Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.

Config Migration Needed

• Select this checkbox to let Renovate create an automated Config Migration PR.

Open

The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.

• chore(deps): pin dependencies (master) (actions/cache, actions/checkout, actions/setup-java, codecov/codecov-action, entur/gha-maven-central)
• chore(deps): update all non-major dependencies (master) (actions/upload-artifact, org.slf4j:slf4j-simple, org.junit.jupiter:junit-jupiter-engine, org.junit.jupiter:junit-jupiter-api, org.jreleaser:jreleaser-maven-plugin, org.jacoco:jacoco-maven-plugin, org.sonarsource.scanner.maven:sonar-maven-plugin, org.owasp:dependency-check-maven, org.apache.maven.plugins:maven-site-plugin, org.apache.maven.plugins:maven-enforcer-plugin, org.apache.maven.plugins:maven-surefire-plugin)
• chore(deps): update codecov/codecov-action action from vv6.0.2 to v7 (master)
• chore(deps): update maven-deploy-plugin.version from v2.8.2 to v3 (master)
• chore(deps): update maven-install-plugin.version from v2.5.2 to v3 (master)
• fix(deps): update guava monorepo from v32.1.3-jre to v33 (master)
• chore(deps): pin dependencies (3.x) (actions/cache, actions/checkout, actions/setup-java, codecov/codecov-action, entur/gha-maven-central)
• chore(deps): update all non-major dependencies (3.x) (actions/upload-artifact, org.slf4j:slf4j-simple, org.junit.jupiter:junit-jupiter-engine, org.junit.jupiter:junit-jupiter-api, org.jreleaser:jreleaser-maven-plugin, org.jacoco:jacoco-maven-plugin, org.sonarsource.scanner.maven:sonar-maven-plugin, org.owasp:dependency-check-maven, org.apache.maven.plugins:maven-site-plugin, org.apache.maven.plugins:maven-enforcer-plugin, org.apache.maven.plugins:maven-surefire-plugin)
• chore(deps): update actions/cache action from vv4.3.0 to v5 (3.x)
• chore(deps): update actions/checkout action from vv5.0.1 to v6 (3.x)
• chore(deps): update codecov/codecov-action action from vv5.5.5 to v7 (3.x)
• chore(deps): update dependency org.apache.maven.wagon:wagon-ssh-external from v2.12 to v3 (3.x)
• chore(deps): update maven-deploy-plugin.version from v2.8.2 to v3 (3.x)
• chore(deps): update maven-install-plugin.version from v2.5.2 to v3 (3.x)
• fix(deps): update guava monorepo from v32.1.3-jre to v33 (3.x)
• Click on this checkbox to rebase all open PRs at once

PR Closed (Blocked)

The following updates are blocked by an existing closed PR. To recreate the PR, click on a checkbox below.

• chore(deps): update dependency org.apache.maven.wagon:wagon-ssh-external from v2.12 to v3 (master)

Detected Dependencies

Branch 3.x

github-actions (2)

.github/workflows/pr.yml (5)

• actions/checkout v5 → [Updates: v5.0.1, v6]
• actions/setup-java v5 → [Updates: v5.3.0]
• actions/cache v4 → [Updates: v4.3.0, v5]
• codecov/codecov-action v5 → [Updates: v5.5.5, v7]
• ubuntu 24.04

.github/workflows/push.yml (6)

• actions/checkout v5 → [Updates: v5.0.1, v6]
• actions/setup-java v5 → [Updates: v5.3.0]
• actions/cache v4 → [Updates: v4.3.0, v5]
• actions/upload-artifact v7.0.0 → [Updates: v7.0.1]
• entur/gha-maven-central v1 → [Updates: v1.3.1]
• ubuntu 24.04

maven (1)

pom.xml (25)

• com.google.guava:guava 32.1.3-jre → [Updates: 33.6.0-jre]
• org.junit.jupiter:junit-jupiter-api 6.0.3 → [Updates: 6.1.0]
• org.junit.jupiter:junit-jupiter-engine 6.0.3 → [Updates: 6.1.0]
• org.assertj:assertj-core 3.27.7
• org.slf4j:slf4j-simple 2.0.17 → [Updates: 2.0.18]
• org.apache.maven.wagon:wagon-ssh-external 2.12 → [Updates: 3.5.3]
• org.apache.maven.plugins:maven-jar-plugin 3.5.0
• org.apache.maven.plugins:maven-clean-plugin 3.5.0
• org.apache.maven.plugins:maven-install-plugin 2.5.2 → [Updates: 3.1.4]
• org.apache.maven.plugins:maven-site-plugin 3.21.0 → [Updates: 3.22.0]
• org.apache.maven.plugins:maven-resources-plugin 3.5.0
• org.apache.maven.plugins:maven-deploy-plugin 2.8.2 → [Updates: 3.1.4]
• org.apache.maven.plugins:maven-source-plugin 3.4.0
• org.apache.maven.plugins:maven-surefire-plugin 3.5.5 → [Updates: 3.5.6]
• org.jacoco:jacoco-maven-plugin 0.8.14 → [Updates: 0.8.15]
• org.apache.maven.plugins:maven-compiler-plugin 3.15.0
• org.codehaus.plexus:plexus-compiler-javac 2.16.2
• com.amashchenko.maven.plugin:gitflow-maven-plugin 1.21.0
• org.jreleaser:jreleaser-maven-plugin 1.23.0 → [Updates: 1.24.0]
• org.apache.maven.plugins:maven-enforcer-plugin 3.6.2 → [Updates: 3.6.3]
• org.owasp:dependency-check-maven 12.2.0 → [Updates: 12.2.2]
• com.hubspot.maven.plugins:prettier-maven-plugin 0.22
• org.sonarsource.scanner.maven:sonar-maven-plugin 5.5.0.6356 → [Updates: 5.7.0.6970]
• com.hubspot.maven.plugins:prettier-maven-plugin 0.22
• org.apache.maven.plugins:maven-javadoc-plugin 3.12.0

Branch master

github-actions (2)

.github/workflows/pr.yml (5)

• actions/checkout v6 → [Updates: v6.0.3]
• actions/setup-java v5 → [Updates: v5.3.0]
• actions/cache v5 → [Updates: v5.0.5]
• codecov/codecov-action v6 → [Updates: v6.0.2, v7]
• ubuntu 24.04

.github/workflows/push.yml (6)

• actions/checkout v6 → [Updates: v6.0.3]
• actions/setup-java v5 → [Updates: v5.3.0]
• actions/cache v5 → [Updates: v5.0.5]
• actions/upload-artifact v7.0.0 → [Updates: v7.0.1]
• entur/gha-maven-central v1 → [Updates: v1.3.1]
• ubuntu 24.04

maven (1)

pom.xml (26)

• org.entur:netex-java-model 2.0.16
• com.google.guava:guava 32.1.3-jre → [Updates: 33.6.0-jre]
• org.junit.jupiter:junit-jupiter-api 6.0.3 → [Updates: 6.1.0]
• org.junit.jupiter:junit-jupiter-engine 6.0.3 → [Updates: 6.1.0]
• org.assertj:assertj-core 3.27.7
• org.slf4j:slf4j-simple 2.0.17 → [Updates: 2.0.18]
• org.apache.maven.wagon:wagon-ssh-external 2.12 → [Updates: 3.5.3]
• org.apache.maven.plugins:maven-jar-plugin 3.5.0
• org.apache.maven.plugins:maven-clean-plugin 3.5.0
• org.apache.maven.plugins:maven-install-plugin 2.5.2 → [Updates: 3.1.4]
• org.apache.maven.plugins:maven-site-plugin 3.21.0 → [Updates: 3.22.0]
• org.apache.maven.plugins:maven-resources-plugin 3.5.0
• org.apache.maven.plugins:maven-deploy-plugin 2.8.2 → [Updates: 3.1.4]
• org.apache.maven.plugins:maven-source-plugin 3.4.0
• org.apache.maven.plugins:maven-surefire-plugin 3.5.5 → [Updates: 3.5.6]
• org.jacoco:jacoco-maven-plugin 0.8.14 → [Updates: 0.8.15]
• org.apache.maven.plugins:maven-compiler-plugin 3.15.0
• org.codehaus.plexus:plexus-compiler-javac 2.16.2
• com.amashchenko.maven.plugin:gitflow-maven-plugin 1.21.0
• org.jreleaser:jreleaser-maven-plugin 1.23.0 → [Updates: 1.24.0]
• org.apache.maven.plugins:maven-enforcer-plugin 3.6.2 → [Updates: 3.6.3]
• org.owasp:dependency-check-maven 12.2.0 → [Updates: 12.2.2]
• com.hubspot.maven.plugins:prettier-maven-plugin 0.22
• org.sonarsource.scanner.maven:sonar-maven-plugin 5.5.0.6356 → [Updates: 5.7.0.6970]
• com.hubspot.maven.plugins:prettier-maven-plugin 0.22
• org.apache.maven.plugins:maven-javadoc-plugin 3.12.0

---

• Check this box to trigger a request for Renovate to run again on this repository