Bump the maven group with 10 updates

[dependabot]

Bumps the maven group with 10 updates:

Package	From	To
com.google.errorprone:error_prone_core	2.26.1	2.27.0
org.apache.maven.plugins:maven-artifact-plugin	3.5.0	3.5.1
org.apache.maven.plugins:maven-jar-plugin	3.3.0	3.4.1
org.apache.maven.plugins:maven-install-plugin	3.1.1	3.1.2
org.apache.maven.plugins:maven-source-plugin	3.3.0	3.3.1
org.apache.maven.plugins:maven-gpg-plugin	3.2.2	3.2.4
com.github.siom79.japicmp:japicmp-maven-plugin	0.20.0	0.21.1
com.google.errorprone:error_prone_annotations	2.26.1	2.27.0
com.guardsquare:proguard-core	9.1.1	9.1.3
org.apache.maven.plugins:maven-shade-plugin	3.5.2	3.5.3

Updates com.google.errorprone:error_prone_core from 2.26.1 to 2.27.0

Release notes

Sourced from com.google.errorprone:error_prone_core's releases.

Error Prone 2.27.0

New checks:

• ClassInitializationDeadlock detects class initializers that reference subtypes of the current class, which can result in deadlocks.
• MockitoDoSetup suggests using when/thenReturn over doReturn/when for additional type safety.
• VoidUsed suggests using a literal null instead of referring to a Void-typed variable.

Modified checks:

• TruthSelfEquals has been renamed and generalized as SelfAssertion
• RedundantSetterCall has been improved, and enabled as an error oby default

Closed issues: #4291. #4308, #4343, #4320

Full Changelog: google/error-prone@v2.26.1...v2.27.0

Commits

• ebe0a01 Release Error Prone 2.27.0
• fd9b826 Remove a very literal change-detector test, and move the comment to the produ...
• f289d9e VoidUsed: flag Void variables being used, where they can simply be repl...
• 3ee6f41 Fix for a crash in RedundantSetterCall.
• 92c106d Encourage when/thenReturn over doReturn/when.
• 07c1a7c Stop mentioning @Var in[]
• 9d66272 Correction to UseCorrectAssertInTests.
• a6ab21a Fix a crash in JUnitIncompatibleType
• 5a7b8d9 NearbyCallers: scan the body of expression lambdas.
• 53d787c Don't suggest ImmutableSet if ImmutableList is unused.
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-artifact-plugin from 3.5.0 to 3.5.1

Commits

• a05dc6d [maven-release-plugin] prepare release maven-artifact-plugin-3.5.1
• 8532aed Improve error handling when copying aggregate file
• aee743d add quarkus-extension-maven-plugin
• d3e854a moditect 1.2.0.Final independant from timezone
• f3c8bec Maven Shade Plugin released
• d5294a1 add cyclonedx-maven-plugin
• 7db1986 disable fail on MojoHaus jaxb2-m-p
• c0ab513 replace reactorProjects pseudo-parameter with session.getProjects()
• dfc962f [MARTIFACT-53] warn only if timestamp not defined in reactor
• f3590ab moditect 1.1.0 released
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-jar-plugin from 3.3.0 to 3.4.1

Release notes

Sourced from org.apache.maven.plugins:maven-jar-plugin's releases.

3.4.1

🐛 Bug Fixes

• [MJAR-307] - Wrong version of commons-io cause a ClassNotFound o.a.commons.io.file.attribute.FileTimes (#83) @​slawekjaranowski

📦 Dependency updates

• [MJAR-308] - Bump org.apache.maven.plugins:maven-plugins from 41 to 42 (#85) @​dependabot

3.4.0

🚀 New features and improvements

• [MJAR-296] - Allow including files excluded by default. (#67) @​redzi
• [MJAR-302] - Require Maven 3.6.3 (#77) @​slawekjaranowski
• [MJAR-292] - Detect MRJAR and add Multi-Release manifest entry (#57) @​jorsol

🐛 Bug Fixes

• [MJAR-62] - Set Build-Jdk according to used toolchain (#73) @​slawekjaranowski

📦 Dependency updates

• [MJAR-306] - Use properties for plugins versions in LifecycleMapping (#82) @​slawekjaranowski
• Bump org.junit:junit-bom from 5.10.1 to 5.10.2 (#74) @​dependabot
• [MJAR-298] - Update Maven-Archiver to 3.6.2 (#78) @​slawekjaranowski
• Bump apache/maven-gh-actions-shared from 2 to 4 (#72) @​dependabot
• Bump commons-io:commons-io from 2.14.0 to 2.15.1 (#68) @​dependabot
• [MJAR-297] - Update Parent to 40 (#64) @​jorsol
• [MJAR-298] - Update Maven-Archiver to 3.6.1 (#65) @​jorsol
• [MJAR-293] - Update Parent to 39 (#59) @​jorsol

👻 Maintenance

• [MJAR-304] - Refresh download page (#80) @​slawekjaranowski
• [MJAR-303] - Cleanup declared dependencies (#79) @​slawekjaranowski
• Remove dependency on plexus (#63) @​elharo

Commits

• 8b29adc [maven-release-plugin] prepare release maven-jar-plugin-3.4.1
• 325b299 [MJAR-308] Bump org.apache.maven.plugins:maven-plugins from 41 to 42 (#85)
• 52111cc [MJAR-307] Wrong version of commons-io cause a ClassNotFound o.a.commons.io.f...
• 902d4c5 [maven-release-plugin] prepare for next development iteration
• 992f44a [maven-release-plugin] prepare release maven-jar-plugin-3.4.0
• 5e31b99 [MJAR-296] Allow including files excluded by default. (#67)
• ddfb635 [MJAR-306] Use properties for plugins versions in LifecycleMapping
• aeffa39 [MJAR-304] Refresh download page
• ee85d59 [MJAR-303] Cleanup declared dependencies
• 845c120 Bump org.junit:junit-bom from 5.10.1 to 5.10.2
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-install-plugin from 3.1.1 to 3.1.2

Release notes

Sourced from org.apache.maven.plugins:maven-install-plugin's releases.

3.1.2

Release Notes - Maven Install Plugin - Version 3.1.2

---

What's Changed

• [MNG-6829] Replace StringUtils#isEmpty(String) & #isNotEmpty(String) by @​timtebeek in apache/maven-install-plugin#58
• [MINSTALL-197] Update to parent 41, cleanup by @​cstamas in apache/maven-install-plugin#61
• [MINSTALL-193] Parent 42, min Maven 3.6.3 by @​cstamas in apache/maven-install-plugin#64

New Contributors

• @​timtebeek made their first contribution in apache/maven-install-plugin#58

Full Changelog: apache/maven-install-plugin@maven-install-plugin-3.1.1...maven-install-plugin-3.1.2

Commits

• e1494c1 [maven-release-plugin] prepare release maven-install-plugin-3.1.2
• 6712ae8 Remove workaround, handle it centrally
• 1fa847f Bump workflow
• bdc93d5 Quickfix: move to zulu
• 7b9bf51 [MINSTALL-193] Parent 42, min Maven 3.6.3 (#64)
• e914367 [MINSTALL-195] Include artifactId in InstallMojo#processProject messages
• 3ebb448 [MINSTALL-197] Update to parent 41, cleanup (#61)
• 30d2b53 [MINSTALL-192] - Code cleanups
• 429ad5b [MNG-6829] Replace StringUtils#isEmpty(String) & #isNotEmpty(String) (#58)
• f6377c4 configure notifications
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-source-plugin from 3.3.0 to 3.3.1

