update some dependencies

CHANGELOG.md

@@ -115,3 +115,7 @@ fix: Bouncy Castle Provider initialized within the component only if not already
 ### 3.0.0 (Oct 04 2023)
 
 feat: provide CMP client implementation
+
+### 3.0.1 (Nov 07 2023)
+
+fix: update some dependencies

pom.xml

@@ -1,17 +1,19 @@
 <?xml version="1.0" encoding="UTF-8"?>
-<!-- Copyright (c) 2020 Siemens AG Licensed under the Apache License, Version 
-	2.0 SPDX-License-Identifier: Apache-2.0 -->
-<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+<!-- Copyright (c) 2020 Siemens AG Licensed under the Apache License, Version
+2.0 SPDX-License-Identifier: Apache-2.0 -->
+<project xmlns="http://maven.apache.org/POM/4.0.0"
+	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+	xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
 	<modelVersion>4.0.0</modelVersion>
 	<groupId>com.siemens.pki</groupId>
 	<artifactId>CmpRaComponent</artifactId>
 	<packaging>jar</packaging>
-	<version>3.0.0</version>
+	<version>3.0.1</version>
 	<properties>
 		<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
 		<parent.basedir>.</parent.basedir>
 		<spotless.version>2.40.0</spotless.version>
-		<jacoco.version>0.8.10</jacoco.version>
+		<jacoco.version>0.8.11</jacoco.version>
 		<source.version>3.3.0</source.version>
 		<maven.compiler.source>11</maven.compiler.source>
 		<maven.compiler.target>11</maven.compiler.target>
@@ -21,7 +23,8 @@
 		<sonar.host.url>https://sonarcloud.io</sonar.host.url>
 		<sonar.java.coveragePlugin>jacoco</sonar.java.coveragePlugin>
 		<sonar.dynamicAnalysis>reuseReports</sonar.dynamicAnalysis>
-		<sonar.coverage.jacoco.xmlReportPaths>${project.basedir}/target/site/jacoco/jacoco.xml</sonar.coverage.jacoco.xmlReportPaths>
+		<sonar.coverage.jacoco.xmlReportPaths>
+			${project.basedir}/target/site/jacoco/jacoco.xml</sonar.coverage.jacoco.xmlReportPaths>
 		<sonar.language>java</sonar.language>
 		<sonar.verbose>true</sonar.verbose>
 	</properties>
@@ -32,15 +35,16 @@
 		</snapshotRepository>
 		<repository>
 			<id>ossrh</id>
-			<url>https://s01.oss.sonatype.org/service/local/staging/deploy/maven2/</url>
+			<url>
+				https://s01.oss.sonatype.org/service/local/staging/deploy/maven2/</url>
 		</repository>
 	</distributionManagement>
 	<build>
 		<plugins>
 			<plugin>
 				<groupId>org.apache.maven.plugins</groupId>
 				<artifactId>maven-dependency-plugin</artifactId>
-				<version>3.6.0</version>
+				<version>3.6.1</version>
 				<executions>
 					<execution>
 						<id>copy-dependencies</id>
@@ -79,7 +83,7 @@
 			<plugin>
 				<groupId>org.apache.maven.plugins</groupId>
 				<artifactId>maven-surefire-plugin</artifactId>
-				<version>3.1.2</version>
+				<version>3.2.1</version>
 				<configuration>
 					<excludes>
 						<exclude>**/local/**</exclude>
@@ -111,19 +115,20 @@
 							<include>src/main/java/**/*.java</include>
 							<include>src/test/java/**/*.java</include>
 						</includes>
-
-						<palantirJavaFormat />
+						<palantirJavaFormat>
+							<version>2.38.0</version>
+						</palantirJavaFormat>
 						<importOrder />
 						<removeUnusedImports />
 						<formatAnnotations />
-						<endWithNewline/>
+						<endWithNewline />
 					</java>
 				</configuration>
 			</plugin>
 			<plugin>
 				<groupId>org.owasp</groupId>
 				<artifactId>dependency-check-maven</artifactId>
-				<version>8.4.0</version>
+				<version>8.4.2</version>
 				<executions>
 					<execution>
 						<goals>
@@ -220,16 +225,18 @@
 		<dependency>
 			<groupId>com.fasterxml.jackson.core</groupId>
 			<artifactId>jackson-databind</artifactId>
-			<version>2.15.2</version>
+			<version>2.15.3</version>
 		</dependency>
 		<dependency>
 			<groupId>org.jacoco</groupId>
 			<artifactId>jacoco-maven-plugin</artifactId>
 			<version>${jacoco.version}</version>
 		</dependency>
 		<dependency>
-<!--		Indirect dependency of jacoco-maven-plugin. We add this one explicitly, otherwise the included version-->
-<!--		would pull maven-artifact-manager-2.0.2 and lead to CVE-2021-26291.-->
+			<!--		Indirect dependency of jacoco-maven-plugin. We add this one
+			explicitly, otherwise the included version-->
+			<!--		would pull maven-artifact-manager-2.0.2 and lead to
+			CVE-2021-26291.-->
 			<groupId>org.apache.maven.shared</groupId>
 			<artifactId>file-management</artifactId>
 			<version>3.1.0</version>
@@ -243,7 +250,8 @@
 		<url>www.siemens.com</url>
 	</organization>
 	<name>CMP RA Component</name>
-	<description>A generic CMP Registration Authority and Client component library</description>
+	<description>A generic CMP Registration Authority and Client component
+		library</description>
 	<url>https://github.com/siemens/cmp-ra-component/</url>
 	<licenses>
 		<license>