Skip to content

Bump dependency org.owasp:dependency-check-maven to v12.2.2#1857

Merged
uhafner merged 1 commit into
mainfrom
renovate/dependency-check-maven.version
May 4, 2026
Merged

Bump dependency org.owasp:dependency-check-maven to v12.2.2#1857
uhafner merged 1 commit into
mainfrom
renovate/dependency-check-maven.version

Conversation

@renovate
Copy link
Copy Markdown
Contributor

@renovate renovate Bot commented May 3, 2026

This PR contains the following updates:

Package Change Age Confidence
org.owasp:dependency-check-maven (source) 12.2.112.2.2 age confidence

Release Notes

dependency-check/DependencyCheck (org.owasp:dependency-check-maven)

v12.2.2

Compare Source

  • fix: widen reference URL column to handle long Mozilla CVE URLs (#​8467)

  • fix: improve Sonatype Guide / OSS Index cache handling and insufficient credits error reporting (#​8451)

  • fix: de-duplicate and sort both includedBy and projectReferences in reports (#​8440)

  • fix: add corepack to docker image (#​8386)

  • fix: support and prefer githubID vuln identifiers from RetireJS (#​8419)

  • fix: bump open-vulnerability-clients to resolve NVD timestamp parsing errors (#​8427)

  • fix: migrate default OSS Index API URL to Sonatype Guide; supporting optional username (#​8404)

  • chore(fp): remove duplicate log4j FP suppressions (#​8468)

  • chore: remove spurious bundle-audit log line when there are no errors (#​8454)

  • docs: tweak docs site structure; documenting missing analyzers (#​8462)

  • docs: correct missing documentation for Gradle plugin (#​8431)

  • build(deps): bump the actions-deps group with 8 updates (#​8472)

  • build(deps): bump com.fasterxml.jackson:jackson-bom from 2.21.2 to 2.21.3 (#​8465)

  • build(deps): bump org.postgresql:postgresql from 42.7.10 to 42.7.11 (#​8463)

  • build(deps): bump commons-codec:commons-codec from 1.21.0 to 1.22.0 (#​8453)

  • build(deps): bump org.apache.maven.plugins:maven-invoker-plugin from 3.9.1 to 3.10.0 (#​8452)

  • build(deps): bump joda-time:joda-time from 2.14.1 to 2.14.2 (#​8464)

  • build(deps): bump com.mysql:mysql-connector-j from 9.6.0 to 9.7.0 (#​8445)

  • build(deps): bump commons-io:commons-io from 2.21.0 to 2.22.0 (#​8448)

  • build(deps): bump commons-io:commons-io from 2.21.0 to 2.22.0

  • build(deps): bump org.jsoup:jsoup from 1.22.1 to 1.22.2 (#​8437)

  • build(deps): bump com.google.guava:guava from 33.5.0-jre to 33.6.0-jre (#​8420)

  • build(deps): bump httpcomponents.client.version from 5.6 to 5.6.1 (#​8432)

  • build(deps): bump apache.ant.version from 1.10.16 to 1.10.17 (#​8416)

  • chore: tidy CHANGELOG formatting (#​8414)

See the full listing of changes

Configuration

📅 Schedule: (UTC)

  • Branch creation
    • At any time (no schedule defined)
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate Bot added the dependencies Update of dependencies label May 3, 2026
@github-actions github-actions Bot requested a review from uhafner May 3, 2026 12:34
@github-actions
Copy link
Copy Markdown

github-actions Bot commented May 3, 2026

☀️   Quality Monitor

Tests

   JUnit   Unit Tests: ✅ successful — 87 passed, 2 skipped
   ⛔   Architecture Tests: ✅ successful — 17 passed, 2 skipped

Coverage for New Code

   〰️   Line Coverage: 100.00% — perfect 🎉
   ➰   Branch Coverage: 100.00% — perfect 🎉
   PIT   Mutation Coverage: 100.00% — perfect 🎉
   💪   Test Strength: 100.00% — perfect 🎉

Coverage for Whole Project

   〰️   Line Coverage: 92.03% — 64 missed lines
   ➰   Branch Coverage: 92.04% — 18 missed branches
   PIT   Mutation Coverage: 91.16% — 29 survived mutations
   💪   Test Strength: 93.15% — 22 survived mutations in tested code

Style

   CheckStyle   CheckStyle: No warnings
   PMD   PMD: No warnings
   ☕   Java Compiler: No warnings

Bugs

   SpotBugs   SpotBugs: No bugs
   🐛   Error Prone: No bugs

API Problems

   🚫   Revapi: No warnings

Vulnerabilities

   🛡️   OWASP Dependency Check: No vulnerabilities

Software Metrics

   🌀   Cyclomatic Complexity: 397 (total)
   💭   Cognitive Complexity: 173 (total)
   ➿   N-Path Complexity: 361 (total)
   📏   Lines of Code: 4722 (total)
   📝   Non Commenting Source Statements: 1338 (total)
   🔗   Class Cohesion: 71.43% (maximum)
   ⚖️   Weight of Class: 100.00% (maximum)

🚦 Quality Gates

Overall Status: ✅ SUCCESS

✅ Passed Gates

  • ✅ Overall Tests Success Rate: 100.00 >= 100.00
  • ✅ Line Coverage in New Code: 100.00 >= 90.00
  • ✅ Branch Coverage in New Code: 100.00 >= 90.00
  • ✅ Mutation Coverage in New Code: 100.00 >= 90.00
  • ✅ Potential Bugs in Whole Project: 0.00 <= 0.00
  • ✅ Style Violation in Whole Project: 0.00 <= 0.00

Created by Quality Monitor v4.11.0 (#484bbba). More details are shown in the GitHub Checks Result.

@uhafner uhafner merged commit 8b0dd6a into main May 4, 2026
17 checks passed
@uhafner uhafner deleted the renovate/dependency-check-maven.version branch May 4, 2026 10:14
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@uhafner uhafner Awaiting requested review from uhafner

Assignees

No one assigned

Labels

dependencies Update of dependencies

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@uhafner