Skip to content

chore(deps): bump the minor-and-patch group with 10 updates#14

Open
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/gradle/minor-and-patch-744712ddb7
Open

chore(deps): bump the minor-and-patch group with 10 updates#14
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/gradle/minor-and-patch-744712ddb7

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 21, 2026

Copy link
Copy Markdown

Bumps the minor-and-patch group with 10 updates:

Package From To
gradle-wrapper 9.5.1 9.6.0
org.apache.commons:commons-exec 1.3 1.6.0
org.apache.commons:commons-lang3 3.9 3.20.0
org.apache.commons:commons-text 1.9 1.15.0
commons-io:commons-io 2.6 2.22.0
net.bytebuddy:byte-buddy 1.18.8 1.18.10
com.squareup.okhttp3:okhttp 5.3.2 5.4.0
org.slf4j:slf4j-api 2.0.17 2.0.18
org.slf4j:slf4j-nop 2.0.17 2.0.18
junit:junit 4.13.1 4.13.2

Updates gradle-wrapper from 9.5.1 to 9.6.0

Release notes

Sourced from gradle-wrapper's releases.

9.6.0

The Gradle team is excited to announce Gradle 9.6.0.

Here are the highlights of this release:

  • Improved Configuration Cache hit rates
  • Additional CLI rendering options
  • Important project hierarchy lookup deprecations

Read the Release Notes

We would like to thank the following community members for their contributions to this release of Gradle: Aharnish Solanki, Benedikt Johannes, Devendra Reddy Pennabadi, Dmytro Rodionov, Dreeam, Elías Hernández Rodríguez, Eng Zer Jun, FinlayRJW, Kamal Kansal, Marcono1234, Nelson Osacky, Philip Wedemann, Ravi, Roberto Perez Alcolea, Ryan Schmitt, Sebastian Schuberth, seunghun.ham, sk-reddy17, Suvrat Acharya, Vedant Madane.

Upgrade instructions

Switch your build to use Gradle 9.6.0 by updating your wrapper:

./gradlew :wrapper --gradle-version=9.6.0 && ./gradlew :wrapper

See the Gradle 9.x upgrade guide to learn about deprecations, breaking changes and other considerations when upgrading.

For Java, Groovy, Kotlin and Android compatibility, see the full compatibility notes.

Reporting problems

If you find a problem with this release, please file a bug on GitHub Issues adhering to our issue guidelines. If you're not sure you're encountering a bug, please use the forum.

We hope you will build happiness with Gradle, and we look forward to your feedback via Twitter or on GitHub.

9.6.0 RC3

... (truncated)

Commits
  • 3f750f0 Update distro size for Gradle 9.6.0 release (#38243)
  • ae93cfa update distro size
  • f7e22b5 Update Gradle wrapper to version 9.6.0-rc-3 (#38227)
  • 71a8eb9 Update Gradle wrapper to version 9.6.0-rc-3
  • 70a8745 Prepare release notes for Gradle 9.6.0RC3 (#38220)
  • 9706522 some final polishing for release notes
  • af308eb Restore GradleInternal.getRootProject overload for binary compatibility (#38214)
  • 239361b Restore GradleInternal.getRootProject overload for binary compatibility
  • 896dc44 Update Gradle wrapper to version 9.6.0-rc-2 (#38187)
  • 2d4ec25 Update Gradle wrapper to version 9.6.0-rc-2
  • Additional commits viewable in compare view

Updates org.apache.commons:commons-exec from 1.3 to 1.6.0

Changelog

Sourced from org.apache.commons:commons-exec's changelog.

Apache Commons Exec 1.6.0 Release Notes

The Apache Commons Exec team is pleased to announce the release of Apache Commons Exec 1.6.0.

Apache Commons Exec is a library that reliably executes external processes from within the JVM.

This is a feature and maintenance release. Java 8 or later is required.

Changes in this version include:

New features: o TimeoutObserver now extends Consumer. Thanks to Gary Gregory. o Add org.apache.commons.exec.Watchdog.getTimeout(). Thanks to Gary Gregory.

Fixed Bugs: o Watchdog.builder().get() now uses a default timeout of 30 seconds instead of throwing a NullPointerException. Thanks to Gary Gregory. o ExecuteWatchdog.builder().get() now uses a default timeout of 30 seconds instead of throwing a NullPointerException. Thanks to Gary Gregory. o Calling org.apache.commons.exec.Watchdog.Builder.setTimeout(Duration) with null now resets to the default INFINITE_TIMEOUT_DURATION timeout. Thanks to Gary Gregory. o Calling org.apache.commons.exec.ExecuteWatchdog.Builder.setTimeout(Duration) with null now resets to the default INFINITE_TIMEOUT_DURATION timeout. Thanks to Gary Gregory. o Calling org.apache.commons.exec.Watchdog.Builder.setThreadFactory(ThreadFactory) with null now resets to the default java.util.concurrent.Executors.defaultThreadFactory(). Thanks to Gary Gregory. o Calling org.apache.commons.exec.ExecuteWatchdog.Builder.setThreadFactory(ThreadFactory) with null now resets to the default java.util.concurrent.Executors.defaultThreadFactory(). Thanks to Gary Gregory. o Fix Checkstyle issues. Thanks to Gary Gregory. o Fix StringUtils.quoteArgument(String) when input contains single and double quotes #309. Thanks to Xin Wang, Sebb, Gary Gregory. o Fix Apache RAT plugin console warnings. Thanks to Gary Gregory.

Changes: o Bump org.apache.commons:commons-parent from 83 to 93 #299, #308, #314, #316. Thanks to Dependabot, Gary Gregory. o Bump org.apache.commons:commons-lang3 from 3.17.0 to 3.20.0 #282. Thanks to Dependabot, Gary Gregory.

Historical list of changes: https://commons.apache.org/proper/commons-exec//changes.html

For complete information on Apache Commons Exec, including instructions on how to submit bug reports, patches, or suggestions for improvement, see the Apache Commons Exec website:

https://commons.apache.org/proper/commons-exec/

Download page: https://commons.apache.org/proper/commons-exec//download_exec.cgi

Have fun! -Apache Commons Team

=============================================================================

Apache Commons Exec 1.5.0 Release Notes

The Apache Commons Exec team is pleased to announce the release of Apache Commons Exec 1.5.0.

... (truncated)

Commits

Updates org.apache.commons:commons-lang3 from 3.9 to 3.20.0

Updates org.apache.commons:commons-text from 1.9 to 1.15.0

Changelog

Sourced from org.apache.commons:commons-text's changelog.

Apache Commons Text 1.15.0 Release Notes

The Apache Commons Text team is pleased to announce the release of Apache Commons Text 1.15.0.

Apache Commons Text is a set of utility functions and reusable components for processing and manipulating text in a Java environment.

Release 1.15.0. This is a feature and maintenance release. Java 8 or later is required.

New features

  •        Add experimental CycloneDX VEX file [#683](https://github.com/apache/commons-text/issues/683). Thanks to Piotr P. Karwasz, Gary Gregory.
  • TEXT-235: Add Damerau-Levenshtein distance #687. Thanks to LorgeN, Gary Gregory.
  •        Add unit tests to increase coverage [#719](https://github.com/apache/commons-text/issues/719). Thanks to Michael Hausegger, Gary Gregory.

  •        Add new test for CharSequenceTranslator#with() [#725](https://github.com/apache/commons-text/issues/725). Thanks to Michael Hausegger, Gary Gregory.

  •        Add tests and assertions to org.apache.commons.text.similarity to get to 100% code coverage [#727](https://github.com/apache/commons-text/issues/727), [#728](https://github.com/apache/commons-text/issues/728). Thanks to Michael Hausegger.

Fixed Bugs

  •        Fix exception message typo in XmlStringLookup.XmlStringLookup(Map, Path...). Thanks to Gary Gregory.
  • TEXT-236: Inserting at the end of a TextStringBuilder throws a StringIndexOutOfBoundsException. Thanks to Pierre Post, Sumit Bera, Alex Herbert, Gary Gregory.
  •        Fix TextStringBuilderTest.testAppendToCharBuffer() to use proper argument type [#724](https://github.com/apache/commons-text/issues/724). Thanks to Michael Hausegger.

  •        Fix Apache RAT plugin console warnings. Thanks to Gary Gregory.

  •        Fix site XML to use version 2.0.0 XML schema. Thanks to Gary Gregory.

  •        Removed unreachable threshold verification code in src/main/java/org/apache/commons/text/similarity [#730](https://github.com/apache/commons-text/issues/730). Thanks to Michael Hausegger.

  •        Enable secure processing for the XML parser in XmlStringLookup in case the underlying JAXP implementation doesn't [#729](https://github.com/apache/commons-text/issues/729). Thanks to 김민재 (minjas0507), Gary Gregory, Piotr Karwasz.

Changes

  •        Bump org.apache.commons:commons-parent from 85 to 93 [#704](https://github.com/apache/commons-text/issues/704), [#723](https://github.com/apache/commons-text/issues/723), [#726](https://github.com/apache/commons-text/issues/726). Thanks to Gary Gregory.

  •        Bump commons.bytebuddy.version from 1.17.6 to 1.18.2 [#696](https://github.com/apache/commons-text/issues/696), [#722](https://github.com/apache/commons-text/issues/722). Thanks to Gary Gregory.

  •        Bump graalvm.version from 24.2.2 to 25.0.1 [#703](https://github.com/apache/commons-text/issues/703), [#716](https://github.com/apache/commons-text/issues/716). Thanks to Gary Gregory, Dependabot.

  •        Bump org.apache.commons:commons-lang3 from 3.18.0 to 3.20.0. Thanks to Gary Gregory.

  •        Bump commons-io:commons-io from 2.20.0 to 2.21.0. Thanks to Gary Gregory.

Historical list of changes: https://commons.apache.org/proper/commons-text/changes.html

For complete information on Apache Commons Text, including instructions on how to submit bug reports, patches, or suggestions for improvement, see the Apache Commons Text website:

https://commons.apache.org/proper/commons-text

Download page: https://commons.apache.org/proper/commons-text/download_text.cgi

... (truncated)

Commits
  • 04e9374 Prepare for the release candidate 1.15.0 RC1
  • 502c4c4 Prepare for the next release candidate
  • c6e17ec Use direct access
  • 58e1e12 Simplify XML FSP (#731)
  • b5052c9 Bump actions/setup-java from 5.0.0 to 5.1.0
  • 2e2d4bc Revert "Bump actions/setup-java from 5.0.0 to 5.1.0"
  • b0ddbd1 Bump actions/setup-java from 5.0.0 to 5.1.0
  • 1c2d382 Add tests with external DTD
  • ed3df4b Internal clean up
  • bb508f3 Bump actions/checkout from 6.0.0 to 6.0.1
  • Additional commits viewable in compare view

Updates commons-io:commons-io from 2.6 to 2.22.0

Updates net.bytebuddy:byte-buddy from 1.18.8 to 1.18.10

Release notes

Sourced from net.bytebuddy:byte-buddy's releases.

Byte Buddy 1.18.9

  • Disable use of Unsafe by default when Java 25or newer is discovered.
  • Check for escape when creating folders in Plugin.Engine.
  • Improve OpenJ9 attachment.
  • Avoid null pointer on missing annotation types.
  • Improve diagnostics for external agent attachment.
  • Improve on Gradle context discovery.
  • Support Android libraries on AGP9 or newer.
  • Update ASM.
Changelog

Sourced from net.bytebuddy:byte-buddy's changelog.

3. June 2026: version 1.18.10

  • Delay change of default for unsage use to Java 26 and improve error message.

1. June 2026: version 1.18.9

  • Disable use of Unsafe by default when Java 25or newer is discovered.
  • Check for escape when creating folders in Plugin.Engine.
  • Improve OpenJ9 attachment.
  • Avoid null pointer on missing annotation types.
  • Improve diagnostics for external agent attachment.
  • Improve on Gradle context discovery.
  • Support Android libraries on AGP9 or newer.
  • Update ASM.
Commits
  • e85623d [publish] Releasing Byte Buddy 1.18.10
  • e3bfa68 [release] Release new version
  • 5821ccc Delay disabling of unsafe by default to Java 26 and improve on error message.
  • 9d7d4fa Add fuzzing module.
  • 5d5dc06 Fix checksum
  • d6371aa Add missing checksums.
  • 7e47481 Update release notes and checksums.
  • cb36b3f [publish] Start next development iteration 1.18.10-SNAPSHOT
  • 3d8e72d [publish] Releasing Byte Buddy 1.18.9
  • 3525602 [release] Release new version
  • Additional commits viewable in compare view

Updates com.squareup.okhttp3:okhttp from 5.3.2 to 5.4.0

Changelog

Sourced from com.squareup.okhttp3:okhttp's changelog.

Version 5.4.0

2026-06-08

  • New: Add superpowers to interceptors. Interceptors can now override anything settable on OkHttpClient.Builder, such as the cache, connection pool, socket factory, and DNS. We expect this will allow most users to use interceptors everywhere, insted of mixing and matching interceptors with custom Call.Factory wrappers.
  • Fix: Limit each HTTP/2 response to 256 KiB of total headers.
  • Upgrade: [kotlinx.coroutines 1.11.0][coroutines_1_11_0]. This is used by the optional okhttp-coroutines artifact.
  • Upgrade: [GraalVM 25.0.3][graalvm_25].
  • Upgrade: [Okio 3.17.0][okio_3_17_0].
Commits

Updates org.slf4j:slf4j-api from 2.0.17 to 2.0.18

Updates org.slf4j:slf4j-nop from 2.0.17 to 2.0.18

Updates org.slf4j:slf4j-nop from 2.0.17 to 2.0.18

Updates junit:junit from 4.13.1 to 4.13.2

Release notes

Sourced from junit:junit's releases.

JUnit 4.13.2

Please refer to the release notes for details.

Commits
  • 05fe2a6 [maven-release-plugin] prepare release r4.13.2
  • ff57344 Add build for JDK 17-ea
  • 02aaa01 Improve check that thread is stopped
  • e9a75f4 Merge test for exception type and message
  • d27ad52 Rename DelegateStatement to DelegatingStatement
  • b83dc2e Better name for test that stops statement
  • 527f3a3 Replace InfiniteLoop with RunForASecond
  • 2db6394 Tidy up FailOnTimeoutTest
  • 64634e1 Update 4.13.2 release notes to document pull 1654
  • f8ee412 Fix serialization of AssumptionViolatedException (#1654)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the minor-and-patch group with 10 updates
78cc139 
Bumps the minor-and-patch group with 10 updates:

| Package | From | To |
| --- | --- | --- |
| [gradle-wrapper](https://github.com/gradle/gradle) | `9.5.1` | `9.6.0` |
| [org.apache.commons:commons-exec](https://github.com/apache/commons-exec) | `1.3` | `1.6.0` |
| org.apache.commons:commons-lang3 | `3.9` | `3.20.0` |
| [org.apache.commons:commons-text](https://github.com/apache/commons-text) | `1.9` | `1.15.0` |
| commons-io:commons-io | `2.6` | `2.22.0` |
| [net.bytebuddy:byte-buddy](https://github.com/raphw/byte-buddy) | `1.18.8` | `1.18.10` |
| [com.squareup.okhttp3:okhttp](https://github.com/square/okhttp) | `5.3.2` | `5.4.0` |
| org.slf4j:slf4j-api | `2.0.17` | `2.0.18` |
| org.slf4j:slf4j-nop | `2.0.17` | `2.0.18` |
| [junit:junit](https://github.com/junit-team/junit4) | `4.13.1` | `4.13.2` |


Updates `gradle-wrapper` from 9.5.1 to 9.6.0
- [Release notes](https://github.com/gradle/gradle/releases)
- [Commits](gradle/gradle@v9.5.1...v9.6.0)

Updates `org.apache.commons:commons-exec` from 1.3 to 1.6.0
- [Changelog](https://github.com/apache/commons-exec/blob/master/RELEASE-NOTES.txt)
- [Commits](apache/commons-exec@1.3...rel/commons-exec-1.6.0)

Updates `org.apache.commons:commons-lang3` from 3.9 to 3.20.0

Updates `org.apache.commons:commons-text` from 1.9 to 1.15.0
- [Changelog](https://github.com/apache/commons-text/blob/master/RELEASE-NOTES.txt)
- [Commits](apache/commons-text@rel/commons-text-1.9...rel/commons-text-1.15.0)

Updates `commons-io:commons-io` from 2.6 to 2.22.0

Updates `net.bytebuddy:byte-buddy` from 1.18.8 to 1.18.10
- [Release notes](https://github.com/raphw/byte-buddy/releases)
- [Changelog](https://github.com/raphw/byte-buddy/blob/master/release-notes.md)
- [Commits](raphw/byte-buddy@byte-buddy-1.18.8...byte-buddy-1.18.10)

Updates `com.squareup.okhttp3:okhttp` from 5.3.2 to 5.4.0
- [Changelog](https://github.com/square/okhttp/blob/master/CHANGELOG.md)
- [Commits](square/okhttp@parent-5.3.2...parent-5.4.0)

Updates `org.slf4j:slf4j-api` from 2.0.17 to 2.0.18

Updates `org.slf4j:slf4j-nop` from 2.0.17 to 2.0.18

Updates `org.slf4j:slf4j-nop` from 2.0.17 to 2.0.18

Updates `junit:junit` from 4.13.1 to 4.13.2
- [Release notes](https://github.com/junit-team/junit4/releases)
- [Changelog](https://github.com/junit-team/junit4/blob/main/doc/ReleaseNotes4.13.1.md)
- [Commits](junit-team/junit4@r4.13.1...r4.13.2)

---
updated-dependencies:
- dependency-name: gradle-wrapper
  dependency-version: 9.6.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: org.apache.commons:commons-exec
  dependency-version: 1.6.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: org.apache.commons:commons-lang3
  dependency-version: 3.20.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: org.apache.commons:commons-text
  dependency-version: 1.15.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: commons-io:commons-io
  dependency-version: 2.22.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: net.bytebuddy:byte-buddy
  dependency-version: 1.18.10
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: com.squareup.okhttp3:okhttp
  dependency-version: 5.4.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: org.slf4j:slf4j-api
  dependency-version: 2.0.18
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: org.slf4j:slf4j-nop
  dependency-version: 2.0.18
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: org.slf4j:slf4j-nop
  dependency-version: 2.0.18
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: junit:junit
  dependency-version: 4.13.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Jun 21, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file java Pull requests that update java code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants