build(deps): bump the maven-dependencies group with 3 updates

[dependabot]

Bumps the maven-dependencies group with 3 updates: org.junit:junit-bom, org.apache.maven.plugins:maven-enforcer-plugin and org.apache.maven.plugins:maven-gpg-plugin.

Updates org.junit:junit-bom from 5.13.2 to 5.13.3

Release notes

Sourced from org.junit:junit-bom's releases.

JUnit 5.13.3 = Platform 1.13.3 + Jupiter 5.13.3 + Vintage 5.13.3

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.13.2...r5.13.3

Commits

• 9e8abdd Release 5.13.3
• 8a0be13 Improve message of discovery issues for ineffective @Order annotations (#4718)
• 59d562e Fix Javadoc references
• f4c202b Strip reasons when concatenating them in ConditionEvaluationResult
• e5d0e0b Fix multiple issues with ConditionEvaluationResult reason values
• e5c9a56 Improve display names in tests
• cf19095 Polish release notes
• aec59d2 Update dependency com.puppycrawl.tools:checkstyle to v10.26.1
• 7d8fe2a Update dependency com.puppycrawl.tools:checkstyle to v10.26.0
• d1ffa36 Update dependency com.puppycrawl.tools:checkstyle to v10.25.1
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-enforcer-plugin from 3.5.0 to 3.6.0

Release notes

Sourced from org.apache.maven.plugins:maven-enforcer-plugin's releases.

3.6.0

🚀 New features and improvements

• Warning about old enforcer api in rule implementation (#894) @​slawekjaranowski
• Introduce ruleName for rules configuration (#893) @​slawekjaranowski
• Improve performance of BannedPlugins and RequireReleaseDeps (#371) @​harrisric
• Enforce size bounds recursively on directory content (#368) @​zabetak
• Improve the performance of BannedDependencies (#367) @​harrisric
• [MENFORCER-516] - Use rule configuration in POM when executed from CLI (#344) @​bpfoster
• [MENFORCER-508] - Add option to enforce same versions among Maven modules (#328) @​kwin
• [MENFORCER-507] - Add xsltLocation parameter to ExternalRules (#322) @​ppalaga

🐛 Bug Fixes

• RequireSameVersions rule: consider entries in <plugins> when analyzing build- and report-plugins (#892) @​turing85
• [MENFORCER-495] - Remove "JAVA_HOME" from rule violation message (#346) @​elharo

📝 Documentation updates

• Improve example of custom rule (#890) @​slawekjaranowski
• Make documentation explicit about java versions for custom rules (#370) @​harrisric
• [MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#351) @​Bukama
• [MENFORCER-335] - Update dependencyConvergence.apt.vm (#347) @​elharo
• [MENFORCER-511] - Match start-tag to end-tag (#341) @​elharo
• [MENFORCER-505] - fix documentation for requireMatchingCoordinates (#320) @​kwin

👻 Maintenance

• Update site descriptor to 2.0.0 (#889) @​slawekjaranowski
• Use constant 3.6.3 in prerequisites/maven as minimal Maven version (#887) @​slawekjaranowski
• Enable Github Issues (#363) @​Bukama
• Remove unused collections (#358) @​elharo
• Eliminate some string operations (#357) @​elharo
• Use cached default charset and update URL fragment (#360) @​elharo
• Add GitHub Automation actions (#359) @​slawekjaranowski
• A grabbag of small simplifications found by IntelliJ (#354) @​elharo

🔧 Build

• Enable build by Maven 4 on GitHub (#891) @​slawekjaranowski

📦 Dependency updates

• Bump mavenVersion from 3.6.3 to 3.9.10 (#888) @dependabot[bot]
• Bump org.apache.maven:maven-parent from 44 to 45 (#886) @dependabot[bot]
• Update parent to 44 (#365) @​Bukama
• Bump commons-codec:commons-codec from 1.17.1 to 1.18.0 (#349) @dependabot[bot]
• Bump commons-io:commons-io from 2.18.0 to 2.19.0 (#362) @dependabot[bot]
• Bump org.assertj:assertj-core from 3.26.3 to 3.27.3 (#348) @dependabot[bot]

... (truncated)

Commits

• dc9d2ab [maven-release-plugin] prepare release enforcer-3.6.0
• 9aed56c Warning about old enforcer api in rule implementation (#894)
• 8b8ac7a Improve example of custom rule (#890)
• 1992401 Introduce ruleName for rules configuration
• 5ec0a9f Update site descriptor to 2.0.0
• e8cc57e RequireSameVersions rule: consider entries in \<plugins> when analyzing b...
• 785ab9d Enable build by Maven 4 on GitHub
• 5f664d5 Bump mavenVersion from 3.6.3 to 3.9.10 (#888)
• 30cb548 Bump org.apache.maven:maven-parent from 44 to 45
• 265dc89 Use constant 3.6.3 in prerequisites/maven as minimal Maven version
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-gpg-plugin from 3.2.7 to 3.2.8

Release notes

Sourced from org.apache.maven.plugins:maven-gpg-plugin's releases.

3.2.8

🐛 Bug Fixes

• Make empty classifier null (not empty string) (#287) @​cstamas

📝 Documentation updates

• [MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#129) @​Bukama
• Describe how to prime a specific GPG key (#128) @​kwin

👻 Maintenance

• Enable GitHub issues (#134) @​Bukama
• Prefer Guice constructor injection (#126) @​elharo

📦 Dependency updates

• Update parent POM to 45 (#284) @​cstamas
• Bump bouncycastleVersion from 1.78.1 to 1.80 (#127) @dependabot[bot]
• Bump commons-io:commons-io from 2.18.0 to 2.19.0 (#133) @dependabot[bot]
• Bump org.apache.maven.plugins:maven-invoker-plugin from 3.8.0 to 3.9.0 (#125) @dependabot[bot]
• Bump org.simplify4u.plugins:pgpverify-maven-plugin from 1.18.2 to 1.19.1 (#131) @dependabot[bot]
• Bump commons-io:commons-io from 2.17.0 to 2.18.0 (#124) @dependabot[bot]

Commits

• 8a46455 [maven-release-plugin] prepare release maven-gpg-plugin-3.2.8
• 7012821 Fix issueManagement, ciManagement system and url
• a9a8c84 Make empty classifier null (not empty string) (#287)
• a8368b0 Add .mvn
• f0e45e0 Update parent POM to 45 (#284)
• cb1236c Bump bouncycastleVersion from 1.78.1 to 1.80 (#127)
• 5377a10 Bump commons-io:commons-io from 2.18.0 to 2.19.0 (#133)
• 8b63932 Bump org.apache.maven.plugins:maven-invoker-plugin from 3.8.0 to 3.9.0 (#125)
• 54ea518 Bump org.simplify4u.plugins:pgpverify-maven-plugin from 1.18.2 to 1.19.1
• a6a412d Remove old JIRA issue link
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud