[deps]: Update org.apache.httpcomponents.client5:httpclient5 to v5.4.3 [SECURITY]

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
org.apache.httpcomponents.client5:httpclient5	5.4.1 -> 5.4.3

GitHub Vulnerability Alerts

CVE-2025-27820

A bug in PSL validation logic in Apache HttpClient 5.4.x disables domain checks, affecting cookie management and host name verification. Discovered by the Apache HttpClient team. Fixed in the 5.4.3 release.

---

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions]

Checkmarx One – Scan Summary & Details – d87406e2-ad22-42f2-b919-3f5957c6cb92

New Issues (1)

Checkmarx found the following issues in this Pull Request

Severity	Issue	Source File / Package	Checkmarx Insight
	CVE-2025-22235	Maven-org.springframework.boot:spring-boot-3.1.3	details Description: `EndpointRequest.to()` creates a matcher for `null/**` if the actuator endpoint, for which the `EndpointRequest` has been created, is disabled or n... Attack Vector: NETWORK Attack Complexity: LOW ID: K54uK0Hn4lfdaOqLXvX%2B37Jr1mTl%2B67TdCczewtUjr4%3D Vulnerable Package

Fixed Issues (1)

Great job! The following issues were fixed in this Pull Request

Severity	Issue	Source File / Package
	CVE-2025-27820	Maven-org.apache.httpcomponents.client5:httpclient5-5.4.1