Skip to content

chore(deps): bump antlr4.version from 4.9.1 to 4.13.2#3235

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/maven/antlr4.version-4.13.2
Open

chore(deps): bump antlr4.version from 4.9.1 to 4.13.2#3235
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/maven/antlr4.version-4.13.2

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jan 25, 2026

Copy link
Copy Markdown
Contributor

Bumps antlr4.version from 4.9.1 to 4.13.2.
Updates org.antlr:antlr4-runtime from 4.9.1 to 4.13.2

Release notes

Sourced from org.antlr:antlr4-runtime's releases.

4.13.2

Minor updates release.

Pull requests grouped by target

cpp target

go target

javascript target

python3 target

Contributors

4.13.1

Pull requests grouped by target

csharp target

  • [[CSharp] Fix for #4386 -- change signatures for ReportAttemptingFullContext() and ReportContextSensitivity() to be identical to all other targets](antlr/antlr4#4399) (target:csharp, type:cleanup)

go target

java target

javascript target

swift target

... (truncated)

Commits
  • cc82115 [maven-release-plugin] prepare release 4.13.2
  • b91cecf Update 4.13.1 -> 4.13.2
  • 35ff30d Update release docs to say 4.13.2; rebuild XPathLexers
  • 2559349 fix(javascript): fix types not being recognized for NodeNext module resolutio...
  • e8bf978 rule name 'state' conflict with Python runtime.
  • 88a0c7a Support TypeScript bundler module resolution
  • caf46b9 [Python3] Replace deprecated assertEquals() to fix py3.12 compat
  • 17f3f5e Add include dirs direclty to cpp targets
  • b3bb743 chore: fix error link
  • 7d4cea9 Fix singleton memory leaks
  • Additional commits viewable in compare view

Updates org.antlr:antlr4-maven-plugin from 4.9.1 to 4.13.2

Release notes

Sourced from org.antlr:antlr4-maven-plugin's releases.

4.13.2

Minor updates release.

Pull requests grouped by target

cpp target

go target

javascript target

python3 target

Contributors

4.13.1

Pull requests grouped by target

csharp target

  • [[CSharp] Fix for #4386 -- change signatures for ReportAttemptingFullContext() and ReportContextSensitivity() to be identical to all other targets](antlr/antlr4#4399) (target:csharp, type:cleanup)

go target

java target

javascript target

swift target

... (truncated)

Commits
  • cc82115 [maven-release-plugin] prepare release 4.13.2
  • b91cecf Update 4.13.1 -> 4.13.2
  • 35ff30d Update release docs to say 4.13.2; rebuild XPathLexers
  • 2559349 fix(javascript): fix types not being recognized for NodeNext module resolutio...
  • e8bf978 rule name 'state' conflict with Python runtime.
  • 88a0c7a Support TypeScript bundler module resolution
  • caf46b9 [Python3] Replace deprecated assertEquals() to fix py3.12 compat
  • 17f3f5e Add include dirs direclty to cpp targets
  • b3bb743 chore: fix error link
  • 7d4cea9 Fix singleton memory leaks
  • Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Jan 25, 2026
@mergify

mergify Bot commented Jan 25, 2026

Copy link
Copy Markdown
Contributor

🧪 CI Insights

Here's what we observed from your CI run for 0d5fa68.

🟢 All jobs passed!

But CI Insights is watching 👀

Bumps `antlr4.version` from 4.9.1 to 4.13.2.

Updates `org.antlr:antlr4-runtime` from 4.9.1 to 4.13.2
- [Release notes](https://github.com/antlr/antlr4/releases)
- [Changelog](https://github.com/antlr/antlr4/blob/dev/CHANGES.txt)
- [Commits](antlr/antlr4@4.9.1...4.13.2)

Updates `org.antlr:antlr4-maven-plugin` from 4.9.1 to 4.13.2
- [Release notes](https://github.com/antlr/antlr4/releases)
- [Changelog](https://github.com/antlr/antlr4/blob/dev/CHANGES.txt)
- [Commits](antlr/antlr4@4.9.1...4.13.2)

---
updated-dependencies:
- dependency-name: org.antlr:antlr4-runtime
  dependency-version: 4.13.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: org.antlr:antlr4-maven-plugin
  dependency-version: 4.13.2
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/maven/antlr4.version-4.13.2 branch from a1f8b11 to 0d5fa68 Compare January 28, 2026 16:28
@lvca

lvca commented Jan 28, 2026

Copy link
Copy Markdown
Member

@robfrank I'm using the same version linked by Gremlin to avoid conflict.

mergify Bot added a commit that referenced this pull request Feb 22, 2026
…from 3.5.4 to 3.5.5 [skip ci]

Bumps [org.apache.maven.plugins:maven-failsafe-plugin](https://github.com/apache/maven-surefire) from 3.5.4 to 3.5.5.
Release notes

*Sourced from [org.apache.maven.plugins:maven-failsafe-plugin's releases](https://github.com/apache/maven-surefire/releases).*

> 3.5.5
> -----
>
> 🚀 New features and improvements
> -------------------------------
>
> * Replace runing external process and parsing output with simple ProcessHandle if available (Java9+) ([#3252](https://redirect.github.com/apache/maven-surefire/pull/3252)) [`@​olamy`](https://github.com/olamy)
> * Pass slf4j context to spawned thread ([#3241](https://redirect.github.com/apache/maven-surefire/pull/3241)) [`@​scottrw93`](https://github.com/scottrw93)
> * [[SUREFIRE-3239]](https://issues.apache.org/jira/browse/SUREFIRE-3239) - allow override of statistics file checksum ([#3247](https://redirect.github.com/apache/maven-surefire/pull/3247)) [`@​XN137`](https://github.com/XN137)
> * Reduce log level for skipped tests result to info ([#3232](https://redirect.github.com/apache/maven-surefire/pull/3232)) [`@​strangelookingnerd`](https://github.com/strangelookingnerd)
>
> 🐛 Bug Fixes
> -----------
>
> * Use PowerShell instead of WMIC for detecting zombie process on Windows ([#3258](https://redirect.github.com/apache/maven-surefire/pull/3258)) [`@​jbliznak`](https://github.com/jbliznak). Please note if you are using Windows with Java 8 and not PowerShell (you have options to: use Java 9+, install PowerShell or stay on Surefire 3.5.4)
> * Properly work with test failures caused during beforeAll phase ([#3194](https://redirect.github.com/apache/maven-surefire/pull/3194)) [`@​Frawless`](https://github.com/Frawless)
>
> 📝 Documentation updates
> -----------------------
>
> * Clarify how late placeholder replacement (@{...}) deals with ([#3208](https://redirect.github.com/apache/maven-surefire/pull/3208)) [`@​kwin`](https://github.com/kwin)
>
> 👻 Maintenance
> -------------
>
> * Fix Jenkin badges in README ([#3254](https://redirect.github.com/apache/maven-surefire/pull/3254)) [`@​slawekjaranowski`](https://github.com/slawekjaranowski)
> * Use JUnit5 in failsafe ITs ([#3251](https://redirect.github.com/apache/maven-surefire/pull/3251)) [`@​slawekjaranowski`](https://github.com/slawekjaranowski)
> * Remove long-deprecated unused encoding property from VerifyMojo ([#3198](https://redirect.github.com/apache/maven-surefire/pull/3198)) [`@​Tomlincoln`](https://github.com/Tomlincoln)
> * Add IT and deal with corner cases of handling beforeAll failures ([#3200](https://redirect.github.com/apache/maven-surefire/pull/3200)) [`@​Frawless`](https://github.com/Frawless)
> * Revert PR [#3194](https://redirect.github.com/apache/maven-surefire/issues/3194) that handle beforeAll failures to follow proper contributing rules ([#3211](https://redirect.github.com/apache/maven-surefire/pull/3211)) [`@​Frawless`](https://github.com/Frawless)
>
> 🔧 Build
> -------
>
> * Missing many files in the GH Artifacts of CI ex-post. ([#3219](https://redirect.github.com/apache/maven-surefire/pull/3219)) [`@​Tibor17`](https://github.com/Tibor17)
>
> 📦 Dependency updates
> --------------------
>
> * Bump org.xmlunit:xmlunit-core from 2.10.4 to 2.11.0 ([#3209](https://redirect.github.com/apache/maven-surefire/pull/3209)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.4.0 to 3.5.1 ([#3260](https://redirect.github.com/apache/maven-surefire/pull/3260)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump parent from 44 to 47 ([#3253](https://redirect.github.com/apache/maven-surefire/pull/3253)) [`@​slawekjaranowski`](https://github.com/slawekjaranowski)
> * Bump org.assertj:assertj-core from 3.16.1 to 3.27.7 in /surefire-its/src/test/resources/surefire-1733-testng ([#3246](https://redirect.github.com/apache/maven-surefire/pull/3246)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.assertj:assertj-core from 3.27.6 to 3.27.7 ([#3245](https://redirect.github.com/apache/maven-surefire/pull/3245)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.codehaus.mojo:animal-sniffer-maven-plugin from 1.26 to 1.27 ([#3243](https://redirect.github.com/apache/maven-surefire/pull/3243)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.htmlunit:htmlunit from 4.20.0 to 4.21.0 ([#3236](https://redirect.github.com/apache/maven-surefire/pull/3236)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.codehaus.plexus:plexus-java from 1.5.1 to 1.5.2 ([#3235](https://redirect.github.com/apache/maven-surefire/pull/3235)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.apache.logging.log4j:log4j-core from 2.17.1 to 2.25.3 in /surefire-its/src/test/resources/surefire-1659-stream-corruption ([#3234](https://redirect.github.com/apache/maven-surefire/pull/3234)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.htmlunit:htmlunit from 4.19.0 to 4.20.0 ([#3228](https://redirect.github.com/apache/maven-surefire/pull/3228)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.htmlunit:htmlunit from 4.18.0 to 4.19.0 ([#3224](https://redirect.github.com/apache/maven-surefire/pull/3224)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.apache.commons:commons-lang3 from 3.19.0 to 3.20.0 ([#3223](https://redirect.github.com/apache/maven-surefire/pull/3223)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.codehaus.plexus:plexus-interpolation from 1.28 to 1.29 ([#3221](https://redirect.github.com/apache/maven-surefire/pull/3221)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.codehaus.plexus:plexus-i18n from 1.0.0 to 1.1.0 ([#3220](https://redirect.github.com/apache/maven-surefire/pull/3220)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump commons-io:commons-io from 2.20.0 to 2.21.0 ([#3217](https://redirect.github.com/apache/maven-surefire/pull/3217)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.3.0 to 3.4.0 ([#3214](https://redirect.github.com/apache/maven-surefire/pull/3214)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.codehaus.plexus:plexus-java from 1.5.0 to 1.5.1 ([#3218](https://redirect.github.com/apache/maven-surefire/pull/3218)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.htmlunit:htmlunit from 4.16.0 to 4.18.0 ([#3213](https://redirect.github.com/apache/maven-surefire/pull/3213)) @[dependabot[bot]](https://github.com/apps/dependabot)

... (truncated)


Commits

* [`968cb38`](apache/maven-surefire@968cb38) [maven-release-plugin] prepare release surefire-3.5.5
* [`8e7dc41`](apache/maven-surefire@8e7dc41) Reapply "Replace runing external process and parsing output with simple Proce...
* [`4ced57c`](apache/maven-surefire@4ced57c) Revert "Replace runing external process and parsing output with simple Proces…"
* [`8496d9a`](apache/maven-surefire@8496d9a) Bump org.xmlunit:xmlunit-core from 2.10.4 to 2.11.0 ([#3209](https://redirect.github.com/apache/maven-surefire/issues/3209))
* [`68265e5`](apache/maven-surefire@68265e5) Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness ([#3260](https://redirect.github.com/apache/maven-surefire/issues/3260))
* [`0b19014`](apache/maven-surefire@0b19014) Replace runing external process and parsing output with simple ProcessHandle ...
* [`688f8c4`](apache/maven-surefire@688f8c4) Use PowerShell instead of WMIC for detecting zombie process on Windows ([#3258](https://redirect.github.com/apache/maven-surefire/issues/3258))
* [`e5c01a6`](apache/maven-surefire@e5c01a6) Build only by the latest Maven on Jenkins ([#3255](https://redirect.github.com/apache/maven-surefire/issues/3255))
* [`9c99e97`](apache/maven-surefire@9c99e97) Fix Jenkin badges in README ([#3254](https://redirect.github.com/apache/maven-surefire/issues/3254))
* [`20930ea`](apache/maven-surefire@20930ea) Bump parent from 44 to 47 ([#3253](https://redirect.github.com/apache/maven-surefire/issues/3253))
* Additional commits viewable in [compare view](apache/maven-surefire@surefire-3.5.4...surefire-3.5.5)
  
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility\_score?dependency-name=org.apache.maven.plugins:maven-failsafe-plugin&package-manager=maven&previous-version=3.5.4&new-version=3.5.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
  
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot show  ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
mergify Bot added a commit that referenced this pull request Feb 22, 2026
…from 3.5.4 to 3.5.5 [skip ci]

Bumps [org.apache.maven.plugins:maven-surefire-plugin](https://github.com/apache/maven-surefire) from 3.5.4 to 3.5.5.
Release notes

*Sourced from [org.apache.maven.plugins:maven-surefire-plugin's releases](https://github.com/apache/maven-surefire/releases).*

> 3.5.5
> -----
>
> 🚀 New features and improvements
> -------------------------------
>
> * Replace runing external process and parsing output with simple ProcessHandle if available (Java9+) ([#3252](https://redirect.github.com/apache/maven-surefire/pull/3252)) [`@​olamy`](https://github.com/olamy)
> * Pass slf4j context to spawned thread ([#3241](https://redirect.github.com/apache/maven-surefire/pull/3241)) [`@​scottrw93`](https://github.com/scottrw93)
> * [[SUREFIRE-3239]](https://issues.apache.org/jira/browse/SUREFIRE-3239) - allow override of statistics file checksum ([#3247](https://redirect.github.com/apache/maven-surefire/pull/3247)) [`@​XN137`](https://github.com/XN137)
> * Reduce log level for skipped tests result to info ([#3232](https://redirect.github.com/apache/maven-surefire/pull/3232)) [`@​strangelookingnerd`](https://github.com/strangelookingnerd)
>
> 🐛 Bug Fixes
> -----------
>
> * Use PowerShell instead of WMIC for detecting zombie process on Windows ([#3258](https://redirect.github.com/apache/maven-surefire/pull/3258)) [`@​jbliznak`](https://github.com/jbliznak). Please note if you are using Windows with Java 8 and not PowerShell (you have options to: use Java 9+, install PowerShell or stay on Surefire 3.5.4)
> * Properly work with test failures caused during beforeAll phase ([#3194](https://redirect.github.com/apache/maven-surefire/pull/3194)) [`@​Frawless`](https://github.com/Frawless)
>
> 📝 Documentation updates
> -----------------------
>
> * Clarify how late placeholder replacement (@{...}) deals with ([#3208](https://redirect.github.com/apache/maven-surefire/pull/3208)) [`@​kwin`](https://github.com/kwin)
>
> 👻 Maintenance
> -------------
>
> * Fix Jenkin badges in README ([#3254](https://redirect.github.com/apache/maven-surefire/pull/3254)) [`@​slawekjaranowski`](https://github.com/slawekjaranowski)
> * Use JUnit5 in failsafe ITs ([#3251](https://redirect.github.com/apache/maven-surefire/pull/3251)) [`@​slawekjaranowski`](https://github.com/slawekjaranowski)
> * Remove long-deprecated unused encoding property from VerifyMojo ([#3198](https://redirect.github.com/apache/maven-surefire/pull/3198)) [`@​Tomlincoln`](https://github.com/Tomlincoln)
> * Add IT and deal with corner cases of handling beforeAll failures ([#3200](https://redirect.github.com/apache/maven-surefire/pull/3200)) [`@​Frawless`](https://github.com/Frawless)
> * Revert PR [#3194](https://redirect.github.com/apache/maven-surefire/issues/3194) that handle beforeAll failures to follow proper contributing rules ([#3211](https://redirect.github.com/apache/maven-surefire/pull/3211)) [`@​Frawless`](https://github.com/Frawless)
>
> 🔧 Build
> -------
>
> * Missing many files in the GH Artifacts of CI ex-post. ([#3219](https://redirect.github.com/apache/maven-surefire/pull/3219)) [`@​Tibor17`](https://github.com/Tibor17)
>
> 📦 Dependency updates
> --------------------
>
> * Bump org.xmlunit:xmlunit-core from 2.10.4 to 2.11.0 ([#3209](https://redirect.github.com/apache/maven-surefire/pull/3209)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.4.0 to 3.5.1 ([#3260](https://redirect.github.com/apache/maven-surefire/pull/3260)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump parent from 44 to 47 ([#3253](https://redirect.github.com/apache/maven-surefire/pull/3253)) [`@​slawekjaranowski`](https://github.com/slawekjaranowski)
> * Bump org.assertj:assertj-core from 3.16.1 to 3.27.7 in /surefire-its/src/test/resources/surefire-1733-testng ([#3246](https://redirect.github.com/apache/maven-surefire/pull/3246)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.assertj:assertj-core from 3.27.6 to 3.27.7 ([#3245](https://redirect.github.com/apache/maven-surefire/pull/3245)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.codehaus.mojo:animal-sniffer-maven-plugin from 1.26 to 1.27 ([#3243](https://redirect.github.com/apache/maven-surefire/pull/3243)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.htmlunit:htmlunit from 4.20.0 to 4.21.0 ([#3236](https://redirect.github.com/apache/maven-surefire/pull/3236)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.codehaus.plexus:plexus-java from 1.5.1 to 1.5.2 ([#3235](https://redirect.github.com/apache/maven-surefire/pull/3235)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.apache.logging.log4j:log4j-core from 2.17.1 to 2.25.3 in /surefire-its/src/test/resources/surefire-1659-stream-corruption ([#3234](https://redirect.github.com/apache/maven-surefire/pull/3234)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.htmlunit:htmlunit from 4.19.0 to 4.20.0 ([#3228](https://redirect.github.com/apache/maven-surefire/pull/3228)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.htmlunit:htmlunit from 4.18.0 to 4.19.0 ([#3224](https://redirect.github.com/apache/maven-surefire/pull/3224)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.apache.commons:commons-lang3 from 3.19.0 to 3.20.0 ([#3223](https://redirect.github.com/apache/maven-surefire/pull/3223)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.codehaus.plexus:plexus-interpolation from 1.28 to 1.29 ([#3221](https://redirect.github.com/apache/maven-surefire/pull/3221)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.codehaus.plexus:plexus-i18n from 1.0.0 to 1.1.0 ([#3220](https://redirect.github.com/apache/maven-surefire/pull/3220)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump commons-io:commons-io from 2.20.0 to 2.21.0 ([#3217](https://redirect.github.com/apache/maven-surefire/pull/3217)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.3.0 to 3.4.0 ([#3214](https://redirect.github.com/apache/maven-surefire/pull/3214)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.codehaus.plexus:plexus-java from 1.5.0 to 1.5.1 ([#3218](https://redirect.github.com/apache/maven-surefire/pull/3218)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.htmlunit:htmlunit from 4.16.0 to 4.18.0 ([#3213](https://redirect.github.com/apache/maven-surefire/pull/3213)) @[dependabot[bot]](https://github.com/apps/dependabot)

... (truncated)


Commits

* [`968cb38`](apache/maven-surefire@968cb38) [maven-release-plugin] prepare release surefire-3.5.5
* [`8e7dc41`](apache/maven-surefire@8e7dc41) Reapply "Replace runing external process and parsing output with simple Proce...
* [`4ced57c`](apache/maven-surefire@4ced57c) Revert "Replace runing external process and parsing output with simple Proces…"
* [`8496d9a`](apache/maven-surefire@8496d9a) Bump org.xmlunit:xmlunit-core from 2.10.4 to 2.11.0 ([#3209](https://redirect.github.com/apache/maven-surefire/issues/3209))
* [`68265e5`](apache/maven-surefire@68265e5) Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness ([#3260](https://redirect.github.com/apache/maven-surefire/issues/3260))
* [`0b19014`](apache/maven-surefire@0b19014) Replace runing external process and parsing output with simple ProcessHandle ...
* [`688f8c4`](apache/maven-surefire@688f8c4) Use PowerShell instead of WMIC for detecting zombie process on Windows ([#3258](https://redirect.github.com/apache/maven-surefire/issues/3258))
* [`e5c01a6`](apache/maven-surefire@e5c01a6) Build only by the latest Maven on Jenkins ([#3255](https://redirect.github.com/apache/maven-surefire/issues/3255))
* [`9c99e97`](apache/maven-surefire@9c99e97) Fix Jenkin badges in README ([#3254](https://redirect.github.com/apache/maven-surefire/issues/3254))
* [`20930ea`](apache/maven-surefire@20930ea) Bump parent from 44 to 47 ([#3253](https://redirect.github.com/apache/maven-surefire/issues/3253))
* Additional commits viewable in [compare view](apache/maven-surefire@surefire-3.5.4...surefire-3.5.5)
  
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility\_score?dependency-name=org.apache.maven.plugins:maven-surefire-plugin&package-manager=maven&previous-version=3.5.4&new-version=3.5.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
  
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot show  ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
@robfrank robfrank added the do not merge The PR is not ready label Mar 18, 2026
tae898 pushed a commit to humemai/arcadedb-embedded-python that referenced this pull request Jun 28, 2026
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.30.9 to 4.31.0.
Release notes

*Sourced from [github/codeql-action's releases](https://github.com/github/codeql-action/releases).*

> v4.31.0
> -------
>
> CodeQL Action Changelog
> =======================
>
> See the [releases page](https://github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs.
>
> 4.31.0 - 24 Oct 2025
> --------------------
>
> * Bump minimum CodeQL bundle version to 2.17.6. [ArcadeData#3223](https://redirect.github.com/github/codeql-action/pull/3223)
> * When SARIF files are uploaded by the `analyze` or `upload-sarif` actions, the CodeQL Action automatically performs post-processing steps to prepare the data for the upload. Previously, these post-processing steps were only performed before an upload took place. We are now changing this so that the post-processing steps will always be performed, even when the SARIF files are not uploaded. This does not change anything for the `upload-sarif` action. For `analyze`, this may affect Advanced Setup for CodeQL users who specify a value other than `always` for the `upload` input. [ArcadeData#3222](https://redirect.github.com/github/codeql-action/pull/3222)
>
> See the full [CHANGELOG.md](https://github.com/github/codeql-action/blob/v4.31.0/CHANGELOG.md) for more information.


Changelog

*Sourced from [github/codeql-action's changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md).*

> CodeQL Action Changelog
> =======================
>
> See the [releases page](https://github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs.
>
> [UNRELEASED]
> ------------
>
> No user facing changes.
>
> 4.31.0 - 24 Oct 2025
> --------------------
>
> * Bump minimum CodeQL bundle version to 2.17.6. [ArcadeData#3223](https://redirect.github.com/github/codeql-action/pull/3223)
> * When SARIF files are uploaded by the `analyze` or `upload-sarif` actions, the CodeQL Action automatically performs post-processing steps to prepare the data for the upload. Previously, these post-processing steps were only performed before an upload took place. We are now changing this so that the post-processing steps will always be performed, even when the SARIF files are not uploaded. This does not change anything for the `upload-sarif` action. For `analyze`, this may affect Advanced Setup for CodeQL users who specify a value other than `always` for the `upload` input. [ArcadeData#3222](https://redirect.github.com/github/codeql-action/pull/3222)
>
> 4.30.9 - 17 Oct 2025
> --------------------
>
> * Update default CodeQL bundle version to 2.23.3. [ArcadeData#3205](https://redirect.github.com/github/codeql-action/pull/3205)
> * Experimental: A new `setup-codeql` action has been added which is similar to `init`, except it only installs the CodeQL CLI and does not initialize a database. Do not use this in production as it is part of an internal experiment and subject to change at any time. [ArcadeData#3204](https://redirect.github.com/github/codeql-action/pull/3204)
>
> 4.30.8 - 10 Oct 2025
> --------------------
>
> No user facing changes.
>
> 4.30.7 - 06 Oct 2025
> --------------------
>
> * [v4+ only] The CodeQL Action now runs on Node.js v24. [ArcadeData#3169](https://redirect.github.com/github/codeql-action/pull/3169)
>
> 3.30.6 - 02 Oct 2025
> --------------------
>
> * Update default CodeQL bundle version to 2.23.2. [ArcadeData#3168](https://redirect.github.com/github/codeql-action/pull/3168)
>
> 3.30.5 - 26 Sep 2025
> --------------------
>
> * We fixed a bug that was introduced in `3.30.4` with `upload-sarif` which resulted in files without a `.sarif` extension not getting uploaded. [ArcadeData#3160](https://redirect.github.com/github/codeql-action/pull/3160)
>
> 3.30.4 - 25 Sep 2025
> --------------------
>
> * We have improved the CodeQL Action's ability to validate that the workflow it is used in does not use different versions of the CodeQL Action for different workflow steps. Mixing different versions of the CodeQL Action in the same workflow is unsupported and can lead to unpredictable results. A warning will now be emitted from the `codeql-action/init` step if different versions of the CodeQL Action are detected in the workflow file. Additionally, an error will now be thrown by the other CodeQL Action steps if they load a configuration file that was generated by a different version of the `codeql-action/init` step. [ArcadeData#3099](https://redirect.github.com/github/codeql-action/pull/3099) and [ArcadeData#3100](https://redirect.github.com/github/codeql-action/pull/3100)
> * We added support for reducing the size of dependency caches for Java analyses, which will reduce cache usage and speed up workflows. This will be enabled automatically at a later time. [ArcadeData#3107](https://redirect.github.com/github/codeql-action/pull/3107)
> * You can now run the latest CodeQL nightly bundle by passing `tools: nightly` to the `init` action. In general, the nightly bundle is unstable and we only recommend running it when directed by GitHub staff. [ArcadeData#3130](https://redirect.github.com/github/codeql-action/pull/3130)
> * Update default CodeQL bundle version to 2.23.1. [ArcadeData#3118](https://redirect.github.com/github/codeql-action/pull/3118)
>
> 3.30.3 - 10 Sep 2025
> --------------------
>
> No user facing changes.
>
> 3.30.2 - 09 Sep 2025
> --------------------
>
> * Fixed a bug which could cause language autodetection to fail. [ArcadeData#3084](https://redirect.github.com/github/codeql-action/pull/3084)
> * Experimental: The `quality-queries` input that was added in `3.29.2` as part of an internal experiment is now deprecated and will be removed in an upcoming version of the CodeQL Action. It has been superseded by a new `analysis-kinds` input, which is part of the same internal experiment. Do not use this in production as it is subject to change at any time. [ArcadeData#3064](https://redirect.github.com/github/codeql-action/pull/3064)

... (truncated)


Commits

* [`4e94bd1`](github/codeql-action@4e94bd1) Merge pull request [ArcadeData#3235](https://redirect.github.com/github/codeql-action/issues/3235) from github/update-v4.31.0-1d36546c1
* [`8f11182`](github/codeql-action@8f11182) Update changelog for v4.31.0
* [`1d36546`](github/codeql-action@1d36546) Merge pull request [ArcadeData#3234](https://redirect.github.com/github/codeql-action/issues/3234) from github/mbg/changelog/post-processing
* [`08ada26`](github/codeql-action@08ada26) Add changelog entry for post-processing change
* [`b843cbe`](github/codeql-action@b843cbe) Merge pull request [ArcadeData#3233](https://redirect.github.com/github/codeql-action/issues/3233) from github/mbg/getOptionalEnvVar
* [`1ecd563`](github/codeql-action@1ecd563) Use `getOptionalEnvVar` in `writePostProcessedFiles`
* [`e576807`](github/codeql-action@e576807) Merge pull request [ArcadeData#3223](https://redirect.github.com/github/codeql-action/issues/3223) from github/henrymercer/bump-minimum
* [`ad35676`](github/codeql-action@ad35676) Add `getOptionalEnvVar` function
* [`d75645b`](github/codeql-action@d75645b) Merge pull request [ArcadeData#3222](https://redirect.github.com/github/codeql-action/issues/3222) from github/mbg/upload-lib/post-process
* [`710606c`](github/codeql-action@710606c) Check that `outputPath` is non-empty
* Additional commits viewable in [compare view](github/codeql-action@16140ae...4e94bd1)
  
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility\_score?dependency-name=github/codeql-action&package-manager=github\_actions&previous-version=4.30.9&new-version=4.31.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
  
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show  ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
tae898 pushed a commit to humemai/arcadedb-embedded-python that referenced this pull request Jun 28, 2026
…from 3.5.4 to 3.5.5 [skip ci]

Bumps [org.apache.maven.plugins:maven-failsafe-plugin](https://github.com/apache/maven-surefire) from 3.5.4 to 3.5.5.
Release notes

*Sourced from [org.apache.maven.plugins:maven-failsafe-plugin's releases](https://github.com/apache/maven-surefire/releases).*

> 3.5.5
> -----
>
> 🚀 New features and improvements
> -------------------------------
>
> * Replace runing external process and parsing output with simple ProcessHandle if available (Java9+) ([ArcadeData#3252](https://redirect.github.com/apache/maven-surefire/pull/3252)) [`@​olamy`](https://github.com/olamy)
> * Pass slf4j context to spawned thread ([ArcadeData#3241](https://redirect.github.com/apache/maven-surefire/pull/3241)) [`@​scottrw93`](https://github.com/scottrw93)
> * [[SUREFIRE-3239]](https://issues.apache.org/jira/browse/SUREFIRE-3239) - allow override of statistics file checksum ([ArcadeData#3247](https://redirect.github.com/apache/maven-surefire/pull/3247)) [`@​XN137`](https://github.com/XN137)
> * Reduce log level for skipped tests result to info ([ArcadeData#3232](https://redirect.github.com/apache/maven-surefire/pull/3232)) [`@​strangelookingnerd`](https://github.com/strangelookingnerd)
>
> 🐛 Bug Fixes
> -----------
>
> * Use PowerShell instead of WMIC for detecting zombie process on Windows ([ArcadeData#3258](https://redirect.github.com/apache/maven-surefire/pull/3258)) [`@​jbliznak`](https://github.com/jbliznak). Please note if you are using Windows with Java 8 and not PowerShell (you have options to: use Java 9+, install PowerShell or stay on Surefire 3.5.4)
> * Properly work with test failures caused during beforeAll phase ([ArcadeData#3194](https://redirect.github.com/apache/maven-surefire/pull/3194)) [`@​Frawless`](https://github.com/Frawless)
>
> 📝 Documentation updates
> -----------------------
>
> * Clarify how late placeholder replacement (@{...}) deals with ([ArcadeData#3208](https://redirect.github.com/apache/maven-surefire/pull/3208)) [`@​kwin`](https://github.com/kwin)
>
> 👻 Maintenance
> -------------
>
> * Fix Jenkin badges in README ([#3254](https://redirect.github.com/apache/maven-surefire/pull/3254)) [`@​slawekjaranowski`](https://github.com/slawekjaranowski)
> * Use JUnit5 in failsafe ITs ([#3251](https://redirect.github.com/apache/maven-surefire/pull/3251)) [`@​slawekjaranowski`](https://github.com/slawekjaranowski)
> * Remove long-deprecated unused encoding property from VerifyMojo ([ArcadeData#3198](https://redirect.github.com/apache/maven-surefire/pull/3198)) [`@​Tomlincoln`](https://github.com/Tomlincoln)
> * Add IT and deal with corner cases of handling beforeAll failures ([ArcadeData#3200](https://redirect.github.com/apache/maven-surefire/pull/3200)) [`@​Frawless`](https://github.com/Frawless)
> * Revert PR [ArcadeData#3194](https://redirect.github.com/apache/maven-surefire/issues/3194) that handle beforeAll failures to follow proper contributing rules ([ArcadeData#3211](https://redirect.github.com/apache/maven-surefire/pull/3211)) [`@​Frawless`](https://github.com/Frawless)
>
> 🔧 Build
> -------
>
> * Missing many files in the GH Artifacts of CI ex-post. ([ArcadeData#3219](https://redirect.github.com/apache/maven-surefire/pull/3219)) [`@​Tibor17`](https://github.com/Tibor17)
>
> 📦 Dependency updates
> --------------------
>
> * Bump org.xmlunit:xmlunit-core from 2.10.4 to 2.11.0 ([ArcadeData#3209](https://redirect.github.com/apache/maven-surefire/pull/3209)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.4.0 to 3.5.1 ([ArcadeData#3260](https://redirect.github.com/apache/maven-surefire/pull/3260)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump parent from 44 to 47 ([ArcadeData#3253](https://redirect.github.com/apache/maven-surefire/pull/3253)) [`@​slawekjaranowski`](https://github.com/slawekjaranowski)
> * Bump org.assertj:assertj-core from 3.16.1 to 3.27.7 in /surefire-its/src/test/resources/surefire-1733-testng ([ArcadeData#3246](https://redirect.github.com/apache/maven-surefire/pull/3246)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.assertj:assertj-core from 3.27.6 to 3.27.7 ([ArcadeData#3245](https://redirect.github.com/apache/maven-surefire/pull/3245)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.codehaus.mojo:animal-sniffer-maven-plugin from 1.26 to 1.27 ([ArcadeData#3243](https://redirect.github.com/apache/maven-surefire/pull/3243)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.htmlunit:htmlunit from 4.20.0 to 4.21.0 ([ArcadeData#3236](https://redirect.github.com/apache/maven-surefire/pull/3236)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.codehaus.plexus:plexus-java from 1.5.1 to 1.5.2 ([ArcadeData#3235](https://redirect.github.com/apache/maven-surefire/pull/3235)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.apache.logging.log4j:log4j-core from 2.17.1 to 2.25.3 in /surefire-its/src/test/resources/surefire-1659-stream-corruption ([ArcadeData#3234](https://redirect.github.com/apache/maven-surefire/pull/3234)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.htmlunit:htmlunit from 4.19.0 to 4.20.0 ([ArcadeData#3228](https://redirect.github.com/apache/maven-surefire/pull/3228)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.htmlunit:htmlunit from 4.18.0 to 4.19.0 ([ArcadeData#3224](https://redirect.github.com/apache/maven-surefire/pull/3224)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.apache.commons:commons-lang3 from 3.19.0 to 3.20.0 ([ArcadeData#3223](https://redirect.github.com/apache/maven-surefire/pull/3223)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.codehaus.plexus:plexus-interpolation from 1.28 to 1.29 ([ArcadeData#3221](https://redirect.github.com/apache/maven-surefire/pull/3221)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.codehaus.plexus:plexus-i18n from 1.0.0 to 1.1.0 ([ArcadeData#3220](https://redirect.github.com/apache/maven-surefire/pull/3220)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump commons-io:commons-io from 2.20.0 to 2.21.0 ([ArcadeData#3217](https://redirect.github.com/apache/maven-surefire/pull/3217)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.3.0 to 3.4.0 ([ArcadeData#3214](https://redirect.github.com/apache/maven-surefire/pull/3214)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.codehaus.plexus:plexus-java from 1.5.0 to 1.5.1 ([ArcadeData#3218](https://redirect.github.com/apache/maven-surefire/pull/3218)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.htmlunit:htmlunit from 4.16.0 to 4.18.0 ([ArcadeData#3213](https://redirect.github.com/apache/maven-surefire/pull/3213)) @[dependabot[bot]](https://github.com/apps/dependabot)

... (truncated)


Commits

* [`968cb38`](apache/maven-surefire@968cb38) [maven-release-plugin] prepare release surefire-3.5.5
* [`8e7dc41`](apache/maven-surefire@8e7dc41) Reapply "Replace runing external process and parsing output with simple Proce...
* [`4ced57c`](apache/maven-surefire@4ced57c) Revert "Replace runing external process and parsing output with simple Proces…"
* [`8496d9a`](apache/maven-surefire@8496d9a) Bump org.xmlunit:xmlunit-core from 2.10.4 to 2.11.0 ([ArcadeData#3209](https://redirect.github.com/apache/maven-surefire/issues/3209))
* [`68265e5`](apache/maven-surefire@68265e5) Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness ([ArcadeData#3260](https://redirect.github.com/apache/maven-surefire/issues/3260))
* [`0b19014`](apache/maven-surefire@0b19014) Replace runing external process and parsing output with simple ProcessHandle ...
* [`688f8c4`](apache/maven-surefire@688f8c4) Use PowerShell instead of WMIC for detecting zombie process on Windows ([ArcadeData#3258](https://redirect.github.com/apache/maven-surefire/issues/3258))
* [`e5c01a6`](apache/maven-surefire@e5c01a6) Build only by the latest Maven on Jenkins ([ArcadeData#3255](https://redirect.github.com/apache/maven-surefire/issues/3255))
* [`9c99e97`](apache/maven-surefire@9c99e97) Fix Jenkin badges in README ([#3254](https://redirect.github.com/apache/maven-surefire/issues/3254))
* [`20930ea`](apache/maven-surefire@20930ea) Bump parent from 44 to 47 ([ArcadeData#3253](https://redirect.github.com/apache/maven-surefire/issues/3253))
* Additional commits viewable in [compare view](apache/maven-surefire@surefire-3.5.4...surefire-3.5.5)
  
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility\_score?dependency-name=org.apache.maven.plugins:maven-failsafe-plugin&package-manager=maven&previous-version=3.5.4&new-version=3.5.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
  
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot show  ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
tae898 pushed a commit to humemai/arcadedb-embedded-python that referenced this pull request Jun 28, 2026
…from 3.5.4 to 3.5.5 [skip ci]

Bumps [org.apache.maven.plugins:maven-surefire-plugin](https://github.com/apache/maven-surefire) from 3.5.4 to 3.5.5.
Release notes

*Sourced from [org.apache.maven.plugins:maven-surefire-plugin's releases](https://github.com/apache/maven-surefire/releases).*

> 3.5.5
> -----
>
> 🚀 New features and improvements
> -------------------------------
>
> * Replace runing external process and parsing output with simple ProcessHandle if available (Java9+) ([ArcadeData#3252](https://redirect.github.com/apache/maven-surefire/pull/3252)) [`@​olamy`](https://github.com/olamy)
> * Pass slf4j context to spawned thread ([ArcadeData#3241](https://redirect.github.com/apache/maven-surefire/pull/3241)) [`@​scottrw93`](https://github.com/scottrw93)
> * [[SUREFIRE-3239]](https://issues.apache.org/jira/browse/SUREFIRE-3239) - allow override of statistics file checksum ([ArcadeData#3247](https://redirect.github.com/apache/maven-surefire/pull/3247)) [`@​XN137`](https://github.com/XN137)
> * Reduce log level for skipped tests result to info ([ArcadeData#3232](https://redirect.github.com/apache/maven-surefire/pull/3232)) [`@​strangelookingnerd`](https://github.com/strangelookingnerd)
>
> 🐛 Bug Fixes
> -----------
>
> * Use PowerShell instead of WMIC for detecting zombie process on Windows ([ArcadeData#3258](https://redirect.github.com/apache/maven-surefire/pull/3258)) [`@​jbliznak`](https://github.com/jbliznak). Please note if you are using Windows with Java 8 and not PowerShell (you have options to: use Java 9+, install PowerShell or stay on Surefire 3.5.4)
> * Properly work with test failures caused during beforeAll phase ([ArcadeData#3194](https://redirect.github.com/apache/maven-surefire/pull/3194)) [`@​Frawless`](https://github.com/Frawless)
>
> 📝 Documentation updates
> -----------------------
>
> * Clarify how late placeholder replacement (@{...}) deals with ([ArcadeData#3208](https://redirect.github.com/apache/maven-surefire/pull/3208)) [`@​kwin`](https://github.com/kwin)
>
> 👻 Maintenance
> -------------
>
> * Fix Jenkin badges in README ([#3254](https://redirect.github.com/apache/maven-surefire/pull/3254)) [`@​slawekjaranowski`](https://github.com/slawekjaranowski)
> * Use JUnit5 in failsafe ITs ([#3251](https://redirect.github.com/apache/maven-surefire/pull/3251)) [`@​slawekjaranowski`](https://github.com/slawekjaranowski)
> * Remove long-deprecated unused encoding property from VerifyMojo ([ArcadeData#3198](https://redirect.github.com/apache/maven-surefire/pull/3198)) [`@​Tomlincoln`](https://github.com/Tomlincoln)
> * Add IT and deal with corner cases of handling beforeAll failures ([ArcadeData#3200](https://redirect.github.com/apache/maven-surefire/pull/3200)) [`@​Frawless`](https://github.com/Frawless)
> * Revert PR [ArcadeData#3194](https://redirect.github.com/apache/maven-surefire/issues/3194) that handle beforeAll failures to follow proper contributing rules ([ArcadeData#3211](https://redirect.github.com/apache/maven-surefire/pull/3211)) [`@​Frawless`](https://github.com/Frawless)
>
> 🔧 Build
> -------
>
> * Missing many files in the GH Artifacts of CI ex-post. ([ArcadeData#3219](https://redirect.github.com/apache/maven-surefire/pull/3219)) [`@​Tibor17`](https://github.com/Tibor17)
>
> 📦 Dependency updates
> --------------------
>
> * Bump org.xmlunit:xmlunit-core from 2.10.4 to 2.11.0 ([ArcadeData#3209](https://redirect.github.com/apache/maven-surefire/pull/3209)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.4.0 to 3.5.1 ([ArcadeData#3260](https://redirect.github.com/apache/maven-surefire/pull/3260)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump parent from 44 to 47 ([ArcadeData#3253](https://redirect.github.com/apache/maven-surefire/pull/3253)) [`@​slawekjaranowski`](https://github.com/slawekjaranowski)
> * Bump org.assertj:assertj-core from 3.16.1 to 3.27.7 in /surefire-its/src/test/resources/surefire-1733-testng ([ArcadeData#3246](https://redirect.github.com/apache/maven-surefire/pull/3246)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.assertj:assertj-core from 3.27.6 to 3.27.7 ([ArcadeData#3245](https://redirect.github.com/apache/maven-surefire/pull/3245)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.codehaus.mojo:animal-sniffer-maven-plugin from 1.26 to 1.27 ([ArcadeData#3243](https://redirect.github.com/apache/maven-surefire/pull/3243)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.htmlunit:htmlunit from 4.20.0 to 4.21.0 ([ArcadeData#3236](https://redirect.github.com/apache/maven-surefire/pull/3236)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.codehaus.plexus:plexus-java from 1.5.1 to 1.5.2 ([ArcadeData#3235](https://redirect.github.com/apache/maven-surefire/pull/3235)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.apache.logging.log4j:log4j-core from 2.17.1 to 2.25.3 in /surefire-its/src/test/resources/surefire-1659-stream-corruption ([ArcadeData#3234](https://redirect.github.com/apache/maven-surefire/pull/3234)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.htmlunit:htmlunit from 4.19.0 to 4.20.0 ([ArcadeData#3228](https://redirect.github.com/apache/maven-surefire/pull/3228)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.htmlunit:htmlunit from 4.18.0 to 4.19.0 ([ArcadeData#3224](https://redirect.github.com/apache/maven-surefire/pull/3224)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.apache.commons:commons-lang3 from 3.19.0 to 3.20.0 ([ArcadeData#3223](https://redirect.github.com/apache/maven-surefire/pull/3223)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.codehaus.plexus:plexus-interpolation from 1.28 to 1.29 ([ArcadeData#3221](https://redirect.github.com/apache/maven-surefire/pull/3221)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.codehaus.plexus:plexus-i18n from 1.0.0 to 1.1.0 ([ArcadeData#3220](https://redirect.github.com/apache/maven-surefire/pull/3220)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump commons-io:commons-io from 2.20.0 to 2.21.0 ([ArcadeData#3217](https://redirect.github.com/apache/maven-surefire/pull/3217)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.3.0 to 3.4.0 ([ArcadeData#3214](https://redirect.github.com/apache/maven-surefire/pull/3214)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.codehaus.plexus:plexus-java from 1.5.0 to 1.5.1 ([ArcadeData#3218](https://redirect.github.com/apache/maven-surefire/pull/3218)) @[dependabot[bot]](https://github.com/apps/dependabot)
> * Bump org.htmlunit:htmlunit from 4.16.0 to 4.18.0 ([ArcadeData#3213](https://redirect.github.com/apache/maven-surefire/pull/3213)) @[dependabot[bot]](https://github.com/apps/dependabot)

... (truncated)


Commits

* [`968cb38`](apache/maven-surefire@968cb38) [maven-release-plugin] prepare release surefire-3.5.5
* [`8e7dc41`](apache/maven-surefire@8e7dc41) Reapply "Replace runing external process and parsing output with simple Proce...
* [`4ced57c`](apache/maven-surefire@4ced57c) Revert "Replace runing external process and parsing output with simple Proces…"
* [`8496d9a`](apache/maven-surefire@8496d9a) Bump org.xmlunit:xmlunit-core from 2.10.4 to 2.11.0 ([ArcadeData#3209](https://redirect.github.com/apache/maven-surefire/issues/3209))
* [`68265e5`](apache/maven-surefire@68265e5) Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness ([ArcadeData#3260](https://redirect.github.com/apache/maven-surefire/issues/3260))
* [`0b19014`](apache/maven-surefire@0b19014) Replace runing external process and parsing output with simple ProcessHandle ...
* [`688f8c4`](apache/maven-surefire@688f8c4) Use PowerShell instead of WMIC for detecting zombie process on Windows ([ArcadeData#3258](https://redirect.github.com/apache/maven-surefire/issues/3258))
* [`e5c01a6`](apache/maven-surefire@e5c01a6) Build only by the latest Maven on Jenkins ([ArcadeData#3255](https://redirect.github.com/apache/maven-surefire/issues/3255))
* [`9c99e97`](apache/maven-surefire@9c99e97) Fix Jenkin badges in README ([#3254](https://redirect.github.com/apache/maven-surefire/issues/3254))
* [`20930ea`](apache/maven-surefire@20930ea) Bump parent from 44 to 47 ([ArcadeData#3253](https://redirect.github.com/apache/maven-surefire/issues/3253))
* Additional commits viewable in [compare view](apache/maven-surefire@surefire-3.5.4...surefire-3.5.5)
  
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility\_score?dependency-name=org.apache.maven.plugins:maven-surefire-plugin&package-manager=maven&previous-version=3.5.4&new-version=3.5.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
  
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot show  ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file do not merge The PR is not ready java Pull requests that update java code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants