Bump the "dependencies" group with 2 updates across multiple ecosystems

[dependabot]

Bumps the dependencies group with 2 updates: actions/configure-pages and actions/deploy-pages.

Updates actions/configure-pages from 5 to 6

Release notes

Sourced from actions/configure-pages's releases.

v6.0.0

Changelog

• upgrade to node 24 @​salmanmkc (#186)
• Upgrade IA Publish @​Jcambass (#165)
• Add workflow file for publishing releases to immutable action package @​Jcambass (#163)
• pin draft release version @​YiMysty (#162)
• Bump espree from 9.6.1 to 10.1.0 @​dependabot (#160)
• Bump eslint-config-prettier from 8.8.0 to 9.1.0 @​dependabot (#143)
• Be more friendly to Dependabot @​yoannchaudet (#158)
• Bump eslint-plugin-github from 4.10.2 to 5.0.1 @​dependabot (#154)
• Bump braces from 3.0.2 to 3.0.3 in the npm_and_yarn group @​dependabot (#156)
• Bump undici from 5.28.3 to 5.28.4 @​dependabot (#145)

See details of all code changes since previous release.

Commits

• 45bfe01 Merge pull request #186 from salmanmkc/node24
• d8770c2 Update Node version from 20 to 24 in action.yml
• cb8a1a3 upgrade to node 24
• d560657 Merge pull request #165 from actions/Jcambass-patch-1
• 35e0ac4 Upgrade IA Publish
• 1dfbcbf Merge pull request #163 from actions/Jcambass-patch-1
• 2f4f988 Add workflow file for publishing releases to immutable action package
• 0d7570c Merge pull request #162 from actions/pin-draft-release-verssion
• 3ea1966 pin draft release version
• aabcbc4 Merge pull request #160 from actions/dependabot/npm_and_yarn/espree-10.1.0
• Additional commits viewable in compare view

Updates actions/deploy-pages from 4 to 5

Release notes

Sourced from actions/deploy-pages's releases.

v5.0.0

Changelog

• Update Node.js version to 24.x @​salmanmkc (#404)
• Add workflow file for publishing releases to immutable action package @​Jcambass (#374)
• Bump braces from 3.0.2 to 3.0.3 in the npm_and_yarn group across 1 directory @​dependabot (#360)
• Make the rebuild dist workflow work nicer with Dependabot @​yoannchaudet (#361)
• Bump the non-breaking-changes group across 1 directory with 3 updates @​dependabot (#358)
• Delete repeated sentence @​garethsb (#359)
• Update README.md @​tsusdere (#348)
• Bump the non-breaking-changes group with 4 updates @​dependabot (#341)
• Remove error message for file permissions @​TooManyBees (#340)

---

See details of all code changes since previous release.

⚠️ For use with products other than GitHub.com, such as GitHub Enterprise Server, please consult the compatibility table.

v4.0.5

Changelog

• On API error, the error message will surface the API request ID @​TooManyBees (#324)
• Bump the non-breaking-changes group with 2 updates @​dependabot (#318)
• Bump the non-breaking-changes group with 1 update @​dependabot (#316)
• Bump the non-breaking-changes group with 3 updates @​dependabot (#314)
• Bump release-drafter/release-drafter from 5.25.0 to 6.0.0 @​dependabot (#311)

---

See details of all code changes since previous release.

⚠️ For use with products other than GitHub.com, such as GitHub Enterprise Server, please consult the compatibility table.

v4.0.4

Changelog

• Update api-client.js @​lmammino (#295)
• fix typo: compatibilty -> compatibility @​SimonSiefke (#298)
• Bump @​actions/artifact from 2.0.1 to 2.1.1 @​dependabot (#310)
• Update Dependabot config to group non-breaking changes @​JamesMGreene (#307)

---

See details of all code changes since previous release.

⚠️ For use with products other than GitHub.com, such as GitHub Enterprise Server, please consult the compatibility table.

v4.0.3

Changelog

... (truncated)

Commits

• cd2ce8f Merge pull request #404 from salmanmkc/node24
• bbe2a95 Update Node.js version to 24.x
• 854d7aa Merge pull request #374 from actions/Jcambass-patch-1
• 306bb81 Add workflow file for publishing releases to immutable action package
• b742728 Merge pull request #360 from actions/dependabot/npm_and_yarn/npm_and_yarn-513...
• 7273294 Bump braces in the npm_and_yarn group across 1 directory
• 963791f Merge pull request #361 from actions/dependabot-friendly
• 51bb29d Make the rebuild dist workflow safer for Dependabot
• 89f3d10 Merge pull request #358 from actions/dependabot/npm_and_yarn/non-breaking-cha...
• bce7355 Merge branch 'main' into dependabot/npm_and_yarn/non-breaking-changes-99c12deb21
• Additional commits viewable in compare view

Bumps the dependencies group with 4 updates: org.mockito:mockito-junit-jupiter, io.github.git-commit-id:git-commit-id-maven-plugin, org.apache.maven.plugins:maven-resources-plugin and org.apache.maven.plugins:maven-shade-plugin.

Updates org.mockito:mockito-junit-jupiter from 5.22.0 to 5.23.0

Release notes

Sourced from org.mockito:mockito-junit-jupiter's releases.

v5.23.0

NOTE: Breaking change for Android

The mockito-android artifact has a breaking change: tests now require a device or emulator based on API 28+ (Android P). This is to enable new support for mocking Kotlin classes. See #3788 for more details.

---

Changelog generated by Shipkit Changelog Gradle Plugin

5.23.0

• 2026-03-11 - 6 commit(s) by Brice Dutheil, Joshua Selbo, Philippe Kernevez
• Replace mockito-android mock maker implementation with dexmaker-mockito-inline [(#3792)](mockito/mockito#3792)
• Fix StackOverflowError with AbstractList after using mockSingleton [(#3790)](mockito/mockito#3790)
• Mark parameters of Mockito.when @Nullable [(#3503)](mockito/mockito#3503)

Commits

• a231205 Fix StackOverflowError with AbstractList after using mockSingleton (#3790)
• f6a91a6 Replace mockito-android mock maker implementation with dexmaker-mockito-inlin...
• aa2298a fix: make spotless happy
• a6729d6 chore: update BDDMockito with jspecify annotation
• bb83c92 chore: move jspecify as a compile only dependency
• 47a4695 chore: add jspecify with minimal change. Fixes #3503
• See full diff in compare view

Updates io.github.git-commit-id:git-commit-id-maven-plugin from 9.0.2 to 9.1.0

Release notes

Sourced from io.github.git-commit-id:git-commit-id-maven-plugin's releases.

Version 9.1.0 is finally there and includes various bug-fixes and improvements :-)

New Features / Bug-Fixes:

The main key-aspects that have been improved or being worked on are the following:

• git-commit-id/git-commit-id-plugin-core#247 / git-commit-id/git-commit-id-maven-plugin#136 / git-commit-id/git-commit-id-maven-plugin#535: Add support for perModuleVersions (thanks @​mharriger)
• Extended testing support to Java 24, 25, and 26
• Migrated from oss-parent to central-publishing-maven-plugin for deployment

• bump several plugins
  • bump io.github.git-commit-id:git-commit-id-plugin-core from 6.0.0 to 6.1.5
    • bump org.eclipse.jgit:org.eclipse.jgit from 6.10.0.202406032230-r to 6.10.1.202505221210-r
    • bump org.eclipse.jgit:org.eclipse.jgit.ssh.jsch from 6.10.0.202406032230-r to 6.10.1.202505221210-r
    • bump joda-time:joda-time from 2.14.0 to 2.14.1
    • bump org.yaml:snakeyaml from 2.4 to 2.6
    • Full list: https://github.com/git-commit-id/git-commit-id-plugin-core/releases/tag/v6.1.5
  • bump commons-io:commons-io from 2.19.0 to 2.21.0 (scope test)
  • bump org.junit.jupiter:* from 5.12.2 to 5.13.4 (scope test)
  • bump org.mockito:mockito-core from 5.18.0 to 5.23.0 (scope test)
  • bump org.assertj:assertj-core from 3.27.3 to 3.27.7 (scope test)
• bump several maven plugins
  • bump org.apache.maven.plugins:maven-antrun-plugin from 3.1.0 to 3.2.0
  • bump org.apache.maven.plugins:maven-assembly-plugin from 3.7.1 to 3.8.0
  • bump org.apache.maven.plugins:maven-clean-plugin from 3.4.1 to 3.5.0
  • bump org.apache.maven.plugins:maven-compiler-plugin from 3.14.0 to 3.15.0
  • bump org.apache.maven.plugins:maven-dependency-plugin from 3.8.1 to 3.10.0
  • bump org.apache.maven.plugins:maven-enforcer-plugin from 3.5.0 to 3.6.2
  • bump org.apache.maven.plugins:maven-gpg-plugin from 3.2.7 to 3.2.8
  • bump org.apache.maven.plugins:maven-jar-plugin from 3.4.2 to 3.5.0
  • bump org.apache.maven.plugins:maven-javadoc-plugin from 3.11.2 to 3.12.0
  • bump org.apache.maven.plugins:maven-plugin-plugin from 3.15.1 to 3.15.2
  • bump org.apache.maven.plugins:maven-release-plugin from 3.1.1 to 3.3.1
  • bump org.apache.maven.plugins:maven-resources-plugin from 3.3.1 to 3.5.0
  • bump org.apache.maven.plugins:maven-source-plugin from 3.3.1 to 3.4.0
  • bump org.apache.maven.plugins:maven-surefire-plugin from 3.5.3 to 3.5.5
  • bump org.codehaus.mojo:versions-maven-plugin from 2.18.0 to 2.21.0
  • bump org.codehaus.mojo:exec-maven-plugin from 3.5.0 to 3.6.3
  • bump org.jacoco:jacoco-maven-plugin from 0.8.13 to 0.8.14
  • bump org.apache.maven.plugin-tools:maven-plugin-annotations from 3.15.1 to 3.15.2

Getting the latest release

The plugin is available from Maven Central (see here), so you don't have to configure any additional repositories to use this plugin. All you need to do is to configure it inside your project as dependency:

<dependency>
    <groupId>io.github.git-commit-id</groupId>
    <artifactId>git-commit-id-maven-plugin</artifactId>
    <version>9.1.0</version>
</dependency>

Getting the latest snapshot (build automatically)

... (truncated)

Commits

• 16bad75 Bump version: 9.0.2 → 9.1.0
• 4772f7e Merge pull request #909 from git-commit-id/dependabot/maven/jakarta.xml.bind-...
• a8f7505 Merge pull request #908 from git-commit-id/dependabot/maven/org.apache.maven....
• 22aafb0 Merge pull request #907 from git-commit-id/dependabot/maven/org.mockito-mocki...
• e5492fa Merge pull request #910 from git-commit-id/per-module-versions
• 02cf15f make checkstyle happy
• 9db971d switch from oss publishing to central-publishing-maven-plugin
• bfbf19d add tests for java '24', '25', '26'
• 2f7a538 git-commit-id/git-commit-id-plugin-core#247 / https:/...
• 24d5c1e build(deps): bump jakarta.xml.bind:jakarta.xml.bind-api
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-resources-plugin from 3.4.0 to 3.5.0

Release notes

Sourced from org.apache.maven.plugins:maven-resources-plugin's releases.

3.5.0

• Cleanup deps (#463) @​cstamas

🚀 New features and improvements

• Bug: use change detecton strategies (#462) @​cstamas

👻 Maintenance

• Add IT for #444 issue (#446) @​slawekjaranowski
• Migration to JUnit 5 - avoid using AbstractMojoTestCase (#449) @​slawekjaranowski
• Migration to JUnit 5 - avoid using AbstractMojoTestCase (#447) @​slawekjaranowski

📦 Dependency updates

• Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.5.0 to 3.5.1 (#461) @dependabot[bot]
• Bump org.apache.maven.plugins:maven-plugins from 45 to 47 (#459) @dependabot[bot]
• Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.4.0 to 3.5.0 (#457) @dependabot[bot]
• Bump mavenVersion from 3.9.11 to 3.9.12 (#452) @dependabot[bot]

Commits

• ce485a0 [maven-release-plugin] prepare release maven-resources-plugin-3.5.0
• bfadfff Use maven-filtering 3.5.0 (staged)
• 3f74ba2 Drop commons-io; unused
• caefcde Bug: use change detecton strategies (#462)
• 38534e3 Cleanup deps (#463)
• 0814ec7 Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness (#461)
• e2f9135 Bump org.apache.maven.plugins:maven-plugins from 45 to 47 (#459)
• a050be3 Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness (#457)
• 1825b2a Bump mavenVersion from 3.9.11 to 3.9.12 (#452)
• ad31b55 Add IT for #444 issue
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-shade-plugin from 3.6.1 to 3.6.2

Release notes

Sourced from org.apache.maven.plugins:maven-shade-plugin's releases.

3.6.2

🐛 Bug Fixes

• Bug: Extra JARs and Artifacts were not subjected to filtering (#785) @​cstamas

👻 Maintenance

• Drop excessive dependencies (#786) @​cstamas
• chore: remove junit3 reference (#762) @​sparsick
• Exclude Java 25 (#773) @​slachiewicz
• Update site descriptor, use site configuration from parent (#755) @​slawekjaranowski

📦 Dependency updates

• Drop unneeded dependencies (#788) @​cstamas
• Update to parent POM v 47 (#781) @​Bukama
• Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.5.0 to 3.5.1 (#782) @dependabot[bot]
• Bump org.codehaus.mojo:mrm-maven-plugin from 1.7.0 to 1.7.1 (#780) @dependabot[bot]
• Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.4.0 to 3.5.0 (#778) @dependabot[bot]
• Bump asmVersion from 9.9 to 9.9.1 (#774) @dependabot[bot]
• Update invoker plugin to 3.9.1 to Support Java 25 (#769) @​Bukama
• Bump asmVersion from 9.8 to 9.9 (#761) @dependabot[bot]
• Bump org.xmlunit:xmlunit-legacy from 2.10.3 to 2.11.0 (#763) @dependabot[bot]
• Bump org.apache.maven.plugin-tools:maven-plugin-annotations from 3.15.1 to 3.15.2 (#764) @dependabot[bot]
• Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.3.0 to 3.4.0 (#768) @dependabot[bot]
• Bump org.codehaus.plexus:plexus-utils from 3.5.1 to 3.6.0 (#758) @dependabot[bot]

Commits

• ad8de59 [maven-release-plugin] prepare release maven-shade-plugin-3.6.2
• 8eb19dc Drop unneeded dependencies (#788)
• 397b2cd Drop excessive dependencies (#786)
• eca6398 Bug: Extra JARs and Artifacts were not subjected to filtering (#785)
• 7edce17 Update to parent POM v 47 (#781)
• 3171a34 Mockito improvements (#783)
• 678844b Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness (#782)
• 73ec909 Bump org.codehaus.mojo:mrm-maven-plugin from 1.7.0 to 1.7.1 (#780)
• 5f7a877 Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness (#778)
• 73c5247 chore: remove junit3 reference (#762)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions