chore: bump the maven-plugins group with 7 updates by dependabot[bot] · Pull Request #830 · a2aproject/a2a-java

dependabot · 2026-04-29T09:07:16Z

Bumps the maven-plugins group with 7 updates:

Package	From	To
org.apache.maven.plugins:maven-compiler-plugin	`3.14.1`	`3.15.0`
org.apache.maven.plugins:maven-surefire-plugin	`3.1.2`	`3.5.5`
org.apache.maven.plugins:maven-jar-plugin	`3.4.2`	`3.5.0`
org.apache.maven.plugins:maven-source-plugin	`3.3.1`	`3.4.0`
org.apache.maven.plugins:maven-javadoc-plugin	`3.8.0`	`3.12.0`
org.apache.maven.plugins:maven-gpg-plugin	`3.2.4`	`3.2.8`
org.apache.maven.plugins:maven-invoker-plugin	`3.8.0`	`3.10.0`

Updates org.apache.maven.plugins:maven-compiler-plugin from 3.14.1 to 3.15.0

Release notes

Sourced from org.apache.maven.plugins:maven-compiler-plugin's releases.

3.15.0

🐛 Bug Fixes

Fix Java 25 compatibility during integration tests (#1020) @desruisseaux

[MCOMPILER-540] - useIncrementalCompilation=false may add generated sources to the sources list (#192) @mensinda

👻 Maintenance

Bump org.apache.maven.plugins:maven-plugins from 45 to 46 (#1015) @slachiewicz

Remove declaration of "plexus-snapshots" repository (#1010) @desruisseaux

Works only with Maven 4.0.0 rc4 (#996) @slachiewicz

Enable Java 25 and Maven 4 in CI (#975) @slachiewicz

📦 Dependency updates

Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.4.0 to 3.5.0 (#1016) @dependabot[bot]

Bump plexusCompilerVersion from 2.16.1 to 2.16.2 (#1021) @dependabot[bot]

Bump org.apache.maven.plugins:maven-plugins from 46 to 47 (#1019) @dependabot[bot]

Bump org.codehaus.plexus:plexus-java from 1.5.1 to 1.5.2 (#1008) @dependabot[bot]

Bump org.ow2.asm:asm from 9.9 to 9.9.1 (#1005) @dependabot[bot]

Bump mavenVersion from 3.9.11 to 3.9.12 (#1007) @dependabot[bot]

Bump maven-plugin-testing-harness to 3.4.0 (#1001) @slawekjaranowski

Bump plexusCompilerVersion from 2.16.0 to 2.16.1 (#999) @dependabot[bot]

Bump org.codehaus.plexus:plexus-java from 1.5.0 to 1.5.1 (#993) @dependabot[bot]

Bump plexusCompilerVersion from 2.15.0 to 2.16.0 (#992) @dependabot[bot]

Bump org.ow2.asm:asm from 9.8 to 9.9 (#981) @dependabot[bot]

Commits

9290cb3 [maven-release-plugin] prepare release maven-compiler-plugin-3.15.0
3657d40 Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness
7bbf805 Bump plexusCompilerVersion from 2.16.1 to 2.16.2
57fa938 Bump org.apache.maven.plugins:maven-plugins from 46 to 47
385e3f2 Fix Java 25 compatibility during integration tests (#1020)
6b34423 Bump org.apache.maven.plugins:maven-plugins from 45 to 46
aaeb9c6 [MCOMPILER-540] useIncrementalCompilation=false may add generated sources to ...
6e3db9d Bump org.codehaus.plexus:plexus-java from 1.5.1 to 1.5.2
0fe9b84 Remove declaration of "plexus-snapshots" repository (#1010)
35f6800 Bump org.ow2.asm:asm from 9.9 to 9.9.1
Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-surefire-plugin from 3.1.2 to 3.5.5

Release notes

Sourced from org.apache.maven.plugins:maven-surefire-plugin's releases.

3.5.5

🚀 New features and improvements

Replace runing external process and parsing output with simple ProcessHandle if available (Java9+) (#3252) @olamy

Pass slf4j context to spawned thread (#3241) @scottrw93

[SUREFIRE-3239] - allow override of statistics file checksum (#3247) @XN137

Reduce log level for skipped tests result to info (#3232) @strangelookingnerd

🐛 Bug Fixes

Use PowerShell instead of WMIC for detecting zombie process on Windows (#3258) @jbliznak. Please note if you are using Windows with Java 8 and not PowerShell (you have options to: use Java 9+, install PowerShell or stay on Surefire 3.5.4)

Properly work with test failures caused during beforeAll phase (#3194) @Frawless

📝 Documentation updates

Clarify how late placeholder replacement (@{...}) deals with (#3208) @kwin

👻 Maintenance

Fix Jenkin badges in README (#3254) @slawekjaranowski

Use JUnit5 in failsafe ITs (#3251) @slawekjaranowski

Remove long-deprecated unused encoding property from VerifyMojo (#3198) @Tomlincoln

Add IT and deal with corner cases of handling beforeAll failures (#3200) @Frawless

Revert PR #3194 that handle beforeAll failures to follow proper contributing rules (#3211) @Frawless

🔧 Build

Missing many files in the GH Artifacts of CI ex-post. (#3219) @Tibor17

📦 Dependency updates

Bump org.xmlunit:xmlunit-core from 2.10.4 to 2.11.0 (#3209) @dependabot[bot]

Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.4.0 to 3.5.1 (#3260) @dependabot[bot]

Bump parent from 44 to 47 (#3253) @slawekjaranowski

Bump org.assertj:assertj-core from 3.16.1 to 3.27.7 in /surefire-its/src/test/resources/surefire-1733-testng (#3246) @dependabot[bot]

Bump org.assertj:assertj-core from 3.27.6 to 3.27.7 (#3245) @dependabot[bot]

Bump org.codehaus.mojo:animal-sniffer-maven-plugin from 1.26 to 1.27 (#3243) @dependabot[bot]

Bump org.htmlunit:htmlunit from 4.20.0 to 4.21.0 (#3236) @dependabot[bot]

Bump org.codehaus.plexus:plexus-java from 1.5.1 to 1.5.2 (#3235) @dependabot[bot]

Bump org.apache.logging.log4j:log4j-core from 2.17.1 to 2.25.3 in /surefire-its/src/test/resources/surefire-1659-stream-corruption (#3234) @dependabot[bot]

Bump org.htmlunit:htmlunit from 4.19.0 to 4.20.0 (#3228) @dependabot[bot]

Bump org.htmlunit:htmlunit from 4.18.0 to 4.19.0 (#3224) @dependabot[bot]

Bump org.apache.commons:commons-lang3 from 3.19.0 to 3.20.0 (#3223) @dependabot[bot]

Bump org.codehaus.plexus:plexus-interpolation from 1.28 to 1.29 (#3221) @dependabot[bot]

Bump org.codehaus.plexus:plexus-i18n from 1.0.0 to 1.1.0 (#3220) @dependabot[bot]

Bump commons-io:commons-io from 2.20.0 to 2.21.0 (#3217) @dependabot[bot]

Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.3.0 to 3.4.0 (#3214) @dependabot[bot]

Bump org.codehaus.plexus:plexus-java from 1.5.0 to 1.5.1 (#3218) @dependabot[bot]

Bump org.htmlunit:htmlunit from 4.16.0 to 4.18.0 (#3213) @dependabot[bot]

... (truncated)

Commits

968cb38 [maven-release-plugin] prepare release surefire-3.5.5
8e7dc41 Reapply "Replace runing external process and parsing output with simple Proce...
4ced57c Revert "Replace runing external process and parsing output with simple Proces…"
8496d9a Bump org.xmlunit:xmlunit-core from 2.10.4 to 2.11.0 (#3209)
68265e5 Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness (#3260)
0b19014 Replace runing external process and parsing output with simple ProcessHandle ...
688f8c4 Use PowerShell instead of WMIC for detecting zombie process on Windows (#3258)
e5c01a6 Build only by the latest Maven on Jenkins (#3255)
9c99e97 Fix Jenkin badges in README (#3254)
20930ea Bump parent from 44 to 47 (#3253)
Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-jar-plugin from 3.4.2 to 3.5.0

Release notes

Sourced from org.apache.maven.plugins:maven-jar-plugin's releases.

3.5.0

🚀 New features and improvements

Add new "attach" configuration parameter (3.x port of #482) (#483) @hgschmie

add Java-Version to MANIFEST.MF (#465) @hboutemy

🐛 Bug Fixes

Fix detecting java version for toolchains and JDK 1.8 (#500) @slawekjaranowski

Ignore stderr when parsing javac version from toolchain (#471) @jaredstehler

👻 Maintenance

Update site descriptor to 2.0.0 (#501) @slawekjaranowski

chore: remove junit3 references (#494) @slawekjaranowski

Migrate component injection to JSR-330 (#492) @slawekjaranowski

Add PR Automation to 3.x (#132) @slawekjaranowski

Improve release-drafter configuration (#128) @slawekjaranowski

Fix for Maven 4.0.0-rc-3 (#130) @slawekjaranowski

[MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#119) @Bukama

🔧 Build

Bump m-invoker-p to 3.9.1 for Java 25 (#480) @hboutemy

📦 Dependency updates

Bump commons-io:commons-io from 2.20.0 to 2.21.0 (#499) @dependabot[bot]

Bump org.codehaus.plexus:plexus-archiver from 4.10.3 to 4.10.4 (#498) @dependabot[bot]

Use maven-plugin-testing-harness version 3.4.0 (#491) @slawekjaranowski

Bump org.apache.maven.plugin-tools:maven-plugin-annotations from 3.15.1 to 3.15.2 (#488) @dependabot[bot]

Bump org.codehaus.plexus:plexus-archiver from 4.10.1 to 4.10.3 (#478) @dependabot[bot]

Bump org.codehaus.plexus:plexus-archiver from 4.10.0 to 4.10.1 (#464) @dependabot[bot]

Bump org.apache.maven.plugins:maven-plugins from 42 to 45 (#452) @dependabot[bot]

Bump org.apache.maven:maven-archiver from 3.6.2 to 3.6.4 (#461) @dependabot[bot]

Bump commons-io:commons-io from 2.19.0 to 2.20.0 (#457) @dependabot[bot]

Bump mavenVersion from 3.9.10 to 3.9.11 (#456) @dependabot[bot]

Bump mavenVersion from 3.9.9 to 3.9.10 (#146) @dependabot[bot]

Bump org.apache.maven.shared:file-management from 3.1.0 to 3.2.0 (#143) @dependabot[bot]

Bump mavenVersion from 3.6.3 to 3.9.9 (#107) @dependabot[bot]

Bump commons-io:commons-io from 2.18.0 to 2.19.0 (#140) @dependabot[bot]

Bump commons-io:commons-io from 2.16.1 to 2.18.0 (#114) @dependabot[bot]

Bump org.codehaus.plexus:plexus-archiver from 4.9.2 to 4.10.0 (#109) @dependabot[bot]

Commits

68d00f1 [maven-release-plugin] prepare release maven-jar-plugin-3.5.0
357b9bf Update site descriptor to 2.0.0
340249c Fix detecting java version for toolchains and JDK 1.8
06a6245 chore: remove junit3 references
d302b2c Bump commons-io:commons-io from 2.20.0 to 2.21.0
6081bdb Bump org.codehaus.plexus:plexus-archiver from 4.10.3 to 4.10.4
ef8ed4c Migrate component injection to JSR-330
704a35c Ignore stderr when parsing javac version from toolchain (#471)
0beb969 Use maven-plugin-testing-harness version 3.4.0
c2624c8 Bump org.apache.maven.plugin-tools:maven-plugin-annotations (#488)
Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-source-plugin from 3.3.1 to 3.4.0

Release notes

Sourced from org.apache.maven.plugins:maven-source-plugin's releases.

3.4.0

🐛 Bug Fixes

[MSOURCES-140] - fail only if re-attach different files (#24) @hboutemy

👻 Maintenance

Bump m-invoker-p to 3.9.1 (#251) @slachiewicz

Allow to manually execute release drafter (#58) @slawekjaranowski

GH Issues (Maven 3 branch) (#57) @Bukama

[MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#49) @Bukama

📦 Dependency updates

Use plexus-utils version from parent (#252) @slachiewicz

Bump commons-io:commons-io from 2.20.0 to 2.21.0 (#247) @dependabot[bot]

Bump org.codehaus.plexus:plexus-archiver from 4.10.3 to 4.10.4 (#248) @dependabot[bot]

Bump org.apache.maven:maven-archiver from 3.6.4 to 3.6.5 (#241) @dependabot[bot]

Bump org.codehaus.plexus:plexus-archiver from 4.10.1 to 4.10.3 (#242) @dependabot[bot]

Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.3.0 to 3.4.0 (#246) @dependabot[bot]

Bump mavenVersion from 3.2.5 to 3.9.11 (#221) @dependabot[bot]

Bump org.codehaus.plexus:plexus-archiver from 4.10.0 to 4.10.1 (#233) @dependabot[bot]

Bump org.apache.maven:maven-archiver from 3.6.3 to 3.6.4 (#229) @dependabot[bot]

Bump org.apache.maven.plugins:maven-plugins from 41 to 45 (#218) @dependabot[bot]

Bump org.codehaus.plexus:plexus-utils from 3.5.1 to 3.6.0 (#226) @dependabot[bot]

Bump commons-io:commons-io from 2.19.0 to 2.20.0 (#222) @dependabot[bot]

Bump commons-io:commons-io from 2.16.1 to 2.19.0 (#68) @dependabot[bot]

Bump org.codehaus.plexus:plexus-archiver from 4.9.2 to 4.10.0 (#63) @dependabot[bot]

Bump org.apache.maven:maven-archiver from 3.6.2 to 3.6.3 (#66) @dependabot[bot]

Bump commons-io:commons-io from 2.16.0 to 2.16.1 (#27) @dependabot[bot]

[MSOURCES-147] - Bump org.codehaus.plexus:plexus-archiver from 4.9.1 to 4.9.2 (#23) @dependabot[bot]

[MSOURCES-146] - Bump commons-io:commons-io from 2.11.0 to 2.16.0 (#25) @dependabot[bot]

[MSOURCES-145] - Bump org.apache.maven:maven-archiver from 3.6.1 to 3.6.2 (#26) @dependabot[bot]

Commits

ecf937a [maven-release-plugin] prepare release maven-source-plugin-3.4.0
95b3bf4 Revert "[maven-release-plugin] prepare for next development iteration"
7a9a770 [maven-release-plugin] prepare for next development iteration
292c1ce Use plexus-utils version from parent
bf79b71 Bump m-invoker-p to 3.9.1
4f3fcb9 Bump commons-io:commons-io from 2.20.0 to 2.21.0
a867442 Bump org.codehaus.plexus:plexus-archiver from 4.10.3 to 4.10.4
51c66ac Bump org.apache.maven:maven-archiver from 3.6.4 to 3.6.5
267df46 Bump org.codehaus.plexus:plexus-archiver from 4.10.1 to 4.10.3
ef85324 Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness
Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-javadoc-plugin from 3.8.0 to 3.12.0

Release notes

Sourced from org.apache.maven.plugins:maven-javadoc-plugin's releases.

3.12.0

💥 Breaking changes

remove fix mojo (#1263) @elharo

detectOfflineLinks is now false per default for all jar mojo issue #1258 (#1259) @olamy

🐛 Bug Fixes

Fix legacyMode (#1265) @fridrich

Fix package {...} does not exist in legacyMode (#1243) @JackPGreen

Ensure UTF-8 charset is used to avoid IllegalArgumentException: Null charset name (#1245) @elharo

Remove Javadoc 1.4+ / -1.1 switch related warning (#1240) @perceptron8

👻 Maintenance

protect 3.8.x branch (#1238) @hboutemy

feat: enable prevent branch protection rules (#1228) @sparsick

📦 Dependency updates

Bump org.codehaus.mojo:mrm-maven-plugin from 1.6.0 to 1.7.0 (#1257) @dependabot[bot]

3.11.3

🚨 Removed

Remove workaround for long patched CVE in javadoc (#388) @elharo

🚀 New features and improvements

Issue #369 Support --no-fonts option per default for jdk 23+ (#375) @olamy

🐛 Bug Fixes

Make the legacyMode consistent (Filter out all of the module-info.java files in legacy mode, do not use --source-path in legacy mode) (#1217) @fridrich

[MJAVADOC-826] - Don't try to modify project source roots (#358) @oehme

📝 Documentation updates

Correct javadoc-no-fork description on index-page (#368) @Bukama

[MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#360) @Bukama

(doc) Close links tag in links parameter javadoc example (#355) @sixcorners

👻 Maintenance

Be consistent about data encoding when copying files (#1215) @fridrich

Clean up JavadocUtilTest (#1210) @elharo

Use Java 7 relativization instead of hand-rolled code (#385) @elharo

Rephrase source code fix interactive messages for clarity (#390) @elharo

... (truncated)

Commits

2a06bed [maven-release-plugin] prepare release maven-javadoc-plugin-3.12.0
a71ecf9 bump version 3.12.0-SNAPSHOT
88f2b71 [maven-release-plugin] prepare for next development iteration
7e18956 [maven-release-plugin] prepare release maven-javadoc-plugin-3.11.4
c11b76c In legacyMode, don't use -sourcepath, unless excludePackageNames is not empty...
bc9904b remove fix mojo (#1263)
f310135 Fix package {...} does not exist in legacyMode (#1243)
c8270f9 detectOfflineLinks is now false per default for all jar mojo issue #1258 ...
953e609 Delete flaky test (#1260)
2bba7a4 Bump org.codehaus.mojo:mrm-maven-plugin from 1.6.0 to 1.7.0
Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-gpg-plugin from 3.2.4 to 3.2.8

Release notes

Sourced from org.apache.maven.plugins:maven-gpg-plugin's releases.

3.2.8

🐛 Bug Fixes

Make empty classifier null (not empty string) (#287) @cstamas

📝 Documentation updates

[MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#129) @Bukama

Describe how to prime a specific GPG key (#128) @kwin

👻 Maintenance

Enable GitHub issues (#134) @Bukama

Prefer Guice constructor injection (#126) @elharo

📦 Dependency updates

Update parent POM to 45 (#284) @cstamas

Bump bouncycastleVersion from 1.78.1 to 1.80 (#127) @dependabot[bot]

Bump commons-io:commons-io from 2.18.0 to 2.19.0 (#133) @dependabot[bot]

Bump org.apache.maven.plugins:maven-invoker-plugin from 3.8.0 to 3.9.0 (#125) @dependabot[bot]

Bump org.simplify4u.plugins:pgpverify-maven-plugin from 1.18.2 to 1.19.1 (#131) @dependabot[bot]

Bump commons-io:commons-io from 2.17.0 to 2.18.0 (#124) @dependabot[bot]

3.2.7

Fixes a lingering issue affecting whole 3.2.x lineage, that resulted in "bad passphrase" on Windows OS with GPG signer (see MGPG-136 for details).

What's Changed

[MGPG-136] Windows passphrase corruption by @cstamas in apache/maven-gpg-plugin#120

Bump com.kohlschutter.junixsocket:junixsocket-core from 2.10.0 to 2.10.1 by @dependabot in apache/maven-gpg-plugin#121

Bump commons-io:commons-io from 2.16.1 to 2.17.0 by @dependabot in apache/maven-gpg-plugin#119

Full Changelog: apache/maven-gpg-plugin@maven-gpg-plugin-3.2.6...maven-gpg-plugin-3.2.7

3.2.6

Release Notes - Maven GPG Plugin - Version 3.2.6

... (truncated)

Commits

8a46455 [maven-release-plugin] prepare release maven-gpg-plugin-3.2.8
7012821 Fix issueManagement, ciManagement system and url
a9a8c84 Make empty classifier null (not empty string) (#287)
a8368b0 Add .mvn
f0e45e0 Update parent POM to 45 (#284)
cb1236c Bump bouncycastleVersion from 1.78.1 to 1.80 (#127)
5377a10 Bump commons-io:commons-io from 2.18.0 to 2.19.0 (#133)
8b63932 Bump org.apache.maven.plugins:maven-invoker-plugin from 3.8.0 to 3.9.0 (#125)
54ea518 Bump org.simplify4u.plugins:pgpverify-maven-plugin from 1.18.2 to 1.19.1
a6a412d Remove old JIRA issue link
Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-invoker-plugin from 3.8.0 to 3.10.0

Release notes

Sourced from org.apache.maven.plugins:maven-invoker-plugin's releases.

3.10.0

🚀 New features and improvements

Implement simply retry mechanism for failed build jobs (#723) @slawekjaranowski

Add support for disabling project cloning with "none" value in cloneProjectsTo (#720) @slawekjaranowski

Support for multiple pre-build and post-build scripts for one test (#716) @slawekjaranowski

📝 Documentation updates

Remove old incompatibility notice about report file name from site documentation (#717) @slawekjaranowski

docs: Clarify that toolchains can be selected by a version range. (#710) @nielsbasjes

Improve wording of some plugin parameters (#690) @ascopes

👻 Maintenance

Cleanups - Remove outdated invoker properties configurations in ITs (#724) @slawekjaranowski

Simplify usage of toolchains (#713) @slawekjaranowski

Refactor file utils usage and improve dependency configuration (#715) @slawekjaranowski

JUnit Jupiter best practices (#691) @slachiewicz

PlexusFileUtils Refaster recipes (#692) @slachiewicz

chore: delete junit 3 references (#688) @sparsick

feat: enable prevent branch protection rules (#683) @sebtiem

Use fluido-skin and site-plugin version from parent (#664) @slawekjaranowski

📦 Dependency updates

Override plexus-utils version to 4.0.3 due to security fix (#725) @slawekjaranowski

Bump org.apache.maven.shared:maven-script-interpreter from 1.6 to 1.7 (#727) @dependabot[bot]

Bump mavenVersion from 3.9.14 to 3.9.15 (#726) @dependabot[bot]

Bump org.apache.groovy:groovy-bom from 4.0.30 to 4.0.31 (#719) @dependabot[bot]

Bump org.apache.maven.doxia:doxia-sink-api from 2.0.0 to 2.1.0 (#714) @dependabot[bot]

Bump mavenVersion from 3.9.13 to 3.9.14 (#711) @dependabot[bot]

Bump mavenVersion from 3.9.12 to 3.9.13 (#709) @dependabot[bot]

Bump commons-codec:commons-codec from 1.20.0 to 1.21.0 (#706) @dependabot[bot]

Bump org.assertj:assertj-core from 3.27.6 to 3.27.7 (#705) @dependabot[bot]

Bump org.apache.groovy:groovy-bom from 4.0.29 to 4.0.30 (#704) @dependabot[bot]

Bump org.apache.maven.plugins:maven-plugins from 46 to 47 (#703) @dependabot[bot]

Bump org.apache.maven.plugins:maven-plugins from 45 to 46 (#702) @dependabot[bot]

Bump mavenVersion from 3.9.11 to 3.9.12 (#701) @dependabot[bot]

Migrate from commons-collections to commons-collections4 (#700) @slachiewicz

Bump org.apache.groovy:groovy-bom from 4.0.28 to 4.0.29 (#698) @dependabot[bot]

Bump m-invoker-p to 3.9.1 (#697) @slachiewicz

Bump org.codehaus.plexus:plexus-i18n from 1.0.0 to 1.1.0 (#694) @dependabot[bot]

Bump org.codehaus.plexus:plexus-interpolation from 1.28 to 1.29 (#695) @dependabot[bot]

Bump commons-io:commons-io from 2.20.0 to 2.21.0 (#696) @dependabot[bot]

Bump commons-codec:commons-codec from 1.19.0 to 1.20.0 (#693) @dependabot[bot]

Bump org.assertj:assertj-core from 3.27.4 to 3.27.6 (#687) @dependabot[bot]

Bump org.codehaus.plexus:plexus-i18n from 1.0-beta-10 to 1.0.0 (#682) @dependabot[bot]

Bump org.apache.groovy:groovy-bom from 4.0.27 to 4.0.28 (#669) @dependabot[bot]

... (truncated)

Commits

2c9e5f8 [maven-release-plugin] prepare release maven-invoker-plugin-3.10.0
3d2112e Implement simply retry mechanism for failed build jobs (#723)
037c5f5 Override plexus-utils version to 4.0.3 due to security fix
261cd42 Bump org.apache.maven.shared:maven-script-interpreter from 1.6 to 1.7 (#727)
ddc3123 Bump mavenVersion from 3.9.14 to 3.9.15 (#726)
1cd272e Cleanups - Remove outdated invoker properties configurations in ITs
3cc9406 Add support for disabling project cloning with "none" value in `cloneProjects...
1b371bd Support for multiple pre-build and post-build scripts for one test
099ca83 Bump org.apache.groovy:groovy-bom from 4.0.30 to 4.0.31 (#719)
1620499 Remove old incompatibility notice about report file name from site documentation
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the maven-plugins group with 7 updates: | Package | From | To | | --- | --- | --- | | [org.apache.maven.plugins:maven-compiler-plugin](https://github.com/apache/maven-compiler-plugin) | `3.14.1` | `3.15.0` | | [org.apache.maven.plugins:maven-surefire-plugin](https://github.com/apache/maven-surefire) | `3.1.2` | `3.5.5` | | [org.apache.maven.plugins:maven-jar-plugin](https://github.com/apache/maven-jar-plugin) | `3.4.2` | `3.5.0` | | [org.apache.maven.plugins:maven-source-plugin](https://github.com/apache/maven-source-plugin) | `3.3.1` | `3.4.0` | | [org.apache.maven.plugins:maven-javadoc-plugin](https://github.com/apache/maven-javadoc-plugin) | `3.8.0` | `3.12.0` | | [org.apache.maven.plugins:maven-gpg-plugin](https://github.com/apache/maven-gpg-plugin) | `3.2.4` | `3.2.8` | | [org.apache.maven.plugins:maven-invoker-plugin](https://github.com/apache/maven-invoker-plugin) | `3.8.0` | `3.10.0` | Updates `org.apache.maven.plugins:maven-compiler-plugin` from 3.14.1 to 3.15.0 - [Release notes](https://github.com/apache/maven-compiler-plugin/releases) - [Commits](apache/maven-compiler-plugin@maven-compiler-plugin-3.14.1...maven-compiler-plugin-3.15.0) Updates `org.apache.maven.plugins:maven-surefire-plugin` from 3.1.2 to 3.5.5 - [Release notes](https://github.com/apache/maven-surefire/releases) - [Commits](apache/maven-surefire@surefire-3.1.2...surefire-3.5.5) Updates `org.apache.maven.plugins:maven-jar-plugin` from 3.4.2 to 3.5.0 - [Release notes](https://github.com/apache/maven-jar-plugin/releases) - [Commits](apache/maven-jar-plugin@maven-jar-plugin-3.4.2...maven-jar-plugin-3.5.0) Updates `org.apache.maven.plugins:maven-source-plugin` from 3.3.1 to 3.4.0 - [Release notes](https://github.com/apache/maven-source-plugin/releases) - [Commits](apache/maven-source-plugin@maven-source-plugin-3.3.1...maven-source-plugin-3.4.0) Updates `org.apache.maven.plugins:maven-javadoc-plugin` from 3.8.0 to 3.12.0 - [Release notes](https://github.com/apache/maven-javadoc-plugin/releases) - [Commits](apache/maven-javadoc-plugin@maven-javadoc-plugin-3.8.0...maven-javadoc-plugin-3.12.0) Updates `org.apache.maven.plugins:maven-gpg-plugin` from 3.2.4 to 3.2.8 - [Release notes](https://github.com/apache/maven-gpg-plugin/releases) - [Commits](apache/maven-gpg-plugin@maven-gpg-plugin-3.2.4...maven-gpg-plugin-3.2.8) Updates `org.apache.maven.plugins:maven-invoker-plugin` from 3.8.0 to 3.10.0 - [Release notes](https://github.com/apache/maven-invoker-plugin/releases) - [Commits](apache/maven-invoker-plugin@maven-invoker-plugin-3.8.0...maven-invoker-plugin-3.10.0) --- updated-dependencies: - dependency-name: org.apache.maven.plugins:maven-compiler-plugin dependency-version: 3.15.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-plugins - dependency-name: org.apache.maven.plugins:maven-surefire-plugin dependency-version: 3.5.5 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-plugins - dependency-name: org.apache.maven.plugins:maven-jar-plugin dependency-version: 3.5.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-plugins - dependency-name: org.apache.maven.plugins:maven-source-plugin dependency-version: 3.4.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-plugins - dependency-name: org.apache.maven.plugins:maven-javadoc-plugin dependency-version: 3.12.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-plugins - dependency-name: org.apache.maven.plugins:maven-gpg-plugin dependency-version: 3.2.8 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: maven-plugins - dependency-name: org.apache.maven.plugins:maven-invoker-plugin dependency-version: 3.10.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-plugins ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Apr 29, 2026

