Skip to content

Bump the production-dependencies group with 11 updates#46

Open
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/maven/production-dependencies-81a4e3954c
Open

Bump the production-dependencies group with 11 updates#46
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/maven/production-dependencies-81a4e3954c

Conversation

@dependabot
Copy link
Copy Markdown

@dependabot dependabot Bot commented on behalf of github Apr 21, 2026

Bumps the production-dependencies group with 11 updates:

Package From To
com.puppycrawl.tools:checkstyle 10.23.0 13.4.0
org.apache.maven.plugins:maven-compiler-plugin 3.13.0 3.15.0
org.apache.maven.plugins:maven-jar-plugin 3.4.2 3.5.0
net.md-5:bungeecord-config 1.20-R0.2 1.21-R0.4
org.yaml:snakeyaml 2.4 2.6
me.clip:placeholderapi 2.11.6 2.12.2
fr.xephi:authme 5.6.0 5.7.0
com.lenis0012.bukkit:loginsecurity 3.3.0 3.3.1
com.github.zigazajc007:Passky v3.0.0 v3.3.0
org.apache.maven.plugins:maven-shade-plugin 3.6.0 3.6.2
org.mariadb.jdbc:mariadb-java-client 3.5.3 3.5.8

Updates com.puppycrawl.tools:checkstyle from 10.23.0 to 13.4.0

Release notes

Sourced from com.puppycrawl.tools:checkstyle's releases.

checkstyle-13.4.0

Checkstyle 13.4.0 - https://checkstyle.org/releasenotes.html#Release_13.4.0

Breaking backward compatibility:

#8315 - Improve violation message of ImportOrder

New:

#17565 - Line break must be present after { of non-empty block in switch rule #18065 - New Check: IllegalSymbol to forbit emoj in code

Bug fixes:

#18228 - False-positive: Suppress indentation check when quotes start at the left margin #17137 - UnnecessaryNullCheckWithInstanceOf ignores redundant null check for complex cases. #17842 - False-negative: Member names with underscores

... (truncated)

Commits
  • ad2d2d2 [maven-release-plugin] prepare release checkstyle-13.4.0
  • ac969f5 doc: release notes for 13.4.0
  • b96d1c3 Issue #15456: Define violation messages for JavadocTagContinuationIndentation
  • d47cde5 Issue #11163: Enforce file size on InputNeedBracesTestSwitchExpression
  • bbb00f9 Issue #16361: add comment on testAddException
  • 601213d Issue #12721: add Buildkite CI with mvn verify
  • 95cecf8 dependency: bump org.openrewrite.recipe:rewrite-migrate-java
  • 92dcd3d dependency: bump pmd.version from 7.22.0 to 7.23.0
  • ab7a33c Issue #16361: Refactor testNewCtor
  • 70cab66 Issue #16361: Add explanatory comment for testReadResourceWithInvalidName
  • Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-compiler-plugin from 3.13.0 to 3.15.0

Release notes

Sourced from org.apache.maven.plugins:maven-compiler-plugin's releases.

3.15.0

🐛 Bug Fixes

👻 Maintenance

📦 Dependency updates

3.14.1

🚀 New features and improvements

🐛 Bug Fixes

📦 Dependency updates

3.14.0

... (truncated)

Commits
  • 9290cb3 [maven-release-plugin] prepare release maven-compiler-plugin-3.15.0
  • 3657d40 Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness
  • 7bbf805 Bump plexusCompilerVersion from 2.16.1 to 2.16.2
  • 57fa938 Bump org.apache.maven.plugins:maven-plugins from 46 to 47
  • 385e3f2 Fix Java 25 compatibility during integration tests (#1020)
  • 6b34423 Bump org.apache.maven.plugins:maven-plugins from 45 to 46
  • aaeb9c6 [MCOMPILER-540] useIncrementalCompilation=false may add generated sources to ...
  • 6e3db9d Bump org.codehaus.plexus:plexus-java from 1.5.1 to 1.5.2
  • 0fe9b84 Remove declaration of "plexus-snapshots" repository (#1010)
  • 35f6800 Bump org.ow2.asm:asm from 9.9 to 9.9.1
  • Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-jar-plugin from 3.4.2 to 3.5.0

Release notes

Sourced from org.apache.maven.plugins:maven-jar-plugin's releases.

3.5.0

🚀 New features and improvements

🐛 Bug Fixes

👻 Maintenance

🔧 Build

📦 Dependency updates

Commits
  • 68d00f1 [maven-release-plugin] prepare release maven-jar-plugin-3.5.0
  • 357b9bf Update site descriptor to 2.0.0
  • 340249c Fix detecting java version for toolchains and JDK 1.8
  • 06a6245 chore: remove junit3 references
  • d302b2c Bump commons-io:commons-io from 2.20.0 to 2.21.0
  • 6081bdb Bump org.codehaus.plexus:plexus-archiver from 4.10.3 to 4.10.4
  • ef8ed4c Migrate component injection to JSR-330
  • 704a35c Ignore stderr when parsing javac version from toolchain (#471)
  • 0beb969 Use maven-plugin-testing-harness version 3.4.0
  • c2624c8 Bump org.apache.maven.plugin-tools:maven-plugin-annotations (#488)
  • Additional commits viewable in compare view

Updates net.md-5:bungeecord-config from 1.20-R0.2 to 1.21-R0.4

Commits

Updates org.yaml:snakeyaml from 2.4 to 2.6

Commits
  • 015ab57 [maven-release-plugin] prepare for next development iteration
  • 4795519 Update info
  • 9c36c69 Introduce devcontainer
  • 0c5b3e5 fix: add debug level to internal logger
  • a65b131 Merge branch 'master' into devcontainers
  • 788a98b Update changes
  • 556b4bf Add info for devcontainer
  • 0828c39 ops: migrate deployment from OSSRH to Central Portal
  • 30d6a3a Add a test for issue 1108
  • 2da4c6d Remove unrelated code
  • Additional commits viewable in compare view

Updates me.clip:placeholderapi from 2.11.6 to 2.12.2

Updates fr.xephi:authme from 5.6.0 to 5.7.0

Release notes

Sourced from fr.xephi:authme's releases.

AuthMeReloaded 5.7.0

AuthMe 5.7.0

This release focuses on stability, reconnect handling, mail reliability, and cleanup of long-deprecated code, while also improving localization support across commands.

Breaking changes

  • Java 17 is now required for AuthMe 5.7.0.
  • Legacy xAuth and Whirlpool support has been removed. If your server still depends on those old hash formats, migrate before upgrading.

Improvements

  • Replaced hardcoded command strings with translatable MessageKey entries, improving localization coverage.
  • Restored thrown ender pearls and mounted vehicles more reliably after reconnect.
  • Enforced name/IP restrictions earlier during AsyncPlayerPreLoginEvent for better protection.

Fixes

  • Fixed stale disk limbo data when a player quits before limbo is fully created.
  • Fixed concurrent access issues affecting SQLite, timed counters, logout flow, and mail handling.
  • Prevented SMTP sending from freezing the main server thread by dispatching mail work asynchronously.
  • Corrected SSL/TLS handling for mail delivery and added the Email.sslCheckServerIdentity setting.
  • Fixed teleport edge cases, including the y = 0 bug and spawn handling for unregistered players when registration is not forced.
  • Fixed AccountsCommand self-lookup to use the correct self-owned accounts message.

Maintenance

  • Updated dependencies and build tooling.
  • Refreshed CI compatibility, including ProtocolLib 5.3.0 and Multiverse 4.3.16 updates.
Commits
  • 7c8ec75 chore: 5.7.0 Release
  • b5c2a99 feat: restore thrown ender pearls and mounted vehicules after reconnect
  • 4899c70 fix: enforce name/ip restrictions at AsyncPlayerPreLoginEvent
  • d4ae76a fix(AccountsCommand): use ACCOUNTS_OWNED_SELF message for self-lookup
  • eb002cd fix(mail): correct SSL/TLS mode per port and add sslCheckServerIdentity setting
  • dc93240 fix(mail): dispatch SMTP calls asynchronously to prevent main thread freeze
  • 3cad64c fix: Concurrent access issues in SQLite, TimedCounter, SendMailSsl and logout
  • 46654b2 fix: Remove stale disk limbo when player quits before limbo is created
  • 606624d chore: Update dependencies
  • 2624ce5 fix: Unregistered players teleport to spawn with unforced registration
  • Additional commits viewable in compare view

Updates com.lenis0012.bukkit:loginsecurity from 3.3.0 to 3.3.1

Updates com.github.zigazajc007:Passky from v3.0.0 to v3.3.0

Release notes

Sourced from com.github.zigazajc007:Passky's releases.

v3.3.0

Updated:

  • Eject unlogged players from vehicles to prevent movement.

v3.2.0

Removed:

  • Aliases /r, /l, /cp, /fcp, /fp, /fr and /fl

v3.1.0

Added:

  • Option to persist session data to a file between restarts (Thanks for @​MRRollMan)
  • Prevent monsters / entities to target you while not being logged in (Thanks to @​MRRollMan)
Commits
  • 8d76cda Eject unlogged players from vehicles to prevent movement.
  • a024b7c Remove /cp, /fcp, /fp, /fr and /fl aliases
  • 2f9e169 Remove /r and /l aliases
  • ef5b473 Bump version
  • 5ce777a Merge pull request #14 from MRRollMan/master
  • 2674f31 Merge pull request #16 from MRRollMan/fix-entity-target
  • f2a45c2 Add EntityTargetListener to handle entity targeting events
  • 6ceac20 Add option to persist session data to file between restarts
  • See full diff in compare view

Updates org.apache.maven.plugins:maven-shade-plugin from 3.6.0 to 3.6.2

Release notes

Sourced from org.apache.maven.plugins:maven-shade-plugin's releases.

3.6.2

🐛 Bug Fixes

  • Bug: Extra JARs and Artifacts were not subjected to filtering (#785) @​cstamas

👻 Maintenance

📦 Dependency updates

3.6.1

📝 Documentation updates

👻 Maintenance

📦 Dependency updates

... (truncated)

Commits
  • ad8de59 [maven-release-plugin] prepare release maven-shade-plugin-3.6.2
  • 8eb19dc Drop unneeded dependencies (#788)
  • 397b2cd Drop excessive dependencies (#786)
  • eca6398 Bug: Extra JARs and Artifacts were not subjected to filtering (#785)
  • 7edce17 Update to parent POM v 47 (#781)
  • 3171a34 Mockito improvements (#783)
  • 678844b Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness (#782)
  • 73ec909 Bump org.codehaus.mojo:mrm-maven-plugin from 1.7.0 to 1.7.1 (#780)
  • 5f7a877 Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness (#778)
  • 73c5247 chore: remove junit3 reference (#762)
  • Additional commits viewable in compare view

Updates org.mariadb.jdbc:mariadb-java-client from 3.5.3 to 3.5.8

Release notes

Sourced from org.mariadb.jdbc:mariadb-java-client's releases.

MariaDB Connector/Java 3.5.8

3.5.8 (Apr 2026)

Full Changelog

Issues Resolved

  • CONJ-1305 - XAResource.isSameRM() incorrectly returns true when rewriteBatchedStatements differs between connections
  • CONJ-1303 - Statement.cancel() fails to kill running query during result streaming

Other

  • CONJ-1298 - Performance improvement: avoid decoding extended format

MariaDB Connector/Java 3.5.7

3.5.7 (Dec 2025)

Full Changelog

Key Enhancements

  • CONJ-1282 - Added TLS SNI (Server Name Indication) support
  • CONJ-1271 - Added MariaDbDataTruncation exception that includes MariaDB error code and error message

Issues Resolved

  • CONJ-1291 - Fixed ConnectionPoolDataSource incompatibility and connection leaks due to internal ConnectionEventListener in MariaDB Connector/J 3.5.x
  • CONJ-1286 - Fixed MariaDbPoolPinnedConnection thread-safety issue
  • CONJ-1283 - Fixed rewriteBatchedStatements introduced in 3.5.6 bug when having parentesis after VALUES parts
  • CONJ-1287 - Fixed authentication plugin multi-exchange prefix (0x01) handling introduced in MDEV-37554
  • CONJ-1290 - Fixed NullPointerException in MultiPrimaryReplicaClient
  • CONJ-1295 - Fixed MariaDbClob compilation with JDK 26+

MariaDB Connector/Java 3.5.6

3.5.6 (Sep 2025)

Full Changelog

Key Enhancements

  • CONJ-1238 - rewriteBatchStatements implementation
  • CONJ-1274 - server prepared statement client failover to client prepared statement

Issues Resolved

  • CONJ-1278 - prepared statement caching enablement correction, same than 2.x
  • CONJ-1279 - metadata table name addition for 12.1 after MDEV-28933
  • CONJ-1280 - permit having multiple command with initSql option
  • CONJ-1276 - Connection#isValid(int timeout) does not obey the passed in timeout if the network is down.

MariaDB Connector/Java 3.5.5

3.5.5 (Aug 2025)

... (truncated)

Changelog

Sourced from org.mariadb.jdbc:mariadb-java-client's changelog.

3.5.8 (Apr 2026)

Full Changelog

Issues Resolved

  • CONJ-1305 - XAResource.isSameRM() incorrectly returns true when rewriteBatchedStatements differs between connections
  • CONJ-1303 - Statement.cancel() fails to kill running query during result streaming

Other

  • CONJ-1298 - Performance improvement: avoid decoding extended format

3.5.7 (Dec 2025)

Full Changelog

Key Enhancements

  • CONJ-1282 - Added TLS SNI (Server Name Indication) support
  • CONJ-1271 - Added MariaDbDataTruncation exception that includes MariaDB error code and error message

Issues Resolved

  • CONJ-1291 - Fixed ConnectionPoolDataSource incompatibility and connection leaks due to internal ConnectionEventListener in MariaDB Connector/J 3.5.x
  • CONJ-1286 - Fixed MariaDbPoolPinnedConnection thread-safety issue
  • CONJ-1283 - Fixed rewriteBatchedStatements introduced in 3.5.6 bug when having parentesis after VALUES parts
  • CONJ-1287 - Fixed authentication plugin multi-exchange prefix (0x01) handling introduced in MDEV-37554
  • CONJ-1290 - Fixed NullPointerException in MultiPrimaryReplicaClient
  • CONJ-1295 - Fixed MariaDbClob compilation with JDK 26+

3.5.6 (Sep 2025)

Full Changelog

Key Enhancements

  • CONJ-1238 - rewriteBatchStatements implementation
  • CONJ-1274 - server prepared statement client failover to client prepared statement

Issues Resolved

  • CONJ-1278 - prepared statement caching enablement correction, same than 2.x
  • CONJ-1279 - metadata table name addition for 12.1 after MDEV-28933
  • CONJ-1280 - permit having multiple command with initSql option
  • CONJ-1276 - Connection#isValid(int timeout) does not obey the passed in timeout if the network is down.

3.5.5 (Aug 2025)

Full Changelog

... (truncated)

Commits
  • 26b34a2 Merge branch 'develop'
  • 06d6efe bump CI actions/checkout@v5
  • a86a83c bump 3.5.8
  • 975f991 [misc] refactor TimestampCodec to implement Codec directly and extract shared...
  • 75bb509 [misc] code formatting cleanup
  • 4c0b6a0 [misc] refactor TimestampCodec to extend UtilDateCodec and extract common dat...
  • a5b7fb1 [misc] convert Reader and Writer from interfaces to final class implementatio...
  • d31eb06 [misc] convert ReadableByteBuf from interface to final class implementation, ...
  • 11d45a9 [misc] optimize binary row decoder null bitmap checks and simplify signed Big...
  • 5aad14c [misc] optimize BigInt column decoding and improve type safety in codec inter...
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the production-dependencies group with 11 updates
114c1db 
Bumps the production-dependencies group with 11 updates:

| Package | From | To |
| --- | --- | --- |
| [com.puppycrawl.tools:checkstyle](https://github.com/checkstyle/checkstyle) | `10.23.0` | `13.4.0` |
| [org.apache.maven.plugins:maven-compiler-plugin](https://github.com/apache/maven-compiler-plugin) | `3.13.0` | `3.15.0` |
| [org.apache.maven.plugins:maven-jar-plugin](https://github.com/apache/maven-jar-plugin) | `3.4.2` | `3.5.0` |
| [net.md-5:bungeecord-config](https://github.com/SpigotMC/BungeeCord) | `1.20-R0.2` | `1.21-R0.4` |
| [org.yaml:snakeyaml](https://bitbucket.org/snakeyaml/snakeyaml) | `2.4` | `2.6` |
| me.clip:placeholderapi | `2.11.6` | `2.12.2` |
| [fr.xephi:authme](https://github.com/AuthMe/AuthMeReloaded) | `5.6.0` | `5.7.0` |
| com.lenis0012.bukkit:loginsecurity | `3.3.0` | `3.3.1` |
| [com.github.zigazajc007:Passky](https://github.com/zigazajc007/Passky) | `v3.0.0` | `v3.3.0` |
| [org.apache.maven.plugins:maven-shade-plugin](https://github.com/apache/maven-shade-plugin) | `3.6.0` | `3.6.2` |
| [org.mariadb.jdbc:mariadb-java-client](https://github.com/mariadb-corporation/mariadb-connector-j) | `3.5.3` | `3.5.8` |


Updates `com.puppycrawl.tools:checkstyle` from 10.23.0 to 13.4.0
- [Release notes](https://github.com/checkstyle/checkstyle/releases)
- [Commits](checkstyle/checkstyle@checkstyle-10.23.0...checkstyle-13.4.0)

Updates `org.apache.maven.plugins:maven-compiler-plugin` from 3.13.0 to 3.15.0
- [Release notes](https://github.com/apache/maven-compiler-plugin/releases)
- [Commits](apache/maven-compiler-plugin@maven-compiler-plugin-3.13.0...maven-compiler-plugin-3.15.0)

Updates `org.apache.maven.plugins:maven-jar-plugin` from 3.4.2 to 3.5.0
- [Release notes](https://github.com/apache/maven-jar-plugin/releases)
- [Commits](apache/maven-jar-plugin@maven-jar-plugin-3.4.2...maven-jar-plugin-3.5.0)

Updates `net.md-5:bungeecord-config` from 1.20-R0.2 to 1.21-R0.4
- [Commits](https://github.com/SpigotMC/BungeeCord/commits)

Updates `org.yaml:snakeyaml` from 2.4 to 2.6
- [Commits](https://bitbucket.org/snakeyaml/snakeyaml/branches/compare/snakeyaml-2.6..snakeyaml-2.4)

Updates `me.clip:placeholderapi` from 2.11.6 to 2.12.2

Updates `fr.xephi:authme` from 5.6.0 to 5.7.0
- [Release notes](https://github.com/AuthMe/AuthMeReloaded/releases)
- [Commits](AuthMe/AuthMeReloaded@5.6.0...5.7.0)

Updates `com.lenis0012.bukkit:loginsecurity` from 3.3.0 to 3.3.1

Updates `com.github.zigazajc007:Passky` from v3.0.0 to v3.3.0
- [Release notes](https://github.com/zigazajc007/Passky/releases)
- [Commits](zigazajc007/Passky@v3.0.0...v3.3.0)

Updates `org.apache.maven.plugins:maven-shade-plugin` from 3.6.0 to 3.6.2
- [Release notes](https://github.com/apache/maven-shade-plugin/releases)
- [Commits](apache/maven-shade-plugin@maven-shade-plugin-3.6.0...maven-shade-plugin-3.6.2)

Updates `org.mariadb.jdbc:mariadb-java-client` from 3.5.3 to 3.5.8
- [Release notes](https://github.com/mariadb-corporation/mariadb-connector-j/releases)
- [Changelog](https://github.com/mariadb-corporation/mariadb-connector-j/blob/main/CHANGELOG.md)
- [Commits](mariadb-corporation/mariadb-connector-j@3.5.3...3.5.8)

---
updated-dependencies:
- dependency-name: com.puppycrawl.tools:checkstyle
  dependency-version: 13.4.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: production-dependencies
- dependency-name: org.apache.maven.plugins:maven-compiler-plugin
  dependency-version: 3.15.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: org.apache.maven.plugins:maven-jar-plugin
  dependency-version: 3.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: net.md-5:bungeecord-config
  dependency-version: 1.21-R0.4
  dependency-type: direct:production
  dependency-group: production-dependencies
- dependency-name: org.yaml:snakeyaml
  dependency-version: '2.6'
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: me.clip:placeholderapi
  dependency-version: 2.12.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: fr.xephi:authme
  dependency-version: 5.7.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: com.lenis0012.bukkit:loginsecurity
  dependency-version: 3.3.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: com.github.zigazajc007:Passky
  dependency-version: v3.3.0
  dependency-type: direct:production
  dependency-group: production-dependencies
- dependency-name: org.apache.maven.plugins:maven-shade-plugin
  dependency-version: 3.6.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: org.mariadb.jdbc:mariadb-java-client
  dependency-version: 3.5.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Apr 21, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file java Pull requests that update Java code

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants