dependabot[bot] opened a new pull request, #5087: URL: https://github.com/apache/myfaces-tobago/pull/5087
Bumps `quarkus.version` from 1.13.7.Final to 3.10.0. Updates `io.quarkus:quarkus-bom` from 1.13.7.Final to 3.10.0 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/quarkusio/quarkus/releases">io.quarkus:quarkus-bom's releases</a>.</em></p> <blockquote> <h2>3.10.0.CR1</h2> <h3>Major changes</h3> <ul> <li><a href="https://redirect.github.com/quarkusio/quarkus/pull/36504">#36504</a> - Allow authentication mechanism selection for a REST endpoint with annotation</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/pull/37816">#37816</a> - Optional support for the OIDC session cookie dir encryption</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/pull/39295">#39295</a> - Move package config to an interface</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/pull/39415">#39415</a> - Extension for the Hibernate Search Standalone Pojo Mapper with Elasticsearch</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/pull/39793">#39793</a> - Support for verifying OIDC JWT claims with custom Jose4j <code>Validator</code></li> <li><a href="https://redirect.github.com/quarkusio/quarkus/pull/39812">#39812</a> - Support resolving of static OIDC tenants based on token issuers</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/pull/40056">#40056</a> - Add OIDC TokenCertificateValidator</li> </ul> <h3>Complete changelog</h3> <ul> <li><a href="https://redirect.github.com/quarkusio/quarkus/issues/10267">#10267</a> - LDAP Security - Don't re-authenticate on every request</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/issues/14851">#14851</a> - Quarkus keycloak authorization usability improvements.</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/issues/26182">#26182</a> - Hibernate Search Standalone Pojo Mapper: Hibernate Search without Hibernate ORM / datasource</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/issues/34664">#34664</a> - Provide a way to specify HttpAuthenticationMechanism per JAX-RS resource</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/issues/35952">#35952</a> - Get management interface resolved port when quarkus.management.test-port set to 0</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/pull/36504">#36504</a> - Allow authentication mechanism selection for a REST endpoint with annotation</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/pull/37676">#37676</a> - Bump com.microsoft.azure.functions:azure-functions-java-library from 2.2.0 to 3.1.0</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/pull/37700">#37700</a> - Bump com.amazonaws:aws-lambda-java-events from 3.11.3 to 3.11.4</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/issues/37785">#37785</a> - Consider using direct JWE encryption of the OIDC session cookie</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/pull/37816">#37816</a> - Optional support for the OIDC session cookie dir encryption</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/issues/37875">#37875</a> - Restart and other hotkey in devui</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/issues/38026">#38026</a> - Missing security requirement on operation level, declared <code>@RolesAllowed</code> in implementing class derived from a generated openapi java interface</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/pull/38373">#38373</a> - Webauthn improvements : docs, customisable cookies, virtual thread support</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/issues/38535">#38535</a> - OIDC Tenant Resolution for <code>web-app</code> applications does not explain that the session cookie has a tenant id recorded</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/issues/38696">#38696</a> - OIDC Multitinancy by actual answer from teenant</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/issues/38940">#38940</a> - Offer a way to block inside custom <code>SecurityContext.isUserInRole</code> with resteasy-reactive</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/issues/39011">#39011</a> - quarkus-redis-client tracing</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/pull/39015">#39015</a> - Bump org.wiremock:wiremock-standalone from 3.4.1 to 3.4.2</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/issues/39061">#39061</a> - RunOnVirtualThread should avoid using Netty FastThreadLocals</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/pull/39104">#39104</a> - Use followOutput for lra-coordinator container</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/issues/39156">#39156</a> - Add the ability to ask for devservices to use the shared network</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/pull/39170">#39170</a> - Bump actions/upload-artifact and download-artifact to v4</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/issues/39182">#39182</a> - WebSockets Next: detect incorrect path parameter usage</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/issues/39269">#39269</a> - Simplify configuration based mapping of token roles to deployment-specific SecurityIdentity</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/pull/39295">#39295</a> - Move package config to an interface</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/issues/39322">#39322</a> - [Mandrel 23.0] hibernate-orm-panache-kotlin native integration tests fail with 23.0 build and 23.1.2 sdk.</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/pull/39339">#39339</a> - Simplify configuration based mapping of token roles to deployment-specific SecurityIdentity</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/pull/39348">#39348</a> - Remove message to avoid using <code>testNative</code> until proven it works</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/issues/39391">#39391</a> - AuthenticationSuccessEvent event is not created on successful authorization using FormAuthenticationMechanism</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/issues/39395">#39395</a> - Invalid warnings about SQL Server version "0.0.0" on startup</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/pull/39406">#39406</a> - Improve documentation for AMQP client options about setting a heartbeat</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/pull/39407">#39407</a> - Fix update-version.sh script</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/pull/39414">#39414</a> - Deploy relocations for snapshots</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/pull/39415">#39415</a> - Extension for the Hibernate Search Standalone Pojo Mapper with Elasticsearch</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/issues/39417">#39417</a> - OIDC <code>TenantConfigResolver</code> and <code>TenantResolver</code> are called even if the tenant id is already resolved</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/pull/39424">#39424</a> - Bump org.asciidoctor:asciidoctorj from 2.5.11 to 2.5.12</li> <li><a href="https://redirect.github.com/quarkusio/quarkus/issues/39425">#39425</a> - Support for verifying OIDC JWT claims with custom Jose4j <code>Validator</code></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/quarkusio/quarkus/commit/ecc068192b437f8a001faafb0cff252c18be0fb4"><code>ecc0681</code></a> [RELEASE] - Bump version to 3.10.0</li> <li><a href="https://github.com/quarkusio/quarkus/commit/aa799f81e783a36e550b88b04ab62908a8db5ee5"><code>aa799f8</code></a> Merge pull request <a href="https://redirect.github.com/quarkusio/quarkus/issues/40206">#40206</a> from gsmet/3.10.0-backports-1</li> <li><a href="https://github.com/quarkusio/quarkus/commit/bbc9b9a93460968b825cae8fe7e58582c7445044"><code>bbc9b9a</code></a> Fix rest-client-jackson add extension name</li> <li><a href="https://github.com/quarkusio/quarkus/commit/0ba3461abdee1a2a8745c9cbcbd8a1477b061f54"><code>0ba3461</code></a> Bump io.smallrye.beanbag:smallrye-beanbag-maven from 1.4.0 to 1.4.1</li> <li><a href="https://github.com/quarkusio/quarkus/commit/46fca012d57b822ef0f99bd60d62da4f18c129da"><code>46fca01</code></a> Add documentation to NativeImageResourceBuildItem's constructors</li> <li><a href="https://github.com/quarkusio/quarkus/commit/d02685b145501b90f62a6c8a6ed755a8a3a800a9"><code>d02685b</code></a> Fix resource registration for native compilation</li> <li><a href="https://github.com/quarkusio/quarkus/commit/cfe59bb318029bc4328a362a711e87f1ac24b04a"><code>cfe59bb</code></a> Fix a compilation problem in the SmallRye GraphQL guide</li> <li><a href="https://github.com/quarkusio/quarkus/commit/911ac6edcfe32718299b6c4454eec52e84a363f0"><code>911ac6e</code></a> Bump BouncyCastle version to 1.78.1</li> <li><a href="https://github.com/quarkusio/quarkus/commit/17517c50f77c4ff55fbd3a84774c376cc0a7c86a"><code>17517c5</code></a> WebSockets Next: produce ExecutionModelAnnotationsAllowedBuildItem</li> <li><a href="https://github.com/quarkusio/quarkus/commit/44026ec3a44b290418926d79ac768bf22f3cde7c"><code>44026ec</code></a> Qute: use the relative resource path for NativeImageResourceBuildItem</li> <li>Additional commits viewable in <a href="https://github.com/quarkusio/quarkus/compare/1.13.7.Final...3.10.0">compare view</a></li> </ul> </details> <br /> Updates `io.quarkus:quarkus-maven-plugin` from 1.13.7.Final to 3.10.0 Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org