jmesnil approved these changes Apr 30, 2026

View reviewed changes

jmesnil merged commit 2752fa3 into main Apr 30, 2026
13 of 16 checks passed

jmesnil deleted the dependabot/maven/maven-plugins-e557c879b7 branch April 30, 2026 07:24

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore: bump the maven-plugins group with 7 updates#830

chore: bump the maven-plugins group with 7 updates#830
jmesnil merged 1 commit intomainfrom
dependabot/maven/maven-plugins-e557c879b7

dependabot Bot commented on behalf of github Apr 29, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

dependabot Bot commented on behalf of github Apr 29, 2026

3.15.0

🐛 Bug Fixes

👻 Maintenance

📦 Dependency updates

3.5.5

🚀 New features and improvements

🐛 Bug Fixes

📝 Documentation updates

👻 Maintenance

🔧 Build

📦 Dependency updates

3.5.0

🚀 New features and improvements

🐛 Bug Fixes

👻 Maintenance

🔧 Build

📦 Dependency updates

3.4.0

🐛 Bug Fixes

👻 Maintenance

📦 Dependency updates

3.12.0

💥 Breaking changes

🐛 Bug Fixes

👻 Maintenance

📦 Dependency updates

3.11.3

🚨 Removed

🚀 New features and improvements

🐛 Bug Fixes

📝 Documentation updates

👻 Maintenance

3.2.8

🐛 Bug Fixes

📝 Documentation updates

👻 Maintenance

📦 Dependency updates

3.2.7

What's Changed

3.2.6

Release Notes - Maven GPG Plugin - Version 3.2.6

3.10.0

🚀 New features and improvements

📝 Documentation updates

👻 Maintenance

📦 Dependency updates

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant