Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.

Rate-Limited

The following updates are currently rate-limited. To force their creation now, click on a checkbox below.

• Bump dependency org.junit:junit-bom to v6.1.0
• Bump dependency org.pitest:pitest-maven to v1.24.0
• 🔐 Create all rate-limited PRs at once 🔐

Open

The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.

• Bump debian Docker tag to trixie-20260518
• Bump dependency org.apache.maven.plugins:maven-enforcer-plugin to v3.6.3
• Click on this checkbox to rebase all open PRs at once

Detected Dependencies

docker-compose (1)

docker-compose.yaml

dockerfile (3)

docker/images/java-agent/Dockerfile

docker/images/jenkins-controller/Dockerfile

docker/images/key-generator/Dockerfile (1)

• debian trixie-20260505 → [Updates: trixie-20260518]

github-actions (12)

.github/workflows/assign-pr.yml (1)

• kentaro-m/auto-assign-action v2.0.2

.github/workflows/check-md-links.yml (2)

• actions/checkout v6
• umbrelladocs/action-linkspector v1.5.1

.github/workflows/ci.yml (3)

• actions/checkout v6
• actions/setup-java v5
• stCarolas/setup-maven v5

.github/workflows/codeql.yml (7)

• actions/checkout v6
• actions/setup-java v5
• stCarolas/setup-maven v5
• github/codeql-action v4
• github/codeql-action v4
• advanced-security/filter-sarif v1
• github/codeql-action v4

.github/workflows/dependency-check.yml (5)

• actions/checkout v6
• actions/setup-java v5
• stCarolas/setup-maven v5
• actions/cache v5
• actions/upload-artifact v7

.github/workflows/enforce-labels.yml (1)

• mheap/github-action-required-labels v5

.github/workflows/quality-monitor-build.yml (4)

• actions/checkout v6
• actions/setup-java v5
• stCarolas/setup-maven v5
• actions/upload-artifact v7

.github/workflows/quality-monitor-comment-pr.yml (3)

• actions/checkout v6
• dawidd6/action-download-artifact v21
• uhafner/quality-monitor v4

.github/workflows/quality-monitor-comment.yml (3)

• actions/checkout v6
• dawidd6/action-download-artifact v21
• uhafner/quality-monitor v4

.github/workflows/run-release-drafter.yml (1)

• release-drafter/release-drafter v7.3.0

.github/workflows/sync-labels.yml (2)

• actions/checkout v6
• brpaz/action-label-syncer 0.2.0

.github/workflows/update-badges.yml (11)

• actions/checkout v6
• actions/setup-java v5
• stCarolas/setup-maven v5
• actions/cache v5
• uhafner/quality-monitor v4
• emibcn/badge-action v2.0.4
• emibcn/badge-action v2.0.4
• emibcn/badge-action v2.0.4
• emibcn/badge-action v2.0.4
• emibcn/badge-action v2.0.4
• ad-m/github-push-action master

maven (1)

pom.xml (52)

• net.bytebuddy:byte-buddy 1.18.8-jdk5
• org.junit:junit-bom 6.0.3 → [Updates: 6.1.0]
• org.mockito:mockito-bom 5.23.0
• com.github.spotbugs:spotbugs-annotations 4.9.8
• com.google.errorprone:error_prone_annotations 2.49.0
• org.apache.commons:commons-lang3 3.20.0
• commons-io:commons-io 2.22.0
• nl.jqno.equalsverifier:equalsverifier 4.5
• org.assertj:assertj-core 3.27.7
• com.tngtech.archunit:archunit-junit5 1.4.2
• org.slf4j:slf4j-simple 2.0.18
• com.github.ekryd.sortpom:sortpom-maven-plugin 4.0.0
• com.github.ferstl:depgraph-maven-plugin 4.0.3
• com.github.spotbugs:spotbugs-maven-plugin 4.9.8.3
• io.github.git-commit-id:git-commit-id-maven-plugin 10.0.0
• org.apache.maven.plugins:maven-checkstyle-plugin 3.6.0
• org.apache.maven.plugins:maven-compiler-plugin 3.15.0
• org.apache.maven.plugins:maven-dependency-plugin 3.10.0
• org.apache.maven.plugins:maven-enforcer-plugin 3.6.2 → [Updates: 3.6.3]
• org.apache.maven.plugins:maven-failsafe-plugin 3.5.5
• org.apache.maven.plugins:maven-gpg-plugin 3.2.8
• org.apache.maven.plugins:maven-jar-plugin 3.5.0
• org.apache.maven.plugins:maven-javadoc-plugin 3.12.0
• org.apache.maven.plugins:maven-pmd-plugin 3.28.0
• org.apache.maven.plugins:maven-release-plugin 3.3.1
• org.apache.maven.plugins:maven-resources-plugin 3.5.0
• org.apache.maven.plugins:maven-source-plugin 3.4.0
• org.assertj:assertj-assertions-generator-maven-plugin 2.2.0
• org.jacoco:jacoco-maven-plugin 0.8.14
• org.openrewrite.maven:rewrite-maven-plugin 6.39.0
• org.openrewrite.recipe:rewrite-testing-frameworks 3.35.3
• org.openrewrite.recipe:rewrite-static-analysis 2.34.1
• org.openrewrite.recipe:rewrite-migrate-java 3.34.1
• org.openrewrite.recipe:rewrite-recommendations 1.15.0
• org.owasp:dependency-check-maven 12.2.2
• org.pitest:pitest-maven 1.23.1 → [Updates: 1.24.0]
• org.pitest:pitest-junit5-plugin 1.2.3
• edu.hm.hafner:pitmute 1.1.0
• org.revapi:revapi-maven-plugin 0.15.1
• org.sonatype.central:central-publishing-maven-plugin 0.10.0
• org.apache.maven.plugins:maven-surefire-plugin 3.5.5
• com.h3xstream.findsecbugs:findsecbugs-plugin 1.14.0
• com.github.spotbugs:spotbugs 4.9.8
• com.puppycrawl.tools:checkstyle 13.4.2
• com.google.errorprone:error_prone_core 2.49.0
• com.uber.nullaway:nullaway 0.13.4
• org.mockito:mockito-errorprone 5.23.0
• edu.hm.hafner:pmd-core 7.24.0-metrics
• edu.hm.hafner:pmd-java 7.24.0-metrics
• net.sourceforge.pmd:pmd-javascript 7.24.0
• org.revapi:revapi-java 0.28.4
• org.revapi:revapi-reporter-json 0.5.1

npm (1)

package.json (3)

• remark-cli ^12.0.0
• remark-lint ^10.0.0
• remark-preset-lint-recommended ^7.0.0

---

• Check this box to trigger a request for Renovate to run again on this repository