chore(deps): bump the all-dependencies group across 1 directory with 7 updates by dependabot[bot] · Pull Request #48 · hmcts/api-dcs-crime-caseadmin

dependabot · 2025-09-16T23:18:20Z

Bumps the all-dependencies group with 7 updates in the / directory:

Package	From	To
com.fasterxml.jackson.core:jackson-core	`2.19.2`	`2.20.0`
com.fasterxml.jackson.datatype:jackson-datatype-jsr310	`2.19.2`	`2.20.0`
io.swagger.parser.v3:swagger-parser	`2.1.31`	`2.1.34`
io.swagger.core.v3:swagger-annotations	`2.2.34`	`2.2.37`
org.openapitools:jackson-databind-nullable	`0.2.6`	`0.2.7`
org.openapi.generator	`7.14.0`	`7.15.0`
org.cyclonedx.bom	`2.3.1`	`2.4.0`

Updates com.fasterxml.jackson.core:jackson-core from 2.19.2 to 2.20.0

Commits

ea0830a [maven-release-plugin] prepare release jackson-core-2.20.0
e16733a Prep for 2.20.0
93deb38 Drop RC from version pre-2.20.0 release
f0bcc3c Handle deprecation warnings
6e70d08 Fix #1462: deprecate JsonFactory.createParser(URL) (#1464)
588cc76 Post release version bump
018f9e1 [maven-release-plugin] prepare for next development iteration
360e498 [maven-release-plugin] prepare release jackson-core-2.20.0-rc1
538ac44 Prep for 2.20.0-rc1
dfbf47b Merge branch '2.19' into 2.x
Additional commits viewable in compare view

Updates com.fasterxml.jackson.datatype:jackson-datatype-jsr310 from 2.19.2 to 2.20.0

Updates io.swagger.parser.v3:swagger-parser from 2.1.31 to 2.1.34

Release notes

Sourced from io.swagger.parser.v3:swagger-parser's releases.

Swagger-parser 2.1.34 released!

chore: bump swagger-core to latest 2.2.37 (#2234)

chore: bump commons-lang3, commons-io and swagger dependencies (#2233)

Fix URISyntaxException while reading OpenAPI 3.1 from windows file path location (#2230)

ci: update codeQl workflow (#2228)

chore: prepare 2.1.34-SNAPSHOT (#2227)

Swagger-parser 2.1.33 released!

fix: disallow SSRF via remote $ref (#2224)

Swagger-parser 2.1.32 released!

fix: additional properties external references not processed. Fixes #2218 (#2219)

chore: add GitHub issue and pull request templates (#2212)

Commits

077cf63 prepare release 2.1.34
34cb099 chore: bump swagger-core to latest 2.2.37
0474097 chore: bump commons-lang3, commons-io and swagger dependencies
1f2fe7b Fix URISyntaxException while reading OpenAPI 3.1 from windows file path location
20de7a2 ci: update codeQl workflow (#2228)
d97ca81 chore: prepare 2.1.34-SNAPSHOT (#2227)
ff5ff25 prepare release 2.1.33 (#2225)
5dc2aae fix: disallow SSRF via remote $ref (#2224)
4040365 bump snapshot 2.1.33-SNAPSHOT
bf61675 prepare release 2.1.32
Additional commits viewable in compare view

Updates io.swagger.core.v3:swagger-annotations from 2.2.34 to 2.2.37

Updates org.openapitools:jackson-databind-nullable from 0.2.6 to 0.2.7

Release notes

Sourced from org.openapitools:jackson-databind-nullable's releases.

v0.2.7 released

What's Changed

Update parent and dependencies by @Til7701 in OpenAPITools/jackson-databind-nullable#61

0.2.7 release by @wing328 in OpenAPITools/jackson-databind-nullable#63

update pom.xml to use central publishing maven plugin, add workflow by @wing328 in OpenAPITools/jackson-databind-nullable#66

New Contributors

@Til7701 made their first contribution in OpenAPITools/jackson-databind-nullable#61

Full Changelog: OpenAPITools/jackson-databind-nullable@v0.2.6...v0.2.7

Commits

2f8776c set version for plugins
27dd77c update pom.xml with deploy and production
872a3d9 update pom.xml to use central publishing maven plugin, add workflow (#66)
10d3f44 add sec.gpg.enc
674ac07 0.2.7 release (#63)
6687b74 Update parent and dependencies (#61)
See full diff in compare view

Updates org.openapi.generator from 7.14.0 to 7.15.0

Updates org.cyclonedx.bom from 2.3.1 to 2.4.0

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…7 updates Bumps the all-dependencies group with 7 updates in the / directory: | Package | From | To | | --- | --- | --- | | [com.fasterxml.jackson.core:jackson-core](https://github.com/FasterXML/jackson-core) | `2.19.2` | `2.20.0` | | com.fasterxml.jackson.datatype:jackson-datatype-jsr310 | `2.19.2` | `2.20.0` | | [io.swagger.parser.v3:swagger-parser](https://github.com/swagger-api/swagger-parser) | `2.1.31` | `2.1.34` | | io.swagger.core.v3:swagger-annotations | `2.2.34` | `2.2.37` | | [org.openapitools:jackson-databind-nullable](https://github.com/OpenAPITools/jackson-databind-nullable) | `0.2.6` | `0.2.7` | | org.openapi.generator | `7.14.0` | `7.15.0` | | org.cyclonedx.bom | `2.3.1` | `2.4.0` | Updates `com.fasterxml.jackson.core:jackson-core` from 2.19.2 to 2.20.0 - [Commits](FasterXML/jackson-core@jackson-core-2.19.2...jackson-core-2.20.0) Updates `com.fasterxml.jackson.datatype:jackson-datatype-jsr310` from 2.19.2 to 2.20.0 Updates `io.swagger.parser.v3:swagger-parser` from 2.1.31 to 2.1.34 - [Release notes](https://github.com/swagger-api/swagger-parser/releases) - [Commits](swagger-api/swagger-parser@v2.1.31...v2.1.34) Updates `io.swagger.core.v3:swagger-annotations` from 2.2.34 to 2.2.37 Updates `org.openapitools:jackson-databind-nullable` from 0.2.6 to 0.2.7 - [Release notes](https://github.com/OpenAPITools/jackson-databind-nullable/releases) - [Commits](OpenAPITools/jackson-databind-nullable@v0.2.6...v0.2.7) Updates `org.openapi.generator` from 7.14.0 to 7.15.0 Updates `org.cyclonedx.bom` from 2.3.1 to 2.4.0 --- updated-dependencies: - dependency-name: com.fasterxml.jackson.core:jackson-core dependency-version: 2.20.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-dependencies - dependency-name: com.fasterxml.jackson.datatype:jackson-datatype-jsr310 dependency-version: 2.20.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-dependencies - dependency-name: io.swagger.parser.v3:swagger-parser dependency-version: 2.1.34 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies - dependency-name: io.swagger.core.v3:swagger-annotations dependency-version: 2.2.37 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies - dependency-name: org.openapitools:jackson-databind-nullable dependency-version: 0.2.7 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies - dependency-name: org.openapi.generator dependency-version: 7.15.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-dependencies - dependency-name: org.cyclonedx.bom dependency-version: 2.4.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot · 2025-09-24T23:16:27Z

Looks like these dependencies are updatable in another way, so this is no longer needed.

dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Sep 16, 2025

dependabot bot requested a review from a team as a code owner September 16, 2025 23:18

dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Sep 16, 2025

dependabot bot force-pushed the dependabot/gradle/all-dependencies-4bb67773ca branch from 14ae9ad to 2127d2d Compare September 22, 2025 23:22

dependabot bot closed this Sep 24, 2025

dependabot bot deleted the dependabot/gradle/all-dependencies-4bb67773ca branch September 24, 2025 23:16

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump the all-dependencies group across 1 directory with 7 updates#48

chore(deps): bump the all-dependencies group across 1 directory with 7 updates#48
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/gradle/all-dependencies-4bb67773ca

dependabot bot commented on behalf of github Sep 16, 2025 •

edited

Loading

Uh oh!

dependabot bot commented on behalf of github Sep 24, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot bot commented on behalf of github Sep 16, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Swagger-parser 2.1.34 released!

Swagger-parser 2.1.33 released!

Swagger-parser 2.1.32 released!

v0.2.7 released

What's Changed

New Contributors

Uh oh!

dependabot bot commented on behalf of github Sep 24, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

dependabot bot commented on behalf of github Sep 16, 2025 •

edited

Loading