fix(deps): bump the prod-deps group across 1 directory with 9 updates

[dependabot]

Bumps the prod-deps group with 9 updates in the / directory:

Package	From	To
org.springframework.boot:spring-boot-starter-parent	3.3.5	3.4.1
org.mapstruct:mapstruct	1.6.2	1.6.3
org.mapstruct:mapstruct-processor	1.6.2	1.6.3
org.jsoup:jsoup	1.18.1	1.18.3
com.puppycrawl.tools:checkstyle	10.19.0	10.21.1
org.folio:folio-module-descriptor-validator	1.0.0	1.0.1
org.codehaus.mojo:versions-maven-plugin	2.17.1	2.18.0
org.openapitools:openapi-generator-maven-plugin	7.9.0	7.10.0
org.apache.maven.plugins:maven-surefire-plugin	3.5.1	3.5.2

Updates org.springframework.boot:spring-boot-starter-parent from 3.3.5 to 3.4.1

Release notes

Sourced from org.springframework.boot:spring-boot-starter-parent's releases.

v3.4.1

🐞 Bug Fixes

• KafkaProperties fail to build SSL properties when the bundle name is an empty string #43563
• Diagnostics are poor when property resolution throws a ConversionFailedException #43559
• SpringApplicationShutdownHandlers do not run in deterministic order #43536
• Unable to find a @SpringBootConfiguration results in misleading error message #43507
• With multiple ResourceHandlerRegistrationCustomizer beans in the context, only one of them is used #43497
• Unable to use Docker Compose support when mixing dedicated and shared services #43472
• Kafka dependency management does not include the kafka-server module #43454
• Docker API version is incorrectly reported when '/_ping` calls fail and version should be fixed #43452
• Methods to build producer / consumer properties from KafkaProperties are inconvienenent to use without an SSL bundle #43448
• Failures in -Djarmode=tools do not consistently return a non-zero exit #43436
• HttpComponentsClientHttpRequestFactoryBuilder replaces the existing defaultRequestConfigCustomizer rather than adding to it #43429
• spring-boot-maven-plugin sets imagePlatform even if it's empty #43424
• OnBeanCondition fails to match on annotations when using Scoped Proxies #43423
• Failure analysis for InvalidConfigurationPropertyValueException doesn't correctly handle fuzzy matching of environment variables #43382
• H2ConsoleAutoConfiguration causes early initialization of DataSource beans #43359
• Accept progress on numbers >2GB #43356
• Servlet-based UserDetailsServiceAutoConfiguration is active in a reactive app #43334
• StructuredLoggingJsonMembersCustomizer implementations declared in spring.factories with a generic type more specific than Object are not called #43312
• Overriding log level with an environment variable does not work when using an environment prefix #43307
• Management endpoint access and enabled properties are ignored unless the endpoint ID is an exact match #43302
• UnsupportedOperationException when starting a Maven shaded application on Java 21 with virtual threads enabled #43291
• JmsListener failing with Narayana (pooled ConnectionFactory) since 3.4.0 #43277
• SslBundle can no longer open store file locations without using a 'file:' prefix #43274
• TestRestTemplate does not allow redirects to be customized #43258
• Testcontainers start() methods may be started multiple times #43253

📔 Documentation

• Fix typo in documentation #43558
• Document that server.ssl.cipher and server.ssl.enabled-protocols are not fallbacks used with SSL bundles #43552
• Use <annotationProcessorPaths> in Maven examples for configuring an annotation processor #43544
• Fix typo #43519
• Links to logback javadoc are incorrect #43456
• Fix JUnit javadoc links #43428
• Reference documentation incorrectly uses 'disabled' rather than 'none' for access restrictions #43351
• Restore System property in Logging section of the reference documentation #43342
• Fix link to proxyBeanMethods in @AutoConfiguration javadoc #43325
• Fix links to Servlet and JPA javadoc #43324
• Link to @EnableMethodSecurity instead of the deprecated @EnableGlobalMethodSecurity #43315
• Document that StructuredLoggingJsonMembersCustomizer implementations may optionally take constructor parameters #43314
• Update javadoc of StructuredLoggingJsonMembersCustomizer to note that implementations can registered through spring.factories #43313
• Fix Javadoc link for Hikari #43311
• Document how to use structured logging with custom log configuration #43301
• Update Javadoc since for OtlpMetricsProperties and OtlpTracingProperties #43249

🔨 Dependency Upgrades

... (truncated)

Commits

• 1832852 Release v3.4.1
• c9e8174 Merge branch '3.3.x'
• 316fe52 Next development version (v3.3.8-SNAPSHOT)
• 4300ee9 Merge branch '3.3.x'
• da59380 Upgrade to Spring Batch 5.2.1
• a085a01 Upgrade to Spring Batch 5.1.3
• fcc569e Upgrade to Hibernate 6.6.4.Final
• 1b8fcb6 Merge pull request #43560 from arefbehboudi
• dbc1fc2 Polish
• ef43160 Merge branch '3.3.x'
• Additional commits viewable in compare view

Updates org.mapstruct:mapstruct from 1.6.2 to 1.6.3

Release notes

Sourced from org.mapstruct:mapstruct's releases.

1.6.3

Bugs

• Redundant if condition in Java record mapping with RETURN_DEFAULT strategy (#3747)
• Stackoverflow with Immutables custom builder (#3370)
• Unused import of java.time.LocalDate when mapping source LocalDateTime to target LocalDate (#3732)

Documentation

• Add section to README.md comparing mapstruct with Java Records (#3751)

Commits

• b4e25e4 Releasing version 1.6.3
• 772fae4 Prepare release notes for 1.6.3
• efdf435 #3751 Improve readme to include support for Java 16+ records
• c2bd847 #3732 Do not generate obsolete imports for LocalDateTime <-> LocalDate conver...
• 21fdaa0 #3747 Do not generate redundant if condition with constructor mapping and RET...
• 32f1fea #3370 Prevent stack overflow error for Immutables with custom builder
• 26c5bcd Update readme with 1.6.2
• 4e0d73d Next version 1.7.0-SNAPSHOT
• See full diff in compare view

Updates org.mapstruct:mapstruct-processor from 1.6.2 to 1.6.3

Release notes

Sourced from org.mapstruct:mapstruct-processor's releases.

1.6.3

Bugs

• Redundant if condition in Java record mapping with RETURN_DEFAULT strategy (#3747)
• Stackoverflow with Immutables custom builder (#3370)
• Unused import of java.time.LocalDate when mapping source LocalDateTime to target LocalDate (#3732)

Documentation

• Add section to README.md comparing mapstruct with Java Records (#3751)

Commits

• b4e25e4 Releasing version 1.6.3
• 772fae4 Prepare release notes for 1.6.3
• efdf435 #3751 Improve readme to include support for Java 16+ records
• c2bd847 #3732 Do not generate obsolete imports for LocalDateTime <-> LocalDate conver...
• 21fdaa0 #3747 Do not generate redundant if condition with constructor mapping and RET...
• 32f1fea #3370 Prevent stack overflow error for Immutables with custom builder
• 26c5bcd Update readme with 1.6.2
• 4e0d73d Next version 1.7.0-SNAPSHOT
• See full diff in compare view

Updates org.mapstruct:mapstruct-processor from 1.6.2 to 1.6.3

Release notes

Sourced from org.mapstruct:mapstruct-processor's releases.

1.6.3

Bugs

• Redundant if condition in Java record mapping with RETURN_DEFAULT strategy (#3747)
• Stackoverflow with Immutables custom builder (#3370)
• Unused import of java.time.LocalDate when mapping source LocalDateTime to target LocalDate (#3732)

Documentation

• Add section to README.md comparing mapstruct with Java Records (#3751)

Commits

• b4e25e4 Releasing version 1.6.3
• 772fae4 Prepare release notes for 1.6.3
• efdf435 #3751 Improve readme to include support for Java 16+ records
• c2bd847 #3732 Do not generate obsolete imports for LocalDateTime <-> LocalDate conver...
• 21fdaa0 #3747 Do not generate redundant if condition with constructor mapping and RET...
• 32f1fea #3370 Prevent stack overflow error for Immutables with custom builder
• 26c5bcd Update readme with 1.6.2
• 4e0d73d Next version 1.7.0-SNAPSHOT
• See full diff in compare view

Updates org.jsoup:jsoup from 1.18.1 to 1.18.3

Release notes

Sourced from org.jsoup:jsoup's releases.

jsoup-1.18.3

1.18.3 is a quick release to fix #2235 in 1.18.2.

Please see also the full release notes for jsoup 1.18.2 if you are coming from an earlier release.

Bug Fixes

• When serializing to XML, attribute names containing -, ., or digits were incorrectly considered invalid and removed. #2235

jsoup 1.18.2

Improvements

• Optimized the throughput and memory use throughout the input read and parse flows, with heap allocations and GC down between -6% and -89%, and throughput improved up to +143% for small inputs. Most inputs sizes will see throughput increases of ~ 20%. These performance improvements come through recycling the backing byte[] and char[] arrays used to read and parse the input. 2186
• Speed optimized html() and Entities.escape() when the input contains UTF characters in a supplementary plane, by around 49%. 2183
• The form associated elements returned by FormElement.elements() now reflect changes made to the DOM, subsequently to the original parse. 2140
• In the TreeBuilder, the onNodeInserted() and onNodeClosed() events are now also fired for the outermost / root Document node. This enables source position tracking on the Document node (which was previously unset). And it also enables the node traversor to see the outer Document node. 2182
• Selected Elements can now be position swapped inline using Elements#set(). 2212

Bug Fixes

• Element.cssSelector() would fail if the element's class contained a * character. 2169
• When tracking source ranges, a text node following an invalid self-closing element may be left untracked. 2175
• When a document has no doctype, or a doctype not named html, it should be parsed in Quirks Mode. 2197
• With a selector like div:has(span + a), the has() component was not working correctly, as the inner combining query caused the evaluator to match those against the outer's siblings, not children. 2187
• A selector query that included multiple :has() components in a nested :has() might incorrectly execute. 2131
• When cookie names in a response are duplicated, the simple view of cookies available via Connection.Response#cookies() will provide the last one set. Generally it is better to use the Jsoup.newSession method to maintain a cookie jar, as that applies appropriate path selection on cookies when making requests. 1831
• When parsing named HTML entities, base entities should resolve if they are a prefix of the input token (and not in an attribute). 2207
• Fixed incorrect tracking of source ranges for attributes merged from late-occurring elements that were implicitly created (html or body). 2204
• Follow the current HTML specification in the tokenizer to allow < as part of a tag name, instead of emitting it as a character node. 2230
• Similarly, allow a < as the start of an attribute name, vs creating a new element. The previous behavior was intended to parse closer to what we anticipated the author's intent to be, but that does not align to the spec or to how browsers behave. 1483

Changelog

Sourced from org.jsoup:jsoup's changelog.

1.18.3 (2024-Dec-02)

Bug Fixes

• When serializing to XML, attribute names containing -, ., or digits were incorrectly marked as invalid and removed. 2235
• If an element has an ; in an attribute name, it could not be converted to a W3C DOM element, and so subsquent XPath queries could miss that element. Now, the attribute name is more completely normalized. 2244

1.18.2 (2024-Nov-27)

Improvements

• Optimized the throughput and memory use throughout the input read and parse flows, with heap allocations and GC down between -6% and -89%, and throughput improved up to +143% for small inputs. Most inputs sizes will see throughput increases of ~ 20%. These performance improvements come through recycling the backing byte[] and char[] arrays used to read and parse the input. 2186
• Speed optimized html() and Entities.escape() when the input contains UTF characters in a supplementary plane, by around 49%. 2183
• The form associated elements returned by FormElement.elements() now reflect changes made to the DOM, subsequently to the original parse. 2140
• In the TreeBuilder, the onNodeInserted() and onNodeClosed() events are now also fired for the outermost / root Document node. This enables source position tracking on the Document node (which was previously unset). And it also enables the node traversor to see the outer Document node. 2182
• Selected Elements can now be position swapped inline using Elements#set(). 2212

Bug Fixes

• Element.cssSelector() would fail if the element's class contained a * character. 2169
• When tracking source ranges, a text node following an invalid self-closing element may be left untracked. 2175
• When a document has no doctype, or a doctype not named html, it should be parsed in Quirks Mode. 2197
• With a selector like div:has(span + a), the has() component was not working correctly, as the inner combining query caused the evaluator to match those against the outer's siblings, not children. 2187
• A selector query that included multiple :has() components in a nested :has() might incorrectly execute. 2131
• When cookie names in a response are duplicated, the simple view of cookies available via Connection.Response#cookies() will provide the last one set. Generally it is better to use the Jsoup.newSession method to maintain a cookie jar, as that applies appropriate path selection on cookies when making requests. 1831
• When parsing named HTML entities, base entities should resolve if they are a prefix of the input token (and not in an attribute). 2207
• Fixed incorrect tracking of source ranges for attributes merged from late-occurring elements that were implicitly created (html or body). 2204
• Follow the current HTML specification in the tokenizer to allow < as part of a tag name, instead of emitting it as a

... (truncated)

Commits

• 7c56eb2 [maven-release-plugin] prepare release jsoup-1.18.3
• bf13b49 Assert namespaced attribute with digit
• 0a4b830 Fix XML attribute validation
• f6e82f2 Note 1.18.2 release date
• 2a174dc [maven-release-plugin] prepare for next development iteration
• 71063c3 [maven-release-plugin] prepare release jsoup-1.18.2
• 1a91aac Use the incoming node's parent if outgoing has already been removed
• df404cf test case for Issue #2212
• 28db617 Test for #1938
• d27370a Follow spec so < can start an attribute name
• Additional commits viewable in compare view

Updates com.puppycrawl.tools:checkstyle from 10.19.0 to 10.21.1

Release notes

Sourced from com.puppycrawl.tools:checkstyle's releases.

checkstyle-10.21.1

Checkstyle 10.21.1 - https://checkstyle.org/releasenotes.html#Release_10.21.1

Bug fixes:

#11374 - UnusedLocalVariable: False Positive when inner class has same field as variable

checkstyle-10.21.0

Checkstyle 10.21.0 - https://checkstyle.org/releasenotes.html#Release_10.21.0

New:

#15985 - Expand Default Value of constantWaiverParentToken in MagicNumberCheck with All Operators

checkstyle-10.20.2

Checkstyle 10.20.2 - https://checkstyle.org/releasenotes.html#Release_10.20.2

Bug fixes:

... (truncated)

Commits

• 426bbe4 [maven-release-plugin] prepare release checkstyle-10.21.1
• 01f6dc7 doc: release notes for 10.21.1
• 78afa19 Issue #14881: remove null from ValidateUntaggedSummary
• 6062707 dependency: bump pmd.version from 7.8.0 to 7.9.0
• e123c5e Issue #13345: Enable examples tests for PackageNameCheckExamplesTest
• 6f61072 Issue #14631: Updated code_literal to new AST format
• 453dd9a Issue #13345: Enable example test for SuppressWarningFilters
• 3433ab6 Issue #13345: Enable examples tests for MissingJavadocPackageCheck
• ffafaf6 dependency: Update maven checkstyle plugin to 3.6.0
• 6f59c09 Issue #14631: Updated Right_Brace to new AST format
• Additional commits viewable in compare view

Updates org.folio:folio-module-descriptor-validator from 1.0.0 to 1.0.1

Release notes

Sourced from org.folio:folio-module-descriptor-validator's releases.

v1.0.1

• Doc: <plugin> snippets for pom.xml have wrong indentation (MVNMDVAL-3)
• Doc: Explain <pluginRepository> to fix "Failure to find folio-module-descriptor-validator" (MVNMDVAL-5)
• Doc: Add issue tracker link to README (MVNMDVAL-4)
• Remove duplicate errors. Pretty-print md-validator.sh output. (#16)
• Doc: Example pom.xml. Example shell usage. (#17)
• Fix broken moduleDescriptorFile parameter (MVNMDVAL-6)
• Doc: Provide complete minimal pom.xml for non-maven modules (#22)
• Show path in error msg when descriptor file is not found (MVNMDVAL-7)
• Add success report when no issue was found (MVNMDVAL-2)
• Allow two foreign module permissions for mod-pubsub circular dependency (MVNMDVAL-8)

Changelog

Sourced from org.folio:folio-module-descriptor-validator's changelog.

Version v1.0.1 (05.11.2024)

• Doc: <plugin> snippets for pom.xml have wrong indentation (MVNMDVAL-3)
• Doc: Explain <pluginRepository> to fix "Failure to find folio-module-descriptor-validator" (MVNMDVAL-5)
• Doc: Add issue tracker link to README (MVNMDVAL-4)
• Remove duplicate errors. Pretty-print md-validator.sh output. (#16)
• Doc: Example pom.xml. Example shell usage. (#17)
• Fix broken moduleDescriptorFile parameter (MVNMDVAL-6)
• Doc: Provide complete minimal pom.xml for non-maven modules (#22)
• Show path in error msg when descriptor file is not found (MVNMDVAL-7)
• Add success report when no issue was found (MVNMDVAL-2)
• Allow two foreign module permissions for mod-pubsub circular dependency (MVNMDVAL-8)

Commits

• 9fa6bf5 [maven-release-plugin] prepare release v1.0.1
• 881e228 NEWS for 1.0.1
• be8f266 MVNMDVAL-8: Add owner exception for mod-pubsub circular dependency (#30)
• 007f5eb MVNMDVAL-2: Add report when no issue was found (#26)
• b5849b2 MVNMDVAL-7: Show path in error msg when descriptor file is not found (#25)
• c26b66b Provide complete minimal pom.xml for non-maven modules (#22)
• 66f2928 MVNMDVAL-6 Rename variable / fix typo (#23)
• 304425b improve README.md (#17)
• fa5b4b5 fix error duplicates and adjust script to save report in the file (#16)
• 35bae7e MVNMDVAL-4: Add issue tracker link to README (#14)
• Additional commits viewable in compare view

Updates org.codehaus.mojo:versions-maven-plugin from 2.17.1 to 2.18.0

Release notes

Sourced from org.codehaus.mojo:versions-maven-plugin's releases.

2.18.0

❗ NOTICE

Due to Doxia 2.x stack maven-site-plugin 3.20+ is required. https://cwiki.apache.org/confluence/display/MAVEN/Towards+Doxia+2.0.0+Stack

Changes

🚀 New features and improvements

• Upgrade to Doxia 2.x stack (#1180) @​slawekjaranowski
• Remove implementation of dynamic version goal (#1179) @​slawekjaranowski
• fix: Removed non-fully functional dynamic version goal (#1172) @​jimisola
• Resolves #1131: Suppress logging when allowMajorUpdates, allowMinorUp… (#1132) @​gmshake
• Move expression: {blah} no value System.out to logs (#1119) @​JackPGreen
• Improve speed of versions:resolve-ranges in case parents contain many version properties (#1122) @​m-schutte-ohra-nl

🐛 Bug Fixes

• Resolves #1060: Bugfix in UpdateParentMojo + add tests (#1181) @​andrzejj0
• Resolves#1066: Fixed a possible NPE in interpolateVersion (#1166) @​andrzejj0
• Resolves #1067: Bug fix: incorrect arguments of PomHelper::createProjectBuilderRequest (#1164) @​andrzejj0
• Resolves #1137: using PomHelper.getGroupId if groupId of the current project root is empty (#1162) @​andrzejj0
• bugix/ protect internal data in multi thread env. (#1133) @​jgraglia
• Fixed #1123 - Missing link in examples to recoding changes and use dy… (#1124) @​khmarbaise

📦 Dependency updates

• Upgrade to Doxia 2.x stack (#1180) @​slawekjaranowski
• Bump byteBuddyVersion from 1.15.7 to 1.15.10 (#1173) @​dependabot
• Bump com.fasterxml.woodstox:woodstox-core from 7.0.0 to 7.1.0 (#1171) @​dependabot
• Bump org.codehaus.groovy:groovy-all from 2.0.0 to 2.4.21 in /versions-maven-plugin/src/it/it-property-updates-report-002-slow (#1161) @​dependabot
• Bump byteBuddyVersion from 1.15.5 to 1.15.7 (#1163) @​dependabot
• Bump byteBuddyVersion from 1.15.4 to 1.15.5 (#1160) @​dependabot
• Bump byteBuddyVersion from 1.15.3 to 1.15.4 (#1156) @​dependabot
• Bump org.codehaus.mojo:mojo-parent from 85 to 86 (#1139) @​dependabot
• Bump byteBuddyVersion from 1.15.1 to 1.15.3 (#1151) @​dependabot
• Bump org.codehaus.plexus:plexus-utils from 4.0.1 to 4.0.2 (#1148) @​dependabot
• Bump commons-io:commons-io from 2.16.1 to 2.17.0 (#1143) @​dependabot
• Bump byteBuddyVersion from 1.15.0 to 1.15.1 (#1135) @​dependabot
• Bump org.apache.commons:commons-lang3 from 3.16.0 to 3.17.0 (#1136) @​dependabot
• Bump byteBuddyVersion from 1.14.19 to 1.15.0 (#1134) @​dependabot
• Bump byteBuddyVersion from 1.14.18 to 1.14.19 (#1129) @​dependabot
• Bump org.codehaus.mojo:mojo-parent from 84 to 85 (#1128) @​dependabot
• Bump org.apache.commons:commons-lang3 from 3.15.0 to 3.16.0 (#1126) @​dependabot
• Bump org.hamcrest:hamcrest from 2.2 to 3.0 (#1125) @​dependabot
• Bump commons-codec:commons-codec from 1.17.0 to 1.17.1 (#1117) @​dependabot
• Bump org.apache.commons:commons-lang3 from 3.14.0 to 3.15.0 (#1118) @​dependabot

📝 Documentation updates

... (truncated)

Commits

• 814c9b1 [maven-release-plugin] prepare release 2.18.0
• 64a3814 Upgrade to Doxia 2.x stack
• a3ab213 Resolves #1060: Bugfix in UpdateParentMojo + add tests (#1181)
• 380264f Remove implementation of dynamic version goal
• 7e3b710 Drop Maven Wrapper from project
• a9270bb Bump project version to 2.18.0-SNAPSHOT
• d115f7a Moved to modello-stax. Removed "versionDefinition" from rule.mdo. (#1176)
• 3841bb6 fix: Removed non-fully functional dynamic version goal (#1172)
• a899699 Using Stax2 (Woodstox) instead of plexus-xml (Xpp) to process XML documents; ...
• 8f48640 Bump byteBuddyVersion from 1.15.7 to 1.15.10
• Additional commits viewable in compare view

Updates org.openapitools:openapi-generator-maven-plugin from 7.9.0 to 7.10.0

Updates org.apache.maven.plugins:maven-surefire-plugin from 3.5.1 to 3.5.2

Release notes

Sourced from org.apache.maven.plugins:maven-surefire-plugin's releases.

3.5.2

🚀 New features and improvements

• [SUREFIRE-2278] - Don't say please. (#792) @​elharo

📦 Dependency updates

• [SUREFIRE-2281] - Doxia 2.0.0 ga (#794) @​michael-o
• Bump commons-io:commons-io from 2.2 to 2.14.0 in /surefire-its/src/test/resources/surefire-979-smartStackTrace-wrongClassloader/module1 (#789) @​dependabot

👻 Maintenance

• [SUREFIRE-2282] - surefire-report-plugin: Update Introduction documenta… (#796) @​michael-o
• Reduce cyclomatic complexity (#793) @​elharo

Full Changelog: apache/maven-surefire@surefire-3.5.1...surefire-3.5.2

Commits

• ea9f049 [maven-release-plugin] prepare release surefire-3.5.2
• e1f94a0 [SUREFIRE-2276] JUnit5's TestTemplate failures treated as flakes with retries
• d24adb4 [SUREFIRE-2277] RunResult#getFlakes() is lost during serialisation/deserialis...
• 4385e94 Remove links to non-existing report
• 8881971 Remove outdated FAQ
• 0121834 [SUREFIRE-2283] FAQ site contains broken link to failsafe-plugin
• 91d16c3 Fix formatting of XML schema files
• 6cb417a Add .xsd to .gitattributes
• 9ce5221 [SUREFIRE-2282] surefire-report-plugin: Update Introduction documentation page
• 620b983 [SUREFIRE-2281] Upgrade to Doxia 2.0.0 GA Stack
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions