From f139273dff2af48fd187c2c737847a85134324ed Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 20 Nov 2024 14:36:36 +0000
Subject: [PATCH 1/4] chore(deps): bump aquasecurity/trivy-action from 0.28.0
 to 0.29.0

Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.28.0 to 0.29.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/915b19bbe73b92a6cf82a1bc12b087c9a19a5fe2...18f2510ee396bbf400402947b394f2dd8c87dbb0)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/cve-check.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/cve-check.yml b/.github/workflows/cve-check.yml
index 8062de86..4998e2ac 100644
--- a/.github/workflows/cve-check.yml
+++ b/.github/workflows/cve-check.yml
@@ -41,7 +41,7 @@ jobs:
         run: ./gradlew resolveAndLockAll --write-locks
 
       - name: Check for vulnerabilities
-        uses: aquasecurity/trivy-action@915b19bbe73b92a6cf82a1bc12b087c9a19a5fe2 # v0.28.0
+        uses: aquasecurity/trivy-action@18f2510ee396bbf400402947b394f2dd8c87dbb0 # v0.29.0
         id: cve_check
         with:
           scan-type: 'fs'

From cb0d1cb2ec490ddeea78ce4eb0c675573c1172fd Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 27 Nov 2024 01:54:52 +0000
Subject: [PATCH 2/4] fix(deps): bump io.javaoperatorsdk:operator-framework

Bumps [io.javaoperatorsdk:operator-framework](https://github.com/operator-framework/java-operator-sdk) from 4.9.6 to 4.9.7.
- [Release notes](https://github.com/operator-framework/java-operator-sdk/releases)
- [Commits](https://github.com/operator-framework/java-operator-sdk/compare/v4.9.6...v4.9.7)

---
updated-dependencies:
- dependency-name: io.javaoperatorsdk:operator-framework
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 build.gradle | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/build.gradle b/build.gradle
index 1a42ce5f..dc7dfc33 100644
--- a/build.gradle
+++ b/build.gradle
@@ -47,7 +47,7 @@ jib {
 project.ext {
   mongoDbDriverVersion = "5.2.1"
   slf4jVersion = "2.0.16"
-  operatorFrameworkVersion = "4.9.6"
+  operatorFrameworkVersion = "4.9.7"
   kubernetesServerMockVersion = "6.13.4" // align with transitive dependency of operator framework
   mockitoVersion = "5.2.0"
   jacksonVersion = "2.18.1"

From 0289c6d75a59a36481de2a61ad6607934c353461 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 27 Nov 2024 01:54:56 +0000
Subject: [PATCH 3/4] test(deps): bump
 de.flapdoodle.embed:de.flapdoodle.embed.mongo

Bumps [de.flapdoodle.embed:de.flapdoodle.embed.mongo](https://github.com/flapdoodle-oss/de.flapdoodle.embed.mongo) from 4.18.0 to 4.18.1.
- [Commits](https://github.com/flapdoodle-oss/de.flapdoodle.embed.mongo/compare/de.flapdoodle.embed.mongo-4.18.0...de.flapdoodle.embed.mongo-4.18.1)

---
updated-dependencies:
- dependency-name: de.flapdoodle.embed:de.flapdoodle.embed.mongo
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 build.gradle | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/build.gradle b/build.gradle
index dc7dfc33..a1aa14e0 100644
--- a/build.gradle
+++ b/build.gradle
@@ -113,7 +113,7 @@ dependencies {
     exclude group: "net.bytebuddy", module: "byte-buddy-agent"
   }
   // try to replace local commons-compress management on update!
-  testImplementation 'de.flapdoodle.embed:de.flapdoodle.embed.mongo:4.18.0', {
+  testImplementation 'de.flapdoodle.embed:de.flapdoodle.embed.mongo:4.18.1', {
     exclude group: "org.slf4j", module: "slf4j-api"
   }
   testImplementation "org.mongodb:mongodb-driver-legacy:${mongoDbDriverVersion}"

From 6e8fcdd792d28df23c435f469805ef8f4268faff Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?J=C3=B6rg=20Siebahn?= <joerg.siebahn@sda-se.com>
Date: Wed, 27 Nov 2024 08:39:57 +0100
Subject: [PATCH 4/4] test(deps): align commons-lang3 dependencies

---
 build.gradle | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/build.gradle b/build.gradle
index a1aa14e0..7137c93d 100644
--- a/build.gradle
+++ b/build.gradle
@@ -115,6 +115,8 @@ dependencies {
   // try to replace local commons-compress management on update!
   testImplementation 'de.flapdoodle.embed:de.flapdoodle.embed.mongo:4.18.1', {
     exclude group: "org.slf4j", module: "slf4j-api"
+    // newer version from operator-framework
+    exclude group: "org.apache.commons", module: "commons-lang3"
   }
   testImplementation "org.mongodb:mongodb-driver-legacy:${mongoDbDriverVersion}"
   testImplementation "org.mockito:mockito-junit-jupiter:${mockitoVersion}", {