build(deps): bump the all group across 1 directory with 7 updates

[dependabot]

Bumps the all group with 6 updates in the /applications directory:

Package	From	To
org.springframework.boot:spring-boot-starter-parent	3.3.5	3.4.1
org.springframework.cloud:spring-cloud-starter-openfeign	4.1.3	4.2.0
io.opentelemetry:opentelemetry-bom	1.44.1	1.46.0
org.springframework.cloud:spring-cloud-starter-contract-verifier	4.1.4	4.2.0
org.springframework.cloud:spring-cloud-contract-maven-plugin	4.1.4	4.2.0
org.pitest:pitest-maven	1.17.1	1.17.4

Updates org.springframework.boot:spring-boot-starter-parent from 3.3.5 to 3.4.1

Release notes

Sourced from org.springframework.boot:spring-boot-starter-parent's releases.

v3.4.1

🐞 Bug Fixes

• KafkaProperties fail to build SSL properties when the bundle name is an empty string #43563
• Diagnostics are poor when property resolution throws a ConversionFailedException #43559
• SpringApplicationShutdownHandlers do not run in deterministic order #43536
• Unable to find a @SpringBootConfiguration results in misleading error message #43507
• With multiple ResourceHandlerRegistrationCustomizer beans in the context, only one of them is used #43497
• Unable to use Docker Compose support when mixing dedicated and shared services #43472
• Kafka dependency management does not include the kafka-server module #43454
• Docker API version is incorrectly reported when '/_ping` calls fail and version should be fixed #43452
• Methods to build producer / consumer properties from KafkaProperties are inconvienenent to use without an SSL bundle #43448
• Failures in -Djarmode=tools do not consistently return a non-zero exit #43436
• HttpComponentsClientHttpRequestFactoryBuilder replaces the existing defaultRequestConfigCustomizer rather than adding to it #43429
• spring-boot-maven-plugin sets imagePlatform even if it's empty #43424
• OnBeanCondition fails to match on annotations when using Scoped Proxies #43423
• Failure analysis for InvalidConfigurationPropertyValueException doesn't correctly handle fuzzy matching of environment variables #43382
• H2ConsoleAutoConfiguration causes early initialization of DataSource beans #43359
• Accept progress on numbers >2GB #43356
• Servlet-based UserDetailsServiceAutoConfiguration is active in a reactive app #43334
• StructuredLoggingJsonMembersCustomizer implementations declared in spring.factories with a generic type more specific than Object are not called #43312
• Overriding log level with an environment variable does not work when using an environment prefix #43307
• Management endpoint access and enabled properties are ignored unless the endpoint ID is an exact match #43302
• UnsupportedOperationException when starting a Maven shaded application on Java 21 with virtual threads enabled #43291
• JmsListener failing with Narayana (pooled ConnectionFactory) since 3.4.0 #43277
• SslBundle can no longer open store file locations without using a 'file:' prefix #43274
• TestRestTemplate does not allow redirects to be customized #43258
• Testcontainers start() methods may be started multiple times #43253

📔 Documentation

• Fix typo in documentation #43558
• Document that server.ssl.cipher and server.ssl.enabled-protocols are not fallbacks used with SSL bundles #43552
• Use <annotationProcessorPaths> in Maven examples for configuring an annotation processor #43544
• Fix typo #43519
• Links to logback javadoc are incorrect #43456
• Fix JUnit javadoc links #43428
• Reference documentation incorrectly uses 'disabled' rather than 'none' for access restrictions #43351
• Restore System property in Logging section of the reference documentation #43342
• Fix link to proxyBeanMethods in @AutoConfiguration javadoc #43325
• Fix links to Servlet and JPA javadoc #43324
• Link to @EnableMethodSecurity instead of the deprecated @EnableGlobalMethodSecurity #43315
• Document that StructuredLoggingJsonMembersCustomizer implementations may optionally take constructor parameters #43314
• Update javadoc of StructuredLoggingJsonMembersCustomizer to note that implementations can registered through spring.factories #43313
• Fix Javadoc link for Hikari #43311
• Document how to use structured logging with custom log configuration #43301
• Update Javadoc since for OtlpMetricsProperties and OtlpTracingProperties #43249

🔨 Dependency Upgrades

... (truncated)

Commits

• 1832852 Release v3.4.1
• c9e8174 Merge branch '3.3.x'
• 316fe52 Next development version (v3.3.8-SNAPSHOT)
• 4300ee9 Merge branch '3.3.x'
• da59380 Upgrade to Spring Batch 5.2.1
• a085a01 Upgrade to Spring Batch 5.1.3
• fcc569e Upgrade to Hibernate 6.6.4.Final
• 1b8fcb6 Merge pull request #43560 from arefbehboudi
• dbc1fc2 Polish
• ef43160 Merge branch '3.3.x'
• Additional commits viewable in compare view

Updates org.springframework.cloud:spring-cloud-starter-openfeign from 4.1.3 to 4.2.0

Release notes

Sourced from org.springframework.cloud:spring-cloud-starter-openfeign's releases.

4.2.0

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​dependabot[bot]

4.2.0-RC1

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​dependabot[bot]

4.1.4

🐞 Bug Fixes

• OAuth2AccessTokenInterceptor can handle Authentication Principal where principalName is null #1049
• Misleading Content-Encoding Header in Default-Setup for Request Compression #1048

📔 Documentation

• Improve compression functionality documentation #1056
• fix: defaultValue in additional-spring-configuration-metadata.json #1041
• Headers annotation not sending headers #983

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​dependabot[bot] and @​dowenliu-xyz

Commits

• 9ed2ab2 Update SNAPSHOT to 4.2.0
• 5958f70 Disable docs dependencies for 2024.0.0 release
• d675b68 Bump @​antora/collector-extension in /docs (#1130)
• 611edf5 Bump com.fasterxml.jackson.dataformat:jackson-dataformat-smile (#1133)
• 7a2a681 Bump commons-io:commons-io from 2.17.0 to 2.18.0 (#1127)
• 15ecd4d Bumping versions
• 7acb03a Fix Code of Conduct link.
• ad615b7 Bump @​antora/collector-extension in /docs (#1123)
• 0f40833 Merge remote-tracking branch 'origin/4.1.x'
• 7c17743 Add info on mixing annotations to docs. Fixes gh-983.
• Additional commits viewable in compare view

Updates io.opentelemetry:opentelemetry-bom from 1.44.1 to 1.46.0

Release notes

Sourced from io.opentelemetry:opentelemetry-bom's releases.

Version 1.46.0

SDK

• Remove unused dependencies, cleanup code after stabilizing Value (#6948)
• Explicitly allow null into CompletableResultCode.failExceptionally() (#6963)

Traces

• Fix span setStatus (#6990)

Logs

• Add getters/accessors for readable fields in ReadWriteLogRecord. (#6924)

Exporters

• OTLP: Update to opentelemetry-proto 1.5 (#6999)
• Bugfix - OTLP: Ensure Serializer runtime exceptions are rethrown as IOException (#6969)
• BREAKING - OTLP: Delete experimental OTLP authenticator concept. See OTLP authentication docs for supported solutions. (#6984)

Extensions

• BREAKING - Autoconfigure: Remove support for deprecated otel.experimental.resource.disabled.keys (#6931)

🙇 Thank you

This release was possible thanks to the following contributors who shared their brilliant ideas and awesome pull requests:

@​breedx-splk @​celikrecep @​happysiddharth @​jack-berg @​jaydeluca @​jhalliday @​jkwatson @​laurit @​robsunday @​steverao @​trask @​zeitlinger

Version 1.45.0

API

• Add convenience method setAttribute(Attribute<Long>, int) to SpanBuilder (matching the existing convenience method in Span) (#6884)
• Extends TextMapGetter with experimental GetAll() method, implement usage in W3CBaggagePropagator (#6852)

SDK

Traces

... (truncated)

Changelog

Sourced from io.opentelemetry:opentelemetry-bom's changelog.

Version 1.46.0 (2025-01-10)

SDK

• Remove unused dependencies, cleanup code after stabilizing Value (#6948)
• Explicitly allow null into CompletableResultCode.failExceptionally() (#6963)

Traces

• Fix span setStatus (#6990)

Logs

• Add getters/accessors for readable fields in ReadWriteLogRecord. (#6924)

Exporters

• OTLP: Update to opentelemetry-proto 1.5 (#6999)
• Bugfix - OTLP: Ensure Serializer runtime exceptions are rethrown as IOException (#6969)
• BREAKING - OTLP: Delete experimental OTLP authenticator concept. See OTLP authentication docs for supported solutions. (#6984)

Extensions

• BREAKING - Autoconfigure: Remove support for deprecated otel.experimental.resource.disabled.keys (#6931)

Version 1.45.0 (2024-12-06)

API

• Add convenience method setAttribute(Attribute<Long>, int) to SpanBuilder (matching the existing convenience method in Span) (#6884)
• Extends TextMapGetter with experimental GetAll() method, implement usage in W3CBaggagePropagator (#6852)

SDK

Traces

• Add synchronization to SimpleSpanProcessor to ensure thread-safe export of spans

... (truncated)

Commits

• 5640314 [release/v1.46.x] Prepare release 1.46.0 (#7010)
• 0920d11 Prepare 1.46.0 (#7007)
• 2e0b315 fix(deps): update dependency com.google.protobuf:protobuf-bom to v4.29.3 (#7003)
• d74e277 fix(deps): update dependency com.squareup.okio:okio-bom to v3.10.2 (#7001)
• ccb6346 fix(deps): update dependency nl.jqno.equalsverifier:equalsverifier to v3.18.1...
• 43b38e2 Update profiling exporters for proto 1.5 (#6999)
• 330881a fix(deps): update dependency com.google.api.grpc:proto-google-common-protos t...
• 6f8d491 fix(deps): update spotless packages to v7.0.1 (#6998)
• 5f90b03 Fix span setStatus (#6990)
• d3e3807 fix(deps): update dependency com.squareup.okio:okio-bom to v3.10.1 (#6997)
• Additional commits viewable in compare view

Updates org.springframework.cloud:spring-cloud-starter-contract-verifier from 4.1.4 to 4.2.0

Updates org.springframework.cloud:spring-cloud-contract-maven-plugin from 4.1.4 to 4.2.0

Release notes

Sourced from org.springframework.cloud:spring-cloud-contract-maven-plugin's releases.

4.2.0-M1

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​dependabot[bot]

4.1.5

🐞 Bug Fixes

• Fix docker gradle build #2142

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​elysrivero99

Commits

• df305e1 Update SNAPSHOT to 4.2.0
• e4b7e76 Set version in docs pom for 2024.0.0 release
• 626eabd Bumping versions
• f0f39c3 Bumping versions
• 885b916 Update Code of Conduct reference (#2143)
• 89f2265 Revert "Temporarily disable fetching diagrams from Kroki."
• a7e20d0 Update CONTRIBUTING.md
• 9f560c4 Add sdkman-wrapper.sh read rights in Dockerfiles.
• f56ad22 Upgrade gradle wrapper to 8.11.
• 2340f8b Revert "Update pom.xml"
• Additional commits viewable in compare view

Updates org.pitest:pitest-maven from 1.17.1 to 1.17.4

Release notes

Sourced from org.pitest:pitest-maven's releases.

1.17.4

What's Changed

• fixes hcoles/pitest#1333 Expand ${settings.localRepository} in by @​martinoconnor in hcoles/pitest#1334
• report test count by @​hcoles in hcoles/pitest#1373

New Contributors

• @​martinoconnor made their first contribution in hcoles/pitest#1334

Full Changelog: hcoles/pitest@1.17.3...1.17.4

1.17.3

• #1369 Dry Run Support

Maven users can now gather coverage information and generate mutants, but skip the mutant analysis stage by running setting the 'pit.dryRun' flag to true.

1.17.2

• #1362 Exclude lambdas in methods excluded by annotation (thanks @​see-quick)

Commits

• 0201d6f Merge pull request #1373 from hcoles/feature/report_test_count
• 8394517 report test count
• efec2f3 Merge pull request #1334 from martinoconnor/bug/expand_settings
• 93c3add fixes hcoles/pitest#1333 Expand ${settings.localRepository} in <argLine>
• 7bcb168 update for 1.17.3
• 175105c Merge pull request #1369 from hcoles/feature/dry_run_support
• 5a41bf9 make mutants available to history coverage limit
• 10bc017 remove duplication parsing booleans
• d32d900 introduce dry run mode
• 116ef37 update readme for 1.17.2
• Additional commits viewable in compare view

Updates org.springframework.cloud:spring-cloud-contract-maven-plugin from 4.1.4 to 4.2.0

Release notes

Sourced from org.springframework.cloud:spring-cloud-contract-maven-plugin's releases.

4.2.0-M1

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​dependabot[bot]

4.1.5

🐞 Bug Fixes

• Fix docker gradle build #2142

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​elysrivero99

Commits

• df305e1 Update SNAPSHOT to 4.2.0
• e4b7e76 Set version in docs pom for 2024.0.0 release
• 626eabd Bumping versions
• f0f39c3 Bumping versions
• 885b916 Update Code of Conduct reference (#2143)
• 89f2265 Revert "Temporarily disable fetching diagrams from Kroki."
• a7e20d0 Update CONTRIBUTING.md
• 9f560c4 Add sdkman-wrapper.sh read rights in Dockerfiles.
• f56ad22 Upgrade gradle wrapper to 8.11.
• 2340f8b Revert "Update pom.xml"
• Additional commits viewable in compare view

Updates org.projectlombok:lombok from 1.18.34 to 1.18.36

Changelog

Sourced from org.projectlombok:lombok's changelog.

v1.18.36 (November 15th, 2024)

• PLATFORM: JDK23 support added.
• BUGFIX: Eclipse projects using the com.pro-crafting.tools:jasperreports-maven-plugin will now compile.

Commits

• 91d79ff [release] pre-release version bump
• e8db33a Merge pull request #3768 from tamila-krashtan/fix/with-html
• 0338705 Revert "[fixes #3116] Add multi round support for mapstruct":
• 9af596e Fix typo in With.html
• 3394b6e eclipse downloader: When downloading sources, accept failure.
• 03cd61a Merge branch 'eclipse-tests-fix'
• 7a9f3a8 Fix resource management in the eclipse downloader:
• 87bc91a Merge pull request #3764 from Rawi01/update-index
• d21d551 Close ZipOutputStream in eclipse dependency downloader
• 5caea32 [fixes #3761] Update annotation value index
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions