Bump the dependencies group with 12 updates

[dependabot]

Bumps the dependencies group with 12 updates:

Package	From	To
org.slf4j:slf4j-api	2.0.9	2.0.11
ch.qos.logback:logback-classic	1.4.11	1.4.14
commons-io:commons-io	2.13.0	2.15.1
org.openjfx:javafx-fxml	20.0.2	21.0.1
org.openjfx:javafx-controls	20.0.2	21.0.1
org.geotools:gt-referencing	29.2	30.1
org.geotools:gt-epsg-hsql	29.2	30.1
org.codehaus.groovy:groovy	3.0.19	3.0.20
org.apache.maven.plugins:maven-compiler-plugin	3.11.0	3.12.1
org.apache.maven.plugins:maven-shade-plugin	3.5.0	3.5.1
io.github.git-commit-id:git-commit-id-maven-plugin	6.0.0	7.0.0
org.apache.maven.plugins:maven-javadoc-plugin	3.5.0	3.6.3

Updates org.slf4j:slf4j-api from 2.0.9 to 2.0.11

Updates ch.qos.logback:logback-classic from 1.4.11 to 1.4.14

Commits

• 407f935 prepare release 1.4.14
• 7018a36 fix missing deseialization filter init call, enable commented out test case
• 8a746eb start work on 1.4.14-SNAPSHOT
• 7ee000a prepare release 1.4.13
• 867bf58 remove superflus system.out call
• 88abf59 prepare release 1.4.12
• 2cd8cab cater for array size marked with -1
• 9c782b4 prevent DOS attacks using on malicious serialized input
• f6d690d further support for Virtual threads, issues 737
• 9a1fc44 add support for Virtual threads
• Additional commits viewable in compare view

Updates commons-io:commons-io from 2.13.0 to 2.15.1

Updates org.openjfx:javafx-fxml from 20.0.2 to 21.0.1

Updates org.openjfx:javafx-controls from 20.0.2 to 21.0.1

Updates org.geotools:gt-referencing from 29.2 to 30.1

Updates org.geotools:gt-epsg-hsql from 29.2 to 30.1

Updates org.codehaus.groovy:groovy from 3.0.19 to 3.0.20

Commits

• See full diff in compare view

Updates org.apache.maven.plugins:maven-compiler-plugin from 3.11.0 to 3.12.1

Release notes

Sourced from org.apache.maven.plugins:maven-compiler-plugin's releases.

3.12.1

🐛 Bug Fixes

• [MCOMPILER-567] - Fail to compile if the generated-sources/annotation… (#218) @​jorsol

📦 Dependency updates

• [MCOMPILER-568] - Bump plexusCompilerVersion from 2.14.1 to 2.14.2 (#220) @​dependabot

3.12.0

🚀 New features and improvements

• [MCOMPILER-562] - Add property maven.compiler.outputDirectory to CompilerMojo (#213) @​jGauravGupta
• [MCOMPILER-381] - Refactor incremental detection (#181) @​jorsol
• [MCOMPILER-542] - Clean JDK patch version in module-info.class (#208) @​jorsol
• [MCOMPILER-558] - compileSourceRoots in testCompile should be writable (#209) @​lorenzsimon
• [MCOMPILER-559] - Warn if overwriting the project's artifact's file to a different value (#211) @​gnodet
• [MCOMPILER-550] - make outputDirectory writable (#202) @​bmarwell
• [MCOMPILER-549] - Improve log message in case of recompilation - fix jenkins build (#203) @​slawekjaranowski
• [MCOMPILER-549] - Improve log message in case of recompilation (#201) @​BrowneMonke
• [MCOMPILER-391] - Use dep mgmt when resolving annotation processors and their deps (#180) @​psiroky
• [MCOMPILER-531] - Prepare for Java 20(-ea) (#184) @​slachiewicz

🐛 Bug Fixes

• [MCOMPILER-333] - Cleanup generated source files (#214) @​jorsol
• [MCOMPILER-544] - don't add items to classpath that are not used for that (#198) @​laeubi
• [MCOMPILER-547] - : Initialize pathElements to empty (#199) @​rovarga

📦 Dependency updates

• [MCOMPILER-564] - Bump plexusCompilerVersion from 2.13.0 to 2.14.1 (#216) @​dependabot
• [MCOMPILER-557] - Upgrade maven-plugin parent to 41 - fix build (#210) @​slawekjaranowski
• [MCOMPILER-554] - Update plexus-java to 1.2.0 (#207) @​jorsol
• [MCOMPILER-551] - Upgrade Parent to 40 (#205) @​slawekjaranowski
• [MCOMPILER-541] - update maven-shared-utils to 3.4.2 (#195) @​elharo
• Bump apache/maven-gh-actions-shared from 2 to 3 (#182) @​dependabot
• Bump maven-invoker-plugin from 3.4.0 to 3.5.0 (#179) @​dependabot

👻 Maintenance

• [MCOMPILER-565] - Allow project build by Maven 4 (#217) @​slawekjaranowski
• [MCOMPILER-552] - Refresh download page (#204) @​slawekjaranowski
• Remove references to old Maven versions. (#194) @​elharo
• (doc) Drop unused and vulnerable dependency to log4j (#190) @​slachiewicz
• [MNG-6829] - Replace StringUtils#isEmpty(String) & #isNotEmpty(String) (#189) @​timtebeek
• Update plexus-utils to 3.0.24 - in its (#183) @​slachiewicz

Commits

• 736da68 [maven-release-plugin] prepare release maven-compiler-plugin-3.12.1
• ef93f3d [MCOMPILER-568] Bump plexusCompilerVersion from 2.14.1 to 2.14.2 (#220)
• eb7840c [MCOMPILER-567] - Fail to compile if the "generated-sources/annotations" does...
• 2a7a73b [maven-release-plugin] prepare for next development iteration
• c08b0fd [maven-release-plugin] prepare release maven-compiler-plugin-3.12.0
• a1c5b13 [MCOMPILER-565] Allow project build by Maven 4
• 4855773 Bump plexusCompilerVersion from 2.13.0 to 2.14.1
• 1d05342 [MCOMPILER-562] Add property maven.compiler.outputDirectory to CompilerMojo (...
• ea74978 [MCOMPILER-381] - Refactor incremental detection (#181)
• fd37f09 [MCOMPILER-333] Cleanup generated source files (#214)
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-shade-plugin from 3.5.0 to 3.5.1

Release notes

Sourced from org.apache.maven.plugins:maven-shade-plugin's releases.

3.5.1

Release Notes - Maven Shade Plugin - Version 3.5.1

Bug

• [MSHADE-454] - Shade Plugin does not work with JDK 20

Improvement

• [MSHADE-459] - Prepare to build and pass tests with Java 21

Task

• [MSHADE-458] - Refresh download page

Dependency upgrade

• [MSHADE-457] - Upgrade Parent to 40

Commits

• bd4759b [maven-release-plugin] prepare release maven-shade-plugin-3.5.1
• d2a1552 [MSHADE-457] Upgrade Parent to 40
• c2a2e2b [MSHADE-458] Refresh download page
• 64f577b [MSHADE-459] Adjust to test also with Java 21 (#196)
• e56294a [MSHADE-454] Shade Plugin does not work with JDK 20
• 6a400db [maven-release-plugin] prepare for next development iteration
• See full diff in compare view

Updates io.github.git-commit-id:git-commit-id-maven-plugin from 6.0.0 to 7.0.0

Release notes

Sourced from io.github.git-commit-id:git-commit-id-maven-plugin's releases.

Version 7.0.0 is finally there and includes various bug-fixes and improvements :-)

⚠️ This is a potentially breaking release. Read the release-notes carefully ⚠️

Potential Breaking changes:

The main key-aspects that might cause a breakage when migrating to the new version:

• Drop support for Maven 3.1.0-alpha-1 ⚠️
  • minimal required maven version is now Maven 3.2.5 (to support Maven 4.0.0)

New Features / Bug-Fixes:

The main key-aspects that have been improved or being worked on are the following:

• git-commit-id/git-commit-id-maven-plugin#639 / git-commit-id/git-commit-id-maven-plugin#642: Resolve worktree .git files to repository .git directory
• Update several plugins
  • updated git-commit-id-plugin-core from 6.0.0-rc.5 to 6.0.0-rc.6, that update brings
    • git-commit-id/git-commit-id-plugin-core#57: Stop relying on javax.json 1.1.4
      • the dependency for javax.json:javax.json-api:1.1.4 was replaced with jakarta.json:jakarta.json-api:2.1.2
      • the dependency for org.glassfish:javax.json:1.1.4 was replaced with org.eclipse.parsson:parsson:1.1.4
    • bump jgit from 6.5.0.202303070854-r to 6.7.0.202309050840-r
    • bump commons-io:commons-io from 2.11.0 to 2.14.0
    • bump org.slf4j:slf4j-simple from 2.0.7 to 2.0.9
  • bump several maven plugins
    • bump maven-plugin-api from 3.1.0-alpha-1 to 3.9.2
    • bump maven-plugin-plugin from 3.6.0 to 3.9.0
    • bump maven-assembly-plugin from 3.4.2 to 3.6.0
    • bump maven-dependency-plugin from 3.5.0 to 3.6.0
    • bump maven-release-plugin from 3.0.0-M7 to 3.0.1
    • bump maven-enforcer-plugin from 3.2.1 to 3.4.1
    • bump maven-compiler-plugin from 3.8.1 to 3.11.0
    • bump maven-gpg-plugin from 3.1.0
    • bump maven-clean-plugin from 3.1.0 to 3.3.1
    • bump maven-resources-plugin from 3.1.0 to 3.3.1
    • bump maven-jar-plugin from 3.2.0 to 3.3.0
    • bump maven-surefire-plugin from 2.22.2 to 3.1.2
    • bump maven-install-plugin from 2.5.2 to 3.1.1
    • bump maven-javadoc-plugin from 3.2.0 to 3.6.0
    • bump maven-source-plugin from 3.2.1 to 3.3.0
  • Bump or replace various plugins for testing
    • bump commons-io:commons-io from 2.11.0 to 2.14.0 (test dependency)
    • bump org.slf4j:slf4j-simple from 2.0.7 to 2.0.9 (test dependency)
    • replace org.eluder.coveralls:coveralls-maven-plugin:4.3.0 with io.jsonwebtoken.coveralls:coveralls-maven-plugin:4.4.1 (test dependency)

Getting the latest release

The plugin is available from Maven Central (see here), so you don't have to configure any additional repositories to use this plugin. All you need to do is to configure it inside your project as dependency:

<dependency>
    <groupId>io.github.git-commit-id</groupId>
    <artifactId>git-commit-id-maven-plugin</artifactId>
    <version>7.0.0</version>
</dependency>
</tr></table> 

... (truncated)

Commits

• 0fdf9c7 [maven-release-plugin] prepare release v7.0.0
• 4e33174 bump git-commit-id:git-commit-id-plugin-core from 6.0.0-rc.5 to 6.0.0-rc.6
• 64b5ce1 Merge pull request #657 from git-commit-id/dependabot/maven/org.mockito-mocki...
• b6309d9 Bump org.mockito:mockito-core from 5.5.0 to 5.6.0
• 4feba8d Merge pull request #642 from jkylling/resolve-worktree-git-dir
• 59415bf Merge pull request #654 from git-commit-id/dependabot/maven/commons-io-common...
• 91e2cfe Bump commons-io:commons-io from 2.13.0 to 2.14.0
• b1d8440 Resolve worktree .git files to repository .git directory
• 494cbb6 Merge pull request #649 from git-commit-id/dependabot/github_actions/actions/...
• 1d31156 Bump actions/checkout from 3 to 4
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-javadoc-plugin from 3.5.0 to 3.6.3

Release notes

Sourced from org.apache.maven.plugins:maven-javadoc-plugin's releases.

3.6.2

🐛 Bug Fixes

• [MJAVADOC-716] - Fix stale files detection failing because of the newline (#144) @​gnodet
• [MJAVADOC-713] - Skipping Javadoc reportset leaves empty Javadoc link i… (#246) @​michael-o
• [MJAVADOC-762] - don't share state between tests (#218) @​elharo
• [MJAVADOC-726] - exclude velocity (#243) @​elharo
• [MJAVADOC-726] - trivial Javadoc fixes to test state of CI (#244) @​elharo
• [MJAVADOC-774] - Mock repository should not change project sources (#241) @​slawekjaranowski
• MJAVADOC-774 create dev profile (#239) @​hboutemy
• Use a stable link in unit test (#240) @​slawekjaranowski

📦 Dependency updates

• Bump org.codehaus.mojo:mrm-maven-plugin from 1.5.0 to 1.6.0 (#247) @​dependabot
• [MJAVADOC-777] - Bump org.codehaus.plexus:plexus-java from 1.1.2 to 1.2.0 (#245) @​dependabot

3.6.0

🚀 New features and improvements

• [MJAVADOC-642] - Make offline mode configurable (#238) @​hgschmie
• [MJAVADOC-642] - Make offline mode configurable (#232) @​hgschmie
• [MJAVADOC-770] - Implement legacy mode for Java 9+ (#228) @​hgschmie
• [MJAVADOC-743] - Drop deprecated mojo parameter (#185) @​cstamas

🐛 Bug Fixes

• [MJAVADOC-742] - Fix resolution of docletArtifacts (#186) @​cstamas
• [MJAVADOC-758] - correct exception in JavadocUtil (#230) @​hgschmie
• [MJAVADOC-769] - fix for transitive filename based modules (#227) @​hgschmie
• [MJAVADOC-767] - javadoc creates invalid --patch-module statements (#225) @​hgschmie
• [MJAVADOC-763] - remove test that doesn't test what it claims (#219) @​elharo
• [MJAVADOC-757] - fix Javadoc warnings (#212) @​elharo
• Fix UmlGraph link in site example (#198) @​ParkerM

📦 Dependency updates

• [JAVADOC-771] - Upgrade Parent to 40 (#234) @​hgschmie
• Bump org.apache.maven:maven-core from 3.6.0 to 3.8.1 in /src/it/projects/MJAVADOC-568_manifest-splitpackage/mojo (#226) @​dependabot
• Bump com.google.guava:guava from 31.1-jre to 32.0.0-jre in /src/it/projects/MJAVADOC-769 (#229) @​dependabot
• [MJAVADOC-766] - Bump org.codehaus.plexus:plexus-archiver from 4.7.1 to 4.8.0 (#222) @​dependabot
• Bump hamcrest-core from 1.3 to 2.2 (#221) @​dependabot
• Bump guava from 27.0.1-jre to 32.0.0-jre in /src/it/projects/MJAVADOC-555_link-automatic-modules (#207) @​dependabot
• Bump javax.servlet-api from 3.1.0 to 4.0.1 (test dependency) (#220) @​dependabot
• [MJAVADOC-761] - commons-io 2.13.0 (#215) @​elharo
• Bump plexus-utils from 3.5.0 to 3.5.1 (#201) @​dependabot
• Bump mockito-core from 4.4.0 to 4.11.0 (#196) @​dependabot

... (truncated)

Commits

• 8205008 [maven-release-plugin] prepare release maven-javadoc-plugin-3.6.3
• b69af90 [MJAVADOC-682] Reactor builds fail when multiple modules with same groupId:ar...
• b47b280 directory, not folder
• 488624f [MJAVADOC-782] Align read-only parameters naming with other plugins
• 867dc73 [MJAVADOC-781] Upgrade plugins and components (in ITs)
• 0104ab2 Fix incorrect config in test-javadoc-test-plugin-config.xml
• dd39c0c [MJAVADOC-780] add missing plugin configuration
• e6e6180 Remove junk from 692d7a8a9918efd24633a44f0f3d4dfd22d0fec4
• 692d7a8 [MJAVADOC-779] - Upgrade maven-plugin parent to 41
• 386d4ea Remove dead link
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[hylkevds]

@dependabot rebase

[dependabot]

Looks like these dependencies are up-to-date now, so this is no longer needed.