Bump the maven-plugins group across 1 directory with 4 updates #164

dependabot · 2026-01-19T01:58:10Z

Bumps the maven-plugins group with 4 updates in the / directory: org.apache.maven:maven-plugin-api, org.apache.maven.plugins:maven-resources-plugin, org.apache.maven.plugins:maven-source-plugin and org.sonatype.central:central-publishing-maven-plugin.

Updates org.apache.maven:maven-plugin-api from 3.9.11 to 3.9.12

Release notes

Sourced from org.apache.maven:maven-plugin-api's releases.

3.9.12

🚀 New features and improvements

[3.9.x] Apply resolver changes and improvements (#11536) @cstamas

Update formatting of prerequisites-requirements error to improve readability (#11523) @slawekjaranowski

Allow a Maven plugin to require a Java version (#11479) @slawekjaranowski

Use MavenRepositorySystem in ProjectBuildingHelper instead of deprecated RepositorySystem (#11358) @slawekjaranowski

Make maven.config use UTF8 (#11264) @cstamas

Simplify prefix resolution (#11197) @slawekjaranowski

🐛 Bug Fixes

Add default implementation for new method in MavenPluginManager (#11522) @slawekjaranowski

Repository layout should be used in MavenRepositorySystem (#11495) @slawekjaranowski

Fix plugin prefix resolution when metadata is not available from repository (#11290) @slawekjaranowski

Improve source root modification warning message (#11105) @gnodet

Bug: bad cache isolation between two sessions (#11082) @cstamas

Set Guice class loading to CHILD - avoid using terminally deprecated methods (#11003) @slawekjaranowski

Avoid parsing MAVEN_OPTS (3.9.x) (#10969) @BobVul

📝 Documentation updates

clarify repository vs deployment repository (#11492) @hboutemy

add maintained branches (#11448) @hboutemy

👻 Maintenance

Add IntelliJ icon (#11408) @Bukama

Build by JDK 25 (#11187) @slawekjaranowski

Deprecate org.apache.maven.repository.RepositorySystem in 3.9.x (#11096) @slawekjaranowski

🔧 Build

Bump actions/download-artifact from 5.0.0 to 6.0.0 (#11335) @dependabot[bot]

Bump actions/upload-artifact from 4.6.2 to 5.0.0 (#11336) @dependabot[bot]

📦 Dependency updates

Bump actions/cache from 4.3.0 to 5.0.0 (#11542) @dependabot[bot]

Bump resolverVersion from 1.9.24 to 1.9.25 (#11533) @dependabot[bot]

Bump actions/checkout from 6.0.0 to 6.0.1 (#11512) @dependabot[bot]

Bump actions/setup-java from 5.0.0 to 5.1.0 (#11519) @dependabot[bot]

Bump actions/checkout from 5.0.1 to 6.0.0 (#11476) @dependabot[bot]

Bump actions/checkout from 5.0.0 to 5.0.1 (#11458) @dependabot[bot]

Bump commons-cli:commons-cli from 1.10.0 to 1.11.0 (#11438) @dependabot[bot]

Bump org.codehaus.plexus:plexus-interpolation from 1.28 to 1.29 (#11416) @dependabot[bot]

Bump commons-io:commons-io from 2.20.0 to 2.21.0 (#11417) @dependabot[bot]

Bump xmlunitVersion from 2.10.4 to 2.11.0 (#11331) @dependabot[bot]

Bump org.codehaus.mojo:animal-sniffer-maven-plugin from 1.24 to 1.26 (#11231) @dependabot[bot]

... (truncated)

Commits

848fbb4 [maven-release-plugin] prepare release maven-3.9.12
c1b65f6 Bump actions/cache from 4.3.0 to 5.0.0 (#11542)
88681b8 [3.9.x] Apply resolver changes and improvements (#11536)
148fcc8 Bump resolverVersion from 1.9.24 to 1.9.25 (#11533)
c433909 Simplify formatting of prerequisites-requirements error
ec21f4b Update formatting of prerequisites-requirements error to improve readability
f839cc1 Add default implementation for new method in MavenPluginManager
0a7e149 Bump actions/checkout from 6.0.0 to 6.0.1 (#11512)
ed09c2a Bump actions/setup-java from 5.0.0 to 5.1.0 (#11519)
00ca9b0 Fix javadoc in MavenRepositorySystem
Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-resources-plugin from 3.3.1 to 3.4.0

Release notes

Sourced from org.apache.maven.plugins:maven-resources-plugin's releases.

3.4.0

🚀 New features and improvements

Enable GitHub Issues (#98) @slawekjaranowski

📝 Documentation updates

[MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#89) @Bukama

[MRESOURCES-299] - Be more accurate on using filtering element (#80) @pzygielo

Don't bother with very old versions (#59) @elharo

👻 Maintenance

Migrate site to Doxia 2 (#440) @slachiewicz

Bump Maven to 3.9.11 while keep prerequisites on 3.6.3 (#437) @slachiewicz

PlexusFileUtils Refaster recipes (#431) @slachiewicz

Add PR Automation action (#94) @slawekjaranowski

Improve release-drafter configuration (#93) @slawekjaranowski

Bump org.apache.maven.plugins:maven-plugins from 39 to 41 (#64) @dependabot[bot]

Add dependency to slf4j-simple for test scope (#60) @slachiewicz

Use try with resources in integration test (#58) @elharo

reduce dependency scope of plexus-utils and commons-io (#57) @elharo

📦 Dependency updates

Bump org.apache.commons:commons-lang3 from 3.19.0 to 3.20.0 (#439) @dependabot[bot]

Bump org.apache.maven.resolver:maven-resolver-api from 1.6.3 to 1.9.24 (#413) @dependabot[bot]

Bump Maven to 3.9.11 while keep prerequisites on 3.6.3 (#437) @slachiewicz

Bump org.codehaus.plexus:plexus-interpolation from 1.28 to 1.29 (#432) @dependabot[bot]

Bump m-invoker-p to 3.9.1 (#433) @slachiewicz

Bump org.apache.maven.plugins:maven-plugins from 43 to 45 (#411) @dependabot[bot]

Bump org.codehaus.plexus:plexus-interpolation from 1.27 to 1.28 (#114) @dependabot[bot]

Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.3.0 to 3.4.0 (#430) @dependabot[bot]

Bump org.apache.commons:commons-lang3 from 3.18.0 to 3.19.0 (#422) @dependabot[bot]

Bump commons-io:commons-io from 2.19.0 to 2.20.0 (#419) @dependabot[bot]

Bump org.apache.commons:commons-lang3 from 3.17.0 to 3.18.0 (#416) @dependabot[bot]

Bump commons-io:commons-io from 2.18.0 to 2.19.0 (#117) @dependabot[bot]

Bump org.apache.maven.shared:maven-filtering from 3.3.2 to 3.4.0 (#107) @dependabot[bot]

Bump commons-io:commons-io from 2.16.0 to 2.18.0 (#102) @dependabot[bot]

Bump org.apache.commons:commons-lang3 from 3.14.0 to 3.17.0 (#104) @dependabot[bot]

Bump org.apache.maven.plugins:maven-plugins from 41 to 43 (#101) @dependabot[bot]

[MRESOURCES-305] - Bump org.codehaus.plexus:plexus-utils from 3.5.1 to 4.0.0 (#65) @dependabot[bot]

[MRESOURCES-304] - Bump org.codehaus.plexus:plexus-interpolation from 1.26 to 1.27 (#66) @dependabot[bot]

[MRESOURCES-303] - Bump org.apache.maven.shared:maven-filtering from 3.3.1 to 3.3.2 (#68) @dependabot[bot]

Bump org.apache.commons:commons-lang3 from 3.12.0 to 3.14.0 (#62) @dependabot[bot]

[MRESOURCES-302] - Bump commons-io:commons-io from 2.11.0 to 2.16.0 (#69) @dependabot[bot]

Bump apache/maven-gh-actions-shared from 3 to 4 (#67) @dependabot[bot]

Commits

b07d56e [maven-release-plugin] prepare for next development iteration
21e646c [maven-release-plugin] prepare release maven-resources-plugin-3.4.0
61801af Migrate site to Doxia 2
146ebb8 Bump org.apache.commons:commons-lang3 from 3.19.0 to 3.20.0 (#439)
5013682 Bump org.apache.maven.resolver:maven-resolver-api from 1.6.3 to 1.9.24
d7c4d28 Bump Maven to 3.9.11 while keep prerequisites on 3.6.3
e33f1ec Bump org.codehaus.plexus:plexus-interpolation from 1.28 to 1.29
ce77f50 Bump m-invoker-p to 3.9.1
726f429 Bump org.apache.maven.plugins:maven-plugins from 43 to 45
a747bae PlexusFileUtils Refaster recipes
Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-source-plugin from 3.3.1 to 3.4.0

Release notes

Sourced from org.apache.maven.plugins:maven-source-plugin's releases.

3.4.0

🐛 Bug Fixes

[MSOURCES-140] - fail only if re-attach different files (#24) @hboutemy

👻 Maintenance

Bump m-invoker-p to 3.9.1 (#251) @slachiewicz

Allow to manually execute release drafter (#58) @slawekjaranowski

GH Issues (Maven 3 branch) (#57) @Bukama

[MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#49) @Bukama

📦 Dependency updates

Use plexus-utils version from parent (#252) @slachiewicz

Bump commons-io:commons-io from 2.20.0 to 2.21.0 (#247) @dependabot[bot]

Bump org.codehaus.plexus:plexus-archiver from 4.10.3 to 4.10.4 (#248) @dependabot[bot]

Bump org.apache.maven:maven-archiver from 3.6.4 to 3.6.5 (#241) @dependabot[bot]

Bump org.codehaus.plexus:plexus-archiver from 4.10.1 to 4.10.3 (#242) @dependabot[bot]

Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.3.0 to 3.4.0 (#246) @dependabot[bot]

Bump mavenVersion from 3.2.5 to 3.9.11 (#221) @dependabot[bot]

Bump org.codehaus.plexus:plexus-archiver from 4.10.0 to 4.10.1 (#233) @dependabot[bot]

Bump org.apache.maven:maven-archiver from 3.6.3 to 3.6.4 (#229) @dependabot[bot]

Bump org.apache.maven.plugins:maven-plugins from 41 to 45 (#218) @dependabot[bot]

Bump org.codehaus.plexus:plexus-utils from 3.5.1 to 3.6.0 (#226) @dependabot[bot]

Bump commons-io:commons-io from 2.19.0 to 2.20.0 (#222) @dependabot[bot]

Bump commons-io:commons-io from 2.16.1 to 2.19.0 (#68) @dependabot[bot]

Bump org.codehaus.plexus:plexus-archiver from 4.9.2 to 4.10.0 (#63) @dependabot[bot]

Bump org.apache.maven:maven-archiver from 3.6.2 to 3.6.3 (#66) @dependabot[bot]

Bump commons-io:commons-io from 2.16.0 to 2.16.1 (#27) @dependabot[bot]

[MSOURCES-147] - Bump org.codehaus.plexus:plexus-archiver from 4.9.1 to 4.9.2 (#23) @dependabot[bot]

[MSOURCES-146] - Bump commons-io:commons-io from 2.11.0 to 2.16.0 (#25) @dependabot[bot]

[MSOURCES-145] - Bump org.apache.maven:maven-archiver from 3.6.1 to 3.6.2 (#26) @dependabot[bot]

Commits

ecf937a [maven-release-plugin] prepare release maven-source-plugin-3.4.0
95b3bf4 Revert "[maven-release-plugin] prepare for next development iteration"
7a9a770 [maven-release-plugin] prepare for next development iteration
292c1ce Use plexus-utils version from parent
bf79b71 Bump m-invoker-p to 3.9.1
4f3fcb9 Bump commons-io:commons-io from 2.20.0 to 2.21.0
a867442 Bump org.codehaus.plexus:plexus-archiver from 4.10.3 to 4.10.4
51c66ac Bump org.apache.maven:maven-archiver from 3.6.4 to 3.6.5
267df46 Bump org.codehaus.plexus:plexus-archiver from 4.10.1 to 4.10.3
ef85324 Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness
Additional commits viewable in compare view

Updates org.sonatype.central:central-publishing-maven-plugin from 0.9.0 to 0.10.0

Commits

See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

magnusp · 2026-01-20T11:45:20Z

@dependabot recreate

magnusp · 2026-01-20T12:17:09Z

@dependabot rebase

magnusp · 2026-01-20T12:44:05Z

@dependabot recreate

Bumps the maven-plugins group with 4 updates in the / directory: [org.apache.maven:maven-plugin-api](https://github.com/apache/maven), [org.apache.maven.plugins:maven-resources-plugin](https://github.com/apache/maven-resources-plugin), [org.apache.maven.plugins:maven-source-plugin](https://github.com/apache/maven-source-plugin) and [org.sonatype.central:central-publishing-maven-plugin](https://github.com/sonatype/central-publishing-maven-plugin). Updates `org.apache.maven:maven-plugin-api` from 3.9.11 to 3.9.12 - [Release notes](https://github.com/apache/maven/releases) - [Commits](apache/maven@maven-3.9.11...maven-3.9.12) Updates `org.apache.maven.plugins:maven-resources-plugin` from 3.3.1 to 3.4.0 - [Release notes](https://github.com/apache/maven-resources-plugin/releases) - [Commits](apache/maven-resources-plugin@maven-resources-plugin-3.3.1...v3.4.0) Updates `org.apache.maven.plugins:maven-source-plugin` from 3.3.1 to 3.4.0 - [Release notes](https://github.com/apache/maven-source-plugin/releases) - [Commits](apache/maven-source-plugin@maven-source-plugin-3.3.1...maven-source-plugin-3.4.0) Updates `org.sonatype.central:central-publishing-maven-plugin` from 0.9.0 to 0.10.0 - [Commits](https://github.com/sonatype/central-publishing-maven-plugin/commits) --- updated-dependencies: - dependency-name: org.apache.maven:maven-plugin-api dependency-version: 3.9.12 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: maven-plugins - dependency-name: org.apache.maven.plugins:maven-resources-plugin dependency-version: 3.4.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-plugins - dependency-name: org.apache.maven.plugins:maven-source-plugin dependency-version: 3.4.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-plugins - dependency-name: org.sonatype.central:central-publishing-maven-plugin dependency-version: 0.10.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-plugins ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Jan 19, 2026

dependabot bot requested a review from magnusp as a code owner January 19, 2026 01:58

dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Jan 19, 2026

github-actions bot enabled auto-merge January 19, 2026 01:58

github-actions bot pushed a commit that referenced this pull request Jan 19, 2026

Add changeset for Dependabot PR #164 [dependabot skip]

b2a0e72

dependabot bot force-pushed the dependabot/maven/maven-plugins-93b26f2915 branch from b2a0e72 to 41bf5b3 Compare January 20, 2026 11:46

github-actions bot pushed a commit that referenced this pull request Jan 20, 2026

Add changeset for Dependabot PR #164 [dependabot skip]

22f6440

magnusp previously approved these changes Jan 20, 2026

View reviewed changes

dependabot bot dismissed magnusp’s stale review via 9225f97 January 20, 2026 12:18

dependabot bot force-pushed the dependabot/maven/maven-plugins-93b26f2915 branch from 22f6440 to 9225f97 Compare January 20, 2026 12:18

github-actions bot pushed a commit that referenced this pull request Jan 20, 2026

Add changeset for Dependabot PR #164 [dependabot skip]

13e4ea5

github-actions bot pushed a commit that referenced this pull request Jan 20, 2026

Add changeset for Dependabot PR #164 [dependabot skip]

69d1259

dependabot bot force-pushed the dependabot/maven/maven-plugins-93b26f2915 branch from 69d1259 to 13a7964 Compare January 20, 2026 12:45

dependabot bot and others added 3 commits January 20, 2026 12:45

Add changeset for Dependabot PR #164 [dependabot skip]

45de236

Fixes changeset

9955dbf

Add changeset for Dependabot PR #164 [dependabot skip]

740eb97

magnusp approved these changes Jan 20, 2026

View reviewed changes

magnusp disabled auto-merge January 20, 2026 12:50

magnusp merged commit 5cc54d7 into main Jan 20, 2026
1 check passed

magnusp deleted the dependabot/maven/maven-plugins-93b26f2915 branch January 20, 2026 12:50

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump the maven-plugins group across 1 directory with 4 updates #164

Bump the maven-plugins group across 1 directory with 4 updates #164

Uh oh!

dependabot bot commented on behalf of github Jan 19, 2026 •

edited

Loading

Uh oh!

magnusp commented Jan 20, 2026

Uh oh!

magnusp commented Jan 20, 2026

Uh oh!

magnusp commented Jan 20, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Bump the maven-plugins group across 1 directory with 4 updates #164

Bump the maven-plugins group across 1 directory with 4 updates #164

Uh oh!

Conversation

dependabot bot commented on behalf of github Jan 19, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

3.9.12

🚀 New features and improvements

🐛 Bug Fixes

📝 Documentation updates

👻 Maintenance

🔧 Build

📦 Dependency updates

3.4.0

🚀 New features and improvements

📝 Documentation updates

👻 Maintenance

📦 Dependency updates

3.4.0

🐛 Bug Fixes

👻 Maintenance

📦 Dependency updates

Uh oh!

magnusp commented Jan 20, 2026

Uh oh!

magnusp commented Jan 20, 2026

Uh oh!

magnusp commented Jan 20, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

dependabot bot commented on behalf of github Jan 19, 2026 •

edited

Loading