From 0ec0f8324765e0758117d380cdcf1ed32f35cc92 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 11 Nov 2024 19:30:04 +0000
Subject: [PATCH 1/2] Bump maven.surefire.version from 3.3.1 to 3.5.2 (#218)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Bumps `maven.surefire.version` from 3.3.1 to 3.5.2.
Updates `org.apache.maven.plugins:maven-surefire-plugin` from 3.3.1 to
3.5.2
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/apache/maven-surefire/releases">org.apache.maven.plugins:maven-surefire-plugin's
releases</a>.</em></p>
<blockquote>
<h2>3.5.2</h2>
<!-- raw HTML omitted -->
<h2>🚀 New features and improvements</h2>
<ul>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2278">[SUREFIRE-2278]</a>
- Don't say please. (<a
href="https://redirect.github.com/apache/maven-surefire/pull/792">#792</a>)
<a href="https://github.com/elharo"><code>@​elharo</code></a></li>
</ul>
<h2>📦 Dependency updates</h2>
<ul>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2281">[SUREFIRE-2281]</a>
- Doxia 2.0.0 ga (<a
href="https://redirect.github.com/apache/maven-surefire/pull/794">#794</a>)
<a href="https://github.com/michael-o"><code>@​michael-o</code></a></li>
<li>Bump commons-io:commons-io from 2.2 to 2.14.0 in
/surefire-its/src/test/resources/surefire-979-smartStackTrace-wrongClassloader/module1
(<a
href="https://redirect.github.com/apache/maven-surefire/pull/789">#789</a>)
<a
href="https://github.com/dependabot"><code>@​dependabot</code></a></li>
</ul>
<h2>👻 Maintenance</h2>
<ul>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2282">[SUREFIRE-2282]</a>
- surefire-report-plugin: Update Introduction documenta… (<a
href="https://redirect.github.com/apache/maven-surefire/pull/796">#796</a>)
<a href="https://github.com/michael-o"><code>@​michael-o</code></a></li>
<li>Reduce cyclomatic complexity (<a
href="https://redirect.github.com/apache/maven-surefire/pull/793">#793</a>)
<a href="https://github.com/elharo"><code>@​elharo</code></a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/apache/maven-surefire/compare/surefire-3.5.1...surefire-3.5.2">https://github.com/apache/maven-surefire/compare/surefire-3.5.1...surefire-3.5.2</a></p>
<h2>3.5.1</h2>
<!-- raw HTML omitted -->
<h2>🚀 New features and improvements</h2>
<ul>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2270">[SUREFIRE-2270]</a>
- Use JUnit5 in surefire-shadefire (<a
href="https://redirect.github.com/apache/maven-surefire/pull/783">#783</a>)
<a
href="https://github.com/slawekjaranowski"><code>@​slawekjaranowski</code></a></li>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2266">[SUREFIRE-2266]</a>
- Execute ITs in parallel (<a
href="https://redirect.github.com/apache/maven-surefire/pull/781">#781</a>)
<a
href="https://github.com/slawekjaranowski"><code>@​slawekjaranowski</code></a></li>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2264">[SUREFIRE-2264]</a>
- Limit usage of commons-io from surefire-shared-utils (<a
href="https://redirect.github.com/apache/maven-surefire/pull/777">#777</a>)
<a
href="https://github.com/slawekjaranowski"><code>@​slawekjaranowski</code></a></li>
</ul>
<h2>🐛 Bug Fixes</h2>
<ul>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2267">[SUREFIRE-2267]</a>
- Packages for commons-codec should be relocated in
surefire-shared-utils (<a
href="https://redirect.github.com/apache/maven-surefire/pull/782">#782</a>)
<a
href="https://github.com/slawekjaranowski"><code>@​slawekjaranowski</code></a></li>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-1737">[SUREFIRE-1737]</a>
- Fix disable in statelessTestsetReporter (<a
href="https://redirect.github.com/apache/maven-surefire/pull/780">#780</a>)
<a
href="https://github.com/slawekjaranowski"><code>@​slawekjaranowski</code></a></li>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2257">[SUREFIRE-2257]</a>
- [REGRESSION] NPEx: Cannot invoke &quot;Object.toString()&quot; … (<a
href="https://redirect.github.com/apache/maven-surefire/pull/774">#774</a>)
<a href="https://github.com/michael-o"><code>@​michael-o</code></a></li>
</ul>
<h2>📦 Dependency updates</h2>
<ul>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2273">[SUREFIRE-2273]</a>
- Bump org.hamcrest:hamcrest from 2.2 to 3.0 (<a
href="https://redirect.github.com/apache/maven-surefire/pull/784">#784</a>)
<a
href="https://github.com/dependabot"><code>@​dependabot</code></a></li>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2272">[SUREFIRE-2272]</a>
- Bump org.codehaus.plexus:plexus-java from 1.2.0 to 1.3.0 - JDK 23
support (<a
href="https://redirect.github.com/apache/maven-surefire/pull/786">#786</a>)
<a
href="https://github.com/dependabot"><code>@​dependabot</code></a></li>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2226">[SUREFIRE-2226]</a>
- Upgrade to Maven Verifier 2.0.0-M1 (<a
href="https://redirect.github.com/apache/maven-surefire/pull/706">#706</a>)
<a href="https://github.com/michael-o"><code>@​michael-o</code></a></li>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2265">[SUREFIRE-2265]</a>
- Bump commons-io:commons-io from 2.16.1 to 2.17.0 (<a
href="https://redirect.github.com/apache/maven-surefire/pull/779">#779</a>)
<a
href="https://github.com/dependabot"><code>@​dependabot</code></a></li>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2263">[SUREFIRE-2263]</a>
- Use the latest version of surefire for self build (<a
href="https://redirect.github.com/apache/maven-surefire/pull/776">#776</a>)
<a
href="https://github.com/slawekjaranowski"><code>@​slawekjaranowski</code></a></li>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2262">[SUREFIRE-2262]</a>
- Bump org.apache.commons:commons-lang3 from 3.16.0 to 3.17.0 (<a
href="https://redirect.github.com/apache/maven-surefire/pull/775">#775</a>)
<a
href="https://github.com/dependabot"><code>@​dependabot</code></a></li>
</ul>
<h2>👻 Maintenance</h2>
<ul>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2269">[SUREFIRE-2269]</a>
- Allow fail during clean in surefire-its (<a
href="https://redirect.github.com/apache/maven-surefire/pull/785">#785</a>)
<a
href="https://github.com/slawekjaranowski"><code>@​slawekjaranowski</code></a></li>
</ul>
<h2>3.5.0</h2>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/apache/maven-surefire/commit/ea9f049756acf7a3be5234061624c02bd725c9d3"><code>ea9f049</code></a>
[maven-release-plugin] prepare release surefire-3.5.2</li>
<li><a
href="https://github.com/apache/maven-surefire/commit/e1f94a0281f0db1f9169e06b7ad149a27afd3c46"><code>e1f94a0</code></a>
[SUREFIRE-2276] JUnit5's TestTemplate failures treated as flakes with
retries</li>
<li><a
href="https://github.com/apache/maven-surefire/commit/d24adb4cd702253fa3bf1799e6f067c61d78d75f"><code>d24adb4</code></a>
[SUREFIRE-2277] RunResult#getFlakes() is lost during
serialisation/deserialis...</li>
<li><a
href="https://github.com/apache/maven-surefire/commit/4385e9498b41df32b9016c60feb51396dcec5e1a"><code>4385e94</code></a>
Remove links to non-existing report</li>
<li><a
href="https://github.com/apache/maven-surefire/commit/88819715a698a2d85a2297443a1cb030a0a4f039"><code>8881971</code></a>
Remove outdated FAQ</li>
<li><a
href="https://github.com/apache/maven-surefire/commit/012183448e0af139455af71bcdc9ccae82365d38"><code>0121834</code></a>
[SUREFIRE-2283] FAQ site contains broken link to failsafe-plugin</li>
<li><a
href="https://github.com/apache/maven-surefire/commit/91d16c36f1c90226df4b891f81184140cf805c3c"><code>91d16c3</code></a>
Fix formatting of XML schema files</li>
<li><a
href="https://github.com/apache/maven-surefire/commit/6cb417a41402be2f6150a6137598cc97c2dd8ad6"><code>6cb417a</code></a>
Add .xsd to .gitattributes</li>
<li><a
href="https://github.com/apache/maven-surefire/commit/9ce5221100aa3fce8643abcdc2a35bc0c59050ef"><code>9ce5221</code></a>
[SUREFIRE-2282] surefire-report-plugin: Update Introduction
documentation page</li>
<li><a
href="https://github.com/apache/maven-surefire/commit/620b983ffdaa9e258c6a355a476777cfe6b88c0d"><code>620b983</code></a>
[SUREFIRE-2281] Upgrade to Doxia 2.0.0 GA Stack</li>
<li>Additional commits viewable in <a
href="https://github.com/apache/maven-surefire/compare/surefire-3.3.1...surefire-3.5.2">compare
view</a></li>
</ul>
</details>
<br />

Updates `org.apache.maven.plugins:maven-surefire-report-plugin` from
3.3.1 to 3.5.2
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/apache/maven-surefire/releases">org.apache.maven.plugins:maven-surefire-report-plugin's
releases</a>.</em></p>
<blockquote>
<h2>3.5.2</h2>
<!-- raw HTML omitted -->
<h2>🚀 New features and improvements</h2>
<ul>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2278">[SUREFIRE-2278]</a>
- Don't say please. (<a
href="https://redirect.github.com/apache/maven-surefire/pull/792">#792</a>)
<a href="https://github.com/elharo"><code>@​elharo</code></a></li>
</ul>
<h2>📦 Dependency updates</h2>
<ul>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2281">[SUREFIRE-2281]</a>
- Doxia 2.0.0 ga (<a
href="https://redirect.github.com/apache/maven-surefire/pull/794">#794</a>)
<a href="https://github.com/michael-o"><code>@​michael-o</code></a></li>
<li>Bump commons-io:commons-io from 2.2 to 2.14.0 in
/surefire-its/src/test/resources/surefire-979-smartStackTrace-wrongClassloader/module1
(<a
href="https://redirect.github.com/apache/maven-surefire/pull/789">#789</a>)
<a
href="https://github.com/dependabot"><code>@​dependabot</code></a></li>
</ul>
<h2>👻 Maintenance</h2>
<ul>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2282">[SUREFIRE-2282]</a>
- surefire-report-plugin: Update Introduction documenta… (<a
href="https://redirect.github.com/apache/maven-surefire/pull/796">#796</a>)
<a href="https://github.com/michael-o"><code>@​michael-o</code></a></li>
<li>Reduce cyclomatic complexity (<a
href="https://redirect.github.com/apache/maven-surefire/pull/793">#793</a>)
<a href="https://github.com/elharo"><code>@​elharo</code></a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/apache/maven-surefire/compare/surefire-3.5.1...surefire-3.5.2">https://github.com/apache/maven-surefire/compare/surefire-3.5.1...surefire-3.5.2</a></p>
<h2>3.5.1</h2>
<!-- raw HTML omitted -->
<h2>🚀 New features and improvements</h2>
<ul>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2270">[SUREFIRE-2270]</a>
- Use JUnit5 in surefire-shadefire (<a
href="https://redirect.github.com/apache/maven-surefire/pull/783">#783</a>)
<a
href="https://github.com/slawekjaranowski"><code>@​slawekjaranowski</code></a></li>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2266">[SUREFIRE-2266]</a>
- Execute ITs in parallel (<a
href="https://redirect.github.com/apache/maven-surefire/pull/781">#781</a>)
<a
href="https://github.com/slawekjaranowski"><code>@​slawekjaranowski</code></a></li>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2264">[SUREFIRE-2264]</a>
- Limit usage of commons-io from surefire-shared-utils (<a
href="https://redirect.github.com/apache/maven-surefire/pull/777">#777</a>)
<a
href="https://github.com/slawekjaranowski"><code>@​slawekjaranowski</code></a></li>
</ul>
<h2>🐛 Bug Fixes</h2>
<ul>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2267">[SUREFIRE-2267]</a>
- Packages for commons-codec should be relocated in
surefire-shared-utils (<a
href="https://redirect.github.com/apache/maven-surefire/pull/782">#782</a>)
<a
href="https://github.com/slawekjaranowski"><code>@​slawekjaranowski</code></a></li>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-1737">[SUREFIRE-1737]</a>
- Fix disable in statelessTestsetReporter (<a
href="https://redirect.github.com/apache/maven-surefire/pull/780">#780</a>)
<a
href="https://github.com/slawekjaranowski"><code>@​slawekjaranowski</code></a></li>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2257">[SUREFIRE-2257]</a>
- [REGRESSION] NPEx: Cannot invoke &quot;Object.toString()&quot; … (<a
href="https://redirect.github.com/apache/maven-surefire/pull/774">#774</a>)
<a href="https://github.com/michael-o"><code>@​michael-o</code></a></li>
</ul>
<h2>📦 Dependency updates</h2>
<ul>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2273">[SUREFIRE-2273]</a>
- Bump org.hamcrest:hamcrest from 2.2 to 3.0 (<a
href="https://redirect.github.com/apache/maven-surefire/pull/784">#784</a>)
<a
href="https://github.com/dependabot"><code>@​dependabot</code></a></li>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2272">[SUREFIRE-2272]</a>
- Bump org.codehaus.plexus:plexus-java from 1.2.0 to 1.3.0 - JDK 23
support (<a
href="https://redirect.github.com/apache/maven-surefire/pull/786">#786</a>)
<a
href="https://github.com/dependabot"><code>@​dependabot</code></a></li>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2226">[SUREFIRE-2226]</a>
- Upgrade to Maven Verifier 2.0.0-M1 (<a
href="https://redirect.github.com/apache/maven-surefire/pull/706">#706</a>)
<a href="https://github.com/michael-o"><code>@​michael-o</code></a></li>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2265">[SUREFIRE-2265]</a>
- Bump commons-io:commons-io from 2.16.1 to 2.17.0 (<a
href="https://redirect.github.com/apache/maven-surefire/pull/779">#779</a>)
<a
href="https://github.com/dependabot"><code>@​dependabot</code></a></li>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2263">[SUREFIRE-2263]</a>
- Use the latest version of surefire for self build (<a
href="https://redirect.github.com/apache/maven-surefire/pull/776">#776</a>)
<a
href="https://github.com/slawekjaranowski"><code>@​slawekjaranowski</code></a></li>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2262">[SUREFIRE-2262]</a>
- Bump org.apache.commons:commons-lang3 from 3.16.0 to 3.17.0 (<a
href="https://redirect.github.com/apache/maven-surefire/pull/775">#775</a>)
<a
href="https://github.com/dependabot"><code>@​dependabot</code></a></li>
</ul>
<h2>👻 Maintenance</h2>
<ul>
<li><a
href="https://issues.apache.org/jira/browse/SUREFIRE-2269">[SUREFIRE-2269]</a>
- Allow fail during clean in surefire-its (<a
href="https://redirect.github.com/apache/maven-surefire/pull/785">#785</a>)
<a
href="https://github.com/slawekjaranowski"><code>@​slawekjaranowski</code></a></li>
</ul>
<h2>3.5.0</h2>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/apache/maven-surefire/commit/ea9f049756acf7a3be5234061624c02bd725c9d3"><code>ea9f049</code></a>
[maven-release-plugin] prepare release surefire-3.5.2</li>
<li><a
href="https://github.com/apache/maven-surefire/commit/e1f94a0281f0db1f9169e06b7ad149a27afd3c46"><code>e1f94a0</code></a>
[SUREFIRE-2276] JUnit5's TestTemplate failures treated as flakes with
retries</li>
<li><a
href="https://github.com/apache/maven-surefire/commit/d24adb4cd702253fa3bf1799e6f067c61d78d75f"><code>d24adb4</code></a>
[SUREFIRE-2277] RunResult#getFlakes() is lost during
serialisation/deserialis...</li>
<li><a
href="https://github.com/apache/maven-surefire/commit/4385e9498b41df32b9016c60feb51396dcec5e1a"><code>4385e94</code></a>
Remove links to non-existing report</li>
<li><a
href="https://github.com/apache/maven-surefire/commit/88819715a698a2d85a2297443a1cb030a0a4f039"><code>8881971</code></a>
Remove outdated FAQ</li>
<li><a
href="https://github.com/apache/maven-surefire/commit/012183448e0af139455af71bcdc9ccae82365d38"><code>0121834</code></a>
[SUREFIRE-2283] FAQ site contains broken link to failsafe-plugin</li>
<li><a
href="https://github.com/apache/maven-surefire/commit/91d16c36f1c90226df4b891f81184140cf805c3c"><code>91d16c3</code></a>
Fix formatting of XML schema files</li>
<li><a
href="https://github.com/apache/maven-surefire/commit/6cb417a41402be2f6150a6137598cc97c2dd8ad6"><code>6cb417a</code></a>
Add .xsd to .gitattributes</li>
<li><a
href="https://github.com/apache/maven-surefire/commit/9ce5221100aa3fce8643abcdc2a35bc0c59050ef"><code>9ce5221</code></a>
[SUREFIRE-2282] surefire-report-plugin: Update Introduction
documentation page</li>
<li><a
href="https://github.com/apache/maven-surefire/commit/620b983ffdaa9e258c6a355a476777cfe6b88c0d"><code>620b983</code></a>
[SUREFIRE-2281] Upgrade to Doxia 2.0.0 GA Stack</li>
<li>Additional commits viewable in <a
href="https://github.com/apache/maven-surefire/compare/surefire-3.3.1...surefire-3.5.2">compare
view</a></li>
</ul>
</details>
<br />


Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pom.xml b/pom.xml
index f5743fd4..1bc00b49 100644
--- a/pom.xml
+++ b/pom.xml
@@ -31,7 +31,7 @@
     <build-alias>b000</build-alias>
     <wala.version>1.6.7</wala.version>
     <spotless.version>2.43.0</spotless.version>
-    <maven.surefire.version>3.3.1</maven.surefire.version>
+    <maven.surefire.version>3.5.2</maven.surefire.version>
     <parallel>both</parallel>
     <logging.config.file>${maven.multiModuleProjectDirectory}/logging.properties</logging.config.file>
   </properties>

From 79305b7f79f9721dd5d80ef4980249d7f4d2dc67 Mon Sep 17 00:00:00 2001
From: Raffi Khatchadourian <khatchad@hunter.cuny.edu>
Date: Mon, 11 Nov 2024 14:38:57 -0500
Subject: [PATCH 2/2] Remove redundant dependency (#224)

We have it a few lines up. Not sure how this snuck in there.
---
 pom.xml | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/pom.xml b/pom.xml
index 1bc00b49..05fd478f 100644
--- a/pom.xml
+++ b/pom.xml
@@ -117,11 +117,6 @@
         <artifactId>spotless-maven-plugin</artifactId>
         <version>${spotless.version}</version>
       </dependency>
-      <dependency>
-        <groupId>org.codehaus.mojo</groupId>
-        <artifactId>versions-maven-plugin</artifactId>
-        <version>2.17.1</version>
-      </dependency>
     </dependencies>
   </dependencyManagement>
   <build>