chore(deps): update maven non-major dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
com.github.eirslett:frontend-maven-plugin	1.14.0 -> 1.15.0
org.jacoco:jacoco-maven-plugin (source)	0.8.8 -> 0.8.12
org.apache.maven.plugins:maven-surefire-plugin	3.1.2 -> 3.2.5
org.apache.maven.plugins:maven-compiler-plugin	3.10.1 -> 3.13.0
org.sonarsource.sonar-packaging-maven-plugin:sonar-packaging-maven-plugin (source)	1.21.0.505 -> 1.23.0.740
org.apache.maven:maven-model	3.8.6 -> 3.9.7
org.apache.commons:commons-lang3 (source)	3.12.0 -> 3.14.0
org.sonarsource.api.plugin:sonar-plugin-api (source)	9.5.0.71 -> 9.17.0.587

---

Release Notes

eirslett/frontend-maven-plugin (com.github.eirslett:frontend-maven-plugin)

v1.15.0

• Bun support
• Prevent Bad zip entry exceptions when installing Node to a relative directory (#​1124)

v1.14.2

• Prevent corrupt downloaded files by waiting for the download to complete before writing the file to disk.

v1.14.1

• Expose pnpm executable on Windows (#​1116)

jacoco/jacoco (org.jacoco:jacoco-maven-plugin)

v0.8.12: 0.8.12

Compare Source

New Features

• JaCoCo now officially supports Java 22 (GitHub #​1596).
• Experimental support for Java 23 class files (GitHub #​1553).

Fixed bugs

• Branches added by the Kotlin compiler for functions with default arguments and having more than 32 parameters are filtered out during generation of report (GitHub #​1556).
• Branch added by the Kotlin compiler version 1.5.0 and above for reading from lateinit property is filtered out during generation of report (GitHub #​1568).

Non-functional Changes

• JaCoCo now depends on ASM 9.7 (GitHub #​1600).

v0.8.11: 0.8.11

Compare Source

New Features

• JaCoCo now officially supports Java 21 (GitHub #​1520).
• Experimental support for Java 22 class files (GitHub #​1479).
• Part of bytecode generated by the Java compilers for exhaustive switch expressions is filtered out during generation of report (GitHub #​1472).
• Part of bytecode generated by the Java compilers for record patterns is filtered out during generation of report (GitHub #​1473).

Fixed bugs

• Instrumentation should not cause VerifyError when the last local variable of method parameters is overridden in the method body to store a value of type long or double (GitHub #​893).
• Restore exec file compatibility with versions from 0.7.5 to 0.8.8 in case of class files with zero line numbers (GitHub #​1492).

Non-functional Changes

• jacoco-maven-plugin now requires at least Java 8 (GitHub #​1466, #​1468).
• JaCoCo build now requires at least Maven 3.5.4 (GitHub #​1467).
• Maven 3.9.2 should not produce warnings for jacoco-maven-plugin (GitHub #​1468).
• JaCoCo build now requires JDK 17 (GitHub #​1482).
• JaCoCo now depends on ASM 9.6 (GitHub #​1518).

v0.8.10: 0.8.10

Compare Source

Fixed bugs

• Agent should not require configuration of permissions for SecurityManager outside of its codeBase (GitHub #​1425).

v0.8.9: 0.8.9

Compare Source

New Features

• JaCoCo now officially supports Java 19 and 20 (GitHub #​1371, #​1386).
• Experimental support for Java 21 class files (GitHub #​1386).
• Add parameter to include the current project in the report-aggregate Maven goal (GitHub #​1007).
• Component accessors generated by the Java compilers for records are filtered out during generation of report. Contributed by Tesla Zhang (GitHub #​1393).

Fixed bugs

• Agent should not open java.lang package to unnamed module of the application class loader (GitHub #​1334).

Non-functional Changes

• JaCoCo now depends on ASM 9.5 (GitHub #​1299, #​1368, #​1416).
• JaCoCo build now requires JDK 11 (GitHub #​1413).

SonarSource/sonar-packaging-maven-plugin (org.sonarsource.sonar-packaging-maven-plugin:sonar-packaging-maven-plugin)

v1.23.0.740

Compare Source

• Fix datime format for Plugin-BuildDate field

SonarSource/sonar-plugin-api (org.sonarsource.api.plugin:sonar-plugin-api)

v9.17.0.587

Compare Source

What's Changed

• PLUGINAPI-40 LogTester doesn't intercept logged exceptions
• PLUGINAPI-41 LogTester can throw 'ConcurrentModificationException' if logs are written and asserted concurrently
• PLUGINAPI-47 Add code variants to issues

v9.16.0.560

Compare Source

What's Changed

• PLUGINAPI-38 Files without suffixes can be declared as belonging to a Language
• PLUGINAPI-42 Replace javax.servlet.* with custom types
• PLUGINAPI-43 Introduce rule characteristics

v9.15.0.435

Compare Source

What's Changed

Added

• PLUGINAPI-35 Expose file content hash in plugin API
• PLUGINAPI-36 Remove dependency on logback
• PLUGINAPI-39 Add woff2 to static resource filter list

v9.14.0.375

Compare Source

What's Changed

Added

• PLUGINAPI-34 Add new aliases for sonar.test.inclusions and sonar.test.exclusions

v9.13.0.360

Compare Source

What's Changed

• PLUGINAPI-8 Introduce an API to contribute quick fixes
• PLUGINAPI-31 Support code highlighting in the issue messages

Full Changelog: SonarSource/sonar-plugin-api@9.12.0.310...9.13.0.360\*\*

v9.12.0.310

Compare Source

What's Changed

• NO-JIRA bumping version by @​lukasz-jarocki-sonarsource in https://github.com/SonarSource/sonar-plugin-api/pull/51
• Add a documentation page for sensor execution ordering by @​damien-urruty-sonarsource in https://github.com/SonarSource/sonar-plugin-api/pull/52
• Update repox-private-reader-sq-ef42e7 apikey by @​tomverin in https://github.com/SonarSource/sonar-plugin-api/pull/54
• PLUGINAPI-29 New property type "FORMATTED_TEXT" for properties that c… by @​zipeng-wu-sonarsource in https://github.com/SonarSource/sonar-plugin-api/pull/55

New Contributors

• @​tomverin made their first contribution in https://github.com/SonarSource/sonar-plugin-api/pull/54

Full Changelog: SonarSource/sonar-plugin-api@9.11.0.290...9.12.0.310

v9.11.0.290

Compare Source

What's Changed

• PLUGINAPI-22 Empty content for rule description section should not be allowed
• PLUGINAPI-25 Introduce support for data and execution flows

Full Changelog: SonarSource/sonar-plugin-api@9.10.0.269...9.11.0.290

v9.10.0.269

Compare Source

Changelog

Added

• Add ZipUtils.unzip new overloaded methods to limit unzipped size PLUGINAPI-23

v9.9.0.229

Compare Source

Changelog

Added

• SensorContext.markAsUnchanged: Sensors can flag files that have unchanged data. This allows the platform to perform optimizations in some situations (PLUGINAPI-20)
• NewRule.addWaspAsvs: Analyzers can report OWASP Application Security Verification Standard requirements for rules that they declare (PLUGINAPI-19)

v9.8.0.203

Compare Source

Changelog

Added

• NewRule.addEducationPrincipleKeys: Register a list of education principle keys to link to the rule (PLUGINAPI-15)
• NewIssue.setRuleDescriptionContextKey: Set the optional rule description section context key (PLUGINAPI-16)

v9.7.0.160

Compare Source

Changelog

Added

• RuleDescriptionSectionBuilder.context: Define a context for rule description sections (PLUGINAPI-12)

v9.6.1.114

Compare Source

Changelog

❌ Breaking changes without deprecation

• RuleDescriptionSectionKeys: Supported rule description section keys defined in v9.6 were changed

v9.6.0.104

Compare Source

Changelog

Added

• NewRule.addDescriptionSection: Add multiple description sections to rules. PLUGINAPI-6

⚠️ Deprecated

• NewRule.setMarkdownDescription: Use NewRule.addDescriptionSection with HTML instead. PLUGINAPI-5

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.