Commits

• f80596e [maven-release-plugin] prepare release maven-source-plugin-3.3.1
• 7626998 Bump apache/maven-gh-actions-shared from 3 to 4
• 83c963c Bump org.apache.maven.plugins:maven-plugins from 39 to 41 (#18)
• 40ae495 Bump org.codehaus.plexus:plexus-archiver from 4.8.0 to 4.9.1 (#20)
• 073462b Bump org.apache.maven:maven-archiver from 3.6.0 to 3.6.1 (#21)
• 0b1c823 Fix typos in AbstractSourceJarMojo exception
• 099c65a [MSOURCES-142] Bump org.codehaus.plexus:plexus-archiver from 4.7.1 to 4.8.0 (...
• 1edeea4 [MSOURCES-139] Fix typo in AbstractSourceJarMojo exception
• 436966e [maven-release-plugin] prepare for next development iteration
• See full diff in compare view

Updates org.apache.maven.plugins:maven-gpg-plugin from 3.2.2 to 3.2.4

Release notes

Sourced from org.apache.maven.plugins:maven-gpg-plugin's releases.

3.2.4

Release Notes - Maven GPG Plugin - Version 3.2.4

---

• [MGPG-125] - Fix "bestPractices" (#95) @​cstamas

📦 Dependency updates

• Bump commons-io:commons-io from 2.16.0 to 2.16.1 (#94) @​dependabot

3.2.3

Release Notes - Maven GPG Plugin - Version 3.2.3

... (truncated)

Commits

• 789149e [maven-release-plugin] prepare release maven-gpg-plugin-3.2.4
• 893aedc [MGPG-125] Fix "bestPractices" (#95)
• b6f0324 [MGPG-126] Bump commons-io:commons-io from 2.16.0 to 2.16.1 (#94)
• 3c5878b [maven-release-plugin] prepare for next development iteration
• 89b91a4 [maven-release-plugin] prepare release maven-gpg-plugin-3.2.3
• fc2efa3 [MGPG-123][MGPG-124] Dependency upgrades (#93)
• 50222d3 [MGPG-120] New mojo sign-deployed (#88)
• a6c3a09 [MGPG-122] Bump org.apache.maven.plugins:maven-invoker-plugin from 3.6.0 to 3...
• 78f5e37 [MGPG-121] Return the workaround for pseudo security (#90)
• 582df74 [MGPG-117] Improve passphrase handling (#86)
• Additional commits viewable in compare view

Updates com.github.siom79.japicmp:japicmp-maven-plugin from 0.20.0 to 0.21.1

Commits

• 54d3d80 [maven-release-plugin] prepare release japicmp-base-0.21.1
• 14f539a upgraded version in *.md files to 0.21.1
• dd33ea5 ReleaseNotes.md
• 66dddc6 Merge pull request #396 from guillermocalvo/expand-test-coverage-for-annotati...
• 46f77ae Expand test coverage for compatibility changes related to annotations
• 599da82 #395: checkIfAnnotationsChanged() no longer tracks changes of the annotation ...
• 278d5a9 Merge remote-tracking branch 'origin/master'
• e044db4 maven-site Action
• c6081d2 [maven-release-plugin] prepare for next development iteration
• 7dacdf1 [maven-release-plugin] prepare release japicmp-base-0.21.0
• Additional commits viewable in compare view

Updates com.google.errorprone:error_prone_annotations from 2.26.1 to 2.27.0

Release notes

Sourced from com.google.errorprone:error_prone_annotations's releases.

Error Prone 2.27.0

New checks:

• ClassInitializationDeadlock detects class initializers that reference subtypes of the current class, which can result in deadlocks.
• MockitoDoSetup suggests using when/thenReturn over doReturn/when for additional type safety.
• VoidUsed suggests using a literal null instead of referring to a Void-typed variable.

Modified checks:

• TruthSelfEquals has been renamed and generalized as SelfAssertion
• RedundantSetterCall has been improved, and enabled as an error oby default

Closed issues: #4291. #4308, #4343, #4320

Full Changelog: google/error-prone@v2.26.1...v2.27.0

Commits

• ebe0a01 Release Error Prone 2.27.0
• fd9b826 Remove a very literal change-detector test, and move the comment to the produ...
• f289d9e VoidUsed: flag Void variables being used, where they can simply be repl...
• 3ee6f41 Fix for a crash in RedundantSetterCall.
• 92c106d Encourage when/thenReturn over doReturn/when.
• 07c1a7c Stop mentioning @Var in[]
• 9d66272 Correction to UseCorrectAssertInTests.
• a6ab21a Fix a crash in JUnitIncompatibleType
• 5a7b8d9 NearbyCallers: scan the body of expression lambdas.
• 53d787c Don't suggest ImmutableSet if ImmutableList is unused.
• Additional commits viewable in compare view

Updates com.guardsquare:proguard-core from 9.1.1 to 9.1.3

Release notes

Sourced from com.guardsquare:proguard-core's releases.

9.1.3

Version 9.1.3

Kotlin support

• Add support for processing Kotlin 2.0 metadata.
• Update to stable version of the Kotlin metadata library.

9.1.2

Java support

• Update maximum supported Java class version to 66.65535 (Java 22). (#127)

API changes

• Remove deprecated ReferenceValueFactory, ParticularReferenceValueFactory should be used instead.
• Deprecate methods in ValueFactory taking an Object as parameter. The alternatives using ParticularObject should be used instead.

Improved

• Add support for selective parameter reconstruction to define which methods should have their calls evaluated.
• Refactor ExecutingInvocationUnit to be customizable using executors. Improve checking whether method instance should be replaced in stack and variables.
• Support execution of methods that operate on 1D arrays of all primitive and reference types with ReflectionExecutor.
• Use runtime type instead of static type when possible in ExecutingInvocationUnit.
• Introduce ParticularObject as the value tracked by ParticularReferenceValue. This makes explicit which kind of values can be tracked during the analysis, and introduces the possibility of tracking a model of the values that differ from the actual tracked object.

Bug fixes

• Improve Kotlin MultiFileFacade metadata assertions to detect uninitialized references.
• Fix handling of category 2 values in JvmValueTransferRelation to work correctly with ExecutingInvocationUnit.
• Fix concurrency problems in CallGraph and ValueFactory ids.
• Fix a bug in ReturnClassExtractor returning the last parameter type instead of null for primitive return values.
• Fix ExecutorMethodSignatureMatcher trying to mutate an immutable map.
• Fix TypedReferenceValue.cast() not handling null values correctly.

Commits

• 4327472 Add releasenote for kotlin support
• d41e795 Fix KotlinSyntheticClassConstructor not properly handling lambda's
• f9e9b49 Update to stable kotlin.metadata library
• f6bfc16 Fix bugs in ExecutingInvocationUnit
• bd74a66 Extend information that Executors can provide to ExecutingInvocationUnit
• e37898f Prevent NPE in MultiAttributeVisitor
• f1e922e Add class resolver function to ClassDataEntryWriter
• d796d3e Bump version to 9.1.3
• eef07d3 Update releasenotes.md
• 6d24462 Add optional ignoreStackMapAttributes parameter to ClassPoolBuilder.java
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-shade-plugin from 3.5.2 to 3.5.3

Commits

• 19618cd [maven-release-plugin] prepare release maven-shade-plugin-3.5.3
• faf233e [MSHADE-472] upgrade parent POM
• 7de9ae7 [MSHADE-471] deal with DST
• 58d8cfe [MSHADE-470] Bump asmVersion from 9.6 to 9.7 (#218)
• 9074582 Bump org.apache.commons:commons-compress from 1.26.0 to 1.26.1
• a8030f8 Bump org.apache.commons:commons-compress from 1.25.0 to 1.26.0 (#215)
• 1218bdc [maven-release-plugin] prepare for next development iteration
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions