Bump the dependencies group with 8 updates

[dependabot]

Bumps the dependencies group with 8 updates:

Package	From	To
commons-io:commons-io	2.13.0	2.14.0
de.fraunhofer.iosb.ilt:FROST-Client-Dynamic	2.4	2.5
org.eclipse.jetty:jetty-servlet	10.0.16	10.0.17
org.keycloak:keycloak-servlet-filter-adapter	22.0.3	22.0.4
org.liquibase:liquibase-core	4.23.2	4.24.0
org.testcontainers:junit-jupiter	1.19.0	1.19.1
org.testcontainers:postgresql	1.19.0	1.19.1
com.diffplug.spotless:spotless-maven-plugin	2.39.0	2.40.0

Updates commons-io:commons-io from 2.13.0 to 2.14.0

Updates de.fraunhofer.iosb.ilt:FROST-Client-Dynamic from 2.4 to 2.5

Commits

• See full diff in compare view

Updates org.eclipse.jetty:jetty-servlet from 10.0.16 to 10.0.17

Release notes

Sourced from org.eclipse.jetty:jetty-servlet's releases.

10.0.17

Changelog

• #10679 - Review HTTP/2 rate control
• #10547 - Cannot customize Executor on WebSocketClient
• #10545 - Fixed deadlock in class initialization seen on JDK21.
• #10511 - Allow session idle timeout to be configured on authentication.
• #10473 - Startup Script reports ok too fast, and doesn't wait for actual start of Jetty
• #10365 - Cleanup of start properties usages in jetty-10.0.x

Commits

• af15f12 Updating to version 10.0.17
• f8b7f48 Merge remote-tracking branch 'origin/fix/10.0.x/rollback-jdk21-requirement' i...
• 67b0778 Issue #9777 - CrossOriginFilter does not return Vary header on no-cors mode.
• dbb9451 Fixes #10679 - Review HTTP/2 rate control. (#10681)
• 4670d3e Rollback JDK21 requirements during Compile + Jar creation.
• 90fdd42 Update details on how to include dependabot PRs in a release (#10659)
• a22174c Merge pull request #10632 from eclipse/dependabot/maven/jetty-10.0.x/org.apac...
• 9c012d1 Merge pull request #10631 from eclipse/dependabot/maven/jetty-10.0.x/maven.re...
• 0d730aa Bump org.apache.maven.plugins:maven-enforcer-plugin from 3.4.0 to 3.4.1
• b5ecca2 Bump maven.resolver.version from 1.9.15 to 1.9.16
• Additional commits viewable in compare view

Updates org.keycloak:keycloak-servlet-filter-adapter from 22.0.3 to 22.0.4

Updates org.liquibase:liquibase-core from 4.23.2 to 4.24.0

Release notes

Sourced from org.liquibase:liquibase-core's releases.

Liquibase v4.24.0

Liquibase 4.24.0 is a major release

[!IMPORTANT] For Liquibase Pro native executor users, if you've experienced checksum issues in Liquibase 4.19.0 through 4.23.1, please skip those releases and upgrade to this release, Liquibase 4.24.0.

[!NOTE] See the Liquibase 4.24.0 Release Notes for the complete set of release information.

Notable Changes

[PRO]

Liquibase Flows

• Flow file variables are now shared across "nested" flow files and can be passed through multiple flow files.
• Flow files running quality checks will now exit with a return code from the highest return code triggered by any check.

Structured Logging (Observability)

• You can now add custom (user-defined) tags to your structured logs. These tags can be used later to segment your reporting. For instance, you can add tags that indicate the team, pipeline, or environment (and any other attributes that are meaningful to your organization) when reporting on Liquibase events.
• Custom data is now included in every log message. This enables you to use dashboard queries and reports, which depend on these custom key:value pairs.

Security Improvement

• Sensitive information is now obfuscated for people using passwords in their JDBC URL strings in structured logging.

[OSS and PRO]

• Database platform improvements for: SQL Anywhere, MySQL, MariaDB, Oracle, DB2 LUW, DB2 z/OS, PostgreSQL, H2, and HSQLDB.
• Performance improvements
• JAVA API improvements
• General Enhancements
  • The generate-changelog and diff-changelog commands now support the --labels and --contextFilter arguments. The specified values will be included as attributes for each generated changeset.
  • The diff, diff-changelog, and snapshot-reference commands now allow you to specify the referenceLiquibaseCatalogName and referenceLiquibaseSchemaName arguments.
  • The update command summary reports that you can enable with the --show-summary argument can now be selectively sent to the console, log, or all with the --show-summary-output argument (prior to this release, they went to both the console and log).
  • The includeAll tag now supports an optional endsWithFilter attribute that directs Liquibase to only include files ending with the value specified by the new attribute. All other files located by the specified path attribute will be skipped and will not be included as deployable changes.
  • The Maven integration now supports the logLevel property. This gives Maven integration users control over the severity level of log messages sent to the Liquibase log file.

🚀 Changelog

[PRO]

• DAT-15343 Allow logFile and logLevel to be specified as globalArgs to Action by @​wwillard7800 in liquibase/liquibase-pro#1172
• DAT-15799: show flow-specific userMetadata in all log messages executed as part of Flow command execution by @​StevenMassaro in liquibase/liquibase-pro#1202
• DAT-15130 Make Flow variables available in called flows by @​wwillard7800 in liquibase/liquibase-pro#1178
• Add an explicit FlowFile constructor by @​wwillard7800 in liquibase/liquibase-pro#1207
• DAT-15753 Handle flow exit code when both drift and QC checks are run by @​wwillard7800 in liquibase/liquibase-pro#1184
• DAT-15455 Refactor ChangelogRewriters to follow general Factory approach by @​vitaliimak in liquibase/liquibase-pro#1195
• DAT-15860: obfuscate user/pass in urls entered in MDC by @​StevenMassaro in liquibase/liquibase-pro#1233
• DAT-10223: use syntax which allows for parsing multiple SQL statements in a single changeset by @​StevenMassaro in liquibase/liquibase-pro#1160
• DAT-12612: add Lombok by @​StevenMassaro in liquibase/liquibase-pro#1166
• DAT-15572: custom log data key-value pairs are injected multiple times per operation by @​StevenMassaro in liquibase/liquibase-pro#1150
• DAT-15214: custom log data property substitution using environment variables by @​StevenMassaro in liquibase/liquibase-pro#1165
• DAT-15471 Implement a global severity for drift exit code by @​wwillard7800 in liquibase/liquibase-pro#1163
• DAT-12827 Always honor end delimiter for SQLPLUS by @​wwillard7800 in liquibase/liquibase-pro#1169
• DAT-15367 Added build directory for Azure dependencies by @​wwillard7800 in liquibase/liquibase-pro#1121

... (truncated)

Changelog

Sourced from org.liquibase:liquibase-core's changelog.

Liquibase 4.24.0 is a major release

New Features

• (#4574) Implement showSummaryOutput parameter @​EvaristeGalois11
• (#4395) Improve update summary usability @​EvaristeGalois11
• (#4697) Replacing special constants specific to SQL Anywhere by commonly supported JDBC Escape Functions @​mkarg
• (#4805) include tag in history tabular output (DAT-15244) @​StevenMassaro
• (#4692) add update report (DAT-15576) @​StevenMassaro
• (#4352) Adding support to parameters referenceLiquibaseCatalogName and referenceLiquibaseSchemaName. @​filipelautert
• (#3978) Introducing removeChangeSetProperty feature @​kirangodishala
• (#4461) support concurrent build in maven plugin @​piotrwielgolaski-tomtom
• (#4537) SQL Anywhere: Switching off view definition checks to allow creation of dependent views even if dependency does not yet exist. @​mkarg
• (#4658) Upgrade installer version to 17.0.8+7 @​filipelautert
• (#4402) New Feature: Add an endsWithFilter attribute to includeAll @​jasonlyle88
• (#4387) Use more parameter markers for DB2z catalogue queries @​MichaelKern-IVV
• (#4148) maven-plugin: Support increasing maven log level @​mensinda
• (#4534) Fix database test system external driver load. @​filipelautert
• (#4660) Add labels/contexts arguments to diffChangelog and generateChangelog change sets DAT-14793 @​wwillard7800
• (#4680) Allow both include and includeAll to appear in modifyChangeSets tag @​wwillard7800
• (#4659) DAT-15646 DevOps - Reusable Debian Package Creation Workflow Migration @​jandroav
• (#4605) custom log data key-value pairs are injected multiple times per operation (DAT-15572) @​StevenMassaro
• (#4628) DAT -15524 Clear-Checksums implementation using command scope @​MalloD12
• (#4905) Check for duplicate core and commercial JARs DAT-15837 @​wwillard7800
• (#4799) parameter binding for DB2luw to improve performance and other trifles @​MichaelKern-IVV
• (#4926) Adding properties to the update report template to allow all the update family commands to use reports DAT-15638 @​wwillard7800
• (#4688) MySQL/MariaDB add extra info for date/timestamp columns for the diffChangeLog @​filipelautert
• (#4579) Use native oracle BOOLEAN for >=23c | fixes #4576 @​mensinda
• (#4834) Optimise the logic for tableIsEmpty check constraint @​filipelautert
• (#4729) DAT-15603 Attach Azure jar to liquibase release artifacts @​jandroav

Bug Fixes

• (#4827) Handle XML data types for DB2 DAT-12878 @​wwillard7800
• (#4812) More consistent message when included file is empty DAT-15551 @​wwillard7800
• (#4670) Fixed: Fails to detect LONG VARCHAR as CLOB and LONG BINARY as BLOB @​mkarg
• (#4648) Fixed: SQL Anywhere reports fancy precision with LONG NVARCHAR @​mkarg
• (#4845) Fix liquibase.bat java home handling under Windows @​filipelautert
• (#4726) Allow update command to handle additional properties that are passed on the command line DAT-15769 @​wwillard7800
• (#4841) Update README link to contribution docs @​nwcm
• (#4589) Fixes JdbcExecutor's uses of RawParameterizedSqlStatement @​andrew-simmons
• (#4683) Fixed: #4682 - MSSQL: Doesn't support (n CHAR) syntax, but only (n) syntax @​mkarg
• (#4798) Fix poor performance of listunrunchangesets @​filipelautert
• (#4803) Fix liquibase 4.23.1 won't work on windows if there is no JAVA_HOME system variable set @​filipelautert
• (#4502) Fixed: generateChangelog creates invalid changelog @​mkarg
• (#4772) Make sure that the correct argument name is displayed in help for commands with aliases DAT-15681 @​wwillard7800
• (#4441) Fix primaryKeyTablespace when attribute value is an empty string @​delayk
• (#4651) Fixing issue #4650 @​mkarg
• (#4404) enable REPLACE OR EXISTS for procedures on DB2 @​MichaelKern-IVV
• (#4541) remove dependency on javax.activation @​filipelautert

... (truncated)

Commits

• 44ad21c Update re-version.sh
• 49a2bd8 GitHub action fix re version2 (#4980)
• 01a0081 GitHub action fix re version2 (#4979)
• 0850ed3 GitHub action fix re version2 (#4978)
• 8d462d7 GitHub action fix re version2 (#4977)
• 9a349b9 GitHub action fix re version2 (#4976)
• 98a6226 Update create-release.yml change to needs.setup (#4975)
• 5cd3e8e fix re-version.sh to accept release from specific branches (#4973)
• 9138b73 Merge remote-tracking branch 'origin/master' into release_4_24_0
• acdd0ea Add XSD file for 4.24.0 release (#4968)
• Additional commits viewable in compare view

Updates org.testcontainers:junit-jupiter from 1.19.0 to 1.19.1

Release notes

Sourced from org.testcontainers:junit-jupiter's releases.

1.19.1

Testcontainers for Java 1.19.1

Core

• Allow to define a custom ImagePullPolicy via configuration (#7520) @​eddumelendez
• Override ChainedImageNameSubstitutor toString (#7522) @​eddumelendez
• Log image pull and container startup time independently (#7455) @​eddumelendez

Modules

• New MinIO module (#7440) @​frozenwizard

Redpanda

• Additional listener should inherit the configured authentication method (#7594) @​lburgazzoli

What's Changed

• Migrate examples to junit5 (#7417) @​samed-bicer

☠️ Deprecations

• Deprecate CLI utility methods in RabbitMQ module (#7588) @​eddumelendez
• Deprecate withSecretInVault (#7576) @​eddumelendez

📖 Documentation

• Proposing Update to index.md - Env Settings for Rancher Desktop (#7591) @​sunilarjun
• Add docs for copyFile API (#4661) @​kiview
• Add section for dependency upgrades in PR template (#7577) @​eddumelendez
• [Docs] GCloud: Add BigQuery Client creation (#7528) @​fabriciorby
• Add docs to run Testcontainers using Podman (#7447) @​eddumelendez

📦 Dependency updates

• Combined dependencies PR (#7587) @​eddumelendez
• Update guava version to 32.1.2-jre (#7534) @​eddumelendez
• Combined dependencies PR (#7584) @​eddumelendez
• Combined dependencies PR (#7519) @​eddumelendez
• Combined dependencies PR (#7500) @​eddumelendez
• Combined dependencies PR (#7496) @​eddumelendez
• Combined dependencies PR (#7494) @​eddumelendez

Commits

• dd1427e Add maven central badge in readme file
• 4c83a54 Deprecate CLI utility methods in RabbitMQ module (#7588)
• 4296b5b Additional listeners should inherit the configured authentication method (#7594)
• 202680e Proposing Update to index.md - Env Settings for Rancher Desktop (#7591)
• 209ab2e Add docs for copyFile API (#4661)
• 8b6776c Allow to define a custom ImagePullPolicy via configuration (#7520)
• c4d1240 Merge pull request #7587 from testcontainers/combined-pr-branch
• 29ad500 Merge remote-tracking branch 'origin/dependabot/gradle/examples/com.gradle.en...
• b5f11d2 Merge remote-tracking branch 'origin/dependabot/gradle/com.gradle.enterprise-...
• 94a2155 Merge remote-tracking branch 'origin/dependabot/gradle/examples/org.seleniumh...
• Additional commits viewable in compare view

Updates org.testcontainers:postgresql from 1.19.0 to 1.19.1

Release notes

Sourced from org.testcontainers:postgresql's releases.

1.19.1

Testcontainers for Java 1.19.1

Core

• Allow to define a custom ImagePullPolicy via configuration (#7520) @​eddumelendez
• Override ChainedImageNameSubstitutor toString (#7522) @​eddumelendez
• Log image pull and container startup time independently (#7455) @​eddumelendez

Modules

• New MinIO module (#7440) @​frozenwizard

Redpanda

• Additional listener should inherit the configured authentication method (#7594) @​lburgazzoli

What's Changed

• Migrate examples to junit5 (#7417) @​samed-bicer

☠️ Deprecations

• Deprecate CLI utility methods in RabbitMQ module (#7588) @​eddumelendez
• Deprecate withSecretInVault (#7576) @​eddumelendez

📖 Documentation

• Proposing Update to index.md - Env Settings for Rancher Desktop (#7591) @​sunilarjun
• Add docs for copyFile API (#4661) @​kiview
• Add section for dependency upgrades in PR template (#7577) @​eddumelendez
• [Docs] GCloud: Add BigQuery Client creation (#7528) @​fabriciorby
• Add docs to run Testcontainers using Podman (#7447) @​eddumelendez

📦 Dependency updates

• Combined dependencies PR (#7587) @​eddumelendez
• Update guava version to 32.1.2-jre (#7534) @​eddumelendez
• Combined dependencies PR (#7584) @​eddumelendez
• Combined dependencies PR (#7519) @​eddumelendez
• Combined dependencies PR (#7500) @​eddumelendez
• Combined dependencies PR (#7496) @​eddumelendez
• Combined dependencies PR (#7494) @​eddumelendez

Commits

• dd1427e Add maven central badge in readme file
• 4c83a54 Deprecate CLI utility methods in RabbitMQ module (#7588)
• 4296b5b Additional listeners should inherit the configured authentication method (#7594)
• 202680e Proposing Update to index.md - Env Settings for Rancher Desktop (#7591)
• 209ab2e Add docs for copyFile API (#4661)
• 8b6776c Allow to define a custom ImagePullPolicy via configuration (#7520)
• c4d1240 Merge pull request #7587 from testcontainers/combined-pr-branch
• 29ad500 Merge remote-tracking branch 'origin/dependabot/gradle/examples/com.gradle.en...
• b5f11d2 Merge remote-tracking branch 'origin/dependabot/gradle/com.gradle.enterprise-...
• 94a2155 Merge remote-tracking branch 'origin/dependabot/gradle/examples/org.seleniumh...
• Additional commits viewable in compare view

Updates com.diffplug.spotless:spotless-maven-plugin from 2.39.0 to 2.40.0

Changelog

Sourced from com.diffplug.spotless:spotless-maven-plugin's changelog.

[2.40.0] - 2023-07-17

Added

• Added support for Protobuf formatting based on Buf. (#1208)
• enum OnMatch { INCLUDE, EXCLUDE } so that FormatterStep.filterByContent can not only include based on the pattern but also exclude. (#1749)

Fixed

• Update documented default semanticSort to false. (#1728)

Changes

• Bump default cleanthat version to latest 2.13 -> 2.17. (#1734)
• Bump default ktlint version to latest 0.49.1 -> 0.50.0. (#1741)
  • Dropped support for ktlint 0.47.x following our policy of supporting two breaking changes at a time.
  • Dropped support for deprecated useExperimental parameter in favor of the ktlint_experimental property.

Commits

• 7be3ce0 Published lib/2.40.0
• 78a6dbc Implement buf format Gradle step (#1208)
• 0fc9036 Add warnings that buf must be the first step.
• 0943a81 Fix BufStepTest for the changes we've had in test infrastructure.
• 6e7556f spotlessApply
• 57fc5c8 Merge branch 'main' into add-buf-format
• 3d2d2b8 update default version
• 1b24f48 fix(deps): update dependency io.github.solven-eu.cleanthat:java to v2.17 (#1734)
• 3c1bb4c update link
• 0e3be7d update link
• Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
org.eclipse.jetty:jetty-servlet	[>= 11.a, < 12]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.