chore: [DevOps] bump the plugins group with 5 updates

[dependabot]

Bumps the plugins group with 5 updates:

Package	From	To
org.apache.maven.plugins:maven-enforcer-plugin	3.6.0	3.6.1
org.apache.maven.plugins:maven-pmd-plugin	3.26.0	3.27.0
com.github.spotbugs:spotbugs-maven-plugin	4.9.3.0	4.9.3.2
org.apache.maven.plugins:maven-gpg-plugin	3.2.7	3.2.8
org.codehaus.mojo:flatten-maven-plugin	1.7.1	1.7.2

Updates org.apache.maven.plugins:maven-enforcer-plugin from 3.6.0 to 3.6.1

Release notes

Sourced from org.apache.maven.plugins:maven-enforcer-plugin's releases.

3.6.1

🚀 New features and improvements

• Improve performance of transitive dependency checks (#904) @​harrisric

🐛 Bug Fixes

• Fix NPE when a classifier part is specified in bannedDependencies (#905) @​harrisric

📝 Documentation updates

• Move contributing information into README (#911) @​slawekjaranowski
• Rewrite CONTRIBUTING.md to use the Github issue tracker instead of JIRA (#898) @​elharo

👻 Maintenance

• Remove unused javax.annotations dependency (#899) @​elharo
• Remove unused methods (#900) @​elharo
• Remove the from parameter names (#901) @​elharo
• Fix a grab bag of typos and minor grammar errors (#897) @​elharo
• remove unneeded contains check as add already does that (#896) @​elharo

📦 Dependency updates

• Bump org.apache.commons:commons-lang3 from 3.17.0 to 3.18.0 (#910) @dependabot[bot]

Commits

• 9b9b705 [maven-release-plugin] prepare release enforcer-3.6.1
• 469f45c Move contributing information into README - fix cla link
• fec424a Move contributing information into README
• 3abe11d Bump org.apache.commons:commons-lang3 from 3.17.0 to 3.18.0 (#910)
• d58be76 Improve performance of transitive dependency checks (#904)
• 1f7ac3c null analysis (#907)
• 3bfbff8 Fix some typos
• 8da0311 Remove unused javax.annotations dependency (#899)
• 06bcf29 Remove unused methods (#900)
• b25c800 Fix NPE when a classifier part is specified but an artifact classifier is nul...
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-pmd-plugin from 3.26.0 to 3.27.0

Release notes

Sourced from org.apache.maven.plugins:maven-pmd-plugin's releases.

3.27.0

🚀 New features and improvements

• Use constant 3.6.3 in prerequisites/maven as minimal Maven version (#640) @​slawekjaranowski
• Bump pmdVersion from 7.12.0 to 7.14.0 (#213) @dependabot[bot]
• Allow plugin execute with Maven 4 (#209) @​slawekjaranowski
• Upgrade to PMD 7.12 (#196) @​elharo
• [MPMD-411] - Implement getOutputPath and identify getOutputName as deprecated, (#179) @​elharo

🐛 Bug Fixes

• [MPMD-410] - Number agreement (#181) @​elharo

📝 Documentation updates

• Documentation: Excludes should be placed in pluginManagement (#637) (#638) @​Bukama
• small parameter documentation improvement (#221) @​elharo
• Replace manually maintained release notes by link to GitHub (#214) @​slawekjaranowski
• Correct typos (#194) @​elharo
• Add more information about excludes (#185) @​Bukama
• [MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#182) @​Bukama

👻 Maintenance

• [MPMD-412] - Simplify stub setup by not swallowing exceptions (#226) @​elharo
• Use maven-embedder in test scope (#228) @​slawekjaranowski
• Ignore the .vscode directory in git (#227) @​elharo
• Clarify and simplify isDirectoryExcluded (#222) @​elharo
• fix return type of getFilesToProcess in Javadoc (#223) @​elharo
• small parameter documentation improvement (#221) @​elharo
• Clean up some Javadoc comments (#219) @​elharo
• Declare used dependency on org.apache.maven.reporting:maven-reporting… (#215) @​elharo
• Buffer the writers (#218) @​elharo
• Get rid of maven-artifact-transfer and other legacy stuff (#210) @​slawekjaranowski
• Introduce service executors for CPD, PMD executors (#206) @​slawekjaranowski
• Upgrade PR template for GitHub issues (#207) @​slawekjaranowski
• Update site descriptor to 2.0 (#205) @​slawekjaranowski
• Use shared release-drafter action (#203) @​slawekjaranowski
• Fix failed tests in CPD reports that were hidden by overly broad catch clauses (#192) @​elharo
• simplify code by preferring JDK methods (#199) @​elharo
• Declare javax.inject dependency (#197) @​elharo
• Avoid catching raw exception (#198) @​elharo
• [MPMD-412] - Remove unused code and otherwise cleanup tests (#178) @​elharo
• remove redundant code (#193) @​elharo
• [MPMD-412] - clean up unused code (#190) @​elharo
• Enable GitHub issues (#184) @​Bukama
• Prefer Guice injection (#177) @​elharo

📦 Dependency updates

... (truncated)

Commits

• ac2291d [maven-release-plugin] prepare release maven-pmd-plugin-3.27.0
• 156596e Bump org.apache.maven.plugins:maven-plugins from 44 to 45
• 897483c Bump mavenVersion from 3.6.3 to 3.9.10 (#641)
• 77e0956 Use RESOLVED_VERSION in tag-template
• ba13018 Use constant 3.6.3 in prerequisites/maven as minimal Maven version
• 2714d4e Documentation: Excludes should be placed in pluginManagement (#637 / #638)
• 1dc5ad6 remove jira link (#636)
• 04894a5 [MPMD-412] Simplify stub setup by not swallowing exceptions (#226)
• b9605ec Use maven-embedder in test scope
• 7ac47ac Ignore the .vscdoe directory in git (#227)
• Additional commits viewable in compare view

Updates com.github.spotbugs:spotbugs-maven-plugin from 4.9.3.0 to 4.9.3.2

Release notes

Sourced from com.github.spotbugs:spotbugs-maven-plugin's releases.

Spotbugs Maven Plugin 4.9.3.2

• Fixed long standing bug in source roots of test side of code for exclusion purposes, see #1090 and #1091.

Spotbugs Maven Plugin 4.9.3.1

Plugin

• Rewrite java io to java nio
• Rewrite some groovy code
• Make sure all resources are closed properly
• Don't mix java code into groovy code

Build

• Update github actions
• Add spock for building unit tests and add baseline of tests
• Rewrite all integration tests from java io to java nio
• Add stubfixer to add missing 'Override' annotations to groovy generated code

Commits

• 887c3c2 [maven-release-plugin] prepare release spotbugs-maven-plugin-4.9.3.2
• caea7a4 Merge pull request #1090 from TeofilisMartisius/master
• 188e19f Set testCompileSourceRoots correctly
• 94d0aa1 Merge pull request #1088 from spotbugs/release/4.9.3.1
• c8e9ca3 [maven-release-plugin] prepare for next development iteration
• 97cfc34 [maven-release-plugin] prepare release spotbugs-maven-plugin-4.9.3.1
• 9479f0f Merge pull request #1085 from hazendaz/nio
• c8a8710 Merge pull request #1086 from spotbugs/renovate/junitversion
• 3095777 Update dependency org.junit.jupiter:junit-jupiter-engine to v5.13.2
• 3e19545 Better path usage dropping internal usage of forward slash as unnecessary
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-gpg-plugin from 3.2.7 to 3.2.8

Release notes

Sourced from org.apache.maven.plugins:maven-gpg-plugin's releases.

3.2.8

🐛 Bug Fixes

• Make empty classifier null (not empty string) (#287) @​cstamas

📝 Documentation updates

• [MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#129) @​Bukama
• Describe how to prime a specific GPG key (#128) @​kwin

👻 Maintenance

• Enable GitHub issues (#134) @​Bukama
• Prefer Guice constructor injection (#126) @​elharo

📦 Dependency updates

• Update parent POM to 45 (#284) @​cstamas
• Bump bouncycastleVersion from 1.78.1 to 1.80 (#127) @dependabot[bot]
• Bump commons-io:commons-io from 2.18.0 to 2.19.0 (#133) @dependabot[bot]
• Bump org.apache.maven.plugins:maven-invoker-plugin from 3.8.0 to 3.9.0 (#125) @dependabot[bot]
• Bump org.simplify4u.plugins:pgpverify-maven-plugin from 1.18.2 to 1.19.1 (#131) @dependabot[bot]
• Bump commons-io:commons-io from 2.17.0 to 2.18.0 (#124) @dependabot[bot]

Commits

• 8a46455 [maven-release-plugin] prepare release maven-gpg-plugin-3.2.8
• 7012821 Fix issueManagement, ciManagement system and url
• a9a8c84 Make empty classifier null (not empty string) (#287)
• a8368b0 Add .mvn
• f0e45e0 Update parent POM to 45 (#284)
• cb1236c Bump bouncycastleVersion from 1.78.1 to 1.80 (#127)
• 5377a10 Bump commons-io:commons-io from 2.18.0 to 2.19.0 (#133)
• 8b63932 Bump org.apache.maven.plugins:maven-invoker-plugin from 3.8.0 to 3.9.0 (#125)
• 54ea518 Bump org.simplify4u.plugins:pgpverify-maven-plugin from 1.18.2 to 1.19.1
• a6a412d Remove old JIRA issue link
• Additional commits viewable in compare view

Updates org.codehaus.mojo:flatten-maven-plugin from 1.7.1 to 1.7.2

Release notes

Sourced from org.codehaus.mojo:flatten-maven-plugin's releases.

1.7.2

🐛 Bug Fixes

• Create missing target directories, use NIO for file block operations (#471) @​slawekjaranowski

📝 Documentation updates

• Clarify example in usage about updatePomFile behavior (#477) @​slawekjaranowski

👻 Maintenance

• Add stale GitHub Action (#476) @​slawekjaranowski
• Add Maven 4 to build matrix on GitHub Actions (#474) @​slawekjaranowski
• Improve assertions in no-overwrite tests (#475) @​slawekjaranowski
• Add a missing plugin version in ITS (#473) @​slawekjaranowski
• Add integration test for install and deploy flattened pom (#472) @​slawekjaranowski

📦 Dependency updates

• Bump commons-io:commons-io from 2.19.0 to 2.20.0 (#470) @dependabot[bot]
• Bump mavenVersion from 3.9.10 to 3.9.11 (#467) @dependabot[bot]
• Bump com.fasterxml.jackson.core:jackson-core from 2.3.3 to 2.15.0 in /src/it/projects/bom-flattenMode/bom (#464) @dependabot[bot]
• Bump com.fasterxml.jackson.core:jackson-core from 2.13.0 to 2.15.0 in /src/it/projects/bom-pomElements/bom (#463) @dependabot[bot]

Commits

• 9d80041 [maven-release-plugin] prepare release 1.7.2
• 6c62863 Clarify example in usage about updatePomFile behavior
• fc35f4c Add stale GitHub Action
• 0fb1ea0 Add Maven 4 to build matrix on GitHub Actions (#474)
• 35e0e0c Improve assertions in no-overwrite tests
• e193a20 Add a missing plugin version in ITS
• 87009a4 Add integration test for install and deploy flattened pom
• e02117c Create missing target directories, use NIO for file block operations
• f9289bf Bump commons-io:commons-io from 2.19.0 to 2.20.0
• 227ae5e Bump mavenVersion from 3.9.10 to 3.9.11
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions