Skip to content

fix(deps): Bump the maven group across 8 directories with 4 updates#614

Open
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/maven/stream-compositions/services/maven-8a46584160
Open

fix(deps): Bump the maven group across 8 directories with 4 updates#614
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/maven/stream-compositions/services/maven-8a46584160

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 10, 2026

Copy link
Copy Markdown
Contributor

Bumps the maven group with 1 update in the /stream-compositions/services directory: org.apache.activemq:activemq-broker.
Bumps the maven group with 1 update in the /stream-compositions/test-utils directory: org.apache.activemq:activemq-broker.
Bumps the maven group with 1 update in the /stream-legal-entity/legal-entity-bootstrap-task directory: org.wiremock:wiremock-standalone.
Bumps the maven group with 1 update in the /stream-legal-entity/legal-entity-http directory: org.wiremock:wiremock-standalone.
Bumps the maven group with 1 update in the /stream-portfolio/portfolio-http directory: org.wiremock:wiremock-standalone.
Bumps the maven group with 1 update in the /stream-product-catalog/product-catalog-task directory: org.wiremock:wiremock-standalone.
Bumps the maven group with 2 updates in the /stream-sdk/stream-parent directory: org.wiremock:wiremock-standalone and org.bouncycastle:bcpkix-jdk18on.
Bumps the maven group with 2 updates in the /stream-sdk/stream-parent/stream-test-support directory: org.wiremock:wiremock-standalone and org.bouncycastle:bcpkix-jdk18on.

Updates org.apache.activemq:activemq-broker from 6.2.4 to 6.2.6

Release notes

Sourced from org.apache.activemq:activemq-broker's releases.

Apache ActiveMQ 6.2.6

What's Changed

New Contributors

Full Changelog: apache/activemq@activemq-6.2.5...activemq-6.2.6

Apache ActiveMQ 6.2.5

What's Changed

Full Changelog: apache/activemq@activemq-6.2.4...activemq-6.2.5

Commits
  • bb9523b [maven-release-plugin] prepare release activemq-6.2.6
  • 4115627 Ensure connection info is processed before durable sync (#2048)
  • 9c5639d Backport network flaky test improvements (#2045)
  • be8415f [6.2.x] Harden web console and Jolokia access by default (#2025) (#2037)
  • 7d7d0af build(deps): bump shiro-version from 2.1.0 to 2.2.0 (#2023) (#2041)
  • df95bf8 Harden default broker and web console configuration (6.2.x backport) (#2035)
  • 09a74c5 Bump dependencies for CVE fixes on 6.2.x (#2030)
  • 68b5d2b Remove "java.lang" package as a default allowed serializable package (#2026) ...
  • dfeac9f #2005 6.2.x - Fix authorization check on removeDestination (#2009)
  • 8b5af8d Disable the message servlet by default (#2000) (#2014)
  • Additional commits viewable in compare view

Updates org.apache.activemq:activemq-broker from 6.2.4 to 6.2.6

Release notes

Sourced from org.apache.activemq:activemq-broker's releases.

Apache ActiveMQ 6.2.6

What's Changed

New Contributors

Full Changelog: apache/activemq@activemq-6.2.5...activemq-6.2.6

Apache ActiveMQ 6.2.5

What's Changed

Full Changelog: apache/activemq@activemq-6.2.4...activemq-6.2.5

Commits
  • bb9523b [maven-release-plugin] prepare release activemq-6.2.6
  • 4115627 Ensure connection info is processed before durable sync (#2048)
  • 9c5639d Backport network flaky test improvements (#2045)
  • be8415f [6.2.x] Harden web console and Jolokia access by default (#2025) (#2037)
  • 7d7d0af build(deps): bump shiro-version from 2.1.0 to 2.2.0 (#2023) (#2041)
  • df95bf8 Harden default broker and web console configuration (6.2.x backport) (#2035)
  • 09a74c5 Bump dependencies for CVE fixes on 6.2.x (#2030)
  • 68b5d2b Remove "java.lang" package as a default allowed serializable package (#2026) ...
  • dfeac9f #2005 6.2.x - Fix authorization check on removeDestination (#2009)
  • 8b5af8d Disable the message servlet by default (#2000) (#2014)
  • Additional commits viewable in compare view

Updates org.wiremock:wiremock-standalone from 3.0.1 to 3.0.3

Release notes

Sourced from org.wiremock:wiremock-standalone's releases.

3.0.3 - Security Release

🔒 Security

This security release addresses the following issues

NOTE: WireMock Studio, a proprietary distribution discontinued in 2022, is also affected by those issues and also affected by CVE-2023-39967 - Overall CVSS Score 8.6 - “Controlled and full-read SSRF through URL parameter when testing a request, webhooks and proxy mode”. The fixes will not be provided. The vendor recommends migrating to WireMock Cloud which is available as SaaS and private beta for on-premises deployments

🔗 Related releases

Credits

@​W0rty, @​numacanedo, @​Mahoney, @​tomakehurst, @​oleg-nenashev

3.0.2

🐛 Bug fixes

👻 Maintenance

📦 Dependency updates

Commits
  • 7a51264 Bumped patch version
  • 0f72091 Stop NetworkAddressRules doing DNS lookups
  • 984e79f Make NetworkAddressRulesAdheringDnsResolver testable
  • 92d7793 Applied DNS resolver enforcement to webhooks extension
  • 027ddaf Moved enforcement of network address rules to Apache client DNS resolver to a...
  • 21a9622 Bumped patch version
  • 1bb8b2d Bump org.eclipse.jetty:jetty-bom from 11.0.15 to 11.0.16 (#2346)
  • 3fc3b88 Bump org.slf4j:log4j-over-slf4j from 2.0.7 to 2.0.9 (#2353)
  • 0456440 Bump org.sonarqube from 4.3.0.3225 to 4.3.1.3277 (#2352)
  • 18ccdc6 Merge pull request #2356 from wiremock/reset-system-properties
  • Additional commits viewable in compare view

Updates org.wiremock:wiremock-standalone from 3.0.1 to 3.0.3

Release notes

Sourced from org.wiremock:wiremock-standalone's releases.

3.0.3 - Security Release

🔒 Security

This security release addresses the following issues

NOTE: WireMock Studio, a proprietary distribution discontinued in 2022, is also affected by those issues and also affected by CVE-2023-39967 - Overall CVSS Score 8.6 - “Controlled and full-read SSRF through URL parameter when testing a request, webhooks and proxy mode”. The fixes will not be provided. The vendor recommends migrating to WireMock Cloud which is available as SaaS and private beta for on-premises deployments

🔗 Related releases

Credits

@​W0rty, @​numacanedo, @​Mahoney, @​tomakehurst, @​oleg-nenashev

3.0.2

🐛 Bug fixes

👻 Maintenance

📦 Dependency updates

Commits
  • 7a51264 Bumped patch version
  • 0f72091 Stop NetworkAddressRules doing DNS lookups
  • 984e79f Make NetworkAddressRulesAdheringDnsResolver testable
  • 92d7793 Applied DNS resolver enforcement to webhooks extension
  • 027ddaf Moved enforcement of network address rules to Apache client DNS resolver to a...
  • 21a9622 Bumped patch version
  • 1bb8b2d Bump org.eclipse.jetty:jetty-bom from 11.0.15 to 11.0.16 (#2346)
  • 3fc3b88 Bump org.slf4j:log4j-over-slf4j from 2.0.7 to 2.0.9 (#2353)
  • 0456440 Bump org.sonarqube from 4.3.0.3225 to 4.3.1.3277 (#2352)
  • 18ccdc6 Merge pull request #2356 from wiremock/reset-system-properties
  • Additional commits viewable in compare view

Updates org.wiremock:wiremock-standalone from 3.0.1 to 3.0.3

Release notes

Sourced from org.wiremock:wiremock-standalone's releases.

3.0.3 - Security Release

🔒 Security

This security release addresses the following issues

NOTE: WireMock Studio, a proprietary distribution discontinued in 2022, is also affected by those issues and also affected by CVE-2023-39967 - Overall CVSS Score 8.6 - “Controlled and full-read SSRF through URL parameter when testing a request, webhooks and proxy mode”. The fixes will not be provided. The vendor recommends migrating to WireMock Cloud which is available as SaaS and private beta for on-premises deployments

🔗 Related releases

Credits

@​W0rty, @​numacanedo, @​Mahoney, @​tomakehurst, @​oleg-nenashev

3.0.2

🐛 Bug fixes

👻 Maintenance

📦 Dependency updates

Commits
  • 7a51264 Bumped patch version
  • 0f72091 Stop NetworkAddressRules doing DNS lookups
  • 984e79f Make NetworkAddressRulesAdheringDnsResolver testable
  • 92d7793 Applied DNS resolver enforcement to webhooks extension
  • 027ddaf Moved enforcement of network address rules to Apache client DNS resolver to a...
  • 21a9622 Bumped patch version
  • 1bb8b2d Bump org.eclipse.jetty:jetty-bom from 11.0.15 to 11.0.16 (#2346)
  • 3fc3b88 Bump org.slf4j:log4j-over-slf4j from 2.0.7 to 2.0.9 (#2353)
  • 0456440 Bump org.sonarqube from 4.3.0.3225 to 4.3.1.3277 (#2352)
  • 18ccdc6 Merge pull request #2356 from wiremock/reset-system-properties
  • Additional commits viewable in compare view

Updates org.wiremock:wiremock-standalone from 3.0.1 to 3.0.3

Release notes

Sourced from org.wiremock:wiremock-standalone's releases.

3.0.3 - Security Release

🔒 Security

This security release addresses the following issues

NOTE: WireMock Studio, a proprietary distribution discontinued in 2022, is also affected by those issues and also affected by CVE-2023-39967 - Overall CVSS Score 8.6 - “Controlled and full-read SSRF through URL parameter when testing a request, webhooks and proxy mode”. The fixes will not be provided. The vendor recommends migrating to WireMock Cloud which is available as SaaS and private beta for on-premises deployments

🔗 Related releases

Credits

@​W0rty, @​numacanedo, @​Mahoney, @​tomakehurst, @​oleg-nenashev

3.0.2

🐛 Bug fixes

👻 Maintenance

📦 Dependency updates

Commits
  • 7a51264 Bumped patch version
  • 0f72091 Stop NetworkAddressRules doing DNS lookups
  • 984e79f Make NetworkAddressRulesAdheringDnsResolver testable
  • 92d7793 Applied DNS resolver enforcement to webhooks extension
  • 027ddaf Moved enforcement of network address rules to Apache client DNS resolver to a...
  • 21a9622 Bumped patch version
  • 1bb8b2d Bump org.eclipse.jetty:jetty-bom from 11.0.15 to 11.0.16 (#2346)
  • 3fc3b88 Bump org.slf4j:log4j-over-slf4j from 2.0.7 to 2.0.9 (#2353)
  • 0456440 Bump org.sonarqube from 4.3.0.3225 to 4.3.1.3277 (#2352)
  • 18ccdc6 Merge pull request #2356 from wiremock/reset-system-properties
  • Additional commits viewable in compare view

Updates org.wiremock:wiremock-standalone from 3.0.1 to 3.0.3

Release notes

Sourced from org.wiremock:wiremock-standalone's releases.

3.0.3 - Security Release

🔒 Security

This security release addresses the following issues

NOTE: WireMock Studio, a proprietary distribution discontinued in 2022, is also affected by those issues and also affected by CVE-2023-39967 - Overall CVSS Score 8.6 - “Controlled and full-read SSRF through URL parameter when testing a request, webhooks and proxy mode”. The fixes will not be provided. The vendor recommends migrating to WireMock Cloud which is available as SaaS and private beta for on-premises deployments

🔗 Related releases

Credits

@​W0rty, @​numacanedo, @​Mahoney, @​tomakehurst, @​oleg-nenashev

3.0.2

🐛 Bug fixes

👻 Maintenance

📦 Dependency updates

Commits
  • 7a51264 Bumped patch version
  • 0f72091 Stop NetworkAddressRules doing DNS lookups
  • 984e79f Make NetworkAddressRulesAdheringDnsResolver testable
  • 92d7793 Applied DNS resolver enforcement to webhooks extension
  • 027ddaf Moved enforcement of network address rules to Apache client DNS resolver to a...
  • 21a9622 Bumped patch version
  • 1bb8b2d Bump org.eclipse.jetty:jetty-bom from 11.0.15 to 11.0.16 (#2346)
  • 3fc3b88 Bump org.slf4j:log4j-over-slf4j from 2.0.7 to 2.0.9 (#2353)
  • 0456440 Bump org.sonarqube from 4.3.0.3225 to 4.3.1.3277 (#2352)
  • 18ccdc6 Merge pull request #2356 from wiremock/reset-system-properties
  • Additional commits viewable in compare view

Updates org.bouncycastle:bcpkix-jdk18on from 1.83 to 1.84

Changelog

Sourced from org.bouncycastle:bcpkix-jdk18on's changelog.

... (truncated)

Commits

Updates org.bouncycastle:bcprov-jdk18on from 1.83 to 1.84

Changelog

Sourced from org.bouncycastle:bcprov-jdk18on's changelog.

... (truncated)

Commits

Updates org.wiremock:wiremock-standalone from 3.0.1 to 3.0.3

Release notes

Sourced from org.wiremock:wiremock-standalone's releases.

3.0.3 - Security Release

🔒 Security

This security release addresses the following issues

NOTE: WireMock Studio, a proprietary distribution discontinued in 2022, is also affected by those issues and also affected by CVE-2023-39967 - Overall CVSS Score 8.6 - “Controlled and full-read SSRF through URL parameter when testing a request, webhooks and proxy mode”. The fixes will not be provided. The vendor recommends migrating to WireMock Cloud which is available as SaaS and private beta for on-premises deployments

🔗 Related releases

Credits

@​W0rty, @​numacanedo, @​Mahoney, @​tomakehurst, @​oleg-nenashev

3.0.2

🐛 Bug fixes

👻 Maintenance

📦 Dependency updates

Commits
  • 7a51264 Bumped patch version
  • 0f72091 Stop NetworkAddressRules doing DNS lookups
  • 984e79f Make NetworkAddressRulesAdheringDnsResolver testable
  • 92d7793 Applied DNS resolver enforcement to webhooks extension
  • 027ddaf Moved enforcement of network address rules to Apache client DNS resolver to a...
  • 21a9622 Bumped patch version
  • 1bb8b2d Bump org.eclipse.jetty:jetty-bom from 11.0.15 to 11.0.16 (#2346)
  • 3fc3b88 Bump org.slf4j:log4j-over-slf4j from 2.0.7 to 2.0.9 (#2353)
  • 0456440 Bump org.sonarqube from 4.3.0.3225 to 4.3.1.3277 (#2352)
  • 18ccdc6 Merge pull request #2356 from wiremock/reset-system-properties
  • Additional commits viewable in compare view

Updates org.bouncycastle:bcpkix-jdk18on from 1.83 to 1.84

Changelog

Sourced from

Bumps the maven group with 1 update in the /stream-compositions/services directory: [org.apache.activemq:activemq-broker](https://github.com/apache/activemq).
Bumps the maven group with 1 update in the /stream-compositions/test-utils directory: [org.apache.activemq:activemq-broker](https://github.com/apache/activemq).
Bumps the maven group with 1 update in the /stream-legal-entity/legal-entity-bootstrap-task directory: [org.wiremock:wiremock-standalone](https://github.com/wiremock/wiremock).
Bumps the maven group with 1 update in the /stream-legal-entity/legal-entity-http directory: [org.wiremock:wiremock-standalone](https://github.com/wiremock/wiremock).
Bumps the maven group with 1 update in the /stream-portfolio/portfolio-http directory: [org.wiremock:wiremock-standalone](https://github.com/wiremock/wiremock).
Bumps the maven group with 1 update in the /stream-product-catalog/product-catalog-task directory: [org.wiremock:wiremock-standalone](https://github.com/wiremock/wiremock).
Bumps the maven group with 2 updates in the /stream-sdk/stream-parent directory: [org.wiremock:wiremock-standalone](https://github.com/wiremock/wiremock) and [org.bouncycastle:bcpkix-jdk18on](https://github.com/bcgit/bc-java).
Bumps the maven group with 2 updates in the /stream-sdk/stream-parent/stream-test-support directory: [org.wiremock:wiremock-standalone](https://github.com/wiremock/wiremock) and [org.bouncycastle:bcpkix-jdk18on](https://github.com/bcgit/bc-java).


Updates `org.apache.activemq:activemq-broker` from 6.2.4 to 6.2.6
- [Release notes](https://github.com/apache/activemq/releases)
- [Commits](apache/activemq@activemq-6.2.4...activemq-6.2.6)

Updates `org.apache.activemq:activemq-broker` from 6.2.4 to 6.2.6
- [Release notes](https://github.com/apache/activemq/releases)
- [Commits](apache/activemq@activemq-6.2.4...activemq-6.2.6)

Updates `org.wiremock:wiremock-standalone` from 3.0.1 to 3.0.3
- [Release notes](https://github.com/wiremock/wiremock/releases)
- [Commits](wiremock/wiremock@3.0.1...3.0.3)

Updates `org.wiremock:wiremock-standalone` from 3.0.1 to 3.0.3
- [Release notes](https://github.com/wiremock/wiremock/releases)
- [Commits](wiremock/wiremock@3.0.1...3.0.3)

Updates `org.wiremock:wiremock-standalone` from 3.0.1 to 3.0.3
- [Release notes](https://github.com/wiremock/wiremock/releases)
- [Commits](wiremock/wiremock@3.0.1...3.0.3)

Updates `org.wiremock:wiremock-standalone` from 3.0.1 to 3.0.3
- [Release notes](https://github.com/wiremock/wiremock/releases)
- [Commits](wiremock/wiremock@3.0.1...3.0.3)

Updates `org.wiremock:wiremock-standalone` from 3.0.1 to 3.0.3
- [Release notes](https://github.com/wiremock/wiremock/releases)
- [Commits](wiremock/wiremock@3.0.1...3.0.3)

Updates `org.bouncycastle:bcpkix-jdk18on` from 1.83 to 1.84
- [Changelog](https://github.com/bcgit/bc-java/blob/main/docs/releasenotes.html)
- [Commits](https://github.com/bcgit/bc-java/commits)

Updates `org.bouncycastle:bcprov-jdk18on` from 1.83 to 1.84
- [Changelog](https://github.com/bcgit/bc-java/blob/main/docs/releasenotes.html)
- [Commits](https://github.com/bcgit/bc-java/commits)

Updates `org.wiremock:wiremock-standalone` from 3.0.1 to 3.0.3
- [Release notes](https://github.com/wiremock/wiremock/releases)
- [Commits](wiremock/wiremock@3.0.1...3.0.3)

Updates `org.bouncycastle:bcpkix-jdk18on` from 1.83 to 1.84
- [Changelog](https://github.com/bcgit/bc-java/blob/main/docs/releasenotes.html)
- [Commits](https://github.com/bcgit/bc-java/commits)

Updates `org.bouncycastle:bcprov-jdk18on` from 1.83 to 1.84
- [Changelog](https://github.com/bcgit/bc-java/blob/main/docs/releasenotes.html)
- [Commits](https://github.com/bcgit/bc-java/commits)

---
updated-dependencies:
- dependency-name: org.apache.activemq:activemq-broker
  dependency-version: 6.2.6
  dependency-type: direct:development
  dependency-group: maven
- dependency-name: org.apache.activemq:activemq-broker
  dependency-version: 6.2.6
  dependency-type: direct:production
  dependency-group: maven
- dependency-name: org.wiremock:wiremock-standalone
  dependency-version: 3.0.3
  dependency-type: direct:development
  dependency-group: maven
- dependency-name: org.wiremock:wiremock-standalone
  dependency-version: 3.0.3
  dependency-type: direct:development
  dependency-group: maven
- dependency-name: org.wiremock:wiremock-standalone
  dependency-version: 3.0.3
  dependency-type: direct:development
  dependency-group: maven
- dependency-name: org.wiremock:wiremock-standalone
  dependency-version: 3.0.3
  dependency-type: direct:development
  dependency-group: maven
- dependency-name: org.wiremock:wiremock-standalone
  dependency-version: 3.0.3
  dependency-type: direct:development
  dependency-group: maven
- dependency-name: org.bouncycastle:bcpkix-jdk18on
  dependency-version: '1.84'
  dependency-type: direct:production
  dependency-group: maven
- dependency-name: org.bouncycastle:bcprov-jdk18on
  dependency-version: '1.84'
  dependency-type: direct:production
  dependency-group: maven
- dependency-name: org.wiremock:wiremock-standalone
  dependency-version: 3.0.3
  dependency-type: direct:development
  dependency-group: maven
- dependency-name: org.bouncycastle:bcpkix-jdk18on
  dependency-version: '1.84'
  dependency-type: direct:production
  dependency-group: maven
- dependency-name: org.bouncycastle:bcprov-jdk18on
  dependency-version: '1.84'
  dependency-type: direct:production
  dependency-group: maven
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Jul 10, 2026
@dependabot dependabot Bot requested a review from a team as a code owner July 10, 2026 22:03
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Jul 10, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file java Pull requests that update java code

Development

Successfully merging this pull request may close these issues.

0 participants