deps: bump the regular group with 9 updates

[dependabot]

Bumps the regular group with 9 updates:

Package	From	To
io.quarkus:quarkus-bom	3.33.1	3.33.2
io.quarkus:quarkus-maven-plugin	3.33.1	3.33.2
io.quarkus:quarkus-extension-maven-plugin	3.33.1	3.33.2
io.quarkus:quarkus-extension-processor	3.33.1	3.33.2
ch.qos.logback:logback-core	1.5.32	1.5.33
ch.qos.logback:logback-classic	1.5.32	1.5.33
org.apache.maven.plugins:maven-enforcer-plugin	3.6.2	3.6.3
org.apache.maven.plugins:maven-surefire-plugin	3.5.5	3.5.6
org.apache.maven.plugins:maven-failsafe-plugin	3.5.5	3.5.6

Updates io.quarkus:quarkus-bom from 3.33.1 to 3.33.2

Release notes

Sourced from io.quarkus:quarkus-bom's releases.

3.33.2

Complete changelog

• #42549 - Remove references to Renarde in https://quarkus.io/guides/security-openid-connect-providers
• #50392 - JFR extension not capturing Quarkus application runtime data
• #52239 - OpenTelemetry: Context get lost when hitting rest client read timeout
• #53115 - Prevent server's OpenTelemetry Context getting lost on client read timeout
• #53121 - OpenShift build extension seemingly ignoring configuration properties for image/image name
• #53167 - build(deps): bump testcontainers.version from 2.0.3 to 2.0.4
• #53191 - OpenShift Internal Registry Container Image Name
• #53203 - Refactor jar building to a first-write-wins approach
• #53209 - quarkus-artifact.properties generation is brittle
• #53215 - Properly set path property for quarkus-artifact.properties
• #53222 - VertxHttpHotReplacementSetup: move the httpInitiatedReload flag check
• #53261 - Honour the legacy resolver settings in go-offline goals
• #53271 - JFR extension event fix
• #53290 - Webauthn IT: move test-webauthn to the test scope
• #53296 - Swagger UI does not mark endpoint as protected if PermissionsAllowed present multiple times
• #53301 - OpenAPI: Detect repeated @PermissionsAllowed annotations in Swagger UI
• #53325 - Quarkus 3.33.1: WARN: This Gauge has been already registered
• #53331 - Prevent warning about Gauge having already been registered
• #53334 - [3.33] Bump Hibernate ORM to 7.2.9.Final, Reactive to 3.2.9.Final
• #53338 - Style and grammar review for the OpenID Connect authorization code flow
• #53349 - Updates to Infinispan 16.0.9
• #53352 - Some minor uberjar improvements and a test for service concatenation
• #53366 - [3.33] Upgrade to Vert.x 4.5.26 and Netty 4.1.132.Final
• #53383 - BUILD_AND_RUN_TIME_FIXED config values not resolved with custom profiles (3.31+ regression)
• #53386 - [3.34] Update SmallRye Fault Tolerance to 6.10.1
• #53389 - Update Gradle template to select quarkus-junit or quarkus-junit5 based on Quarkus platform version
• #53391 - Docs: Add caution note to Using RestResponse section in rest-client.adoc
• #53393 - ClassCastException when PEM CA certificate is used
• #53397 - Avoid CCE when reloading Vert.x trust store
• #53399 - Ensure that shared Config build time runtime fixed uses the expected profile when set from @TestProfile
• #53403 - Fix xref link text in security-authentication-mechanisms.adoc
• #53418 - @ServerExceptionMapper beans with super class using Java generics doesn't build (with BuilderException)
• #53420 - Fix @ServerExceptionMapper handling for generic types
• #53427 - NullPointerException in VertxHttpRecorder for null URI
• #53428 - Set up CodeQL security analysis for pull requests
• #53430 - Also populate cache on GitHub Actions for main repo
• #53434 - Avoid skipping config tracking when the Quarkus build is skipped
• #53435 - Enforce plexus-utils 3.6.1 to fix CVE-2025-67030
• #53442 - Do not preinit UUID infrastructure for Vert.x anymore
• #53456 - Avoid trying to parse null URI
• #53458 - Remove duplicated plexus-utils from bootstrap BOM
• #53461 - List commands when you run just
• #53462 - Tightening workflow permissions
• #53463 - Fix typo in unused gRPC interceptor warnings
• #53467 - [3.33] Update to plexus-utils 3.6.1
• #53485 - Style and grammar review for the "OpenID Connect (OIDC) and OAuth2 client and filters" guide

... (truncated)

Commits

• 2f9a60b [RELEASE] - Bump version to 3.33.2
• 8ea263e Merge pull request #53784 from quarkusio/dependabot/maven/3.33/hibernate-03af...
• 9454a5f Bump the hibernate group across 1 directory with 9 updates
• 958b8d8 Merge pull request #54195 from jmartisk/3.33.2-backports-4
• b4f3425 Fix compilation in MainHttpServerTlsPemTrustStoreCertificateReloadTest
• 628d9eb Fix Jakarta Transaction link on transaction.adoc documentation
• cffda85 Undeprecate REST Client connect timeout config
• 70e0b68 Bump to quarkus-http 5.5.0
• 3f1e4ff docs: clarify X OIDC callback URI and refresh portal screenshots
• 5b99d07 Bump to Vert.x 4.5.27 and Netty 4.1.133.Final
• Additional commits viewable in compare view

Updates io.quarkus:quarkus-maven-plugin from 3.33.1 to 3.33.2

Updates io.quarkus:quarkus-extension-maven-plugin from 3.33.1 to 3.33.2

Release notes

Sourced from io.quarkus:quarkus-extension-maven-plugin's releases.

3.33.2

Complete changelog

• #42549 - Remove references to Renarde in https://quarkus.io/guides/security-openid-connect-providers
• #50392 - JFR extension not capturing Quarkus application runtime data
• #52239 - OpenTelemetry: Context get lost when hitting rest client read timeout
• #53115 - Prevent server's OpenTelemetry Context getting lost on client read timeout
• #53121 - OpenShift build extension seemingly ignoring configuration properties for image/image name
• #53167 - build(deps): bump testcontainers.version from 2.0.3 to 2.0.4
• #53191 - OpenShift Internal Registry Container Image Name
• #53203 - Refactor jar building to a first-write-wins approach
• #53209 - quarkus-artifact.properties generation is brittle
• #53215 - Properly set path property for quarkus-artifact.properties
• #53222 - VertxHttpHotReplacementSetup: move the httpInitiatedReload flag check
• #53261 - Honour the legacy resolver settings in go-offline goals
• #53271 - JFR extension event fix
• #53290 - Webauthn IT: move test-webauthn to the test scope
• #53296 - Swagger UI does not mark endpoint as protected if PermissionsAllowed present multiple times
• #53301 - OpenAPI: Detect repeated @PermissionsAllowed annotations in Swagger UI
• #53325 - Quarkus 3.33.1: WARN: This Gauge has been already registered
• #53331 - Prevent warning about Gauge having already been registered
• #53334 - [3.33] Bump Hibernate ORM to 7.2.9.Final, Reactive to 3.2.9.Final
• #53338 - Style and grammar review for the OpenID Connect authorization code flow
• #53349 - Updates to Infinispan 16.0.9
• #53352 - Some minor uberjar improvements and a test for service concatenation
• #53366 - [3.33] Upgrade to Vert.x 4.5.26 and Netty 4.1.132.Final
• #53383 - BUILD_AND_RUN_TIME_FIXED config values not resolved with custom profiles (3.31+ regression)
• #53386 - [3.34] Update SmallRye Fault Tolerance to 6.10.1
• #53389 - Update Gradle template to select quarkus-junit or quarkus-junit5 based on Quarkus platform version
• #53391 - Docs: Add caution note to Using RestResponse section in rest-client.adoc
• #53393 - ClassCastException when PEM CA certificate is used
• #53397 - Avoid CCE when reloading Vert.x trust store
• #53399 - Ensure that shared Config build time runtime fixed uses the expected profile when set from @TestProfile
• #53403 - Fix xref link text in security-authentication-mechanisms.adoc
• #53418 - @ServerExceptionMapper beans with super class using Java generics doesn't build (with BuilderException)
• #53420 - Fix @ServerExceptionMapper handling for generic types
• #53427 - NullPointerException in VertxHttpRecorder for null URI
• #53428 - Set up CodeQL security analysis for pull requests
• #53430 - Also populate cache on GitHub Actions for main repo
• #53434 - Avoid skipping config tracking when the Quarkus build is skipped
• #53435 - Enforce plexus-utils 3.6.1 to fix CVE-2025-67030
• #53442 - Do not preinit UUID infrastructure for Vert.x anymore
• #53456 - Avoid trying to parse null URI
• #53458 - Remove duplicated plexus-utils from bootstrap BOM
• #53461 - List commands when you run just
• #53462 - Tightening workflow permissions
• #53463 - Fix typo in unused gRPC interceptor warnings
• #53467 - [3.33] Update to plexus-utils 3.6.1
• #53485 - Style and grammar review for the "OpenID Connect (OIDC) and OAuth2 client and filters" guide

... (truncated)

Commits

• 2f9a60b [RELEASE] - Bump version to 3.33.2
• 8ea263e Merge pull request #53784 from quarkusio/dependabot/maven/3.33/hibernate-03af...
• 9454a5f Bump the hibernate group across 1 directory with 9 updates
• 958b8d8 Merge pull request #54195 from jmartisk/3.33.2-backports-4
• b4f3425 Fix compilation in MainHttpServerTlsPemTrustStoreCertificateReloadTest
• 628d9eb Fix Jakarta Transaction link on transaction.adoc documentation
• cffda85 Undeprecate REST Client connect timeout config
• 70e0b68 Bump to quarkus-http 5.5.0
• 3f1e4ff docs: clarify X OIDC callback URI and refresh portal screenshots
• 5b99d07 Bump to Vert.x 4.5.27 and Netty 4.1.133.Final
• Additional commits viewable in compare view

Updates io.quarkus:quarkus-extension-processor from 3.33.1 to 3.33.2

Updates ch.qos.logback:logback-core from 1.5.32 to 1.5.33

Release notes

Sourced from ch.qos.logback:logback-core's releases.

Logback 1.5.33

2026-05-27 Release of logback version 1.5.33

• PropertiesConfiguratorModelHandler now registers properties file URLs to the ConfigurationWatchList when scan is enabled (via local scan="true" attribute or top-level configuration scan), ensuring changes are detected and reconfiguration occurs. This problem was reported in issues/1034.

• When processing <conversionRule> elements and both class and converterClass attributes are specified, silently use the class attribute without issuing a warning. However, if the attribute values differ, a warning will be issued. This change was requested in issues/1031.

• HardenedModelInputStream will no longer accept to deserialize all classes located under the "java.lang" and "java.util" packages but a limited number of explicitly authorized classes in those packages. This potential deserialization whitelist bypass vulnerability was reported by York Shen and registered as CVE-2026-9828.

• SSL parameters for SSLSocketAppender now enable hostname verification by default. Moreover, the default protocol is now "TLSv1.2". This potential vulnerability was reported by York Shen.

• When printing the status message field, ViewStatusMessagesServletBase now escapes special characters such as "&" as character entities. This potential vulnerability was reported by York Shen.

• A bit-wise identical binary of this version can be reproduced by building from source code at commit 124e8b49b55ac34d08743a0646bd463410192647 associated with the tag v_1.5.33. Release built using Java "21" 2023-10-17 LTS build 21.0.1.+12-LTS-29 under Linux Debian 11.6.

Commits

• 124e8b4 prepare release 1.5.33
• d8fd6f2 escapeTags in message field when printing status messages
• 95edbeb hostnameVerification default to true in SSLParametersConfiguration, SSL.DEFAU...
• b768a96 remove spurious java.swing.* import
• 12cf2c5 classes in java.lang and java.util are now whitelisted individually
• e9133ed fix typo
• 47089a2 added Filip Egeric icla
• 85735f7 Modified ConversionRuleAction.java: Updated validPreconditions() to
• 614f7a7 the official name for initial instructions file foe coding agents is AGENTS.md
• fe50bb5 fix: do not warn when both converterClass and class attributes are specified ...
• Additional commits viewable in compare view

Updates ch.qos.logback:logback-classic from 1.5.32 to 1.5.33

Release notes

Sourced from ch.qos.logback:logback-classic's releases.

Logback 1.5.33

2026-05-27 Release of logback version 1.5.33

• PropertiesConfiguratorModelHandler now registers properties file URLs to the ConfigurationWatchList when scan is enabled (via local scan="true" attribute or top-level configuration scan), ensuring changes are detected and reconfiguration occurs. This problem was reported in issues/1034.

• When processing <conversionRule> elements and both class and converterClass attributes are specified, silently use the class attribute without issuing a warning. However, if the attribute values differ, a warning will be issued. This change was requested in issues/1031.

• HardenedModelInputStream will no longer accept to deserialize all classes located under the "java.lang" and "java.util" packages but a limited number of explicitly authorized classes in those packages. This potential deserialization whitelist bypass vulnerability was reported by York Shen and registered as CVE-2026-9828.

• SSL parameters for SSLSocketAppender now enable hostname verification by default. Moreover, the default protocol is now "TLSv1.2". This potential vulnerability was reported by York Shen.

• When printing the status message field, ViewStatusMessagesServletBase now escapes special characters such as "&" as character entities. This potential vulnerability was reported by York Shen.

• A bit-wise identical binary of this version can be reproduced by building from source code at commit 124e8b49b55ac34d08743a0646bd463410192647 associated with the tag v_1.5.33. Release built using Java "21" 2023-10-17 LTS build 21.0.1.+12-LTS-29 under Linux Debian 11.6.

Commits

• 124e8b4 prepare release 1.5.33
• d8fd6f2 escapeTags in message field when printing status messages
• 95edbeb hostnameVerification default to true in SSLParametersConfiguration, SSL.DEFAU...
• b768a96 remove spurious java.swing.* import
• 12cf2c5 classes in java.lang and java.util are now whitelisted individually
• e9133ed fix typo
• 47089a2 added Filip Egeric icla
• 85735f7 Modified ConversionRuleAction.java: Updated validPreconditions() to
• 614f7a7 the official name for initial instructions file foe coding agents is AGENTS.md
• fe50bb5 fix: do not warn when both converterClass and class attributes are specified ...
• Additional commits viewable in compare view

Updates ch.qos.logback:logback-classic from 1.5.32 to 1.5.33

Release notes

Sourced from ch.qos.logback:logback-classic's releases.

Logback 1.5.33

2026-05-27 Release of logback version 1.5.33

• PropertiesConfiguratorModelHandler now registers properties file URLs to the ConfigurationWatchList when scan is enabled (via local scan="true" attribute or top-level configuration scan), ensuring changes are detected and reconfiguration occurs. This problem was reported in issues/1034.

• When processing <conversionRule> elements and both class and converterClass attributes are specified, silently use the class attribute without issuing a warning. However, if the attribute values differ, a warning will be issued. This change was requested in issues/1031.

• HardenedModelInputStream will no longer accept to deserialize all classes located under the "java.lang" and "java.util" packages but a limited number of explicitly authorized classes in those packages. This potential deserialization whitelist bypass vulnerability was reported by York Shen and registered as CVE-2026-9828.

• SSL parameters for SSLSocketAppender now enable hostname verification by default. Moreover, the default protocol is now "TLSv1.2". This potential vulnerability was reported by York Shen.

• When printing the status message field, ViewStatusMessagesServletBase now escapes special characters such as "&" as character entities. This potential vulnerability was reported by York Shen.

• A bit-wise identical binary of this version can be reproduced by building from source code at commit 124e8b49b55ac34d08743a0646bd463410192647 associated with the tag v_1.5.33. Release built using Java "21" 2023-10-17 LTS build 21.0.1.+12-LTS-29 under Linux Debian 11.6.

Commits

• 124e8b4 prepare release 1.5.33
• d8fd6f2 escapeTags in message field when printing status messages
• 95edbeb hostnameVerification default to true in SSLParametersConfiguration, SSL.DEFAU...
• b768a96 remove spurious java.swing.* import
• 12cf2c5 classes in java.lang and java.util are now whitelisted individually
• e9133ed fix typo
• 47089a2 added Filip Egeric icla
• 85735f7 Modified ConversionRuleAction.java: Updated validPreconditions() to
• 614f7a7 the official name for initial instructions file foe coding agents is AGENTS.md
• fe50bb5 fix: do not warn when both converterClass and class attributes are specified ...
• Additional commits viewable in compare view

Updates io.quarkus:quarkus-maven-plugin from 3.33.1 to 3.33.2

Updates org.apache.maven.plugins:maven-enforcer-plugin from 3.6.2 to 3.6.3

Release notes

Sourced from org.apache.maven.plugins:maven-enforcer-plugin's releases.

3.6.3

🚀 New features and improvements

• Make bannedDependencies report root and transitive dependency in case both are banned. (#940) @​hvoynov
• Add enforceBytecodeVersion rule based on mojohaus (#968) @​cstamas
• Improve formatting of deprecated API warning (#951) @​mthmulders

🐛 Bug Fixes

• Fix handling of Java versions like 21.0.10.0.1 (#967) @​parttimenerd
• Add null checks for modelId in PluginWrapper (#974) @​cpfeiffer

📝 Documentation updates

• Document the banMavenDefaults option for the requirePluginVersions rule. (#936) @​rpkrajewski

👻 Maintenance

• PlexusStringUtils Refaster recipes (#943) @​slachiewicz
• JUnit Jupiter migration from JUnit 4.x (#941) @​slachiewicz

📦 Dependency updates

• Bump org.apache.logging.log4j:log4j-core from 2.25.3 to 2.25.4 in /maven-enforcer-plugin/src/it/projects/MENFORCER-434 (#970) @dependabot[bot]
• Deps: Parent POM 48 and align deps (#979) @​cstamas
• Bump commons-codec:commons-codec from 1.21.0 to 1.22.0 (#976) @dependabot[bot]
• Bump commons-io:commons-io from 2.21.0 to 2.22.0 (#975) @dependabot[bot]
• Bump mavenVersion from 3.9.14 to 3.9.15 (#973) @dependabot[bot]
• Bump mavenVersion from 3.9.13 to 3.9.14 (#965) @dependabot[bot]
• Bump mavenVersion from 3.9.12 to 3.9.13 (#964) @dependabot[bot]
• Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.5.0 to 3.5.1 (#963) @dependabot[bot]
• Update log4j in test to avoid CVE (#961) @​Bukama
• Bump commons-codec:commons-codec from 1.20.0 to 1.21.0 (#962) @dependabot[bot]
• Bump org.assertj:assertj-core from 3.27.6 to 3.27.7 (#960) @dependabot[bot]
• Bump org.codehaus.mojo:mrm-maven-plugin from 1.7.0 to 1.7.1 (#959) @dependabot[bot]
• Bump org.apache.maven:maven-parent from 46 to 47 (#958) @dependabot[bot]
• Bump org.codehaus.plexus:plexus-archiver from 4.10.4 to 4.11.0 (#957) @dependabot[bot]
• Update to 46 including fixes (#955) @​Bukama
• Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.3.0 to 3.5.0 (#956) @dependabot[bot]
• Bump mavenVersion from 3.9.11 to 3.9.12 (#948) @dependabot[bot]
• Bump org.apache.commons:commons-lang3 from 3.19.0 to 3.20.0 (#947) @dependabot[bot]
• Bump commons-io:commons-io from 2.20.0 to 2.21.0 (#946) @dependabot[bot]
• Bump commons-codec:commons-codec from 1.19.0 to 1.20.0 (#945) @dependabot[bot]

Commits

• c7daff3 [maven-release-plugin] prepare release enforcer-3.6.3
• ee46e78 Make bannedDependencies report root and transitive dependency in case both ar...
• 0806924 Document the banMavenDefaults option for the requirePluginVersions rule. (#936)
• 8e4f5b9 Add better enforceBytecodeVersion rule based on mojohaus (#968)
• fd4b148 Add fix for 21.0.10.0.1 issue (#967)
• f32d597 Deps: Parent POM 48 and align deps (#979)
• df0f2a6 Bump commons-codec:commons-codec from 1.21.0 to 1.22.0 (#976)
• 2da7a68 Add null checks for modelId in PluginWrapper
• 91eb4d9 Bump commons-io:commons-io from 2.21.0 to 2.22.0 (#975)
• b622245 Bump mavenVersion from 3.9.14 to 3.9.15 (#973)
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-surefire-plugin from 3.5.5 to 3.5.6

Release notes

Sourced from org.apache.maven.plugins:maven-surefire-plugin's releases.

3.5.6

🚀 New features and improvements

• Introduce reportTestTimestamp option and include timestamp for test sets and test cases (#3261) (#3302) @​olamy

🐛 Bug Fixes

• Issue #2613 Debugging failsafe tests: Message 'Listening for transport dt_socket at address' is not displayed anymore when using maven.surefire.debug (#3353) (#3354) @​olamy
• Ensure that the statistics filename is calculated only once. (#3326) (#3327) @​olamy
• Add flakes attribute to use in testsuite report (#3306) (#3308) @​olamy
• [BACKPORT 3.5.x] [SUREFIRE-2049] - Fix SHUTDOWN type lost during command serialization. (#3270) (#3289) @​olamy
• fix: null guard for context map (#3269) (#3272) @​olamy

👻 Maintenance

• 3.5.x/bug/cherry pick embedded mode its (#3328) @​olamy
• Use surefire 3.5.5 by project itself for testing (#3324) @​slawekjaranowski
• Follow Oracle javadoc guidelines (#3177) @​elharo

📦 Dependency updates

• Bump org.fusesource.jansi:jansi from 2.4.2 to 2.4.3 (#3334) @dependabot[bot]
• Bump commons-io:commons-io from 2.21.0 to 2.22.0 (#3350) @dependabot[bot]

Commits

• 25ea054 [maven-release-plugin] prepare release surefire-3.5.6
• e5f374c Bump org.fusesource.jansi:jansi from 2.4.2 to 2.4.3
• dadd55b Issue #2613 Debugging failsafe tests: Message 'Listening for transport dt_soc...
• 39dd250 Bump commons-io:commons-io from 2.21.0 to 2.22.0
• 2774273 Ensure that the statistics filename is calculated only once. (#3326) (#3327)
• 0d5df8a 3.5.x/bug/cherry pick embedded mode its (#3328)
• 04ad9a2 Use surefire 3.5.5 by project itself for testing
• 37e8f69 Add flakes attribute to use in testsuite report (#3306) (#3308)
• a970fef Introduce reportTestTimestamp option and include timestamp for test sets and ...
• e838393 deploy 3.5.x branch to nexus
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-failsafe-plugin from 3.5.5 to 3.5.6

Release notes

Sourced from org.apache.maven.plugins:maven-failsafe-plugin's releases.

3.5.6

🚀 New features and improvements

• Introduce reportTestTimestamp option and include timestamp for test sets and test cases (#3261) (#3302) @​olamy

🐛 Bug Fixes

• Issue #2613 Debugging failsafe tests: Message 'Listening for transport dt_socket at address' is not displayed anymore when using maven.surefire.debug (#3353) (#3354) @​olamy
• Ensure that the statistics filename is calculated only once. (#3326) (#3327) @​olamy
• Add flakes attribute to use in testsuite report (#3306) (#3308) @​olamy
• [BACKPORT 3.5.x] [SUREFIRE-2049] - Fix SHUTDOWN type lost during command serialization. (#3270) (#3289) @​olamy
• fix: null guard for context map (#3269) (#3272) @​olamy

👻 Maintenance

• 3.5.x/bug/cherry pick embedded mode its (#3328) @​olamy
• Use surefire 3.5.5 by project itself for testing (#3324) @​slawekjaranowski
• Follow Oracle javadoc guidelines (#3177) @​elharo

📦 Dependency updates

• Bump org.fusesource.jansi:jansi from 2.4.2 to 2.4.3 (#3334) @dependabot[bot]
• Bump commons-io:commons-io from 2.21.0 to 2.22.0 (#3350) @dependabot[bot]

Commits

• 25ea054 [maven-release-plugin] prepare release surefire-3.5.6
• e5f374c Bump org.fusesource.jansi:jansi from 2.4.2 to 2.4.3
• dadd55b Issue #2613 Debugging failsafe tests: Message 'Listening for transport dt_soc...
• 39dd250 Bump commons-io:commons-io from 2.21.0 to 2.22.0
• 2774273 Ensure that the statistics filename is calculated only once. (#3326) (#3327)
• 0d5df8a 3.5.x/bug/cherry pick embedded mode its (#3328)
• 04ad9a2 Use surefire 3.5.5 by project itself for testing
• 37e8f69 Add flakes attribute to use in testsuite report (#3306) (#3308)
• a970fef Introduce reportTestTimestamp option and include timestamp for test sets and ...
• e838393 deploy 3.5.x branch to nexus
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-failsafe-plugin from 3.5.5 to 3.5.6

Release notes

Sourced from org.apache.maven.plugins:maven-failsafe-plugin's releases.

3.5.6

🚀 New features and improvements

• Introduce reportTestTimestamp option and include timestamp for test sets and test cases (#3261) (#3302) @​olamy

🐛 Bug Fixes

• Issue #2613 Debugging failsafe tests: Message 'Listening for transport dt_socket at address' is not displayed anymore when using maven.surefire.debug (#3353) (#3354) @​olamy
• Ensure that the statistics filename is calculated only once. (#3326) (#3327) @​olamy
• Add flakes attribute to use in testsuite report (#3306) (#3308) @​olamy
• [BACKPORT 3.5.x] [SUREFIRE-2049] - Fix SHUTDOWN type lost during command serialization. (#3270) (#3289) @​olamy
• fix: null guard for context map (#3269) (#3272) @​olamy

👻 Maintenance

• 3.5.x/bug/cherry pick embedded mode its (#3328) @​olamy
• Use surefire 3.5.5 by project itself for testing (#3324) @​slawekjaranowski
• Follow Oracle javadoc guidelines (#3177) @​elharo

📦 Dependency updates

• Bump org.fusesource.jansi:jansi from 2.4.2 to 2.4.3 (#3334) @dependabot[bot]
• Bump commons-io:commons-io from 2.21.0 to 2.22.0 (#3350) @dependabot[bot]

Commits

• 25ea054 [maven-release-plugin] prepare release surefire-3.5.6
• e5f374c Bump org.fusesource.jansi:jansi from 2.4.2 to 2.4.3
• dadd55b Issue #2613 Debugging failsafe tests: Message 'Listening for transport dt_soc...
• 39dd250 Bump commons-io:commons-io from 2.21.0 to 2.22.0
• 2774273 Ensure that the statistics filename is calculated only once. (#3326) (#3327)
• 0d5df8a 3.5.x/bug/cherry pick embedded mode its (#3328)
• 04ad9a2 Use surefire 3.5.5 by project itself for testing
• 37e8f69 Add flakes attribute to use in testsuite report (#3306) (#3308)
• a970fef Introduce reportTestTimestamp option and include timestamp for test sets and ...
• e838393 deploy 3.5.x branch to nexus
• Additional commits viewable in compare view

Updates io.quarkus:quarkus-extension-maven-plugin from 3.33.1 to 3.33.2

Release notes

Sourced from io.quarkus:quarkus-extension-maven-plugin's releases.

3.33.2

Complete changelog

• #42549 - Remove references to Renarde in https://quarkus.io/guides/security-openid-connect-providers
• #50392 - JFR extension not capturing Quarkus application runtime data
• #52239 - OpenTelemetry: Context get lost when hitting rest client read timeout
• #53115 - Prevent server's OpenTelemetry Context getting lost on client read timeout
• #53121 - OpenShift build extension seemingly ignoring configuration properties for image/image name
• #53167 - build(deps): bump testcontainers.version from 2.0.3 to 2.0.4
• #53191 - OpenShift Internal Registry Container Image Name
• #53203 - Refactor jar building to a first-write-wins approach
• #53209 - quarkus-artifact.properties generation is brittle
• #53215 - Properly set path property for quarkus-artifact.properties
• #53222 - VertxHttpHotReplacementSetup: move the httpInitiatedReload flag check
• #53261 - Honour the legacy resolver settings in go-offline goals
• #53271 - JFR extension event fix
• #53290 - Webauthn IT: move test-webauthn to the test scope
• #53296 - Swagger UI does not mark endpoint as protected if PermissionsAllowed present multiple times
• #53301 - OpenAPI: Detect repeated @PermissionsAllowed annotations in Swagger UI
• #53325 - Quarkus 3.33.1: WARN: This Gauge has been already registered
• #53331 - Prevent warning about Gauge having already been registered
• #53334 - [3.33] Bump Hibernate ORM to 7.2.9.Final, Reactive to 3.2.9.Final
• #53338 - Style and grammar review for the OpenID Connect authorization code flow
• #53349 - Updates to Infinispan 16.0.9
• #53352 - Some minor uberjar improvements and a test for service concatenation
• #53366 - [3.33] Upgrade to Vert.x 4.5.26 and Netty 4.1.132.Final
• #53383 - BUILD_AND_RUN_TIME_FIXED config values not resolved with custom profiles (3.31+ regression)
• #53386 - [3.34] Update SmallRye Fault Tolerance to 6.10.1