Skip to content

Bump the all-maven-dependencies group across 2 directories with 5 updates#91

Merged
beckermarc merged 1 commit into
mainfrom
dependabot/maven/all-maven-dependencies-bbcc618268
Jul 3, 2026
Merged

Bump the all-maven-dependencies group across 2 directories with 5 updates#91
beckermarc merged 1 commit into
mainfrom
dependabot/maven/all-maven-dependencies-bbcc618268

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 3, 2026

Copy link
Copy Markdown
Contributor

Bumps the all-maven-dependencies group with 5 updates in the / directory:

Package From To
com.sap.cloud.sdk:sdk-modules-bom 5.31.0 5.32.0
com.diffplug.spotless:spotless-maven-plugin 3.6.0 3.8.0
com.sap.cloud.security.ams:spring-boot-starter-cap-ams 4.1.2 4.2.1
com.sap.cloud.security.ams:spring-boot-starter-cap-ams-test 4.1.2 4.2.1
com.sap.cloud.security.ams.dcl:dcl-compiler-plugin 1.3.0 1.4.0

Bumps the all-maven-dependencies group with 5 updates in the /srv directory:

Package From To
com.sap.cloud.sdk:sdk-modules-bom 5.31.0 5.32.0
com.diffplug.spotless:spotless-maven-plugin 3.6.0 3.8.0
com.sap.cloud.security.ams:spring-boot-starter-cap-ams 4.1.2 4.2.1
com.sap.cloud.security.ams:spring-boot-starter-cap-ams-test 4.1.2 4.2.1
com.sap.cloud.security.ams.dcl:dcl-compiler-plugin 1.3.0 1.4.0

Updates com.sap.cloud.sdk:sdk-modules-bom from 5.31.0 to 5.32.0

Release notes

Sourced from com.sap.cloud.sdk:sdk-modules-bom's releases.

Release 5.32.0

What's Changed

Full Changelog: https://github.com/SAP/cloud-sdk-java/commits/rel/5.32.0

Commits
  • aa4dd74 Update to version 5.32.0
  • 6e446b0 chore: [DevOps] bump the test group with 2 updates (#1210)
  • f40797f chore: [DevOps] bump the production-minor-patch group with 2 updates (#1207)
  • a9aabc5 chore: [DevOps] bump org.sonatype.central:central-publishing-maven-plugin fro...
  • fb1ea80 feat: [Connectivity] Dynamic Keystore in HttpDestination (#1202)
  • 45b2a0a chore: [DevOps] bump the production-minor-patch group with 5 updates (#1203)
  • ddafea6 chore: [DevOps] bump com.github.spotbugs:spotbugs-maven-plugin from 4.9.8.3 t...
  • d95491f chore: [DevOps] bump org.bouncycastle:bcpkix-fips from 2.1.9 to 2.1.11 in the...
  • 432db95 Release 5.31.0 (#1201)
  • See full diff in compare view

Updates com.diffplug.spotless:spotless-maven-plugin from 3.6.0 to 3.8.0

Release notes

Sourced from com.diffplug.spotless:spotless-maven-plugin's releases.

Maven Plugin v3.8.0

Added

  • Add support for custom string format for license header copyright year via yearStringFormat(). (#2965)

Fixed

  • <expandWildcardImports> no longer triggers a full transitive dependency resolution on every build. Dependency resolution is now deferred until the step actually runs, so projects that do not use <expandWildcardImports> (or that use version ranges) are no longer penalized. (#2983)

Maven Plugin v3.7.0

Fixed

  • Parse standard git year output in LicenseHeaderStep. (#2940)
  • <toggleOffOn> no longer disables lint-only steps such as <forbidWildcardImports>. (#2962)
  • Fix StringIndexOutOfBoundsException in scenarios where copyright year is surrounded by whitespace. (#2973)

Added

  • Add support for AsciiDoc formatting via adocfmt. (#2960)
  • <flexmark> step now supports arbitrary formatter options via <formatterOptions>. (#2968)
Changelog

Sourced from com.diffplug.spotless:spotless-maven-plugin's changelog.

spotless-lib and spotless-lib-extra releases

If you are a Spotless user (as opposed to developer), then you are probably looking for:

This document is intended for Spotless developers.

We adhere to the keepachangelog format (starting after version 1.27.0).

[Unreleased]

[4.8.0] - 2026-06-29

Added

  • Add support for custom string format for license header copyright year via yearStringFormat(). (#2965)

[4.7.0] - 2026-06-16

Added

  • Add support for AsciiDoc formatting via adocfmt. (#2960)
  • flexmark step now supports arbitrary formatter options via a formatterOptions map. (#2968)

Fixed

  • FenceStep.preserveWithin now forwards lints from nested steps while still suppressing lints inside preserved blocks. (#2962)
  • Support ktfmt 0.63 and use its new builder API for formatting options to better avoid future breaking changes.
  • Parse standard git year output in LicenseHeaderStep. (#2940)
  • Fix StringIndexOutOfBoundsException in scenarios where copyright year is surrounded by whitespace. (#2973)

Changes

  • Bump default greclipse version to latest 4.35 -> 4.39. (#2924)

[4.6.2] - 2026-05-27

Fixed

  • P2Provisioner now passes cache directory overrides directly to Solstice. (#2944)
  • forbidWildcardImports and forbidModuleImports now detect imports that have leading whitespace (indentation/tabs). (#2939)
  • versionCatalog step no longer splits long inline tables across multiple lines — Gradle's TOML 1.0 parser cannot read multi-line inline tables. The maxLineLength option has been removed. (#2948)

Changes

  • EclipseJdtFormtterStep now can conditionally set compiler source/compliance options. Allows for better parsing of AST Node for newer language features and more correct sorting; e.g. records or seal classes. (#2942)
  • Formatter no longer recomputes line-ending normalization (LineEnding.toUnix) a second time for every formatter step that changes content, removing redundant O(n) work from the core formatting loop. (#2934)
  • expandWildcardImports support pom type dependency. (#2839)

[4.6.1] - 2026-05-15

Fixed

  • LicenseHeaderStep in SET_FROM_GIT year mode no longer invokes git log through bash -c / cmd /c, eliminating a shell-injection vector when processing repositories that contain files whose names include shell metacharacters.

[4.6.0] - 2026-05-14

Added

  • scalafmt() now reads the version from the version field in the scalafmt config file when no version is explicitly set in the plugin config, falling back to the built-in default only if neither is available. (#2922)
  • Add versionCatalog step for formatting and sorting Gradle version catalog (.toml) files. (#2916)
  • Add javaparserVersion option to the Cleanthat step, allowing callers to override the JavaParser version pulled in transitively by Cleanthat. (#2903)

Fixed

... (truncated)

Commits
  • 03d43ba Published maven/3.8.0
  • 8b80c13 Published gradle/8.8.0
  • 8ee6cf9 Published lib/4.8.0
  • 6c02c0b Add missing changelog entry.
  • 264f4cc Add regression test for forbidWildcardImports inside toggleOffOn (#2982)
  • 6abb064 fix #2983, expandWildcardImports triggers a full transitive reso… (#2984)
  • f4536d4 Update plugin spotbugs to v6.5.8 (#2987)
  • 873454a Update plugin spotbugs to v6.5.8
  • 000b8a8 Update dependency org.junit.jupiter:junit-jupiter to v6.1.1 (#2985)
  • 84ebcab Update dependency org.junit.jupiter:junit-jupiter to v6.1.1
  • Additional commits viewable in compare view

Updates com.sap.cloud.security.ams:spring-boot-starter-cap-ams from 4.1.2 to 4.2.1

Commits

Updates com.sap.cloud.security.ams:spring-boot-starter-cap-ams-test from 4.1.2 to 4.2.1

Commits

Updates com.sap.cloud.security.ams:spring-boot-starter-cap-ams-test from 4.1.2 to 4.2.1

Commits

Updates com.sap.cloud.security.ams.dcl:dcl-compiler-plugin from 1.3.0 to 1.4.0

Commits

Updates com.sap.cloud.security.ams:spring-boot-starter-cap-ams from 4.1.2 to 4.2.1

Commits

Updates com.sap.cloud.security.ams:spring-boot-starter-cap-ams-test from 4.1.2 to 4.2.1

Commits

Updates com.sap.cloud.security.ams.dcl:dcl-compiler-plugin from 1.3.0 to 1.4.0

Commits

Updates com.sap.cloud.sdk:sdk-modules-bom from 5.31.0 to 5.32.0

Release notes

Sourced from com.sap.cloud.sdk:sdk-modules-bom's releases.

Release 5.32.0

What's Changed

Full Changelog: https://github.com/SAP/cloud-sdk-java/commits/rel/5.32.0

Commits
  • aa4dd74 Update to version 5.32.0
  • 6e446b0 chore: [DevOps] bump the test group with 2 updates (#1210)
  • f40797f chore: [DevOps] bump the production-minor-patch group with 2 updates (#1207)
  • a9aabc5 chore: [DevOps] bump org.sonatype.central:central-publishing-maven-plugin fro...
  • fb1ea80 feat: [Connectivity] Dynamic Keystore in HttpDestination (#1202)
  • 45b2a0a chore: [DevOps] bump the production-minor-patch group with 5 updates (#1203)
  • ddafea6 chore: [DevOps] bump com.github.spotbugs:spotbugs-maven-plugin from 4.9.8.3 t...
  • d95491f chore: [DevOps] bump org.bouncycastle:bcpkix-fips from 2.1.9 to 2.1.11 in the...
  • 432db95 Release 5.31.0 (#1201)
  • See full diff in compare view

Updates com.diffplug.spotless:spotless-maven-plugin from 3.6.0 to 3.8.0

Release notes

Sourced from com.diffplug.spotless:spotless-maven-plugin's releases.

Maven Plugin v3.8.0

Added

  • Add support for custom string format for license header copyright year via yearStringFormat(). (#2965)

Fixed

  • <expandWildcardImports> no longer triggers a full transitive dependency resolution on every build. Dependency resolution is now deferred until the step actually runs, so projects that do not use <expandWildcardImports> (or that use version ranges) are no longer penalized. (#2983)

Maven Plugin v3.7.0

Fixed

  • Parse standard git year output in LicenseHeaderStep. (#2940)
  • <toggleOffOn> no longer disables lint-only steps such as <forbidWildcardImports>. (#2962)
  • Fix StringIndexOutOfBoundsException in scenarios where copyright year is surrounded by whitespace. (#2973)

Added

  • Add support for AsciiDoc formatting via adocfmt. (#2960)
  • <flexmark> step now supports arbitrary formatter options via <formatterOptions>. (#2968)
Changelog

Sourced from com.diffplug.spotless:spotless-maven-plugin's changelog.

spotless-lib and spotless-lib-extra releases

If you are a Spotless user (as opposed to developer), then you are probably looking for:

This document is intended for Spotless developers.

We adhere to the keepachangelog format (starting after version 1.27.0).

[Unreleased]

[4.8.0] - 2026-06-29

Added

  • Add support for custom string format for license header copyright year via yearStringFormat(). (#2965)

[4.7.0] - 2026-06-16

Added

  • Add support for AsciiDoc formatting via adocfmt. (#2960)
  • flexmark step now supports arbitrary formatter options via a formatterOptions map. (#2968)

Fixed

  • FenceStep.preserveWithin now forwards lints from nested steps while still suppressing lints inside preserved blocks. (#2962)
  • Support ktfmt 0.63 and use its new builder API for formatting options to better avoid future breaking changes.
  • Parse standard git year output in LicenseHeaderStep. (#2940)
  • Fix StringIndexOutOfBoundsException in scenarios where copyright year is surrounded by whitespace. (#2973)

Changes

  • Bump default greclipse version to latest 4.35 -> 4.39. (#2924)

[4.6.2] - 2026-05-27

Fixed

  • P2Provisioner now passes cache directory overrides directly to Solstice. (#2944)
  • forbidWildcardImports and forbidModuleImports now detect imports that have leading whitespace (indentation/tabs). (#2939)
  • versionCatalog step no longer splits long inline tables across multiple lines — Gradle's TOML 1.0 parser cannot read multi-line inline tables. The maxLineLength option has been removed. (#2948)

Changes

  • EclipseJdtFormtterStep now can conditionally set compiler source/compliance options. Allows for better parsing of AST Node for newer language features and more correct sorting; e.g. records or seal classes. (#2942)
  • Formatter no longer recomputes line-ending normalization (LineEnding.toUnix) a second time for every formatter step that changes content, removing redundant O(n) work from the core formatting loop. (#2934)
  • expandWildcardImports support pom type dependency. (#2839)

[4.6.1] - 2026-05-15

Fixed

  • LicenseHeaderStep in SET_FROM_GIT year mode no longer invokes git log through bash -c / cmd /c, eliminating a shell-injection vector when processing repositories that contain files whose names include shell metacharacters.

[4.6.0] - 2026-05-14

Added

  • scalafmt() now reads the version from the version field in the scalafmt config file when no version is explicitly set in the plugin config, falling back to the built-in default only if neither is available. (#2922)
  • Add versionCatalog step for formatting and sorting Gradle version catalog (.toml) files. (#2916)
  • Add javaparserVersion option to the Cleanthat step, allowing callers to override the JavaParser version pulled in transitively by Cleanthat. (#2903)

Fixed

... (truncated)

Commits
  • 03d43ba Published maven/3.8.0
  • 8b80c13 Published gradle/8.8.0
  • 8ee6cf9 Published lib/4.8.0
  • 6c02c0b Add missing changelog entry.
  • 264f4cc Add regression test for forbidWildcardImports inside toggleOffOn (#2982)
  • 6abb064 fix #2983, expandWildcardImports triggers a full transitive reso… (#2984)
  • f4536d4 Update plugin spotbugs to v6.5.8 (#2987)
  • 873454a Update plugin spotbugs to v6.5.8
  • 000b8a8 Update dependency org.junit.jupiter:junit-jupiter to v6.1.1 (#2985)
  • 84ebcab Update dependency org.junit.jupiter:junit-jupiter to v6.1.1
  • Additional commits viewable in compare view

Updates com.sap.cloud.sdk:sdk-modules-bom from 5.31.0 to 5.32.0

Release notes

Sourced from com.sap.cloud.sdk:sdk-modules-bom's releases.

Release 5.32.0

What's Changed

Full Changelog: https://github.com/SAP/cloud-sdk-java/commits/rel/5.32.0

Commits
  • aa4dd74 Update to version 5.32.0
  • 6e446b0 chore: [DevOps] bump the test group with 2 updates (#1210)
  • f40797f chore: [DevOps] bump the production-minor-patch group with 2 updates (#1207)
  • a9aabc5 chore: [DevOps] bump org.sonatype.central:central-publishing-maven-plugin fro...
  • fb1ea80 feat: [Connectivity] Dynamic Keystore in HttpDestination (#1202)
  • 45b2a0a chore: [DevOps] bump the production-minor-patch group with 5 updates (#1203)
  • ddafea6 chore: [DevOps] bump com.github.spotbugs:spotbugs-maven-plugin from 4.9.8.3 t...
  • d95491f chore: [DevOps] bump org.bouncycastle:bcpkix-fips from 2.1.9 to 2.1.11 in the...
  • 432db95 Release 5.31.0 (#1201)
  • See full diff in compare view

Updates com.diffplug.spotless:spotless-maven-plugin from 3.6.0 to 3.8.0

Release notes

Sourced from com.diffplug.spotless:spotless-maven-plugin's releases.

Maven Plugin v3.8.0

Added

  • Add support for custom string format for license header copyright year via yearStringFormat(). (#2965)

Fixed

  • <expandWildcardImports> no longer triggers a full transitive dependency resolution on every build. Dependency resolution is now deferred until the step actually runs, so projects that do not use <expandWildcardImports> (or that use version ranges) are no longer penalized. (#2983)

Maven Plugin v3.7.0

Fixed

  • Parse standard git year output in LicenseHeaderStep. (#2940)
  • <toggleOffOn> no longer disables lint-only steps such as <forbidWildcardImports>. (#2962)
  • Fix StringIndexOutOfBoundsException in scenarios where copyright year is surrounded by whitespace. (#2973)

Added

  • Add support for AsciiDoc formatting via adocfmt. (#2960)
  • <flexmark> step now supports arbitrary formatter options via <formatterOptions>. (#2968)
Changelog

Sourced from com.diffplug.spotless:spotless-maven-plugin's changelog.

spotless-lib and spotless-lib-extra releases

If you are a Spotless user (as opposed to developer), then you are probably looking for:

This document is intended for Spotless developers.

We adhere to the keepachangelog format (starting after version 1.27.0).

[Unreleased]

[4.8.0] - 2026-06-29

Added

  • Add support for custom string format for license header copyright year via yearStringFormat(). (#2965)

[4.7.0] - 2026-06-16

Added

  • Add support for AsciiDoc formatting via adocfmt. (#2960)
  • flexmark step now supports arbitrary formatter options via a formatterOptions map. (#2968)

Fixed

  • FenceStep.preserveWithin now forwards lints from nested steps while still suppressing lints inside preserved blocks. (#2962)
  • Support ktfmt 0.63 and use its new builder API for formatting options to better avoid future breaking changes.
  • Parse standard git year output in LicenseHeaderStep. (#2940)
  • Fix StringIndexOutOfBoundsException in scenarios where copyright year is surrounded by whitespace. (#2973)

Changes

  • Bump default greclipse version to latest 4.35 -> 4.39. (#2924)

[4.6.2] - 2026-05-27

Fixed

  • P2Provisioner now passes cache directory overrides directly to Solstice. (#2944)
  • forbidWildcardImports and forbidModuleImports now detect imports that have leading whitespace (indentation/tabs). (#2939)
  • versionCatalog step no longer splits long inline tables across multiple lines — Gradle's TOML 1.0 parser cannot read multi-line inline tables. The maxLineLength option has been removed. (#2948)

Changes

  • EclipseJdtFormtterStep now can conditionally set compiler source/compliance options. Allows for better parsing of AST Node for newer language features and more correct sorting; e.g. records or seal classes. (#2942)
  • Formatter no longer recomputes line-ending normalization (LineEnding.toUnix) a second time for every formatter step that changes content, removing redundant O(n) work from the core formatting loop. (#2934)
  • expandWildcardImports support pom type dependency. (#2839)

[4.6.1] - 2026-05-15

Fixed

  • LicenseHeaderStep in SET_FROM_GIT year mode no longer invokes git log through bash -c / cmd /c, eliminating a shell-injection vector when processing repositories that contain files whose names include shell metacharacters.

[4.6.0] - 2026-05-14

Added

  • scalafmt() now reads the version from the version field in the scalafmt config file when no version is explicitly set in the plugin config, falling back to the built-in default only if neither is available. (#2922)
  • Add versionCatalog step for formatting and sorting Gradle version catalog (.toml) files. (#2916)
  • Add javaparserVersion option to the Cleanthat step, allowing callers to override the JavaParser version pulled in transitively by Cleanthat. (#2903)

Fixed

... (truncated)

Commits
  • 03d43ba Published maven/3.8.0
  • 8b80c13 Published gradle/8.8.0
  • 8ee6cf9 Published lib/4.8.0
  • 6c02c0b Add missing changelog entry.
  • 264f4cc Add regression test for forbidWildcardImports inside toggleOffOn (#2982)
  • 6abb064 fix #2983, expandWildcardImports triggers a full transitive reso… (#2984)
  • f4536d4 Update plugin spotbugs to v6.5.8 (#2987)
  • 873454a Update plugin spotbugs to v6.5.8
  • 000b8a8 Update dependency org.junit.jupiter:junit-jupiter to v6.1.1 (#2985)
  • 84ebcab Update dependency org.junit.jupiter:junit-jupiter to v6.1.1
  • Additional commits viewable in compare view

Updates com.sap.cloud.security.ams:spring-boot-starter-cap-ams from 4.1.2 to 4.2.1

Commits

Updates com.sap.cloud.security.ams:spring-boot-starter-cap-ams-test from 4.1.2 to 4.2.1

Commits

Updates com.sap.cloud.security.ams:spring-boot-starter-cap-ams-test from 4.1.2 to 4.2.1

Commits

Updates com.sap.cloud.security.ams.dcl:dcl-compiler-plugin from 1.3.0 to 1.4.0

Commits

Updates com.sap.cloud.security.ams:spring-boot-starter-cap-ams from 4.1.2 to 4.2.1

Commits

Updates com.sap.cloud.security.ams:spring-boot-starter-cap-ams-test from 4.1.2 to 4.2.1

Commits

Updates com.sap.cloud.security.ams.dcl:dcl-compiler-plugin from 1.3.0 to 1.4.0

Commits

Updates com.sap.cloud.sdk:sdk-modules-bom from 5.31.0 to 5.32.0

Release notes

Sourced from com.sap.cloud.sdk:sdk-modules-bom's releases.

Release 5.32.0

What's Changed

Full Changelog: https://github.com/SAP/cloud-sdk-java/commits/rel/5.32.0

Commits
  • aa4dd74 Update to version 5.32.0
  • 6e446b0 chore: [DevOps] bump the test group with 2 updates (#1210)
  • f40797f chore: [DevOps] bump the production-minor-patch group with 2 updates (#1207)
  • a9aabc5 chore: [DevOps] bump org.sonatype.central:central-publishing-maven-plugin fro...
  • fb1ea80 feat: [Connectivity] Dynamic Keystore in HttpDestination (#1202)
  • 45b2a0a chore: [DevOps] bump the production-minor-patch group with 5 updates (#1203)
  • ddafea6 chore: [DevOps] bump com.github.spotbugs:spotbugs-maven-plugin from 4.9.8.3 t...
  • d95491f chore: [DevOps] bump org.bouncycastle:bcpkix-fips from 2.1.9 to 2.1.11 in the...
  • 432db95 Release 5.31.0 (#1201)
  • See full diff in compare view

Updates com.diffplug.spotless:spotless-maven-plugin from 3.6.0 to 3.8.0

Release notes

Sourced from com.diffplug.spotless:spotless-maven-plugin's releases.

Maven Plugin v3.8.0

Added

  • Add support for custom string format for license header copyright year via yearStringFormat(). (#2965)

Fixed

  • <expandWildcardImports> no longer triggers a full transitive dependency resolution on every build. Dependency resolution is now deferred until the step actually runs, so projects that do not use <expandWildcardImports> (or that use version ranges) are no longer penalized. (#2983)

Maven Plugin v3.7.0

Fixed

  • Parse standard git year output in LicenseHeaderStep. (#2940)
  • <toggleOffOn> no longer disables lint-only steps such as <forbidWildcardImports>. (#2962)
  • Fix StringIndexOutOfBoundsException in scenarios where copyright year is surrounded by whitespace. (#2973)

Added

  • Add support for AsciiDoc formatting via adocfmt. (#2960)
  • <flexmark> step now supports arbitrary formatter options via <formatterOptions>. (#2968)
Changelog

Sourced from com.diffplug.spotless:spotless-maven-plugin's changelog.

spotless-lib and spotless-lib-extra releases

If you are a Spotless user (as opposed to developer), then you are probably looking for:

This document is intended for Spotless developers.

We adhere to the keepachangelog format (starting after version 1.27.0).

[Unreleased]

[4.8.0] - 2026-06-29

Added

  • Add support for custom string format for license header copyright year via yearStringFormat(). (#2965)

[4.7.0] - 2026-06-16

Added

  • Add support for AsciiDoc formatting via adocfmt. (#2960)
  • flexmark step now supports arbitrary formatter options via a formatterOptions map. (#2968)

Fixed

  • FenceStep.preserveWithin now forwards lints from nested steps while still suppressing lints inside preserved blocks. (#2962)
  • Support ktfmt 0.63 and use its new builder API for formatting options to better avoid future breaking changes.
  • Parse standard git year output in LicenseHeaderStep. (#2940)
  • Fix StringIndexOutOfBoundsException in scenarios where copyright year is surrounded by whitespace. (#2973)

Changes

  • Bump default greclipse version to latest 4.35 -> 4.39. (#2924)

[4.6.2] - 2026-05-27

Fixed

  • P2Provisioner now passes cache directory overrides directly to Solstice. (#2944)
  • forbidWildcardImports and forbidModuleImports now detect imports that have leading whitespace (indentation/tabs). (#2939)
  • versionCatalog step no longer splits long inline tables across multiple lines — Gradle's TOML 1.0 parser cannot read multi-line inline tables. The maxLineLength option has been removed. (#2948)

Changes

  • EclipseJdtFormtterStep now can conditionally set compiler source/compliance options. Allows for better parsing of AST Node for newer language features and more correct sorting; e.g. records or seal classes. (#2942)
  • Formatter no longer recomputes line-ending normalization (LineEnding.toUnix) a second time for every formatter step that changes content, removing redundant O(n) work from the core formatting loop. (#2934)
  • expandWildcardImports support pom type dependency. (#2839)

[4.6.1] - 2026-05-15

Fixed

  • LicenseHeaderStep in SET_FROM_GIT year mode no longer invokes git log through bash -c / cmd /c, eliminating a shell-injection vector when processing repositories that contain files whose names include shell metacharacters.

[4.6.0] - 2026-05-14

Added

  • scalafmt() now reads the version from the version field in the scalafmt config file when no version is explicitly set in the plugin config, falling back to the built-in default only if neither is available. (#2922)
  • Add versionCatalog step for formatting and sorting Gradle version catalog (.toml) files. (#2916)
  • Add javaparserVersion option to the Cleanthat step, allowing callers to override the JavaParser version pulled in transitively by Cleanthat. (#2903)

Fixed

... (truncated)

Commits
  • 03d43ba Published maven/3.8.0
  • 8b80c13 Published gradle/8.8.0
  • 8ee6cf9 Published lib/4.8.0
  • 6c02c0b Add missing changelog entry.
  • 264f4cc Add regression test for forbidWildcardImports inside toggleOffOn (#2982)
  • 6abb064 fix #2983, expandWildcardImports triggers a full transitive reso… (#2984)
  • f4536d4 Update plugin spotbugs to v6.5.8 (#2987)
  • 873454a Update plugin spotbugs to v6.5.8
  • 000b8a8 Update dependency org.junit.jupiter:junit-jupiter to v6.1.1 (#2985)
  • 84ebcab Update dependency org.junit.jupiter:junit-jupiter to v6.1.1
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…ates

Bumps the all-maven-dependencies group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [com.sap.cloud.sdk:sdk-modules-bom](https://github.com/SAP/cloud-sdk-java) | `5.31.0` | `5.32.0` |
| [com.diffplug.spotless:spotless-maven-plugin](https://github.com/diffplug/spotless) | `3.6.0` | `3.8.0` |
| [com.sap.cloud.security.ams:spring-boot-starter-cap-ams](https://github.com/SAP/cloud-identity-developer-guide) | `4.1.2` | `4.2.1` |
| [com.sap.cloud.security.ams:spring-boot-starter-cap-ams-test](https://github.com/SAP/cloud-identity-developer-guide) | `4.1.2` | `4.2.1` |
| [com.sap.cloud.security.ams.dcl:dcl-compiler-plugin](https://github.com/SAP/cloud-identity-developer-guide) | `1.3.0` | `1.4.0` |

Bumps the all-maven-dependencies group with 5 updates in the /srv directory:

| Package | From | To |
| --- | --- | --- |
| [com.sap.cloud.sdk:sdk-modules-bom](https://github.com/SAP/cloud-sdk-java) | `5.31.0` | `5.32.0` |
| [com.diffplug.spotless:spotless-maven-plugin](https://github.com/diffplug/spotless) | `3.6.0` | `3.8.0` |
| [com.sap.cloud.security.ams:spring-boot-starter-cap-ams](https://github.com/SAP/cloud-identity-developer-guide) | `4.1.2` | `4.2.1` |
| [com.sap.cloud.security.ams:spring-boot-starter-cap-ams-test](https://github.com/SAP/cloud-identity-developer-guide) | `4.1.2` | `4.2.1` |
| [com.sap.cloud.security.ams.dcl:dcl-compiler-plugin](https://github.com/SAP/cloud-identity-developer-guide) | `1.3.0` | `1.4.0` |



Updates `com.sap.cloud.sdk:sdk-modules-bom` from 5.31.0 to 5.32.0
- [Release notes](https://github.com/SAP/cloud-sdk-java/releases)
- [Changelog](https://github.com/SAP/cloud-sdk-java/blob/main/release_notes.md)
- [Commits](SAP/cloud-sdk-java@rel/5.31.0...rel/5.32.0)

Updates `com.diffplug.spotless:spotless-maven-plugin` from 3.6.0 to 3.8.0
- [Release notes](https://github.com/diffplug/spotless/releases)
- [Changelog](https://github.com/diffplug/spotless/blob/main/CHANGES.md)
- [Commits](diffplug/spotless@maven/3.6.0...maven/3.8.0)

Updates `com.sap.cloud.security.ams:spring-boot-starter-cap-ams` from 4.1.2 to 4.2.1
- [Commits](https://github.com/SAP/cloud-identity-developer-guide/commits)

Updates `com.sap.cloud.security.ams:spring-boot-starter-cap-ams-test` from 4.1.2 to 4.2.1
- [Commits](https://github.com/SAP/cloud-identity-developer-guide/commits)

Updates `com.sap.cloud.security.ams:spring-boot-starter-cap-ams-test` from 4.1.2 to 4.2.1
- [Commits](https://github.com/SAP/cloud-identity-developer-guide/commits)

Updates `com.sap.cloud.security.ams.dcl:dcl-compiler-plugin` from 1.3.0 to 1.4.0
- [Commits](https://github.com/SAP/cloud-identity-developer-guide/commits)

Updates `com.sap.cloud.security.ams:spring-boot-starter-cap-ams` from 4.1.2 to 4.2.1
- [Commits](https://github.com/SAP/cloud-identity-developer-guide/commits)

Updates `com.sap.cloud.security.ams:spring-boot-starter-cap-ams-test` from 4.1.2 to 4.2.1
- [Commits](https://github.com/SAP/cloud-identity-developer-guide/commits)

Updates `com.sap.cloud.security.ams.dcl:dcl-compiler-plugin` from 1.3.0 to 1.4.0
- [Commits](https://github.com/SAP/cloud-identity-developer-guide/commits)

Updates `com.sap.cloud.sdk:sdk-modules-bom` from 5.31.0 to 5.32.0
- [Release notes](https://github.com/SAP/cloud-sdk-java/releases)
- [Changelog](https://github.com/SAP/cloud-sdk-java/blob/main/release_notes.md)
- [Commits](SAP/cloud-sdk-java@rel/5.31.0...rel/5.32.0)

Updates `com.diffplug.spotless:spotless-maven-plugin` from 3.6.0 to 3.8.0
- [Release notes](https://github.com/diffplug/spotless/releases)
- [Changelog](https://github.com/diffplug/spotless/blob/main/CHANGES.md)
- [Commits](diffplug/spotless@maven/3.6.0...maven/3.8.0)

Updates `com.sap.cloud.sdk:sdk-modules-bom` from 5.31.0 to 5.32.0
- [Release notes](https://github.com/SAP/cloud-sdk-java/releases)
- [Changelog](https://github.com/SAP/cloud-sdk-java/blob/main/release_notes.md)
- [Commits](SAP/cloud-sdk-java@rel/5.31.0...rel/5.32.0)

Updates `com.diffplug.spotless:spotless-maven-plugin` from 3.6.0 to 3.8.0
- [Release notes](https://github.com/diffplug/spotless/releases)
- [Changelog](https://github.com/diffplug/spotless/blob/main/CHANGES.md)
- [Commits](diffplug/spotless@maven/3.6.0...maven/3.8.0)

Updates `com.sap.cloud.security.ams:spring-boot-starter-cap-ams` from 4.1.2 to 4.2.1
- [Commits](https://github.com/SAP/cloud-identity-developer-guide/commits)

Updates `com.sap.cloud.security.ams:spring-boot-starter-cap-ams-test` from 4.1.2 to 4.2.1
- [Commits](https://github.com/SAP/cloud-identity-developer-guide/commits)

Updates `com.sap.cloud.security.ams:spring-boot-starter-cap-ams-test` from 4.1.2 to 4.2.1
- [Commits](https://github.com/SAP/cloud-identity-developer-guide/commits)

Updates `com.sap.cloud.security.ams.dcl:dcl-compiler-plugin` from 1.3.0 to 1.4.0
- [Commits](https://github.com/SAP/cloud-identity-developer-guide/commits)

Updates `com.sap.cloud.security.ams:spring-boot-starter-cap-ams` from 4.1.2 to 4.2.1
- [Commits](https://github.com/SAP/cloud-identity-developer-guide/commits)

Updates `com.sap.cloud.security.ams:spring-boot-starter-cap-ams-test` from 4.1.2 to 4.2.1
- [Commits](https://github.com/SAP/cloud-identity-developer-guide/commits)

Updates `com.sap.cloud.security.ams.dcl:dcl-compiler-plugin` from 1.3.0 to 1.4.0
- [Commits](https://github.com/SAP/cloud-identity-developer-guide/commits)

Updates `com.sap.cloud.sdk:sdk-modules-bom` from 5.31.0 to 5.32.0
- [Release notes](https://github.com/SAP/cloud-sdk-java/releases)
- [Changelog](https://github.com/SAP/cloud-sdk-java/blob/main/release_notes.md)
- [Commits](SAP/cloud-sdk-java@rel/5.31.0...rel/5.32.0)

Updates `com.diffplug.spotless:spotless-maven-plugin` from 3.6.0 to 3.8.0
- [Release notes](https://github.com/diffplug/spotless/releases)
- [Changelog](https://github.com/diffplug/spotless/blob/main/CHANGES.md)
- [Commits](diffplug/spotless@maven/3.6.0...maven/3.8.0)

---
updated-dependencies:
- dependency-name: com.sap.cloud.sdk:sdk-modules-bom
  dependency-version: 5.32.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-maven-dependencies
- dependency-name: com.diffplug.spotless:spotless-maven-plugin
  dependency-version: 3.8.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: all-maven-dependencies
- dependency-name: com.sap.cloud.security.ams:spring-boot-starter-cap-ams
  dependency-version: 4.2.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-maven-dependencies
- dependency-name: com.sap.cloud.security.ams:spring-boot-starter-cap-ams-test
  dependency-version: 4.2.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-maven-dependencies
- dependency-name: com.sap.cloud.security.ams:spring-boot-starter-cap-ams-test
  dependency-version: 4.2.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-maven-dependencies
- dependency-name: com.sap.cloud.security.ams.dcl:dcl-compiler-plugin
  dependency-version: 1.4.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: all-maven-dependencies
- dependency-name: com.sap.cloud.security.ams:spring-boot-starter-cap-ams
  dependency-version: 4.2.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-maven-dependencies
- dependency-name: com.sap.cloud.security.ams:spring-boot-starter-cap-ams-test
  dependency-version: 4.2.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-maven-dependencies
- dependency-name: com.sap.cloud.security.ams.dcl:dcl-compiler-plugin
  dependency-version: 1.4.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: all-maven-dependencies
- dependency-name: com.sap.cloud.sdk:sdk-modules-bom
  dependency-version: 5.32.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-maven-dependencies
- dependency-name: com.diffplug.spotless:spotless-maven-plugin
  dependency-version: 3.8.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: all-maven-dependencies
- dependency-name: com.sap.cloud.sdk:sdk-modules-bom
  dependency-version: 5.32.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-maven-dependencies
- dependency-name: com.diffplug.spotless:spotless-maven-plugin
  dependency-version: 3.8.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: all-maven-dependencies
- dependency-name: com.sap.cloud.security.ams:spring-boot-starter-cap-ams
  dependency-version: 4.2.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-maven-dependencies
- dependency-name: com.sap.cloud.security.ams:spring-boot-starter-cap-ams-test
  dependency-version: 4.2.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-maven-dependencies
- dependency-name: com.sap.cloud.security.ams:spring-boot-starter-cap-ams-test
  dependency-version: 4.2.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-maven-dependencies
- dependency-name: com.sap.cloud.security.ams.dcl:dcl-compiler-plugin
  dependency-version: 1.4.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: all-maven-dependencies
- dependency-name: com.sap.cloud.security.ams:spring-boot-starter-cap-ams
  dependency-version: 4.2.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-maven-dependencies
- dependency-name: com.sap.cloud.security.ams:spring-boot-starter-cap-ams-test
  dependency-version: 4.2.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-maven-dependencies
- dependency-name: com.sap.cloud.security.ams.dcl:dcl-compiler-plugin
  dependency-version: 1.4.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: all-maven-dependencies
- dependency-name: com.sap.cloud.sdk:sdk-modules-bom
  dependency-version: 5.32.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-maven-dependencies
- dependency-name: com.diffplug.spotless:spotless-maven-plugin
  dependency-version: 3.8.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: all-maven-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Jul 3, 2026
@beckermarc beckermarc merged commit ab3fcfb into main Jul 3, 2026
2 checks passed
@beckermarc beckermarc deleted the dependabot/maven/all-maven-dependencies-bbcc618268 branch July 3, 2026 11:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file java Pull requests that update java code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant