chore: bump the production-minor-patch group across 1 directory with 2 updates

[dependabot]

Bumps the production-minor-patch group with 2 updates in the / directory: org.owasp:dependency-check-maven and org.assertj:assertj-core.

Updates org.owasp:dependency-check-maven from 9.1.0 to 9.2.0

Release notes

Sourced from org.owasp:dependency-check-maven's releases.

Version 9.2.0

Refer to the CHANGELOG.md for information about improvements and upgrade notes.

Changelog

Sourced from org.owasp:dependency-check-maven's changelog.

Version 9.2.0 (2024-05-15)

• docs: update logo per intellj (#6660)
• feat: Carthage analyzer (#6614)
• fix: Ensure valid JSON output for gitlab report (#6630)
• feat: Support Package.swift version 3 Specification (#6578)
• chore: Update the packaged suppressions to include new hosted suppressions (#6567)

See the full listing of changes.

Commits

• 192b4cd build: prepare release v9.2.0
• e50e20d docs: update changelog
• 5ce66cf build(deps): bump org.apache.maven.plugin-tools:maven-plugin-annotations from...
• 61edfd1 docs: update logo per intellj (#6660)
• 8b1746e build(deps): bump com.github.spotbugs:spotbugs-annotations from 4.8.4 to 4.8....
• 754dec1 build(deps): bump maven-plugin-plugin (#6646)
• 969bc27 build(deps): bump org.apache.maven.plugins:maven-surefire-report-plugin from ...
• 57b916a build(deps): bump com.github.spotbugs:spotbugs-maven-plugin from 4.8.4.0 to 4...
• 9c9c466 build(deps): bump commons-codec:commons-codec from 1.16.1 to 1.17.0 (#6633)
• e26096d build(deps): bump commons-cli:commons-cli from 1.6.0 to 1.7.0 (#6629)
• Additional commits viewable in compare view

Updates org.assertj:assertj-core from 3.25.3 to 3.26.0

Release notes

Sourced from org.assertj:assertj-core's releases.

v.3.26.0

💥 Breaking Changes

Core

• Delegate OptionalDouble value comparison to Double.compare in hasValue assertion #3411

  This fixes the comparison of NaN values which wasn't working the way the hasValue Javadoc describes.

  The previous behavior can be obtained with getAsDouble:

  assertThat(OptionalDouble.of(Double.NaN).getAsDouble()).isSameAs(Double.NaN);

🚫 Deprecated

Core

• Deprecate ObjectAssertFactory in favor of Assertions.assertThat(Object)
• Deprecate AssertionErrorFactory in favor of AssertionErrorCreator
• Deprecate catchThrowableOfType(ThrowingCallable, Class) in favor of catchThrowableOfType(Class, ThrowingCallable) #2823
• Deprecate assertThat(Iterable, AssertFactory), assertThat(Iterable, Class) and their respective then variants #3453

✨ New Features

Core

• Support multiple AfterAssertionErrorCollected callbacks #3313
• Add InstanceOfAssertFactory for Set instances #3325
• Add doesNotContainKey and doesNotContainKeys to Guava Multimap assertions #3334
• Add assertions for JDK YearMonth type #3142
• Add TemporalAssert type #3404
• Add ignoringFieldsOfTypesMatchingRegexes #3369
• Add fail(Throwable) and fail() variants #3204
• Add isPrivate to Class assertions
• Add doesNot[Start/End]WithWhitespace methods to CharSequence assertions #3441
• Add createAssert(ValueProvider) to AssertFactory #3377
• Add values() navigation method to AbstractMapAssert #3297
• Add bytes()/bytes(Charset)/bytes(String) navigation methods to AbstractStringAssert #3232
• Add doesNotThrowAnyExceptionExcept to AbstractThrowableAssert #3261
• Add hasPermittedSubclasses to Class assertions #3316
• Add isUnmodifiable to Iterator assertions #3477

🐛 Bug Fixes

Core

... (truncated)

Commits

• b7aae03 [maven-release-plugin] prepare release assertj-build-3.26.0
• be4cf7c Add isUnmodifiable to Iterator assertions (#3477)
• 6e760db chore(deps-dev): bump org.springframework:spring-core from 5.3.35 to 5.3.36 (...
• 29d2bbe chore(deps): bump byte-buddy.version from 1.14.15 to 1.14.16 (#3487)
• 97b642a Rebuild default date formats used to parse string as dates when the default t...
• 9eeb352 Refactor tests covering date string conversion
• 9707d51 chore(deps): bump kotlin.version from 1.9.24 to 2.0.0 (#3484)
• 6bab517 chore(deps-dev): bump org.hibernate.orm:hibernate-core from 6.5.1.Final to 6....
• 5f70fec Reduce Qodana verbosity in PRs
• 99f2991 Fix Instant conversion with Date assertions (#3467)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.