updates `org.redisson:redisson` from 4.3.1 to 4.6.1
- [Release notes](https://github.com/redisson/redisson/releases)
- [Changelog](https://github.com/redisson/redisson/blob/master/CHANGELOG.md)
- [Commits](redisson/redisson@redisson-4.3.1...redisson-4.6.1)

Updates `com.viaversion:viaversion-common` from 5.9.0-20260417.203614-32 to 5.9.1

Updates `com.viaversion:viabackwards-common` from 5.9.0-20260417.203715-15 to 5.9.1

Updates `com.viaversion:viarewind-common` from 4.1.0-20260409.155713-7 to 4.1.1
- [Commits](https://github.com/ViaVersion/viarewind-common/commits)

Updates `org.jline:jline` from 4.0.12 to 4.2.1
- [Release notes](https://github.com/jline/jline3/releases)
- [Commits](jline/jline3@4.0.12...4.2.1)

Updates `com.zaxxer:HikariCP` from 7.0.2 to 7.1.0
- [Changelog](https://github.com/brettwooldridge/HikariCP/blob/dev/CHANGES)
- [Commits](brettwooldridge/HikariCP@HikariCP-7.0.2...HikariCP-7.1.0)

Updates `org.postgresql:postgresql` from 42.7.10 to 42.7.11
- [Release notes](https://github.com/pgjdbc/pgjdbc/releases)
- [Changelog](https://github.com/pgjdbc/pgjdbc/blob/master/CHANGELOG.md)
- [Commits](pgjdbc/pgjdbc@REL42.7.10...REL42.7.11)

Updates `org.jdbi:jdbi3-postgres` from 3.52.1 to 3.53.0
- [Release notes](https://github.com/jdbi/jdbi/releases)
- [Changelog](https://github.com/jdbi/jdbi/blob/master/RELEASE_NOTES.md)
- [Commits](jdbi/jdbi@v3.52.1...v3.53.0)

Updates `com.google.guava:guava` from 33.5.0-jre to 33.6.0-jre
- [Release notes](https://github.com/google/guava/releases)
- [Commits](https://github.com/google/guava/commits)

Updates `ch.qos.logback:logback-classic` from 1.5.32 to 1.5.34
- [Release notes](https://github.com/qos-ch/logback/releases)
- [Commits](qos-ch/logback@v_1.5.32...v_1.5.34)

Updates `org.slf4j:slf4j-api` from 2.0.17 to 2.0.18

Updates `org.slf4j:jul-to-slf4j` from 2.0.17 to 2.0.18

Updates `tools.jackson:jackson-bom` from 3.1.2 to 3.2.0
- [Commits](FasterXML/jackson-bom@jackson-bom-3.1.2...jackson-bom-3.2.0)

Updates `org.junit:junit-bom` from 6.0.3 to 6.1.0
- [Release notes](https://github.com/junit-team/junit-framework/releases)
- [Commits](junit-team/junit-framework@r6.0.3...r6.1.0)

Updates `org.testcontainers:testcontainers` from 2.0.4 to 2.0.5
- [Release notes](https://github.com/testcontainers/testcontainers-java/releases)
- [Changelog](https://github.com/testcontainers/testcontainers-java/blob/main/CHANGELOG.md)
- [Commits](testcontainers/testcontainers-java@2.0.4...2.0.5)

Updates `org.testcontainers:testcontainers-junit-jupiter` from 2.0.4 to 2.0.5
- [Release notes](https://github.com/testcontainers/testcontainers-java/releases)
- [Changelog](https://github.com/testcontainers/testcontainers-java/blob/main/CHANGELOG.md)
- [Commits](testcontainers/testcontainers-java@2.0.4...2.0.5)

Updates `org.graalvm.sdk:nativeimage` from 25.0.2 to 25.0.3
- [Release notes](https://github.com/oracle/graal/releases)
- [Commits](oracle/graal@vm-25.0.2...vm-25.0.3)

Updates `org.graalvm.buildtools.native` from 1.0.0 to 1.1.2
- [Release notes](https://github.com/graalvm/native-build-tools/releases)
- [Commits](graalvm/native-build-tools@1.0...1.1.2)

Updates `com.gradleup.shadow` from 9.4.1 to 9.4.2
- [Release notes](https://github.com/GradleUp/shadow/releases)
- [Commits](GradleUp/shadow@9.4.1...9.4.2)

Updates `io.freefair.lombok` from 9.2.0 to 9.5.0
- [Release notes](https://github.com/freefair/gradle-plugins/releases)
- [Commits](freefair/gradle-plugins@9.2.0...9.5.0)

Updates `gradle-wrapper` from 9.4.1 to 9.5.1
- [Release notes](https://github.com/gradle/gradle/releases)
- [Commits](gradle/gradle@v9.4.1...v9.5.1)

---
updated-dependencies:
- dependency-name: com.github.rfresh2:JDA
  dependency-version: 6.4.32
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: com.github.rfresh2:MCProtocolLib
  dependency-version: 26.2.0.1
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: dependencies
- dependency-name: io.netty:netty-bom
  dependency-version: 4.2.15.Final
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: org.redisson:redisson
  dependency-version: 4.6.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: com.viaversion:viaversion-common
  dependency-version: 5.9.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: com.viaversion:viabackwards-common
  dependency-version: 5.9.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: com.viaversion:viarewind-common
  dependency-version: 4.1.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: org.jline:jline
  dependency-version: 4.2.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: com.zaxxer:HikariCP
  dependency-version: 7.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: org.postgresql:postgresql
  dependency-version: 42.7.11
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: org.jdbi:jdbi3-postgres
  dependency-version: 3.53.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: com.google.guava:guava
  dependency-version: 33.6.0-jre
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: ch.qos.logback:logback-classic
  dependency-version: 1.5.34
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: org.slf4j:slf4j-api
  dependency-version: 2.0.18
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: org.slf4j:jul-to-slf4j
  dependency-version: 2.0.18
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: tools.jackson:jackson-bom
  dependency-version: 3.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: org.junit:junit-bom
  dependency-version: 6.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: org.testcontainers:testcontainers
  dependency-version: 2.0.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: org.testcontainers:testcontainers-junit-jupiter
  dependency-version: 2.0.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: org.graalvm.sdk:nativeimage
  dependency-version: 25.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: org.graalvm.buildtools.native
  dependency-version: 1.1.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: com.gradleup.shadow
  dependency-version: 9.4.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: io.freefair.lombok
  dependency-version: 9.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: gradle-wrapper
  dependency-version: 9.5.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Jun 18, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file java Pull requests that update java code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants