Skip to content

chore(deps): bump the all-dependencies group across 1 directory with 27 updates#87

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/maven/all-dependencies-7ad61a46c8
Open

chore(deps): bump the all-dependencies group across 1 directory with 27 updates#87
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/maven/all-dependencies-7ad61a46c8

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 13, 2026

Copy link
Copy Markdown

Bumps the all-dependencies group with 27 updates in the / directory:

Package From To
com.fasterxml.jackson.core:jackson-databind 2.20.2 2.22.1
com.fasterxml.jackson.dataformat:jackson-dataformat-yaml 2.20.2 2.22.1
com.fasterxml.jackson.dataformat:jackson-dataformat-xml 2.20.2 2.22.1
com.networknt:json-schema-validator 1.0.87 3.0.6
com.jayway.jsonpath:json-path 2.9.0 3.0.0
org.json-structure:json-structure 0.5.5 0.8.0
org.slf4j:slf4j-api 2.0.17 2.0.18
org.slf4j:slf4j-nop 2.0.17 2.0.18
org.jsoup:jsoup 1.18.3 1.22.2
org.graalvm.polyglot:polyglot 24.2.1 25.1.3
org.graalvm.polyglot:js 24.2.1 25.1.3
org.graalvm.js:js-community 24.2.1 25.1.3
org.junit.jupiter:junit-jupiter 5.12.2 6.1.2
info.picocli:picocli 4.7.6 4.7.7
org.apache.maven.plugins:maven-compiler-plugin 3.14.0 3.15.0
org.apache.maven.plugins:maven-surefire-plugin 3.5.3 3.5.6
org.jacoco:jacoco-maven-plugin 0.8.13 0.8.15
org.codehaus.mojo:flatten-maven-plugin 1.6.0 1.7.3
org.apache.maven.plugins:maven-javadoc-plugin 3.6.3 3.12.0
org.apache.maven.plugins:maven-source-plugin 3.3.1 3.4.0
org.sonatype.central:central-publishing-maven-plugin 0.10.0 0.11.0
org.apache.maven.plugins:maven-gpg-plugin 3.1.0 3.2.8
org.restlet:org.restlet 2.7.0-m2 2.7.0-m3
io.modelcontextprotocol.sdk:mcp-core 1.0.0 2.0.0
org.apache.maven.plugins:maven-jar-plugin 3.4.1 3.5.0
org.graalvm.buildtools:native-maven-plugin 0.10.3 1.1.4
org.commonmark:commonmark 0.24.0 0.29.0

Updates com.fasterxml.jackson.core:jackson-databind from 2.20.2 to 2.22.1

Commits

Updates com.fasterxml.jackson.dataformat:jackson-dataformat-yaml from 2.20.2 to 2.22.1

Commits
  • 681f699 [maven-release-plugin] prepare release jackson-dataformats-text-2.22.1
  • 8e25852 Prep for 2.22.1 release
  • e1ed4d2 Merge branch '2.21' into 2.22
  • 3f3257c Post-release dep version bump
  • 3348a1a [maven-release-plugin] prepare for next development iteration
  • 687ad4f [maven-release-plugin] prepare release jackson-dataformats-text-2.21.5
  • 955c59f Prep for 2.21.5 release
  • 588933e Post-release dep version bump
  • 38f3683 [maven-release-plugin] prepare for next development iteration
  • 23d487c [maven-release-plugin] prepare release jackson-dataformats-text-2.22.0
  • Additional commits viewable in compare view

Updates com.fasterxml.jackson.dataformat:jackson-dataformat-xml from 2.20.2 to 2.22.1

Commits
  • be04d56 [maven-release-plugin] prepare release jackson-dataformat-xml-2.22.1
  • c420f2f Prep for 2.22.1 release
  • 2be8479 Merge branch '2.21' into 2.22
  • 4cf55fe Post-release dep version bump
  • 70baf0a [maven-release-plugin] prepare for next development iteration
  • 1211f5a [maven-release-plugin] prepare release jackson-dataformat-xml-2.21.5
  • 2252eab Prep for 2.21.5 release
  • a58f7d3 Post-release dep version bump
  • 8087e73 [maven-release-plugin] prepare for next development iteration
  • 4c702ae [maven-release-plugin] prepare release jackson-dataformat-xml-2.22.0
  • Additional commits viewable in compare view

Updates com.fasterxml.jackson.dataformat:jackson-dataformat-yaml from 2.20.2 to 2.22.1

Commits
  • 681f699 [maven-release-plugin] prepare release jackson-dataformats-text-2.22.1
  • 8e25852 Prep for 2.22.1 release
  • e1ed4d2 Merge branch '2.21' into 2.22
  • 3f3257c Post-release dep version bump
  • 3348a1a [maven-release-plugin] prepare for next development iteration
  • 687ad4f [maven-release-plugin] prepare release jackson-dataformats-text-2.21.5
  • 955c59f Prep for 2.21.5 release
  • 588933e Post-release dep version bump
  • 38f3683 [maven-release-plugin] prepare for next development iteration
  • 23d487c [maven-release-plugin] prepare release jackson-dataformats-text-2.22.0
  • Additional commits viewable in compare view

Updates com.fasterxml.jackson.dataformat:jackson-dataformat-xml from 2.20.2 to 2.22.1

Commits
  • be04d56 [maven-release-plugin] prepare release jackson-dataformat-xml-2.22.1
  • c420f2f Prep for 2.22.1 release
  • 2be8479 Merge branch '2.21' into 2.22
  • 4cf55fe Post-release dep version bump
  • 70baf0a [maven-release-plugin] prepare for next development iteration
  • 1211f5a [maven-release-plugin] prepare release jackson-dataformat-xml-2.21.5
  • 2252eab Prep for 2.21.5 release
  • a58f7d3 Post-release dep version bump
  • 8087e73 [maven-release-plugin] prepare for next development iteration
  • 4c702ae [maven-release-plugin] prepare release jackson-dataformat-xml-2.22.0
  • Additional commits viewable in compare view

Updates com.networknt:json-schema-validator from 1.0.87 to 3.0.6

Release notes

Sourced from com.networknt:json-schema-validator's releases.

3.0.6- 2026-07-07

Added

Changed

3.0.5- 2026-06-21

Added

Changed

  • fixes #1252 problem with additionalProperties schema in jsconfig schema (#1253)
  • fixes #1174 TextNodes as schema seem to validate any value (#1250)

3.0.4- 2026-06-10

Added

Changed

3.0.3- 2026-05-27

Added

Changed

3.0.2- 2026-04-14

Added

Changed

3.0.1- 2026-03-10

Added

Changed

... (truncated)

Changelog

Sourced from com.networknt:json-schema-validator's changelog.

Change Log

All notable changes to this project will be documented in this file.

This format is based on Keep a Changelog.

This project does not adhere to Semantic Versioning and minor version changes can have incompatible API changes. These incompatible API changes will largely affect those who have custom validator or walker implementations. Those who just use the library to validate using the standard JSON Schema Draft specifications may not need changes.

[Unreleased]

Added

Changed

Changed

3.0.6- 2026-07-07

Added

Changed

3.0.5- 2026-06-21

Added

Changed

  • fixes #1252 problem with additionalProperties schema in jsconfig schema (#1253)
  • fixes #1174 TextNodes as schema seem to validate any value (#1250)

3.0.4- 2026-06-10

Added

Changed

3.0.3- 2026-05-27

Added

Changed

... (truncated)

Commits

Updates com.jayway.jsonpath:json-path from 2.9.0 to 3.0.0

Release notes

Sourced from com.jayway.jsonpath:json-path's releases.

json-path-3.0.0

What's Changed

New Contributors

Full Changelog: json-path/JsonPath@json-path-2.10.0...json-path-3.0.0

json-path-2.10.0

What's Changed

  • Bumps dependency versions by @​kallestenflo in json-path/JsonPath#1057
    • net.minidev:json-smart:2.6.0
    • org.slf4j:slf4j-api:2.0.17
    • com.google.code.gson:gson:2.13.2
    • org.hamcrest:hamcrest:3.0
    • com.fasterxml.jackson.core:jackson-databind:2.19.2
    • org.json:json:20250517
    • org.apache.tapestry:tapestry-json:5.9.0
    • jakarta.json:jakarta.json-api:2.1.3
    • jakarta.json.bind:jakarta.json.bind-api:2.0.0

Full Changelog: json-path/JsonPath@json-path-2.9.0...json-path-2.10.0

Commits

Updates org.json-structure:json-structure from 0.5.5 to 0.8.0

Release notes

Sourced from org.json-structure:json-structure's releases.

jstruct v0.8.0

jstruct CLI v0.8.0

JSON Structure schema validation command-line tool.

Installation

Linux (Debian/Ubuntu)

sudo dpkg -i jstruct_0.8.0_amd64.deb

Linux (Fedora/RHEL)

sudo rpm -i jstruct-0.8.0-1.x86_64.rpm

macOS

# Universal binary (Intel + Apple Silicon)
sudo installer -pkg jstruct-0.8.0-darwin-universal.pkg -target /
Or via tarball
tar xzf jstruct-0.8.0-darwin-universal.tar.gz
sudo mv jstruct /usr/local/bin/

Windows

Download and extract the ZIP, or install the MSIX package.

Usage

# Validate a schema
jstruct check schema.json
Validate an instance against a schema
jstruct validate --schema schema.json data.json

See jstruct --help for more options.

v0.8.0

No release notes provided.

jstruct v0.7.0

jstruct CLI v0.7.0

JSON Structure schema validation command-line tool.

Installation

... (truncated)

Commits
  • 675642c Sync R DESCRIPTION version from release tag
  • f365d3f Harden R SDK per R/CRAN best-practices review
  • ead2b41 Add R language SDK binding the C validation engine
  • 3d8b849 Fix C workflow Windows configure and attach installer-named release assets
  • d0f0f64 feat: full spec coverage across all 11 SDKs
  • 8dd7064 Fix repository URLs to use master branch instead of main
  • cccddb8 docs: add CHANGELOG.md for v0.6.2
  • 9da9b0e fix: restore sibling errors on union branch success (Python, PHP) (#161)
  • 5f40676 fix: remove ellipsis from tag-release.ps1 string literal
  • c8dabff fix: bump engines.vscode to ^1.110.0 to match @​types/vscode
  • Additional commits viewable in compare view

Updates org.slf4j:slf4j-api from 2.0.17 to 2.0.18

Updates org.slf4j:slf4j-nop from 2.0.17 to 2.0.18

Updates org.jsoup:jsoup from 1.18.3 to 1.22.2

Release notes

Sourced from org.jsoup:jsoup's releases.

jsoup Java HTML Parser release 1.22.2

jsoup 1.22.2 is out now, with fixes and refinements across the library. It makes editing the DOM during traversal more predictable, refreshes the default HTML tag definitions with newer elements and better text boundaries, and improves reliability in parsing and HTTP transport. The release also fixes a number of edge cases in cleaning, stream parsing, XML doctype handling, and Android packaging.

jsoup is a Java library for working with real-world HTML and XML. It provides a very convenient API for extracting and manipulating data, using the best of HTML5 DOM methods and CSS selectors.

Download jsoup now.

Improvements

  • Expanded and clarified NodeTraversor support for in-place DOM rewrites during NodeVisitor.head(). Current-node edits such as remove, replace, and unwrap now recover more predictably, while traversal stays within the original root subtree. This makes single-pass tree cleanup and normalization visitors easier to write, for example when unwrapping presentational elements or replacing text nodes as you walk the DOM. #2472
  • Documentation: clarified that a configured Cleaner may be reused across concurrent threads, and that shared Safelist instances should not be mutated while in use. #2473
  • Updated the default HTML TagSet for current HTML elements: added dialog, search, picture, and slot; made ins, del, button, audio, video, and canvas inline by default (Tag#isInline(), aligned to phrasing content in the spec); and added readable Element.text() boundaries for controls and embedded objects via the new Tag.TextBoundary option. This improves pretty-printing and keeps normalized text from running adjacent words together. #2493

Bug Fixes

  • Android (R8/ProGuard): added a rule to ignore the optional re2j dependency when not present. #2459
  • Fixed a NodeTraversor regression in 1.21.2 where removing or replacing the current node during head() could revisit the replacement node and loop indefinitely. The traversal docs now also clarify which inserted nodes are visited in the current pass. #2472
  • Parsing during charset sniffing no longer fails if an advisory available() call throws IOException, as seen on JDK 8 HttpURLConnection. #2474
  • Cleaner no longer makes relative URL attributes in the input document absolute when cleaning or validating a Document. URL normalization now applies only to the cleaned output, and Safelist.isSafeAttribute() is side effect free. #2475
  • Cleaner no longer duplicates enforced attributes when the input Document preserves attribute case. A case-variant source attribute is now replaced by the enforced attribute in the cleaned output. #2476
  • If a per-request SOCKS proxy is configured, jsoup now avoids using the JDK HttpClient, because the JDK would silently ignore that proxy and attempt to connect directly. Those requests now fall back to the legacy HttpURLConnection transport instead, which does support SOCKS. #2468
  • Connection.Response.streamParser() and DataUtil.streamParser(Path, ...) could fail on small inputs without a declared charset, if the initial 5 KB charset sniff fully consumed the input and closed it before the stream parse began. #2483
  • In XML mode, doctypes with an internal subset, such as <!DOCTYPE root [<!ENTITY name "value">]>, now round-trip correctly. The subset is preserved as raw text only; entities are not expanded and external DTDs are not loaded. #2486

Build Changes

  • Migrated the integration test server from Jetty to Netty, which actively maintains support for our minimum JDK target (8). #2491

My sincere thanks to everyone who contributed to this release! If you have any suggestions for the next release, I would love to hear them; please get in touch via jsoup discussions, or with me directly.

You can also follow me (@jhy@tilde.zone) on Mastodon / Fediverse to receive occasional notes about jsoup releases.

jsoup Java HTML Parser release 1.22.1

jsoup 1.22.1 is out now, adding support for the re2j regular expression engine for regex-based CSS selectors, a configurable maximum parser depth, and numerous bug fixes and improvements.

jsoup is a Java library for working with real-world HTML and XML. It provides a very convenient API for extracting and manipulating data, using the best of HTML5 DOM methods and CSS selectors.

Download jsoup now.

Improvements

  • Added support for using the re2j regular expression engine for regex-based CSS selectors (e.g. [attr~=regex], :matches(regex)), which ensures linear-time performance for regex evaluation. This allows safer handling of arbitrary user-supplied query regexes. To enable, add the com.google.re2j dependency to your classpath, e.g.:
  <dependency>
    <groupId>com.google.re2j</groupId>
    <artifactId>re2j</artifactId>
    <version>1.8</version>
  </dependency>

(If you already have that dependency in your classpath, but you want to keep using the Java regex engine, you can disable re2j via System.setProperty("jsoup.useRe2j", "false").) You can confirm that the re2j engine has been enabled correctly by calling Regex.usingRe2j(). #2407

... (truncated)

Changelog

Sourced from org.jsoup:jsoup's changelog.

1.22.2 (2026-Apr-20)

Improvements

  • Expanded and clarified NodeTraversor support for in-place DOM rewrites during NodeVisitor.head(). Current-node edits such as remove, replace, and unwrap now recover more predictably, while traversal stays within the original root subtree. This makes single-pass tree cleanup and normalization visitors easier to write, for example when unwrapping presentational elements or replacing text nodes as you walk the DOM. #2472
  • Documentation: clarified that a configured Cleaner may be reused across concurrent threads, and that shared Safelist instances should not be mutated while in use. #2473
  • Updated the default HTML TagSet for current HTML elements: added dialog, search, picture, and slot; made ins, del, button, audio, video, and canvas inline by default (Tag#isInline(), aligned to phrasing content in the spec); and added readable Element.text() boundaries for controls and embedded objects via the new Tag.TextBoundary option. This improves pretty-printing and keeps normalized text from running adjacent words together. #2493

Bug Fixes

  • Android (R8/ProGuard): added a rule to ignore the optional re2j dependency when not present. #2459
  • Fixed a NodeTraversor regression in 1.21.2 where removing or replacing the current node during head() could revisit the replacement node and loop indefinitely. The traversal docs now also clarify which inserted nodes are visited in the current pass. #2472
  • Parsing during charset sniffing no longer fails if an advisory available() call throws IOException, as seen on JDK 8 HttpURLConnection. #2474
  • Cleaner no longer makes relative URL attributes in the input document absolute when cleaning or validating a Document. URL normalization now applies only to the cleaned output, and Safelist.isSafeAttribute() is side effect free. #2475
  • Cleaner no longer duplicates enforced attributes when the input Document preserves attribute case. A case-variant source attribute is now replaced by the enforced attribute in the cleaned output. #2476
  • If a per-request SOCKS proxy is configured, jsoup now avoids using the JDK HttpClient, because the JDK would silently ignore that proxy and attempt to connect directly. Those requests now fall back to the legacy HttpURLConnection transport instead, which does support SOCKS. #2468
  • Connection.Response.streamParser() and DataUtil.streamParser(Path, ...) could fail on small inputs without a declared charset, if the initial 5 KB charset sniff fully consumed the input and closed it before the stream parse began. #2483
  • In XML mode, doctypes with an internal subset, such as <!DOCTYPE root [<!ENTITY name "value">]>, now round-trip correctly. The subset is preserved as raw text only; entities are not expanded and external DTDs are not loaded. #2486

Build Changes

  • Migrated the integration test server from Jetty to Netty, which actively maintains support for our minimum JDK target (8). #2491

1.22.1 (2026-Jan-01)

Improvements

  • Added support for using the re2j regular expression engine for regex-based CSS selectors (e.g. [attr~=regex], :matches(regex)), which ensures linear-time performance for regex evaluation. This allows safer handling of arbitrary user-supplied query regexes. To enable, add the com.google.re2j dependency to your classpath, e.g.:
  <dependency>
    <groupId>com.google.re2j</groupId>
    <artifactId>re2j</artifactId>
    <version>1.8</version>
  </dependency>

(If you already have that dependency in your classpath, but you want to keep using the Java regex engine, you can disable re2j via System.setProperty("jsoup.useRe2j", "false").) You can confirm that the re2j engine has been enabled correctly by calling org.jsoup.helper.Regex.usingRe2j(). #2407

  • Added an instance method Parser#unescape(String, boolean) that unescapes HTML entities using the parser's configuration (e.g. to support error tracking), complementing the existing static utility Parser.unescapeEntities(String, boolean). #2396
  • Added a configurable maximum parser depth (to limit the number of open elements on stack) to both HTML and XML parsers. The HTML parser now defaults to a depth of 512 to match browser behavior, and protect against unbounded stack growth, while the XML parser keeps unlimited depth by default, but can opt into a limit via org.jsoup.parser.Parser#setMaxDepth. #2421
  • Build: added CI coverage for JDK 25 #2403
  • Build: added a CI fuzzer for contextual fragment parsing (in addition to existing full body HTML and XML fuzzers). [oss-fuzz #14041](google/oss-fuzz#14041)

Changes

  • Set a removal schedule of jsoup 1.24.1 for previously deprecated APIs.

Bug Fixes

  • Previously cached child Elements of an Element were not correctly invalidated in Node#replaceWith(Node), which could lead to incorrect results when subsequently calling Element#children(). #2391
  • Attribute selector values are now compared literally without trimming. Previously, jsoup trimmed whitespace from selector values and from element attribute values, which could cause mismatches with browser behavior (e.g. [attr=" foo "]). Now matches align with the CSS specification and browser engines. #2380
  • When using the JDK HttpClient, any system default proxy (ProxySelector.getDefault()) was ignored. Now, the system proxy is used if a per-request proxy is not set. #2388, #2390
  • A ValidationException could be thrown in the adoption agency algorithm with particularly broken input. Now logged as a parse error. #2393
  • Null characters in the HTML body were not consistently removed; and in foreign content were not correctly replaced. #2395
  • An IndexOutOfBoundsException could be thrown when parsing a body fragment with crafted input. Now logged as a parse error. #2397, #2406
  • When using StructuralEvaluators (e.g., a parent child selector) across many retained threads, their memoized results could also be retained, increasing memory use. These results are now cleared immediately after use, reducing overall memory consumption. #2411
  • Cloning a Parser now preserves any custom TagSet applied to the parser. #2422, #2423

... (truncated)

Commits
  • ac28afe [maven-release-plugin] prepare release jsoup-1.22.2
  • 52f2cd3 Improve entity example in changelog
  • cf6ffe0 Add Tag#TextBoundary option; bring TagSet to spec (#2493)
  • 2be739c Bump github/codeql-action from 4 to 4.35.1 (#2492)
  • 45de7cb Migrate integration test server from Jetty to Netty (#2491)
  • 1df14ed Preserve XML doctype internal subset
  • 06fa52d Adding Contribution Guide
  • d4a8941 Simplify the test; doesn't need the buffer
  • 823709f Don't reuse a fully read sniffed doc for StreamParser
  • e1b0df5 NodeFilter javadoc tweak
  • Additional commits viewable in compare view

Updates org.graalvm.polyglot:polyglot from 24.2.1 to 25.1.3

Commits
  • d9de820 [GR-74345] Append global benchmark filters in PolyBench and implicitly exclud...
  • a121746 [GR-76692] Update CI overlay
  • 46e72d0 [GR-76684] Add test for build-time invokedynamic/constantdynamic bootstrap me...
  • fe5c7d6 [GR-76591] Add Project Terminus docs
  • 923ec69 [GR-68442] Update Barista bench suite to be graalhost aware.
  • 048c371 [GR-21590] Update version numbers for upcoming release.
  • 08de586 [GR-71949] Track nullSeen in Ristretto type profiles.
  • 522dfaa Update js import to GraalJS 25.1.3
  • b222ccc [GR-61365] Use reflection and service providers for protocol handling.
  • 30d7ddb GR-76591 Restore Terminus migration note
  • Additional commits viewable in compare view

Updates org.graalvm.polyglot:js from 24.2.1 to 25.1.3

Commits
  • d9de820 [GR-74345] Append global benchmark filters in PolyBench and implicitly exclud...
  • a121746 [GR-76692] Update CI overlay
  • 46e72d0 [GR-76684] Add test for build-time invokedynamic/constantdynamic bootstrap me...
  • fe5c7d6 [GR-76591] Add Project Terminus docs
  • 923ec69 [GR-68442] Update Barista bench suite to be graalhost aware.
  • 048c371 [GR-21590] Update version numbers for upcoming release.
  • 08de586 [GR-71949] Track nullSeen in Ristretto type profiles.
  • 522dfaa Update js import to GraalJS 25.1.3
  • b222ccc [GR-61365] Use reflection and service providers for protocol handling.
  • 30d7ddb GR-76591 Restore Terminus migration note
  • Additional commits viewable in compare view

Updates org.graalvm.js:js-community from 24.2.1 to 25.1.3

Commits
  • d9de820 [GR-74345] Append global benchmark filters in PolyBench and implicitly exclud...
  • a121746 [GR-76692] Update CI overlay
  • 46e72d0 [GR-76684] Add test for build-time invokedynamic/constantdynamic bootstrap me...
  • fe5c7d6 [GR-76591] Add Project Terminus docs
  • 923ec69 [GR-68442] Update Barista bench suite to be graalhost aware.
  • 048c371 [GR-21590] Update version numbers for upcoming release.
  • 08de586 [GR-71949] Track nullSeen in Ristretto type profiles.
  • 522dfaa Update js import to GraalJS 25.1.3
  • b222ccc [GR-61365] Use reflection and service providers for protocol handling.
  • 30d7ddb GR-76591 Restore Terminus migration note
  • Additional commits viewable in compare view

Updates org.graalvm.polyglot:js from 24.2.1 to 25.1.3

Commits
  • d9de820 [GR-74345] Append global benchmark filters in PolyBench and implicitly exclud...
  • a121746 [GR-76692] Update CI overlay
  • 46e72d0 [GR-76684] Add test for build-time invokedynamic/constantdynamic bootstrap me...
  • fe5c7d6 [GR-76591] Add Project Terminus docs
  • 923ec69 [GR-68442] Update Barista bench suite to be graalhost aware.
  • 048c371 [GR-21590] Update version numbers for upcoming release.
  • 08de586 [GR-71949] Track nullSeen in Ristretto type profiles.
  • 522dfaa Update js import to GraalJS 25.1.3
  • b222ccc [GR-61365] Use reflection and service providers for protocol handling.
  • 30d7ddb GR-76591 Restore Terminus migration note
  • Additional commits viewable in compare view

Updates org.graalvm.js:js-community from 24.2.1 to 25.1.3

Commits
  • d9de820 [GR-74345] Append global benchmark filters in PolyBench and implicitly exclud...
  • a121746 [GR-76692] Update CI overlay
  • 46e72d0 [GR-76684] Add test for build-time invokedynamic/constantdynamic bootstrap me...
  • fe5c7d6 [GR-76591] Add Project Terminus docs
  • 923ec69 [GR-68442] Update Barista bench suite to be graalhost aware.
  • 048c371 [GR-21590] Update version numbers for upcoming release.
  • 08de586 [GR-71949] Track nullSeen in Ristretto type profiles.
  • 522dfaa Update js import to GraalJS 25.1.3
  • b222ccc [GR-61365] Use reflection and service providers for protocol handling.
  • 30d7ddb GR-76591 Restore Terminus migration note
  • Additional commits viewable in compare view

Updates org.junit.jupiter:junit-jupiter from 5.12.2 to 6.1.2

Release notes

Sourced from org.junit.jupiter:junit-jupiter's releases.

JUnit 6.1.2 = Platform 6.1.2 + Jupiter 6.1.2 + Vintage 6.1.2

See Release Notes.

Full Changelog: junit-team/junit-framework@r6.1.1...r6.1.2

JUnit 6.1.1 = Platform 6.1.1 + Jupiter 6.1.1 + Vintage 6.1.1

See Release Notes.

Full Changelog: junit-team/junit-framework@r6.1.0...r6.1.1

JUnit 6.1.0 = Platform 6.1.0 + Jupiter 6.1.0 + Vintage 6.1.0

See Release Notes.

New Contributors

Full Changelog: junit-team/junit-framework@r6.0.3...r6.1.0

JUnit 6.1.0-RC1 = Platform 6.1.0-RC1 + Jupiter 6.1.0-RC1 + Vintage 6.1.0-RC1

See Release Notes.

New Contributors

Full Changelog: junit-team/junit-framework@r6.1.0-M1...r6.1.0-RC1

JUnit 6.1.0-M1 = Platform 6.1.0-M1 + Jupiter 6.1.0-M1 + Vintage 6.1.0-M1

See Release Notes.

New Contributors

@dependabot @github

dependabot Bot commented on behalf of github Jul 13, 2026

Copy link
Copy Markdown
Author

Labels

The following labels could not be found: dependencies. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

…27 updates

Bumps the all-dependencies group with 27 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [com.fasterxml.jackson.core:jackson-databind](https://github.com/FasterXML/jackson) | `2.20.2` | `2.22.1` |
| [com.fasterxml.jackson.dataformat:jackson-dataformat-yaml](https://github.com/FasterXML/jackson-dataformats-text) | `2.20.2` | `2.22.1` |
| [com.fasterxml.jackson.dataformat:jackson-dataformat-xml](https://github.com/FasterXML/jackson-dataformat-xml) | `2.20.2` | `2.22.1` |
| [com.networknt:json-schema-validator](https://github.com/networknt/json-schema-validator) | `1.0.87` | `3.0.6` |
| [com.jayway.jsonpath:json-path](https://github.com/jayway/JsonPath) | `2.9.0` | `3.0.0` |
| [org.json-structure:json-structure](https://github.com/json-structure/sdk) | `0.5.5` | `0.8.0` |
| org.slf4j:slf4j-api | `2.0.17` | `2.0.18` |
| org.slf4j:slf4j-nop | `2.0.17` | `2.0.18` |
| [org.jsoup:jsoup](https://github.com/jhy/jsoup) | `1.18.3` | `1.22.2` |
| [org.graalvm.polyglot:polyglot](https://github.com/oracle/graal) | `24.2.1` | `25.1.3` |
| [org.graalvm.polyglot:js](https://github.com/oracle/graal) | `24.2.1` | `25.1.3` |
| [org.graalvm.js:js-community](https://github.com/oracle/graal) | `24.2.1` | `25.1.3` |
| [org.junit.jupiter:junit-jupiter](https://github.com/junit-team/junit-framework) | `5.12.2` | `6.1.2` |
| [info.picocli:picocli](https://github.com/remkop/picocli) | `4.7.6` | `4.7.7` |
| [org.apache.maven.plugins:maven-compiler-plugin](https://github.com/apache/maven-compiler-plugin) | `3.14.0` | `3.15.0` |
| [org.apache.maven.plugins:maven-surefire-plugin](https://github.com/apache/maven-surefire) | `3.5.3` | `3.5.6` |
| [org.jacoco:jacoco-maven-plugin](https://github.com/jacoco/jacoco) | `0.8.13` | `0.8.15` |
| [org.codehaus.mojo:flatten-maven-plugin](https://github.com/mojohaus/flatten-maven-plugin) | `1.6.0` | `1.7.3` |
| [org.apache.maven.plugins:maven-javadoc-plugin](https://github.com/apache/maven-javadoc-plugin) | `3.6.3` | `3.12.0` |
| [org.apache.maven.plugins:maven-source-plugin](https://github.com/apache/maven-source-plugin) | `3.3.1` | `3.4.0` |
| [org.sonatype.central:central-publishing-maven-plugin](https://github.com/sonatype/central-publishing-maven-plugin) | `0.10.0` | `0.11.0` |
| [org.apache.maven.plugins:maven-gpg-plugin](https://github.com/apache/maven-gpg-plugin) | `3.1.0` | `3.2.8` |
| org.restlet:org.restlet | `2.7.0-m2` | `2.7.0-m3` |
| [io.modelcontextprotocol.sdk:mcp-core](https://github.com/modelcontextprotocol/java-sdk) | `1.0.0` | `2.0.0` |
| [org.apache.maven.plugins:maven-jar-plugin](https://github.com/apache/maven-jar-plugin) | `3.4.1` | `3.5.0` |
| [org.graalvm.buildtools:native-maven-plugin](https://github.com/graalvm/native-build-tools) | `0.10.3` | `1.1.4` |
| [org.commonmark:commonmark](https://github.com/commonmark/commonmark-java) | `0.24.0` | `0.29.0` |



Updates `com.fasterxml.jackson.core:jackson-databind` from 2.20.2 to 2.22.1
- [Commits](https://github.com/FasterXML/jackson/commits)

Updates `com.fasterxml.jackson.dataformat:jackson-dataformat-yaml` from 2.20.2 to 2.22.1
- [Commits](FasterXML/jackson-dataformats-text@jackson-dataformats-text-2.20.2...jackson-dataformats-text-2.22.1)

Updates `com.fasterxml.jackson.dataformat:jackson-dataformat-xml` from 2.20.2 to 2.22.1
- [Commits](FasterXML/jackson-dataformat-xml@jackson-dataformat-xml-2.20.2...jackson-dataformat-xml-2.22.1)

Updates `com.fasterxml.jackson.dataformat:jackson-dataformat-yaml` from 2.20.2 to 2.22.1
- [Commits](FasterXML/jackson-dataformats-text@jackson-dataformats-text-2.20.2...jackson-dataformats-text-2.22.1)

Updates `com.fasterxml.jackson.dataformat:jackson-dataformat-xml` from 2.20.2 to 2.22.1
- [Commits](FasterXML/jackson-dataformat-xml@jackson-dataformat-xml-2.20.2...jackson-dataformat-xml-2.22.1)

Updates `com.networknt:json-schema-validator` from 1.0.87 to 3.0.6
- [Release notes](https://github.com/networknt/json-schema-validator/releases)
- [Changelog](https://github.com/networknt/json-schema-validator/blob/master/CHANGELOG.md)
- [Commits](networknt/json-schema-validator@1.0.87...3.0.6)

Updates `com.jayway.jsonpath:json-path` from 2.9.0 to 3.0.0
- [Release notes](https://github.com/jayway/JsonPath/releases)
- [Changelog](https://github.com/json-path/JsonPath/blob/master/changelog.md)
- [Commits](json-path/JsonPath@json-path-2.9.0...json-path-3.0.0)

Updates `org.json-structure:json-structure` from 0.5.5 to 0.8.0
- [Release notes](https://github.com/json-structure/sdk/releases)
- [Changelog](https://github.com/json-structure/sdk/blob/master/CHANGELOG.md)
- [Commits](json-structure/sdk@v0.5.5...v0.8.0)

Updates `org.slf4j:slf4j-api` from 2.0.17 to 2.0.18

Updates `org.slf4j:slf4j-nop` from 2.0.17 to 2.0.18

Updates `org.jsoup:jsoup` from 1.18.3 to 1.22.2
- [Release notes](https://github.com/jhy/jsoup/releases)
- [Changelog](https://github.com/jhy/jsoup/blob/master/CHANGES.md)
- [Commits](jhy/jsoup@jsoup-1.18.3...jsoup-1.22.2)

Updates `org.graalvm.polyglot:polyglot` from 24.2.1 to 25.1.3
- [Release notes](https://github.com/oracle/graal/releases)
- [Commits](oracle/graal@vm-24.2.1...vm-25.1.3)

Updates `org.graalvm.polyglot:js` from 24.2.1 to 25.1.3
- [Release notes](https://github.com/oracle/graal/releases)
- [Commits](oracle/graal@vm-24.2.1...vm-25.1.3)

Updates `org.graalvm.js:js-community` from 24.2.1 to 25.1.3
- [Release notes](https://github.com/oracle/graal/releases)
- [Commits](oracle/graal@vm-24.2.1...vm-25.1.3)

Updates `org.graalvm.polyglot:js` from 24.2.1 to 25.1.3
- [Release notes](https://github.com/oracle/graal/releases)
- [Commits](oracle/graal@vm-24.2.1...vm-25.1.3)

Updates `org.graalvm.js:js-community` from 24.2.1 to 25.1.3
- [Release notes](https://github.com/oracle/graal/releases)
- [Commits](oracle/graal@vm-24.2.1...vm-25.1.3)

Updates `org.junit.jupiter:junit-jupiter` from 5.12.2 to 6.1.2
- [Release notes](https://github.com/junit-team/junit-framework/releases)
- [Commits](junit-team/junit-framework@r5.12.2...r6.1.2)

Updates `info.picocli:picocli` from 4.7.6 to 4.7.7
- [Release notes](https://github.com/remkop/picocli/releases)
- [Changelog](https://github.com/remkop/picocli/blob/main/RELEASE-NOTES.md)
- [Commits](remkop/picocli@v4.7.6...v4.7.7)

Updates `org.apache.maven.plugins:maven-compiler-plugin` from 3.14.0 to 3.15.0
- [Release notes](https://github.com/apache/maven-compiler-plugin/releases)
- [Commits](apache/maven-compiler-plugin@maven-compiler-plugin-3.14.0...maven-compiler-plugin-3.15.0)

Updates `org.apache.maven.plugins:maven-surefire-plugin` from 3.5.3 to 3.5.6
- [Release notes](https://github.com/apache/maven-surefire/releases)
- [Commits](apache/maven-surefire@surefire-3.5.3...surefire-3.5.6)

Updates `org.jacoco:jacoco-maven-plugin` from 0.8.13 to 0.8.15
- [Release notes](https://github.com/jacoco/jacoco/releases)
- [Commits](jacoco/jacoco@v0.8.13...v0.8.15)

Updates `org.codehaus.mojo:flatten-maven-plugin` from 1.6.0 to 1.7.3
- [Release notes](https://github.com/mojohaus/flatten-maven-plugin/releases)
- [Commits](mojohaus/flatten-maven-plugin@1.6.0...1.7.3)

Updates `org.apache.maven.plugins:maven-javadoc-plugin` from 3.6.3 to 3.12.0
- [Release notes](https://github.com/apache/maven-javadoc-plugin/releases)
- [Commits](apache/maven-javadoc-plugin@maven-javadoc-plugin-3.6.3...maven-javadoc-plugin-3.12.0)

Updates `org.apache.maven.plugins:maven-source-plugin` from 3.3.1 to 3.4.0
- [Release notes](https://github.com/apache/maven-source-plugin/releases)
- [Commits](apache/maven-source-plugin@maven-source-plugin-3.3.1...maven-source-plugin-3.4.0)

Updates `org.sonatype.central:central-publishing-maven-plugin` from 0.10.0 to 0.11.0
- [Commits](https://github.com/sonatype/central-publishing-maven-plugin/commits)

Updates `org.apache.maven.plugins:maven-gpg-plugin` from 3.1.0 to 3.2.8
- [Release notes](https://github.com/apache/maven-gpg-plugin/releases)
- [Commits](apache/maven-gpg-plugin@maven-gpg-plugin-3.1.0...maven-gpg-plugin-3.2.8)

Updates `org.slf4j:slf4j-nop` from 2.0.17 to 2.0.18

Updates `org.restlet:org.restlet` from 2.7.0-m2 to 2.7.0-m3

Updates `io.modelcontextprotocol.sdk:mcp-core` from 1.0.0 to 2.0.0
- [Release notes](https://github.com/modelcontextprotocol/java-sdk/releases)
- [Commits](modelcontextprotocol/java-sdk@v1.0.0...v2.0.0)

Updates `org.apache.maven.plugins:maven-jar-plugin` from 3.4.1 to 3.5.0
- [Release notes](https://github.com/apache/maven-jar-plugin/releases)
- [Commits](apache/maven-jar-plugin@maven-jar-plugin-3.4.1...maven-jar-plugin-3.5.0)

Updates `org.graalvm.buildtools:native-maven-plugin` from 0.10.3 to 1.1.4
- [Release notes](https://github.com/graalvm/native-build-tools/releases)
- [Commits](graalvm/native-build-tools@0.10.3...1.1.4)

Updates `org.commonmark:commonmark` from 0.24.0 to 0.29.0
- [Release notes](https://github.com/commonmark/commonmark-java/releases)
- [Changelog](https://github.com/commonmark/commonmark-java/blob/main/CHANGELOG.md)
- [Commits](commonmark/commonmark-java@commonmark-parent-0.24.0...commonmark-parent-0.29.0)

---
updated-dependencies:
- dependency-name: com.fasterxml.jackson.core:jackson-databind
  dependency-version: 2.22.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
- dependency-name: com.fasterxml.jackson.dataformat:jackson-dataformat-xml
  dependency-version: 2.22.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
- dependency-name: com.fasterxml.jackson.dataformat:jackson-dataformat-xml
  dependency-version: 2.22.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
- dependency-name: com.fasterxml.jackson.dataformat:jackson-dataformat-yaml
  dependency-version: 2.22.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
- dependency-name: com.fasterxml.jackson.dataformat:jackson-dataformat-yaml
  dependency-version: 2.22.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
- dependency-name: com.jayway.jsonpath:json-path
  dependency-version: 3.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-dependencies
- dependency-name: com.networknt:json-schema-validator
  dependency-version: 3.0.6
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-dependencies
- dependency-name: info.picocli:picocli
  dependency-version: 4.7.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: io.modelcontextprotocol.sdk:mcp-core
  dependency-version: 2.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-dependencies
- dependency-name: org.apache.maven.plugins:maven-compiler-plugin
  dependency-version: 3.15.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
- dependency-name: org.apache.maven.plugins:maven-gpg-plugin
  dependency-version: 3.2.8
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
- dependency-name: org.apache.maven.plugins:maven-jar-plugin
  dependency-version: 3.5.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
- dependency-name: org.apache.maven.plugins:maven-javadoc-plugin
  dependency-version: 3.12.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
- dependency-name: org.apache.maven.plugins:maven-source-plugin
  dependency-version: 3.4.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
- dependency-name: org.apache.maven.plugins:maven-surefire-plugin
  dependency-version: 3.5.6
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: org.codehaus.mojo:flatten-maven-plugin
  dependency-version: 1.7.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
- dependency-name: org.commonmark:commonmark
  dependency-version: 0.29.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
- dependency-name: org.graalvm.buildtools:native-maven-plugin
  dependency-version: 1.1.4
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: all-dependencies
- dependency-name: org.graalvm.js:js-community
  dependency-version: 25.1.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-dependencies
- dependency-name: org.graalvm.js:js-community
  dependency-version: 25.1.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-dependencies
- dependency-name: org.graalvm.polyglot:js
  dependency-version: 25.1.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-dependencies
- dependency-name: org.graalvm.polyglot:js
  dependency-version: 25.1.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-dependencies
- dependency-name: org.graalvm.polyglot:polyglot
  dependency-version: 25.1.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-dependencies
- dependency-name: org.jacoco:jacoco-maven-plugin
  dependency-version: 0.8.15
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: org.json-structure:json-structure
  dependency-version: 0.7.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
- dependency-name: org.jsoup:jsoup
  dependency-version: 1.22.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
- dependency-name: org.junit.jupiter:junit-jupiter
  dependency-version: 6.1.2
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-dependencies
- dependency-name: org.restlet:org.restlet
  dependency-version: 2.7.0-m3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: org.slf4j:slf4j-api
  dependency-version: 2.0.18
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: org.slf4j:slf4j-nop
  dependency-version: 2.0.18
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: org.slf4j:slf4j-nop
  dependency-version: 2.0.18
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: org.sonatype.central:central-publishing-maven-plugin
  dependency-version: 0.11.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot changed the title chore(deps): bump the all-dependencies group with 27 updates chore(deps): bump the all-dependencies group across 1 directory with 27 updates Jul 16, 2026
@dependabot
dependabot Bot force-pushed the dependabot/maven/all-dependencies-7ad61a46c8 branch from b598483 to b8bf4f3 Compare July 16, 2026 13:26
@dependabot
dependabot Bot requested a review from a team as a code owner July 16, 2026 13:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants