Bump the dev-dependencies group across 1 directory with 11 updates

[dependabot]

Bumps the dev-dependencies group with 11 updates in the / directory:

Package	From	To
com.sun.xml.bind:jaxb-impl	2.2	4.0.0
com.sun.xml.bind:jaxb-xjc	2.2	4.0.0
commons-io:commons-io	2.17.0	2.18.0
org.glassfish.jaxb:jaxb-runtime	2.3.5	4.0.0
net.sf.saxon:Saxon-HE	9.4	12.0
gov.nasa.pds:pds3-product-tools	4.4.0	4.4.2
org.apache.tika:tika-core	2.8.0	3.0.0
org.springframework:spring-core	6.1.14	6.2.1
org.springframework:spring-context	6.1.14	6.2.1
com.sun.xml.bind:jaxb-core	2.3.0	4.0.0
org.apache.logging.log4j:log4j-core	2.24.0	2.24.3

Updates com.sun.xml.bind:jaxb-impl from 2.2 to 4.0.0

Updates com.sun.xml.bind:jaxb-xjc from 2.2 to 4.0.0

Updates commons-io:commons-io from 2.17.0 to 2.18.0

Updates org.glassfish.jaxb:jaxb-runtime from 2.3.5 to 4.0.0

Updates net.sf.saxon:Saxon-HE from 9.4 to 12.0

Updates gov.nasa.pds:pds3-product-tools from 4.4.0 to 4.4.2

Changelog

Sourced from gov.nasa.pds:pds3-product-tools's changelog.

release/4.4.2 (2024-11-07)

Full Changelog

v4.4.1 (2024-10-15)

Full Changelog

Commits

• af182c7 Update changelog
• 4b39cb1 Update requirements
• ca98d66 Update changelog
• d4cdf9d Merge pull request #75 from NASA-PDS/dependabot/maven/org.apache.logging.log4...
• 652c6bb Setting snapshot version for 4.5.1-SNAPSHOT
• d76f7dd Committing poms for stable release
• b095102 Update changelog
• 4114f40 Update requirements
• 910ca25 Bump org.apache.logging.log4j:log4j-core from 2.24.0 to 2.24.1
• 3c67881 Update changelog
• Additional commits viewable in compare view

Updates org.apache.tika:tika-core from 2.8.0 to 3.0.0

Changelog

Sourced from org.apache.tika:tika-core's changelog.

Release 4.0.0-BETA1 - ??? BREAKING CHANGES

• Headers are no longer injected into the body/content of MSG files (TIKA-4345). Please open a ticket if you need this behavior across email formats.

Release 3.1.0 - ??

• Allow users to turn off the injection of some headers into the content stream of MSG files (TIKA-4345).

• Add a wrapper for Google's magika detector (TIKA-4344).

• Add support for MachO via Alexey Pelykh (TIKA-4309).

• Add logic to inject spaces in XPS files based on font widths via Ruairidh Williamson (TIKA-4315).

• Mime type "application/json" is now a sub class of "text/javascript" not "application/javascript" (TIKA-4336)

• Remove tagsoup from the project entirely. Note that some of the tags produced by the SourceCodeParser are slightly different (TIKA-4338)

Release 3.0.0 - 10/15/2024

• Fix regression in TextAndCSVParser (TIKA-4278).

Release 3.0.0-BETA2 - 07/09/2024

BREAKING CHANGES

• Updated PST parser to use standard Message metadata keys and improved handling of embedded files (TIKA-4248).

• Convenience methods for XML readers were moved from ParseContext to XMLReaderUtils (TIKA-4259).

Other Changes

• Add GRPC server (TIKA-4181).

• Improved configurability in tika-pipes (TIKA-4243).

• Add optional PST parser based on libpst/readpst (TIKA-4250).

Release 3.0.0-BETA - 12/01/2023

BREAKING CHANGES

• Require Java 11 (TIKA-4128).

... (truncated)

Commits

• 9bcb38d [maven-release-plugin] prepare release 3.0.0-rc1
• 8397293 revert for another release attempt
• a6858b4 [maven-release-plugin] prepare for next development iteration
• 3f8a029 [maven-release-plugin] prepare release 3.0.0-rc1
• 3bde500 add jetty from solr emitter
• 578e3e9 rollback for another release attempt.
• 1cfc313 [maven-release-plugin] prepare for next development iteration
• 7ffaf12 [maven-release-plugin] prepare release 3.0.0-rc1
• 0a548d6 rollback for another release attempt.
• d6ce501 Merge remote-tracking branch 'origin/main'
• Additional commits viewable in compare view

Updates org.springframework:spring-core from 6.1.14 to 6.2.1

Release notes

Sourced from org.springframework:spring-core's releases.

v6.2.1

⭐ New Features

• Implement toString() in TestBeanOverrideHandler #34072
• Log alias removal in DefaultListableBeanFactory #34070
• Log warning when one Bean Override overrides another Bean Override #34056
• Introduce "unsafeAllocated" flag in TypeHint #34055
• Cannot assert status reason phrase with MockMvcTester #34016
• Improve toString for reactive ScheduledTask #34010
• Optimize sending requests without a body in RestClient and WebClient with Reactor Netty #34003
• Add missing @Contract annotation to ObjectUtils#isEmpty #33984
• OptionalValidatorFactoryBean suppresses Hibernate Validator configuration failures too much #33979
• Support Flux<ServerSentEvent<Fragment>> in WebFlux #33975
• Update in FragmentsRendering to names of static methods #33974
• Honor @Fallback semantics for Test Bean Overrides #33924
• AdvisedSupport.MethodCacheKey should check for logical equality as well as identity #33915
• Fail with full description for XML diff in XmlExpectationsHelper #33827
• MapMethodProcessor should only resolve arguments of type Map or the ModelMap hierarchy #33160

🐞 Bug Fixes

• Support binding from request headers via constructor args #34073
• Unable to configure custom scheduler for @Scheduled annotation #34058
• Identical Bean Overrides are silently allowed #34054
• OOM due to NoTransactionInContextException in reactive pipeline #34048
• Priority header causes binding exception after upgrade to Spring Framework 6.2.0 #34039
• @MockitoBean incorrectly injects supertype into subtype field #34025
• NestedPlaceholder are not recursively resolved if the fallback is a placeholder #34020
• AOT no longer generates BeanInstanceSupplier signature for a CGLIB proxy with its public type #33998
• Nested transaction support via savepoints is broken in Oracle database #33987
• Proxy created with IntroductionInterceptor but without target always throws an exception #33985
• ApplicationListener no longer invoked for generic ApplicationEvent with 6.2.0 #33982
• Error handling override in DefaultResponseErrorHandler ignored after upgrade to 6.2.0 #33980
• BeanCurrentlyInCreationException is thrown when multiple threads simultaneously try to create a FactoryBean #33972
• HandshakeWebSocketService assumes jakarta websocket is present #33970
• @Value cases SpringCGLIB$$0 required a bean of type java.lang.String that could not be found in Native compile when migrating to SB 3.4 #33960
• PathMatchingResourcePatternResolver should not log directory-skip messages at info level #33956
• Avoid infinite recursion in BeanValidationBeanRegistrationAotProcessor with recursive generics #33950
• Skip runtime hint registration for validation constraint with missing dependencies #33949
• Move Kotlin value class unboxing to InvocableHandlerMethod #33943
• MockReset strategy is no longer honored for @MockitoBean and @MockitoSpyBean #33941
• TypeDescriptor with recursive generics triggers infinite recursion in ResolvableType.equals/hashCode #33932
• RestClient does not expose full URI template as attribute #33928
• Bean Overrides like @MockitoBean and @TestBean should not be allowed on static fields #33922
• Regression in duplicate beans with different method names #33920

📔 Documentation

• Fix link to MockMvcBuilders in reference documentation #34031
• Fix a typo in the filters documentation #33959

... (truncated)

Commits

• b4f10d4 Release v6.2.1
• 0aa721c Polishing
• 63af572 Upgrade to Jackson 2.18.2, RxJava 3.1.10, Checkstyle 10.20.2
• 72c2343 Avoid deprecated ListenableFuture name for internal class
• 8aeced9 Support header filtering in web data binding
• 70c326e Support headers in DataBinding via constructor args
• 7b4e19c Make ExtendedServletRequestDataBinder public
• 3b95d2c Support Flux<ServerSentEvent> in WebFlux
• 640e570 Minor refactoring in ServerSentEvent
• 66f33a8 MapMethodProcessor supportsParameter is more specific
• Additional commits viewable in compare view

Updates org.springframework:spring-context from 6.1.14 to 6.2.1

Release notes

Sourced from org.springframework:spring-context's releases.

v6.2.1

⭐ New Features

• Implement toString() in TestBeanOverrideHandler #34072
• Log alias removal in DefaultListableBeanFactory #34070
• Log warning when one Bean Override overrides another Bean Override #34056
• Introduce "unsafeAllocated" flag in TypeHint #34055
• Cannot assert status reason phrase with MockMvcTester #34016
• Improve toString for reactive ScheduledTask #34010
• Optimize sending requests without a body in RestClient and WebClient with Reactor Netty #34003
• Add missing @Contract annotation to ObjectUtils#isEmpty #33984
• OptionalValidatorFactoryBean suppresses Hibernate Validator configuration failures too much #33979
• Support Flux<ServerSentEvent<Fragment>> in WebFlux #33975
• Update in FragmentsRendering to names of static methods #33974
• Honor @Fallback semantics for Test Bean Overrides #33924
• AdvisedSupport.MethodCacheKey should check for logical equality as well as identity #33915
• Fail with full description for XML diff in XmlExpectationsHelper #33827
• MapMethodProcessor should only resolve arguments of type Map or the ModelMap hierarchy #33160

🐞 Bug Fixes

• Support binding from request headers via constructor args #34073
• Unable to configure custom scheduler for @Scheduled annotation #34058
• Identical Bean Overrides are silently allowed #34054
• OOM due to NoTransactionInContextException in reactive pipeline #34048
• Priority header causes binding exception after upgrade to Spring Framework 6.2.0 #34039
• @MockitoBean incorrectly injects supertype into subtype field #34025
• NestedPlaceholder are not recursively resolved if the fallback is a placeholder #34020
• AOT no longer generates BeanInstanceSupplier signature for a CGLIB proxy with its public type #33998
• Nested transaction support via savepoints is broken in Oracle database #33987
• Proxy created with IntroductionInterceptor but without target always throws an exception #33985
• ApplicationListener no longer invoked for generic ApplicationEvent with 6.2.0 #33982
• Error handling override in DefaultResponseErrorHandler ignored after upgrade to 6.2.0 #33980
• BeanCurrentlyInCreationException is thrown when multiple threads simultaneously try to create a FactoryBean #33972
• HandshakeWebSocketService assumes jakarta websocket is present #33970
• @Value cases SpringCGLIB$$0 required a bean of type java.lang.String that could not be found in Native compile when migrating to SB 3.4 #33960
• PathMatchingResourcePatternResolver should not log directory-skip messages at info level #33956
• Avoid infinite recursion in BeanValidationBeanRegistrationAotProcessor with recursive generics #33950
• Skip runtime hint registration for validation constraint with missing dependencies #33949
• Move Kotlin value class unboxing to InvocableHandlerMethod #33943
• MockReset strategy is no longer honored for @MockitoBean and @MockitoSpyBean #33941
• TypeDescriptor with recursive generics triggers infinite recursion in ResolvableType.equals/hashCode #33932
• RestClient does not expose full URI template as attribute #33928
• Bean Overrides like @MockitoBean and @TestBean should not be allowed on static fields #33922
• Regression in duplicate beans with different method names #33920

📔 Documentation

• Fix link to MockMvcBuilders in reference documentation #34031
• Fix a typo in the filters documentation #33959

... (truncated)

Commits

• b4f10d4 Release v6.2.1
• 0aa721c Polishing
• 63af572 Upgrade to Jackson 2.18.2, RxJava 3.1.10, Checkstyle 10.20.2
• 72c2343 Avoid deprecated ListenableFuture name for internal class
• 8aeced9 Support header filtering in web data binding
• 70c326e Support headers in DataBinding via constructor args
• 7b4e19c Make ExtendedServletRequestDataBinder public
• 3b95d2c Support Flux<ServerSentEvent> in WebFlux
• 640e570 Minor refactoring in ServerSentEvent
• 66f33a8 MapMethodProcessor supportsParameter is more specific
• Additional commits viewable in compare view

Updates com.sun.xml.bind:jaxb-core from 2.3.0 to 4.0.0

Updates org.apache.logging.log4j:log4j-core from 2.24.0 to 2.24.3

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
net.sf.saxon:Saxon-HE	[>= 12.3.a, < 12.4]
net.sf.saxon:Saxon-HE	[>= 12.a, < 13]
net.sf.saxon:Saxon-HE	[>= 11.a, < 12]
net.sf.saxon:Saxon-HE	[>= 10.a, < 11]
org.apache.tika:tika-core	[>= 2.9.a, < 2.10]
com.sun.xml.bind:jaxb-xjc	[>= 4.a, < 5]
com.sun.xml.bind:jaxb-impl	[>= 4.a, < 5]
com.sun.xml.bind:jaxb-core	[>= 4.a, < 5]
org.glassfish.jaxb:jaxb-runtime	[>= 4.a, < 5]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.