chore(deps): Bump the all-maven-dependencies group across 2 directories with 7 updates

[dependabot]

Bumps the all-maven-dependencies group with 7 updates in the / directory:

Package	From	To
com.puppycrawl.tools:checkstyle	10.21.4	10.23.0
net.sourceforge.pmd:pmd-core	7.11.0	7.12.0
net.sourceforge.pmd:pmd-java	7.11.0	7.12.0
org.apache.maven.plugins:maven-surefire-plugin	3.5.2	3.5.3
org.apache.maven.plugins:maven-failsafe-plugin	3.5.2	3.5.3
org.jacoco:jacoco-maven-plugin	0.8.12	0.8.13
de.thetaphi:forbiddenapis	3.8	3.9

Bumps the all-maven-dependencies group with 1 update in the /scram-client/src/it/jpms-scram-client directory: org.apache.maven.plugins:maven-surefire-plugin.

Updates com.puppycrawl.tools:checkstyle from 10.21.4 to 10.23.0

Release notes

Sourced from com.puppycrawl.tools:checkstyle's releases.

checkstyle-10.23.0

Checkstyle 10.23.0 - https://checkstyle.org/releasenotes.html#Release_10.23.0

New:

#9745 - JavadocMethod: new property 'allowInlineReturn' to support for Javadoc return tag as inline

Bug fixes:

#14697 - False negative in UnusedImportCheck

checkstyle-10.22.0

Checkstyle 10.22.0 - https://checkstyle.org/releasenotes.html#Release_10.22.0

Breaking backward compatibility:

#9280 - JavadocVariable: new property 'accessModifiers' as substitution of 'scope' and 'excludeScope' #15499 - Change default or IllegalIdentifierName

Bug fixes:

#16641 - FileContents.getJavadocBefore(): Comments should not be skipped if it is not alone in line #16385 - JavadocTagContinuationIndentation Ignore indentation check when HTML tag break line #16628 - use SLL prediction mode for fast javadoc parsing to improve performance #43 - JavadocMethod: Javadoc Not Detected Above Multiline Comments #12817 - Incorrect Indentation errors for expression switches with google_checks.xml #6637 - SuppressWarningsHolder aliasList members don't act like aliases #13043 - Make references optional for link and linkplain tags #16005 - Parse errors if ``@see spans multiple lines #14446 - Parse error when Javadoc contains `@`snippet with code example that uses Java annotation

... (truncated)

Commits

• 25f2753 [maven-release-plugin] prepare release checkstyle-10.23.0
• ed97c94 doc: release notes for 10.23.0
• 9e773ff Issue #16332: Updated SuppressionSingleFilterExamplesTest methods to use veri...
• 688d0cd Issue #16360: Migrate XMLLoggerTest to use inlineConfigParser
• 66946e9 Issue #16360: Migrate XMLLoggerTest.testAddErrorOnZeroColumns to use inlineCo...
• 4890ef6 Issue #14631: Updated HR_TAG to new AST format
• 754c35d minor: Bump version to 10.23.0-SNAPSHOT
• 359fa91 Issue #16155: use nio api in XpathFileGeneratorAuditListener
• 3f0fec8 Issue #9745: Added JavadocMethod inline return tag support
• 381a852 Issue #14631: Updated DD to new AST format
• Additional commits viewable in compare view

Updates net.sourceforge.pmd:pmd-core from 7.11.0 to 7.12.0

Release notes

Sourced from net.sourceforge.pmd:pmd-core's releases.

PMD 7.12.0 (28-March-2025)

28-March-2025 - 7.12.0

The PMD team is pleased to announce PMD 7.12.0.

This is a minor release.

Table Of Contents

• 🚀 New and noteworthy
  • ✨ New Rules
• 🐛 Fixed Issues
• 🚨 API Changes
  • Deprecations
• ✨ Merged pull requests
• 📦 Dependency updates
• 📈 Stats

🚀 New and noteworthy

✨ New Rules

• The new Java rule ImplicitFunctionalInterface reports functional interfaces that were not explicitly declared as such with the annotation @FunctionalInterface. If an interface is accidentally a functional interface, then it should bear a @SuppressWarnings("PMD.ImplicitFunctionalInterface") annotation to make this clear.

🐛 Fixed Issues

• core
  • #5593: [core] Make renderers output files in deterministic order even when multithreaded
• apex
  • #5567: [apex] Provide type information for CastExpression
• apex-design
  • #5616: [apex] ExcessiveParameterList reports entire method instead of signature only
• java
  • #5587: [java] Thread deadlock during PMD analysis in ParseLock.getFinalStatus
• java-bestpractices
  • #2849: [java] New Rule: ImplicitFunctionalInterface
  • #5369: [java] UnusedPrivateMethod false positives with lombok.val
  • #5590: [java] LiteralsFirstInComparisonsRule not applied on constant
  • #5592: [java] UnusedAssignment false positive in record compact constructor
• java-codestyle
  • #5079: [java] LocalVariableCouldBeFinal false-positive with lombok.val
  • #5452: [java] PackageCase: Suppression comment has no effect due to finding at wrong position in case of JavaDoc comment
• plsql
  • #4441: [plsql] Parsing exception with XMLQUERY function in SELECT
  • #5521: [plsql] Long parse time and eventually parse error with XMLAGG order by clause

🚨 API Changes

... (truncated)

Commits

• 9dbf50e [release] prepare release pmd_releases/7.12.0
• 3e6298f Prepare pmd release 7.12.0
• fc2b908 [doc] Fix search index (#5618)
• 5500e26 [doc] Update contributors
• 795e33a Fix #5616: [apex] ExcessiveParameterList: Report only method signature (#5617)
• fb16b7e Fix #4441: [plsql] XMLQuery - Support identifier as XQuery_string parameter (...
• cdc2a51 Fix #5452: [java] PackageCase reported on wrong line (#5611)
• c01fb46 [java] PackageCase - add testcase for #5452
• 6d491a8 Fix #5079: [java] LocalVariableCouldBeFinal false-positive with lombok.val (#...
• 64a925a [doc] Update release notes (#5600, #5079)
• Additional commits viewable in compare view

Updates net.sourceforge.pmd:pmd-java from 7.11.0 to 7.12.0

Release notes

Sourced from net.sourceforge.pmd:pmd-java's releases.

PMD 7.12.0 (28-March-2025)

28-March-2025 - 7.12.0

The PMD team is pleased to announce PMD 7.12.0.

This is a minor release.

Table Of Contents

• 🚀 New and noteworthy
  • ✨ New Rules
• 🐛 Fixed Issues
• 🚨 API Changes
  • Deprecations
• ✨ Merged pull requests
• 📦 Dependency updates
• 📈 Stats

🚀 New and noteworthy

✨ New Rules

• The new Java rule ImplicitFunctionalInterface reports functional interfaces that were not explicitly declared as such with the annotation @FunctionalInterface. If an interface is accidentally a functional interface, then it should bear a @SuppressWarnings("PMD.ImplicitFunctionalInterface") annotation to make this clear.

🐛 Fixed Issues

• core
  • #5593: [core] Make renderers output files in deterministic order even when multithreaded
• apex
  • #5567: [apex] Provide type information for CastExpression
• apex-design
  • #5616: [apex] ExcessiveParameterList reports entire method instead of signature only
• java
  • #5587: [java] Thread deadlock during PMD analysis in ParseLock.getFinalStatus
• java-bestpractices
  • #2849: [java] New Rule: ImplicitFunctionalInterface
  • #5369: [java] UnusedPrivateMethod false positives with lombok.val
  • #5590: [java] LiteralsFirstInComparisonsRule not applied on constant
  • #5592: [java] UnusedAssignment false positive in record compact constructor
• java-codestyle
  • #5079: [java] LocalVariableCouldBeFinal false-positive with lombok.val
  • #5452: [java] PackageCase: Suppression comment has no effect due to finding at wrong position in case of JavaDoc comment
• plsql
  • #4441: [plsql] Parsing exception with XMLQUERY function in SELECT
  • #5521: [plsql] Long parse time and eventually parse error with XMLAGG order by clause

🚨 API Changes

... (truncated)

Commits

• 9dbf50e [release] prepare release pmd_releases/7.12.0
• 3e6298f Prepare pmd release 7.12.0
• fc2b908 [doc] Fix search index (#5618)
• 5500e26 [doc] Update contributors
• 795e33a Fix #5616: [apex] ExcessiveParameterList: Report only method signature (#5617)
• fb16b7e Fix #4441: [plsql] XMLQuery - Support identifier as XQuery_string parameter (...
• cdc2a51 Fix #5452: [java] PackageCase reported on wrong line (#5611)
• c01fb46 [java] PackageCase - add testcase for #5452
• 6d491a8 Fix #5079: [java] LocalVariableCouldBeFinal false-positive with lombok.val (#...
• 64a925a [doc] Update release notes (#5600, #5079)
• Additional commits viewable in compare view

Updates net.sourceforge.pmd:pmd-java from 7.11.0 to 7.12.0

Release notes

Sourced from net.sourceforge.pmd:pmd-java's releases.

PMD 7.12.0 (28-March-2025)

28-March-2025 - 7.12.0

The PMD team is pleased to announce PMD 7.12.0.

This is a minor release.

Table Of Contents

• 🚀 New and noteworthy
  • ✨ New Rules
• 🐛 Fixed Issues
• 🚨 API Changes
  • Deprecations
• ✨ Merged pull requests
• 📦 Dependency updates
• 📈 Stats

🚀 New and noteworthy

✨ New Rules

• The new Java rule ImplicitFunctionalInterface reports functional interfaces that were not explicitly declared as such with the annotation @FunctionalInterface. If an interface is accidentally a functional interface, then it should bear a @SuppressWarnings("PMD.ImplicitFunctionalInterface") annotation to make this clear.

🐛 Fixed Issues

• core
  • #5593: [core] Make renderers output files in deterministic order even when multithreaded
• apex
  • #5567: [apex] Provide type information for CastExpression
• apex-design
  • #5616: [apex] ExcessiveParameterList reports entire method instead of signature only
• java
  • #5587: [java] Thread deadlock during PMD analysis in ParseLock.getFinalStatus
• java-bestpractices
  • #2849: [java] New Rule: ImplicitFunctionalInterface
  • #5369: [java] UnusedPrivateMethod false positives with lombok.val
  • #5590: [java] LiteralsFirstInComparisonsRule not applied on constant
  • #5592: [java] UnusedAssignment false positive in record compact constructor
• java-codestyle
  • #5079: [java] LocalVariableCouldBeFinal false-positive with lombok.val
  • #5452: [java] PackageCase: Suppression comment has no effect due to finding at wrong position in case of JavaDoc comment
• plsql
  • #4441: [plsql] Parsing exception with XMLQUERY function in SELECT
  • #5521: [plsql] Long parse time and eventually parse error with XMLAGG order by clause

🚨 API Changes

... (truncated)

Commits

• 9dbf50e [release] prepare release pmd_releases/7.12.0
• 3e6298f Prepare pmd release 7.12.0
• fc2b908 [doc] Fix search index (#5618)
• 5500e26 [doc] Update contributors
• 795e33a Fix #5616: [apex] ExcessiveParameterList: Report only method signature (#5617)
• fb16b7e Fix #4441: [plsql] XMLQuery - Support identifier as XQuery_string parameter (...
• cdc2a51 Fix #5452: [java] PackageCase reported on wrong line (#5611)
• c01fb46 [java] PackageCase - add testcase for #5452
• 6d491a8 Fix #5079: [java] LocalVariableCouldBeFinal false-positive with lombok.val (#...
• 64a925a [doc] Update release notes (#5600, #5079)
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-surefire-plugin from 3.5.2 to 3.5.3

Release notes

Sourced from org.apache.maven.plugins:maven-surefire-plugin's releases.

3.5.3

🐛 Bug Fixes

• [SUREFIRE-1737] - Fix disable in statelessTestsetReporter (#816) @​slawekjaranowski
• [SUREFIRE-1643] - surefire junit5 parallel tests (#815) @​olamy
• [SUREFIRE-2289] - Make exceptions more appropriate to context (#798) @​elharo

👻 Maintenance

• surefire shared utils version current version (#825) @​olamy
• Update site descriptors (#821) @​slawekjaranowski
• Use newer version of surefire for itself testing, enable JUnit 5 in tests (#822) @​slawekjaranowski
• Remove dependencies from root pom (#819) @​slawekjaranowski
• move this dependency to dptMngt (#818) @​olamy
• [SUREFIRE-2291] - Change logger from Plexus to SLF4J (#811) @​jeffjensen
• Add GitHub Automation actions (#812) @​slawekjaranowski
• Convert reports to Guice (#803) @​elharo
• [MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#809) @​Bukama
• Update encoding docs (#802) @​elharo
• Guice injection (#801) @​elharo

📦 Dependency updates

• Bump org.htmlunit:htmlunit from 4.10.0 to 4.11.1 (#823) @dependabot[bot]
• Bump parent to 44 (#817) @​slawekjaranowski
• Bump org.codehaus.plexus:plexus-java from 1.3.0 to 1.4.0 (#810) @dependabot[bot]
• Bump org.htmlunit:htmlunit from 4.4.0 to 4.10.0 (#813) @dependabot[bot]
• Bump commons-io:commons-io from 2.17.0 to 2.18.0 (#797) @dependabot[bot]
• Bump org.assertj:assertj-core from 3.27.2 to 3.27.3 (#807) @dependabot[bot]
• Bump org.assertj:assertj-core from 3.27.0 to 3.27.2 (#805) @dependabot[bot]
• Bump org.assertj:assertj-core from 3.26.3 to 3.27.0 (#800) @dependabot[bot]

Commits

• 4434650 [maven-release-plugin] prepare release surefire-3.5.3
• 1270950 use github directly
• 59f3a1f release tag name backward compatible
• dfbabe2 assertj-core must be test scope (#826)
• e1f8119 back to 3.5.3-SNAPSHOT
• c497559 [maven-release-plugin] prepare for next development iteration
• 3962112 [maven-release-plugin] prepare release v3.5.3
• 227c134 surefire shared utils version current version (#825)
• 1d34c34 Bump org.htmlunit:htmlunit from 4.10.0 to 4.11.1
• 906b65a Update site descriptors
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-failsafe-plugin from 3.5.2 to 3.5.3

Release notes

Sourced from org.apache.maven.plugins:maven-failsafe-plugin's releases.

3.5.3

🐛 Bug Fixes

• [SUREFIRE-1737] - Fix disable in statelessTestsetReporter (#816) @​slawekjaranowski
• [SUREFIRE-1643] - surefire junit5 parallel tests (#815) @​olamy
• [SUREFIRE-2289] - Make exceptions more appropriate to context (#798) @​elharo

👻 Maintenance

• surefire shared utils version current version (#825) @​olamy
• Update site descriptors (#821) @​slawekjaranowski
• Use newer version of surefire for itself testing, enable JUnit 5 in tests (#822) @​slawekjaranowski
• Remove dependencies from root pom (#819) @​slawekjaranowski
• move this dependency to dptMngt (#818) @​olamy
• [SUREFIRE-2291] - Change logger from Plexus to SLF4J (#811) @​jeffjensen
• Add GitHub Automation actions (#812) @​slawekjaranowski
• Convert reports to Guice (#803) @​elharo
• [MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#809) @​Bukama
• Update encoding docs (#802) @​elharo
• Guice injection (#801) @​elharo

📦 Dependency updates

• Bump org.htmlunit:htmlunit from 4.10.0 to 4.11.1 (#823) @dependabot[bot]
• Bump parent to 44 (#817) @​slawekjaranowski
• Bump org.codehaus.plexus:plexus-java from 1.3.0 to 1.4.0 (#810) @dependabot[bot]
• Bump org.htmlunit:htmlunit from 4.4.0 to 4.10.0 (#813) @dependabot[bot]
• Bump commons-io:commons-io from 2.17.0 to 2.18.0 (#797) @dependabot[bot]
• Bump org.assertj:assertj-core from 3.27.2 to 3.27.3 (#807) @dependabot[bot]
• Bump org.assertj:assertj-core from 3.27.0 to 3.27.2 (#805) @dependabot[bot]
• Bump org.assertj:assertj-core from 3.26.3 to 3.27.0 (#800) @dependabot[bot]

Commits

• 4434650 [maven-release-plugin] prepare release surefire-3.5.3
• 1270950 use github directly
• 59f3a1f release tag name backward compatible
• dfbabe2 assertj-core must be test scope (#826)
• e1f8119 back to 3.5.3-SNAPSHOT
• c497559 [maven-release-plugin] prepare for next development iteration
• 3962112 [maven-release-plugin] prepare release v3.5.3
• 227c134 surefire shared utils version current version (#825)
• 1d34c34 Bump org.htmlunit:htmlunit from 4.10.0 to 4.11.1
• 906b65a Update site descriptors
• Additional commits viewable in compare view

Updates org.jacoco:jacoco-maven-plugin from 0.8.12 to 0.8.13

Release notes

Sourced from org.jacoco:jacoco-maven-plugin's releases.

0.8.13

New Features

• JaCoCo now officially supports Java 23 and Java 24 (GitHub #1757, #1631, #1867).
• Experimental support for Java 25 class files (GitHub #1807).
• Calculation of line coverage for Kotlin inline functions (GitHub #1670).
• Calculation of line coverage for Kotlin inline functions with reified type parameter (GitHub #1670, #1700).
• Calculation of coverage for Kotlin JvmSynthetic functions (GitHub #1700).
• Part of bytecode generated by the Kotlin Compose compiler plugin is filtered out during generation of report (GitHub #1616).
• Part of bytecode generated by the Kotlin compiler for inline value classes is filtered out during generation of report (GitHub #1475).
• Part of bytecode generated by the Kotlin compiler for suspending lambdas without suspension points is filtered out during generation of report (GitHub #1283).
• Part of bytecode generated by the Kotlin compiler for when expressions and statements with nullable enum subject is filtered out during generation of report (GitHub #1774).
• Part of bytecode generated by the Kotlin compiler for when expressions and statements with nullable String subject is filtered out during generation of report (GitHub #1769).
• Part of bytecode generated by the Kotlin compiler for chains of safe call operators is filtered out during generation of report (GitHub #1810, #1818).
• Method getEntries generated by the Kotlin compiler for enum classes is filtered out during generation of report (GitHub #1625).
• Methods generated by the Kotlin compiler for constructors and functions with JvmOverloads annotation are filtered out (GitHub #1768).

Fixed bugs

• Fixed interpretation of Kotlin SMAP (GitHub #1525).
• File extensions are preserved in HTML report in case of clashes of normalized file names (GitHub #1660).

Non-functional Changes

• JaCoCo build now uses Maven Wrapper and requires at least Maven 3.9.9 (GitHub #1708, #1707, #1681).
• JaCoCo now depends on ASM 9.8 (GitHub #1862).
• More context information when IllegalArgumentException occurs during reading of zip file (GitHub #1833).

Commits

• 78d5eff Prepare release 0.8.13
• e579092 Happy birthday Java 24! (#1867)
• 17d31aa Upgrade ASM to 9.8 (#1863)
• ee07ecb Upgrade Kotlin to 2.1.20 (#1860)
• f0dcc6b Bump actions/upload-artifact from 4.6.1 to 4.6.2 (#1861)
• 99707c3 Upgrade spotless-maven-plugin to 2.44.3 (#1851)
• 21f6a99 Upgrade maven-deploy-plugin to 3.1.4 (#1854)
• c7da68b Upgrade maven-install-plugin to 3.1.4 (#1853)
• 80ebc77 Upgrade maven-clean-plugin to 3.4.1 (#1850)
• 0bb8bd5 Bump actions/upload-artifact from 4.6.0 to 4.6.1 (#1852)
• Additional commits viewable in compare view

Updates de.thetaphi:forbiddenapis from 3.8 to 3.9

Commits

• c74283c Release forbiddenapis 3.9
• 95ba392 Mark Gradle API incubating
• 12bfbaf Fix severity override in Ant task by using child elements (see #253) (#262)
• d7f276f Fix typos in Javadocs
• 9520c27 support .jar file to be scanned in cli (#259)
• 14c003f Add signatures for commons-io 2.18.0
• 2a91113 Fixes for #253:
• 9b4c93f Allow to set severity per signature (#253)
• 6f6ada3 Followup for #258: Fix forbiddenapis and only print error message if there ar...
• 7c32e88 print cli parse error message to let user know what is missing (#258)
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-surefire-plugin from 3.5.2 to 3.5.3

Release notes

Sourced from org.apache.maven.plugins:maven-surefire-plugin's releases.

3.5.3

🐛 Bug Fixes

• [SUREFIRE-1737] - Fix disable in statelessTestsetReporter (#816) @​slawekjaranowski
• [SUREFIRE-1643] - surefire junit5 parallel tests (#815) @​olamy
• [SUREFIRE-2289] - Make exceptions more appropriate to context (#798) @​elharo

👻 Maintenance

• surefire shared utils version current version (#825) @​olamy
• Update site descriptors (#821) @​slawekjaranowski
• Use newer version of surefire for itself testing, enable JUnit 5 in tests (#822) @​slawekjaranowski
• Remove dependencies from root pom (#819) @​slawekjaranowski
• move this dependency to dptMngt (#818) @​olamy
• [SUREFIRE-2291] - Change logger from Plexus to SLF4J (#811) @​jeffjensen
• Add GitHub Automation actions (#812) @​slawekjaranowski
• Convert reports to Guice (#803) @​elharo
• [MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#809) @​Bukama
• Update encoding docs (#802) @​elharo
• Guice injection (#801) @​elharo

📦 Dependency updates

• Bump org.htmlunit:htmlunit from 4.10.0 to 4.11.1 (#823) @dependabot[bot]
• Bump parent to 44 (#817) @​slawekjaranowski
• Bump org.codehaus.plexus:plexus-java from 1.3.0 to 1.4.0 (#810) @dependabot[bot]
• Bump org.htmlunit:htmlunit from 4.4.0 to 4.10.0 (#813) @dependabot[bot]
• Bump commons-io:commons-io from 2.17.0 to 2.18.0 (#797) @dependabot[bot]
• Bump org.assertj:assertj-core from 3.27.2 to 3.27.3 (#807) @dependabot[bot]
• Bump org.assertj:assertj-core from 3.27.0 to 3.27.2 (#805) @dependabot[bot]
• Bump org.assertj:assertj-core from 3.26.3 to 3.27.0 (#800) @dependabot[bot]

Commits

• 4434650 [maven-release-plugin] prepare release surefire-3.5.3
• 1270950 use github directly
• 59f3a1f release tag name backward compatible
• dfbabe2 assertj-core must be test scope (#826)
• e1f8119 back to 3.5.3-SNAPSHOT
• c497559 [maven-release-plugin] prepare for next development iteration
• 3962112 [maven-release-plugin] prepare release v3.5.3
• 227c134 surefire shared utils version current version (#825)
• 1d34c34 Bump org.htmlunit:htmlunit from 4.10.0 to 4.11.1
• 906b65a Update site descriptors
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.