Bump the dev-deps group with 2 updates

[dependabot]

Bumps the dev-deps group with 2 updates: org.jreleaser:jreleaser-maven-plugin and io.github.git-commit-id:git-commit-id-maven-plugin.

Updates org.jreleaser:jreleaser-maven-plugin from 1.23.0 to 1.24.0

Release notes

Sourced from org.jreleaser:jreleaser-maven-plugin's releases.

Release v1.24.0

Binaries

https://github.com/jreleaser/jreleaser/wiki/Release-v1.24.0

Changelog

🚀 Features

announce

• c8033ee Support zernio as announcer, closes #2098

core

• 4586b4a Add a flag to activate reproducible artifacts, closes #2115

gradle

• 48a2685 Fix access to Task.project at task execution time, closes #1992

jdks

• bfb88cd Fix inconsistent timeout validation, closes #2087
• 6dffe57 Add download timeout support to jdks-maven-plugin, closes #2083

🐛 Fixes

assemble

• af9767b Pass JVM options to generated launcher by jlink, closes #2090
• e7b4afb Resolve relative launcher symlinks, closes #1994
• dce1c0f Avoid duplicate resources in Native Image by using -cp option during assemble step, closes #2094

deploy

• 39250fa Consider PUBLISHED state when checking deployment transition, closes #2082

gradle

• 2737a31 Add property keys related to deprecated Convention APIs, closes #2078

packager

• 401af4b Use snap arch in JAVA_HOME, closes #2027

packagers

• 3736268 Update chocolatey templates, closes #2107 #2108
• 1b0e37b Use consistent paths in single-jar Dockerfile template
• 0955463 Use multi-stage build in Docker templates to avoid duplicate layers, closes #2079

sign

• e820f56 Support PGP subkeys, closes #2086

🔄️ Changes

packagers

• e5eab0a Fix default Docker entrypoints, closes #2112 #2113
• c775aa9 Fine tune multi-stage docker files, closes #2079

unscoped

... (truncated)

Commits

• 4def722 Releasing version 1.24.0
• 7d313fd build: Fix GH workflows
• e820f56 fix(sign): Support PGP subkeys
• 55c0de7 deps: Update ant to 1.10.17
• b058360 deps: Update aws-java-sdk to 2.42.41
• 93f5b77 deps: Update bouncycastle to 1.84
• 9fec8ee deps: Update byte-buddy to 1.18.8
• 3d87d5d deps: Update commons-codec to 1.22.0
• 22b1263 deps: Update commons-io to 2.22.0
• 79ca5e3 deps: Update commons-net to 3.13.0
• Additional commits viewable in compare view

Updates io.github.git-commit-id:git-commit-id-maven-plugin from 9.1.0 to 10.0.0

Release notes

Sourced from io.github.git-commit-id:git-commit-id-maven-plugin's releases.

Version 10.0.0 is finally there and includes various bug-fixes and improvements :-)

⚠️ This is a potentially breaking release. Read the release-notes carefully ⚠️

Potential Breaking changes:

The main key-aspects that might cause a breakage when migrating to the new version:

• #913 / #914: Require Maven 3.9.0 [Maven 3.6.3 is EOL] ⚠️

Getting the latest release

The plugin is available from Maven Central (see here), so you don't have to configure any additional repositories to use this plugin. All you need to do is to configure it inside your project as dependency:

<dependency>
    <groupId>io.github.git-commit-id</groupId>
    <artifactId>git-commit-id-maven-plugin</artifactId>
    <version>10.0.0</version>
</dependency>

Getting the latest snapshot (build automatically)

If you can't wait for the next release, you can also get the latest snapshot version from sonatype, that is being deployed automatically by github actions:

<pluginRepositories>
    <pluginRepository>
        <id>sonatype-snapshots</id>
        <name>Sonatype Snapshots</name>
         <url>https://s01.oss.sonatype.org/content/repositories/snapshots/</url>
    </pluginRepository>
</pluginRepositories>

Even though the github actions will only deploy a new snapshot once all tests have finished, it is recommended to rely on the released and more stable version.

Known Issues / Limitations:

• This plugin is unfortunately not working with Heroku which is due to the fact how Heroku works. In summary Heroku does not copy over the .git-repository but in order to determine the git properties this plugin relies on the fact that it has access to the git-repository. A somewhat workaround to get some information is outlined in ktoso/maven-git-commit-id-plugin#279
• Using maven's plugin prefix resolution (e.g. mvn com.test.plugins:myPlugin:myMojo) might result in unresolved properties even with <injectAllReactorProjects>true</injectAllReactorProjects>. Please refer to git-commit-id/maven-git-commit-id-plugin#287 or git-commit-id/maven-git-commit-id-plugin#413 for details and potential workarounds

Reporting Problems

If you find any problem with this plugin, feel free to report it here

Full Changelog: git-commit-id/git-commit-id-maven-plugin@v9.2.0...v10.0.0

Version 9.2.0 is finally there and includes various bug-fixes and improvements :-)

New Features / Bug-Fixes:

The main key-aspects that have been improved or being worked on are the following:

• bump several plugins
  • bump io.github.git-commit-id:git-commit-id-plugin-core from 6.1.5 to 6.2.0
    • replace org.eclipse.jgit.ssh.jsch with org.eclipse.jgit:org.eclipse.jgit.ssh.apache (see https://github.com/eclipse-jgit/jgit/blob/master/org.eclipse.jgit.ssh.jsch/README.md)

... (truncated)

Commits

• 2cd9c8b Bump version: 9.2.0 → 10.0.0
• fbfc066 Merge pull request #914 from git-commit-id/maven_3_9_0
• 3d51706 git-commit-id/git-commit-id-maven-plugin#913: Requi...
• fd9a262 update to the latest version available
• 0163ad6 Bump version: 9.1.0 → 9.2.0
• d8fdbb3 Merge pull request #912 from git-commit-id/plugin-core_6_2_0
• 8a33505 bump io.github.git-commit-id:git-commit-id-plugin-core from 6.1.5 to 6.2.0
• 4aefc60 update to the latest version in readme
• 743c415 update links to git-commit-id-maven-plugin (we are not in the core module :-)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud