build(deps): bump the patch group with 7 updates by dependabot[bot] · Pull Request #16 · howtis/python-embed

dependabot · 2026-06-28T04:55:58Z

Bumps the patch group with 7 updates:

Package	From	To
org.msgpack:msgpack-core	`0.9.8`	`0.9.12`
org.slf4j:slf4j-api	`2.0.16`	`2.0.18`
org.slf4j:slf4j-simple	`2.0.16`	`2.0.18`
org.apache.maven:maven-plugin-api	`3.9.9`	`3.9.16`
org.apache.maven:maven-core	`3.9.9`	`3.9.16`
org.apache.maven.plugin-tools:maven-plugin-annotations	`3.15.1`	`3.15.2`
org.apache.maven:maven-compat	`3.9.9`	`3.9.16`

Updates org.msgpack:msgpack-core from 0.9.8 to 0.9.12

Release notes

Sourced from org.msgpack:msgpack-core's releases.

v0.9.12

What's Changed

🐛 Bug Fixes

Fix: Remove sun and android.os packages from Import-Package header of… by @spp4keba in msgpack/msgpack-java#958

🔗 Dependency Updates

Update scalafmt-core to 3.9.10 by @scala-steward in msgpack/msgpack-java#921

Update scalafmt-core to 3.10.3 by @scala-steward in msgpack/msgpack-java#941

Update sbt, scripted-plugin to 1.12.11 by @scala-steward in msgpack/msgpack-java#972

Bump dorny/paths-filter from 3 to 4 by @dependabot[bot] in msgpack/msgpack-java#963

Update scalafmt-core to 3.10.7 by @scala-steward in msgpack/msgpack-java#954

Update jackson-databind to 2.20.0 by @scala-steward in msgpack/msgpack-java#915

Update airframe-json, airspec to 2025.1.27 by @scala-steward in msgpack/msgpack-java#948

Update junit-jupiter to 5.14.4 by @scala-steward in msgpack/msgpack-java#969

🛠 Internal Updates

Update sbt-scalafmt to 2.6.0 by @scala-steward in msgpack/msgpack-java#967

Other Changes

Update junit-vintage-engine to 5.14.4 by @xerial in msgpack/msgpack-java#973

New Contributors

@spp4keba made their first contribution in msgpack/msgpack-java#958

Full Changelog: msgpack/msgpack-java@v0.9.11...v0.9.12

v0.9.11

What's Changed

🐛 Bug Fixes

Fix Scala code formatting by @xerial in msgpack/msgpack-java#939

Improve readPayload(int) to use gradual memory allocation for large payloads (>64MB) daa2ea6b2f11f500e22c70a22f689f7a9debdeae (Address CVE-2026-21452)

🔗 Dependency Updates

Update sbt, scripted-plugin to 1.11.4 by @scala-steward in msgpack/msgpack-java#910

Bump actions/checkout from 4 to 5 by @dependabot[bot] in msgpack/msgpack-java#909

Update airframe-json, airspec to 2025.1.16 by @scala-steward in msgpack/msgpack-java#912

Update scalafmt-core to 3.9.9 by @scala-steward in msgpack/msgpack-java#907

Bump actions/setup-java from 4 to 5 by @dependabot[bot] in msgpack/msgpack-java#914

Update sbt, scripted-plugin to 1.11.5 by @scala-steward in msgpack/msgpack-java#913

Update junit-jupiter to 5.13.4 by @scala-steward in msgpack/msgpack-java#905

Update sbt, scripted-plugin to 1.11.6 by @scala-steward in msgpack/msgpack-java#918

Update airframe-json, airspec to 2025.1.18 by @scala-steward in msgpack/msgpack-java#920

Update scalacheck to 1.19.0 by @scala-steward in msgpack/msgpack-java#919

Update airframe-json, airspec to 2025.1.21 by @scala-steward in msgpack/msgpack-java#929

Update scala-collection-compat to 2.14.0 by @scala-steward in msgpack/msgpack-java#926

Update sbt, scripted-plugin to 1.11.7 by @scala-steward in msgpack/msgpack-java#925

Update junit-jupiter to 5.14.1 by @scala-steward in msgpack/msgpack-java#930

Update airframe-json, airspec to 2025.1.22 by @scala-steward in msgpack/msgpack-java#938

Bump actions/cache from 4 to 5 by @dependabot[bot] in msgpack/msgpack-java#937

... (truncated)

Commits

ca3fa54 Fix: Remove sun and android.os packages from Import-Package header of… (#958)
0b0ee35 Update junit-vintage-engine to 5.14.4 (#973)
2a134c3 Update sbt-scalafmt to 2.6.0 (#967)
14b428a Update junit-jupiter to 5.14.4 (#969)
b2fbe5c Update airframe-json, airspec to 2025.1.27 (#948)
a6d2220 Update jackson-databind to 2.20.0 (#915)
61fbea2 Update scalafmt-core to 3.10.7 (#954)
eeee7d9 Bump dorny/paths-filter from 3 to 4 (#963)
6138862 Update sbt, scripted-plugin to 1.12.11 (#972)
580fde4 Update scalafmt-core to 3.10.3 (#941)
Additional commits viewable in compare view

Updates org.slf4j:slf4j-api from 2.0.16 to 2.0.18

Updates org.slf4j:slf4j-simple from 2.0.16 to 2.0.18

Updates org.apache.maven:maven-plugin-api from 3.9.9 to 3.9.16

Release notes

Sourced from org.apache.maven:maven-plugin-api's releases.

3.9.16

🐛 Bug Fixes

Trim threadConfiguration to accept input surrounded with spaces (#12042) @slawekjaranowski

Backport: Maven 3.10.x fixed plugin resolution (#12022) @cstamas

📦 Dependency updates

Bump org.codehaus.plexus:plexus-classworlds from 2.9.0 to 2.11.0 (#12039) @dependabot[bot]

[3.9.x] Bump to parent POM 48 (#12024) @cstamas

Bump commons-io:commons-io from 2.21.0 to 2.22.0 (#11980) @dependabot[bot]

Bump com.google.guava:guava from 33.5.0-jre to 33.6.0-jre (#11951) @dependabot[bot]

Bump actions/cache from 5.0.4 to 5.0.5 (#11943) @dependabot[bot]

3.9.15

📝 Documentation updates

Use new Maven logos in documentation (#11938) @slawekjaranowski

document modelVersion only supported value: 4.0.0 (#11809) @hboutemy

📦 Dependency updates

Bump actions/upload-artifact from 7.0.0 to 7.0.1 (#11932) @dependabot[bot]

Bump org.codehaus.plexus:plexus-utils from 3.6.0 to 3.6.1 (#11876) @dependabot[bot]

Bump org.fusesource.jansi:jansi from 2.4.2 to 2.4.3 (#11865) @dependabot[bot]

Bump actions/cache from 5.0.3 to 5.0.4 (#11813) @dependabot[bot]

Bump actions/download-artifact from 8.0.0 to 8.0.1 (#11790) @dependabot[bot]

3.9.14

🐛 Bug Fixes

plexus-testing dependencies should be use in test scope (#11761) @slawekjaranowski

📦 Dependency updates

Bump actions/upload-artifact from 6.0.0 to 7.0.0 (#11747) @dependabot[bot]

Bump actions/download-artifact from 7.0.0 to 8.0.0 (#11748) @dependabot[bot]

3.9.13

🐛 Bug Fixes

Bug: SecDispatcher is managed by legacy Plexus DI (#11711) @cstamas

[3.9.x] MavenPluginJavaPrerequisiteChecker: Handle 8/1.8 Java version in ranges as well (#11577) @cstamas

👻 Maintenance

... (truncated)

Commits

2bdd9fd [maven-release-plugin] prepare release maven-3.9.16
229e9d7 Trim threadConfiguration to accept input surrounded with spaces
7d5fd94 Bump org.codehaus.plexus:plexus-classworlds from 2.9.0 to 2.11.0 (#12039)
0d100e5 [3.9.x] Bump to parent POM 48 (#12024)
7ae7935 Backport: Maven 3.10.x fixes plugin resolution, by putting user in charge (#1...
86fc95b Bump commons-io:commons-io from 2.21.0 to 2.22.0 (#11980)
029557a Bump com.google.guava:guava from 33.5.0-jre to 33.6.0-jre (#11951)
b5250f2 Bump actions/cache from 5.0.4 to 5.0.5 (#11943)
7ef2c23 [maven-release-plugin] prepare for next development iteration
98b2cdb [maven-release-plugin] prepare release maven-3.9.15
Additional commits viewable in compare view

Updates org.apache.maven:maven-core from 3.9.9 to 3.9.16

Updates org.apache.maven.plugin-tools:maven-plugin-annotations from 3.15.1 to 3.15.2

Release notes

Sourced from org.apache.maven.plugin-tools:maven-plugin-annotations's releases.

3.15.2

📝 Documentation updates

Fix run-on sentence (#1003) @slawekjaranowski

Update document to use Guice constructor injection (#1001) @slawekjaranowski

[MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#354) @Bukama

👻 Maintenance

Update site descriptors to 2.0 (#1011) @slawekjaranowski

Add support for Maven 4 PluginDescriptor.getRequiredJavaVersion() method (#1005) @slawekjaranowski

Cleanups dependencies (#1009) @slawekjaranowski

Use injection instead of Component annotation (#1002) @slawekjaranowski

Begin converting this plugin to Guice constructor injection (#1000) @slawekjaranowski

refactor: Replace Plexus AbstractLogEnabled with SLF4J (#999) @slawekjaranowski

Use properties for versions in components.xml (#982) @slawekjaranowski

JDK 25 build fix (#960) @slawekjaranowski

[MPLUGIN-543] - Update to Parent 44 (#390) @Bukama

Add release drafter (#370) @slawekjaranowski

Add PR Automation action (#358) @slawekjaranowski

📦 Dependency updates

Bump org.jsoup:jsoup from 1.18.1 to 1.19.1 (#1013) @slawekjaranowski

Bump org.codehaus.plexus:plexus-testing from 1.6.0 to 1.6.1 (#995) @dependabot[bot]

Bump org.codehaus.plexus:plexus-velocity from 2.2.1 to 2.3.0 (#993) @dependabot[bot]

Bump net.bytebuddy:byte-buddy from 1.17.7 to 1.17.8 (#989) @dependabot[bot]

Bump org.codehaus.plexus:plexus-archiver from 4.10.2 to 4.10.3 (#990) @dependabot[bot]

Bump org.codehaus.plexus:plexus-java from 1.3.0 to 1.5.0 (#985) @dependabot[bot]

Bump org.apache.commons:commons-lang3 from 3.17.0 to 3.19.0 (#984) @dependabot[bot]

Bump org.codehaus.plexus:plexus-classworlds from 2.8.0 to 2.9.0 (#981) @dependabot[bot]

Bump org.assertj:assertj-core from 3.27.3 to 3.27.6 (#983) @dependabot[bot]

Bump org.codehaus.plexus:plexus-utils from 4.0.1 to 4.0.2 (#978) @dependabot[bot]

Bump net.bytebuddy:byte-buddy from 1.17.6 to 1.17.7 (#980) @dependabot[bot]

Bump asmVersion from 9.8 to 9.9 (#979) @dependabot[bot]

Bump org.apache.velocity:velocity-engine-core from 2.4 to 2.4.1 (#974) @dependabot[bot]

Bump org.codehaus.plexus:plexus-velocity from 2.2.0 to 2.2.1 (#975) @dependabot[bot]

Bump org.codehaus.plexus:plexus-i18n from 1.0-beta-10 to 1.0.0 (#966) @dependabot[bot]

Bump org.codehaus.plexus:plexus-archiver from 4.10.0 to 4.10.2 (#964) @dependabot[bot]

Bump maven3Version from 3.9.9 to 3.9.11 (#957) @dependabot[bot]

Bump org.codehaus.plexus:plexus-testing from 1.4.0 to 1.6.0 (#958) @dependabot[bot]

Bump org.codehaus.plexus:plexus-xml from 3.0.1 to 3.0.2 (#946) @dependabot[bot]

Bump asmVersion from 9.7.1 to 9.8 (#943) @dependabot[bot]

Bump net.bytebuddy:byte-buddy from 1.15.5 to 1.17.6 (#403) @dependabot[bot]

Bump org.apache.maven:maven-parent from 44 to 45 (#404) @dependabot[bot]

Bump org.assertj:assertj-core from 3.26.3 to 3.27.3 (#364) @dependabot[bot]

Bump antVersion from 1.10.14 to 1.10.15 (#360) @dependabot[bot]

Commits

f7ed01b [maven-release-plugin] prepare release maven-plugin-tools-3.15.2
ba0297c Bump org.jsoup:jsoup from 1.18.1 to 1.19.1
4ca9fb6 Update site descriptors to 2.0
facedc9 Add support for Maven 4 PluginDescriptor.getRequiredJavaVersion() method
0e2322a Cleanups dependencies
1d23695 Fix run-on sentence
252c901 Use injection instead of Component annotation
69c653a Update document to use Guice constructor injection
73f78dc Begin converting this plugin to Guice constructor injection
23242f4 refactor: Replace Plexus AbstractLogEnabled with SLF4J
Additional commits viewable in compare view

Updates org.apache.maven:maven-compat from 3.9.9 to 3.9.16

Release notes

Sourced from org.apache.maven:maven-compat's releases.

3.9.16

🐛 Bug Fixes

Trim threadConfiguration to accept input surrounded with spaces (#12042) @slawekjaranowski

Backport: Maven 3.10.x fixed plugin resolution (#12022) @cstamas

📦 Dependency updates

Bump org.codehaus.plexus:plexus-classworlds from 2.9.0 to 2.11.0 (#12039) @dependabot[bot]

[3.9.x] Bump to parent POM 48 (#12024) @cstamas

Bump commons-io:commons-io from 2.21.0 to 2.22.0 (#11980) @dependabot[bot]

Bump com.google.guava:guava from 33.5.0-jre to 33.6.0-jre (#11951) @dependabot[bot]

Bump actions/cache from 5.0.4 to 5.0.5 (#11943) @dependabot[bot]

3.9.15

📝 Documentation updates

Use new Maven logos in documentation (#11938) @slawekjaranowski

document modelVersion only supported value: 4.0.0 (#11809) @hboutemy

📦 Dependency updates

Bump actions/upload-artifact from 7.0.0 to 7.0.1 (#11932) @dependabot[bot]

Bump org.codehaus.plexus:plexus-utils from 3.6.0 to 3.6.1 (#11876) @dependabot[bot]

Bump org.fusesource.jansi:jansi from 2.4.2 to 2.4.3 (#11865) @dependabot[bot]

Bump actions/cache from 5.0.3 to 5.0.4 (#11813) @dependabot[bot]

Bump actions/download-artifact from 8.0.0 to 8.0.1 (#11790) @dependabot[bot]

3.9.14

🐛 Bug Fixes

plexus-testing dependencies should be use in test scope (#11761) @slawekjaranowski

📦 Dependency updates

Bump actions/upload-artifact from 6.0.0 to 7.0.0 (#11747) @dependabot[bot]

Bump actions/download-artifact from 7.0.0 to 8.0.0 (#11748) @dependabot[bot]

3.9.13

🐛 Bug Fixes

Bug: SecDispatcher is managed by legacy Plexus DI (#11711) @cstamas

[3.9.x] MavenPluginJavaPrerequisiteChecker: Handle 8/1.8 Java version in ranges as well (#11577) @cstamas

👻 Maintenance

... (truncated)

Commits

2bdd9fd [maven-release-plugin] prepare release maven-3.9.16
229e9d7 Trim threadConfiguration to accept input surrounded with spaces
7d5fd94 Bump org.codehaus.plexus:plexus-classworlds from 2.9.0 to 2.11.0 (#12039)
0d100e5 [3.9.x] Bump to parent POM 48 (#12024)
7ae7935 Backport: Maven 3.10.x fixes plugin resolution, by putting user in charge (#1...
86fc95b Bump commons-io:commons-io from 2.21.0 to 2.22.0 (#11980)
029557a Bump com.google.guava:guava from 33.5.0-jre to 33.6.0-jre (#11951)
b5250f2 Bump actions/cache from 5.0.4 to 5.0.5 (#11943)
7ef2c23 [maven-release-plugin] prepare for next development iteration
98b2cdb [maven-release-plugin] prepare release maven-3.9.15
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the patch group with 7 updates: | Package | From | To | | --- | --- | --- | | [org.msgpack:msgpack-core](https://github.com/msgpack/msgpack-java) | `0.9.8` | `0.9.12` | | org.slf4j:slf4j-api | `2.0.16` | `2.0.18` | | org.slf4j:slf4j-simple | `2.0.16` | `2.0.18` | | [org.apache.maven:maven-plugin-api](https://github.com/apache/maven) | `3.9.9` | `3.9.16` | | org.apache.maven:maven-core | `3.9.9` | `3.9.16` | | [org.apache.maven.plugin-tools:maven-plugin-annotations](https://github.com/apache/maven-plugin-tools) | `3.15.1` | `3.15.2` | | [org.apache.maven:maven-compat](https://github.com/apache/maven) | `3.9.9` | `3.9.16` | Updates `org.msgpack:msgpack-core` from 0.9.8 to 0.9.12 - [Release notes](https://github.com/msgpack/msgpack-java/releases) - [Changelog](https://github.com/msgpack/msgpack-java/blob/main/RELEASE_NOTES.md) - [Commits](msgpack/msgpack-java@v0.9.8...v0.9.12) Updates `org.slf4j:slf4j-api` from 2.0.16 to 2.0.18 Updates `org.slf4j:slf4j-simple` from 2.0.16 to 2.0.18 Updates `org.apache.maven:maven-plugin-api` from 3.9.9 to 3.9.16 - [Release notes](https://github.com/apache/maven/releases) - [Commits](apache/maven@maven-3.9.9...maven-3.9.16) Updates `org.apache.maven:maven-core` from 3.9.9 to 3.9.16 Updates `org.apache.maven.plugin-tools:maven-plugin-annotations` from 3.15.1 to 3.15.2 - [Release notes](https://github.com/apache/maven-plugin-tools/releases) - [Commits](apache/maven-plugin-tools@maven-plugin-tools-3.15.1...maven-plugin-tools-3.15.2) Updates `org.apache.maven:maven-compat` from 3.9.9 to 3.9.16 - [Release notes](https://github.com/apache/maven/releases) - [Commits](apache/maven@maven-3.9.9...maven-3.9.16) --- updated-dependencies: - dependency-name: org.msgpack:msgpack-core dependency-version: 0.9.12 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: patch - dependency-name: org.slf4j:slf4j-api dependency-version: 2.0.18 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: patch - dependency-name: org.slf4j:slf4j-simple dependency-version: 2.0.18 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: patch - dependency-name: org.apache.maven:maven-plugin-api dependency-version: 3.9.16 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: patch - dependency-name: org.apache.maven:maven-core dependency-version: 3.9.16 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: patch - dependency-name: org.apache.maven.plugin-tools:maven-plugin-annotations dependency-version: 3.15.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: patch - dependency-name: org.apache.maven:maven-compat dependency-version: 3.9.16 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: patch ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot · 2026-06-28T04:55:59Z

Labels

The following labels could not be found: dependencies. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

dependabot Bot assigned howtis Jun 28, 2026

howtis merged commit c23cfcd into main Jun 28, 2026
2 checks passed

dependabot Bot deleted the dependabot/gradle/patch-51768d4561 branch June 28, 2026 04:58

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

build(deps): bump the patch group with 7 updates#16

build(deps): bump the patch group with 7 updates#16
howtis merged 1 commit into
mainfrom
dependabot/gradle/patch-51768d4561

dependabot Bot commented on behalf of github Jun 28, 2026

Uh oh!

dependabot Bot commented on behalf of github Jun 28, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

dependabot Bot commented on behalf of github Jun 28, 2026

v0.9.12

What's Changed

🐛 Bug Fixes

🔗 Dependency Updates

🛠 Internal Updates

Other Changes

New Contributors

v0.9.11

What's Changed

🐛 Bug Fixes

🔗 Dependency Updates

3.9.16

🐛 Bug Fixes

📦 Dependency updates

3.9.15

📝 Documentation updates

📦 Dependency updates

3.9.14

🐛 Bug Fixes

📦 Dependency updates

3.9.13

🐛 Bug Fixes

👻 Maintenance

3.15.2

📝 Documentation updates

👻 Maintenance

📦 Dependency updates

3.9.16

🐛 Bug Fixes

📦 Dependency updates

3.9.15

📝 Documentation updates

📦 Dependency updates

3.9.14

🐛 Bug Fixes

📦 Dependency updates

3.9.13

🐛 Bug Fixes

👻 Maintenance

Uh oh!

dependabot Bot commented on behalf of github Jun 28, 2026

Labels

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant