fix(deps): update all patch dependencies (master) - autoclosed

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
@emotion/react (source)	11.11.1 -> 11.11.4
@emotion/styled (source)	11.11.0 -> 11.11.5
@fontsource/roboto (source)	5.0.3 -> 5.0.12
@types/d3-hierarchy (source)	3.1.3 -> 3.1.7
@types/jest (source)	29.5.1 -> 29.5.12
csstype	3.1.2 -> 3.1.3
react-i18next	12.3.0 -> 12.3.1
vite (source)	5.2.7 -> 5.2.8
com.hivemq:hivemq-mqtt-client	1.3.1 -> 1.3.3
com.digitalpetri.modbus:modbus-master-tcp	1.2.0 -> 1.2.2
com.github.tomakehurst:wiremock-jre8-standalone (source)	2.35.0 -> 2.35.2
net.bytebuddy:byte-buddy	1.14.5 -> 1.14.13
io.swagger.core.v3.swagger-gradle-plugin	2.2.8 -> 2.2.21
org.awaitility:awaitility (source)	4.2.0 -> 4.2.1
io.swagger.core.v3:swagger-annotations	2.2.8 -> 2.2.21
org.jctools:jctools-core (source)	4.0.1 -> 4.0.3
io.dropwizard.metrics:metrics-jvm (source)	4.2.19 -> 4.2.25
io.dropwizard.metrics:metrics-logback (source)	4.2.19 -> 4.2.25
io.dropwizard.metrics:metrics-jmx (source)	4.2.19 -> 4.2.25
io.dropwizard.metrics:metrics-core (source)	4.2.19 -> 4.2.25
com.sun.xml.bind:jaxb-impl (source)	2.3.8 -> 2.3.9
org.slf4j:jul-to-slf4j (source, changelog)	2.0.11 -> 2.0.12
org.slf4j:slf4j-api (source, changelog)	2.0.11 -> 2.0.12

---

Release Notes

emotion-js/emotion (@​emotion/react)

v11.11.4

Compare Source

Patch Changes

• #​3159 5b82631d Thanks @​iegik! - Renamed an internal hasOwnProperty to hasOwn. This avoids problems in CommonJS environments when the consumer tries to prevent prototype pollution with Object.freeze(Object.prototype).

v11.11.3

Compare Source

Patch Changes

• #​3101 49c20b4f Thanks @​kyvong! - Fix Theme import for newer Typescript module resolution modes

• Updated dependencies [45c440fb]:

  • @​emotion/serialize@​1.1.3

fontsource/font-files (@​fontsource/roboto)

v5.0.12

Compare Source

v5.0.8

Compare Source

v5.0.7

Compare Source

v5.0.6

Compare Source

v5.0.5

Compare Source

v5.0.4

Compare Source

frenic/csstype (csstype)

v3.1.3

Compare Source

i18next/react-i18next (react-i18next)

v12.3.1

Compare Source

• optimization for optional lng prop for useTranslation, should now prevent missings when lazy loading translations 1637

vitejs/vite (vite)

v5.2.8

Compare Source

• fix: csp nonce injection when no closing tag (#​16281) (#​16282) (3c85c6b), closes #​16281 #​16282
• fix: do not access document in /@​vite/client when not defined (#​16318) (646319c), closes #​16318
• fix: fix sourcemap when using object as define value (#​15805) (445c4f2), closes #​15805
• fix(css): unknown file error happened with lightningcss (#​16306) (01af308), closes #​16306
• fix(hmr): multiple updates happened when invalidate is called while multiple tabs open (#​16307) (21cc10b), closes #​16307
• fix(scanner): duplicate modules for same id if glob is used in html-like types (#​16305) (eca68fa), closes #​16305
• chore(deps): update all non-major dependencies (#​16325) (a78e265), closes #​16325
• refactor: use types from sass instead of @​types/sass (#​16340) (4581e83), closes #​16340

hivemq/hivemq-mqtt-client (com.hivemq:hivemq-mqtt-client)

v1.3.3: 1.3.3

What's Changed

• Upgrade Netty to 4.1.99.Final by @​wborn in #​590 - Fixes multiple CVEs.

Full Changelog: hivemq/hivemq-mqtt-client@v1.3.2...v1.3.3

v1.3.2: 1.3.2

What's Changed

• Add reasonCode to PubComp, PubRel, PubRec and PubAck by @​LukasBrand in https://github.com/hivemq/hivemq-mqtt-client/pull/591

New Contributors

• @​LukasBrand made their first contribution in https://github.com/hivemq/hivemq-mqtt-client/pull/591

Full Changelog: hivemq/hivemq-mqtt-client@v1.3.1...v1.3.2

wiremock/wiremock (com.github.tomakehurst:wiremock-jre8-standalone)

v2.35.2

Compare Source

v2.35.1: - Security Release

Compare Source

🔒 This is a security release that addresses the following issues

• CVE-2023-41327 - Controlled SSRF through URL in the WireMock Webhooks Extension and WireMock Studio
  • Overall CVSS Score: 4.6 (AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L/E:F/RL:O/RC:C)
• CVE-2023-41329 - Domain restrictions bypass via DNS
  Rebinding in WireMock and WireMock Studio webhooks, proxy and recorder modes
  • Overall CVSS Score: 3.9 (AV:A/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L/E:F/RL:O/RC:C)

NOTE: WireMock Studio, a proprietary distribution discontinued in 2022, is also affected by those issues and also affected by CVE-2023-39967 - Overall CVSS Score 8.6 - “Controlled and full-read SSRF through URL parameter when testing a request, webhooks and proxy mode”. The fixes will not be provided. The vendor recommends migrating to WireMock Cloud which is available as SaaS and private beta for on-premises deployments

Credits: @​W0rty, @​numacanedo, @​Mahoney, @​tomakehurst, @​oleg-nenashev

swagger-api/swagger-core (io.swagger.core.v3:swagger-annotations)

v2.2.21: Swagger-core 2.2.21 released!

• update dependencies (#​4630)
• fix: Add class loader to OpenAPIExtensions ServiceLoader (#​4626)
• Fix #​4618: process array schema in OpenAPI 3.1 same as in OpenAPI 3.0 (#​4619)
• Fix isExplode method and explode tests (#​4612)
• refs #​4610 - deprecate and fix ArraySchema.items processing (switch to ArraySchema.schema) (#​4611)
• Add Header Object missing attributes (#​4608)
• fix #​4589 - fix tests with Java 21 (list first/last) (#​4597)
• Replace log error with warning in reflection with type not found (#​4596)
• Add JAX-RS v2.2 tolerance by swagger-core (#​4595)
• Skip groovy.lang package in ModelConverters (#​4594)
• fix CodeQL (#​4582)

v2.2.20: Swagger-core 2.2.20 released!

Compare Source

• switch to original eclipse transformer for jakarta artifacts - update dependencies (#​4578)
• Bump logback-version from 1.4.11 to 1.4.13 (#​4564)
• Bump jakarta.inject:jakarta.inject-api from 1.0 to 1.0.5 (#​4563)
• Bump org.apache.maven.plugins:maven-compiler-plugin from 3.8.1 to 3.11.0 (#​4562)
• Bump org.codehaus.mojo:build-helper-maven-plugin from 3.0.0 to 3.5.0 (#​4556)
• Remove System.err (#​4548)
• Bump org.apache.maven.plugins:maven-jar-plugin from 3.2.0 to 3.3.0 (#​4545)
• Bump jakarta.xml.bind:jakarta.xml.bind-api from 2.3.2 to 2.3.3 (#​4544)
• Bump commons-io:commons-io from 2.14.0 to 2.15.0 (#​4541)
• Treat kotlin.Deprecated as a deprecated operation (#​4464)

v2.2.19: Swagger-core 2.2.19 released!

• give precedence to requiredMode annotation (#​4533)
• update dependencies (#​4521)
• Bump org.apache.maven.plugins:maven-source-plugin from 3.2.1 to 3.3.0 (#​4513)
• add deps update CI (#​4509)

v2.2.18: Swagger-core 2.2.18 released!

• refs #​4483 - fix NullPointer for @​ApiResponse missing description (#​4501)
• refs #​4462 - exclude javax.validation annotations from container values processing (#​4500)
• Update README.md versions list (#​4493)
• feat: add getUseFqn to TypeNameResolver (#​4484)

v2.2.17: Swagger-core 2.2.17 released!

• python CI - encode request body (#​4489)
• python CI - encode request body (#​4488)
• update pythom CI (#​4487)
• update dependencies (#​4486)
• refs #​4455 - add config properties for default response status code (#​4482)
• fix: compare string using equals instead of == for Reader class (#​4480)

v2.2.16: Swagger-core 2.2.16 released!

• downgrade GH release actions runs-on (#​4477)
• fix python setup in release GH Action (#​4476)
• refs #​3080 - support array in additionalProperties annotation member (#​4475)
• allow null values for extensions properties in openapi object (#​4468)
• fixes #​4458 - correct invocation of setSkipResolveAppPath (#​4459)
• add support of visibility of properties not annotated with jsonview b… (#​4391)

v2.2.15: Swagger-core 2.2.15 released!

• fix oas 3.1 parameter resolving (#​4449)
• fix siblings in response and request body schemas OAS 3.1 resolving (#​4445)

v2.2.14: Swagger-core 2.2.14 released!

• OAS 3.1 siblings in refs resolving (#​4441)

v2.2.13: Swagger-core 2.2.13 released!

• fix: makes populating instance variables accessible to subclasses (#​4434)
• OAS 3.1 - properties and ref as siblings / fix ModelConvertes usage (#​4433)
• support custom annotation for containers (#​4429)

v2.2.12: Swagger-core 2.2.12 released!

• OAS 3.1 - fix webhooks class scanning (#​4426)
• OAS 3.1 - annotations and resolve logic (#​4425)
• Change ModelResolver to better handle JsonIgnoreProperties (#​4418)
• fix #​3581: recognize Hidden annotation on enum values. (#​4394)

v2.2.11: Swagger-core 2.2.11 released!

Compare Source

• Update Jackson to 2.15.1 to be consistent with SnakeYAML 2.0 (#​4417)
• apply JAX-RS path regex to params (#​4415)

v2.2.10: Swagger-core 2.2.10 released!

Compare Source

• Added possibility to provide JSON/YAML Factory to initialise ObjectMapper (#​4396)

v2.2.9: Swagger-core 2.2.9 released!

Compare Source

• fix v1 PR Action (#​4378)
• update readme with minimum JDK 11+ (#​4377)
• Update 1.5 GH actions (#​4374)
• added support for generic type bean validation annotations (#​4373)
• fix #​4036 - bundle oneOf/anyOf/allOf as with explict prefix (#​4371)
• update plugin dependencies (#​4370)
• update dependencies (#​4369)
• testng update and JDK 11+ build (#​4368)
• Fix for #​4362 - Resolving Schema for system enums fails if enumsAsRef is enabled (#​4364)
• Fix : Add missing mutualTLS (#​4351)
• Support of CompletionStage (JaxRS 2.1) (#​4342)
• Fix #​4239: @​JsonView ignored for subclasses (#​4282)

JCTools/JCTools (org.jctools:jctools-core)

v4.0.3: Rebuild of 4.0.2 for JDK 6 compatibility

Due to an error in the release process of v4.0.2 the binaries were built with JDK11, losing backwards compatibility with JDK6. This is fixed in this new release.

v4.0.2: Minor Release 4.0.2

Same code, new bundling post #​370

dropwizard/metrics (io.dropwizard.metrics:metrics-jvm)

v4.2.25

v4.2.24

What's Changed

• Update dependency org.apache.httpcomponents.client5:httpclient5 to v5.3 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3804
• Update actions/stale action to v9 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3807
• Update github/codeql-action digest to c0d1daa (release/4.2.x) - autoclosed by @​renovate in https://github.com/dropwizard/metrics/pull/3806
• Update dependency org.glassfish.jersey:jersey-bom to v3.1.5 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3818
• Update github/codeql-action digest to 305f654 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3817
• Use shared Renovate configuration by @​joschi in https://github.com/dropwizard/metrics/pull/3823
• Update dependency org.apache.maven.plugins:maven-surefire-plugin to v3.2.3 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3824
• Update github/codeql-action action to v3 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3827
• Remove dependency on Hamcrest by @​joschi in https://github.com/dropwizard/metrics/pull/3851
• Update dependency org.checkerframework:checker-qual to v3.42.0 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3853
• Update dependency org.apache.maven.plugins:maven-compiler-plugin to v3.12.0 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3856
• Update dependency org.eclipse.jetty:jetty-bom to v11.0.19 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3859
• Update dependency org.eclipse.jetty:jetty-bom to v10.0.19 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3858
• Update jetty12.version to v12.0.5 (release/4.2.x) (patch) by @​renovate in https://github.com/dropwizard/metrics/pull/3860
• Update dependency net.bytebuddy:byte-buddy to v1.14.11 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3864
• Update dependency org.apache.maven.plugins:maven-compiler-plugin to v3.12.1 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3873
• Update dependency com.google.errorprone:error_prone_core to v2.24.0 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3868
• Update github/codeql-action digest to 012739e (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3867
• Update log4j2 monorepo to v2.22.1 (release/4.2.x) (patch) by @​renovate in https://github.com/dropwizard/metrics/pull/3878
• Update slf4j.version to v2.0.10 (release/4.2.x) (patch) by @​renovate in https://github.com/dropwizard/metrics/pull/3880
• Update dependency org.assertj:assertj-core to v3.25.0 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3882
• Update dependency org.assertj:assertj-core to v3.25.1 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3884
• Update dependency org.jdbi:jdbi3-core to v3.43.0 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3886
• Update dependency com.google.errorprone:error_prone_core to v2.24.1 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3888
• Update github/codeql-action digest to e5f05b8 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3890
• Update slf4j.version to v2.0.11 (release/4.2.x) (patch) by @​renovate in https://github.com/dropwizard/metrics/pull/3892
• Update dependency org.apache.maven.plugins:maven-surefire-plugin to v3.2.5 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3894
• Update actions/cache action to v3.3.3 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3898
• Update dependency org.mockito:mockito-core to v5.9.0 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3902
• Update dependency org.cyclonedx:cyclonedx-maven-plugin to v2.7.11 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3904
• Update actions/cache action to v4 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3908
• Update github/codeql-action digest to 0b21cf2 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3907
• Fix IndexOutOfBoundsException in Jetty 9, 10, 11, 12 InstrumentedHandler by @​joschi in https://github.com/dropwizard/metrics/pull/3912

Full Changelog: dropwizard/metrics@v4.2.23...v4.2.24

v4.2.23

What's Changed

• Update dependency org.apache.maven.plugins:maven-surefire-plugin to v3.2.2 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3713
• Update dependency org.apache.maven.plugins:maven-javadoc-plugin to v3.6.2 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3712
• Update github/codeql-action digest to 689fdc5 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3726
• Update github/codeql-action digest to 66b90a5 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3732
• Update dependency net.bytebuddy:byte-buddy to v1.14.10 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3739
• Update log4j2.version to v2.22.0 (release/4.2.x) (minor) by @​renovate in https://github.com/dropwizard/metrics/pull/3740
• Update dependency org.apache.maven.plugins:maven-project-info-reports-plugin to v3.5.0 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3744
• Update dependency org.apache.commons:commons-lang3 to v3.14.0 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3743
• Update dependency org.apache.httpcomponents.client5:httpclient5 to v5.2.2 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3745
• Update github/codeql-action digest to 407ffaf (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3749
• Update dependency org.codehaus.mojo:build-helper-maven-plugin to v3.5.0 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3753
• Update dependency org.apache.httpcomponents.core5:httpcore5 to v5.2.4 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3758
• Update logback14.version to v1.4.12 (release/4.2.x) (patch) by @​renovate in https://github.com/dropwizard/metrics/pull/3760
• Update logback13.version to v1.3.12 (release/4.2.x) (patch) by @​renovate in https://github.com/dropwizard/metrics/pull/3759
• Update logback13.version to v1.3.13 (release/4.2.x) (patch) by @​renovate in https://github.com/dropwizard/metrics/pull/3767
• Update logback14.version to v1.4.13 (release/4.2.x) (patch) by @​renovate in https://github.com/dropwizard/metrics/pull/3768
• Update dependency org.jdbi:jdbi3-core to v3.42.0 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3770
• Update actions/setup-java action to v4 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3773
• Update dependency maven to v3.9.6 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3774
• Update dependency org.apache.httpcomponents.client5:httpclient5 to v5.2.3 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3775
• Update dependency org.apache.maven.plugins:maven-javadoc-plugin to v3.6.3 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3776
• Update dependency org.glassfish.jersey:jersey-bom to v3.1.4 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3777
• Update logback.version to v1.2.13 (release/4.2.x) (patch) by @​renovate in https://github.com/dropwizard/metrics/pull/3779
• Update logback13.version to v1.3.14 (release/4.2.x) (patch) by @​renovate in https://github.com/dropwizard/metrics/pull/3780
• Update jetty12.version to v12.0.4 (release/4.2.x) (patch) by @​renovate in https://github.com/dropwizard/metrics/pull/3778
• Update logback14.version to v1.4.14 (release/4.2.x) (patch) by @​renovate in https://github.com/dropwizard/metrics/pull/3781
• Update dependency org.checkerframework:checker-qual to v3.41.0 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3782
• Update dependency org.mockito:mockito-core to v5.8.0 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3784

Full Changelog: dropwizard/metrics@v4.2.22...v4.2.23

v4.2.22

What's Changed

• Update github/codeql-action digest to 0116bc2 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3646
• Update dependency org.jacoco:jacoco-maven-plugin to v0.8.11 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3650
• Update log4j2.version to v2.21.0 (release/4.2.x) (minor) by @​renovate in https://github.com/dropwizard/metrics/pull/3651
• Update actions/checkout action to v4.1.1 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3652
• Update dependency com.google.errorprone:error_prone_core to v2.23.0 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3656
• Update actions/setup-java digest to 0ab4596 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3660
• Update actions/checkout digest to b4ffde6 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3659
• Update dependency org.glassfish.jaxb:jaxb-runtime to v2.3.9 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3664
• Update github/codeql-action digest to 49abf0b (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3663
• Update jersey.version (release/4.2.x) (minor) by @​renovate in https://github.com/dropwizard/metrics/pull/3665
• Update dependency org.apache.maven.plugins:maven-dependency-plugin to v3.6.1 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3672
• Update dependency org.apache.maven.plugins:maven-surefire-plugin to v3.2.1 (release/4.2.x) by @​renovate in https://github.com/dropwizard/metrics/pull/3673
• Up

---

Configuration

📅 Schedule: Branch creation - "every weekend" (UTC), Automerge - "after 10pm every weekday,before 5am every weekday,every weekend" (UTC).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.