fix(deps): update all dependencies j:cdx-227

[renovate-coveo]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence	Type	Update	Pending
@commitlint/config-conventional (source)	19.5.0 -> 19.6.0					devDependencies	minor
@octokit/auth-app	7.1.2 -> 7.1.4					devDependencies	patch
actions/setup-java	v4.5.0 -> v4.6.0					action	minor
actions/upload-artifact	v4.4.3 -> v4.6.0					action	minor
step-security/harden-runner	v2.10.1 -> v2.10.3					action	patch	v2.10.4
com.diffplug.spotless:spotless-maven-plugin	2.43.0 -> 2.44.2					build	minor
commons-codec:commons-codec (source)	1.17.1 -> 1.17.2					compile	patch
org.mockito:mockito-core	5.14.2 -> 5.15.2					test	minor
io.github.cdimascio:dotenv-java	3.0.2 -> 3.1.0					compile	minor
org.apache.logging.log4j:log4j-core (source)	2.24.1 -> 2.24.3					compile	patch
org.apache.maven.plugins:maven-javadoc-plugin	3.11.1 -> 3.11.2					build	patch

[skip release]

---

Release Notes

conventional-changelog/commitlint (@​commitlint/config-conventional)

v19.6.0

Compare Source

Note: Version bump only for package @​commitlint/config-conventional

octokit/auth-app.js (@​octokit/auth-app)

v7.1.4

Compare Source

Bug Fixes

• deps: bump Octokit deps to fix Deno compat (#​665) (33fd19f)

v7.1.3

Compare Source

Bug Fixes

• deps: replace lru-cache with toad-cache (#​654) (43b97a6)

actions/setup-java (actions/setup-java)

v4.6.0

Compare Source

What's Changed

Add-ons:

• Add Support for JetBrains Runtime by @​gmitch215 in https://github.com/actions/setup-java/pull/637

 - name: Checkout
   uses: actions/checkout@v4
 - name: Setup-java
   uses: actions/setup-java@v4
   with:
     distribution: ‘jetbrains’
     java-version: '21'

Bug fixes:

• Fix Ubuntu-latest CI failures by @​mahabaleshwars in https://github.com/actions/setup-java/pull/693

New Contributors

• @​gmitch215 made their first contribution in https://github.com/actions/setup-java/pull/637

Full Changelog: actions/setup-java@v4...v4.6.0

actions/upload-artifact (actions/upload-artifact)

v4.6.0

Compare Source

What's Changed

• Expose env vars to control concurrency and timeout by @​yacaovsnc in https://github.com/actions/upload-artifact/pull/662

Full Changelog: actions/upload-artifact@v4...v4.6.0

v4.5.0

Compare Source

What's Changed

• fix: deprecated Node.js version in action by @​hamirmahal in https://github.com/actions/upload-artifact/pull/578
• Add new artifact-digest output by @​bdehamer in https://github.com/actions/upload-artifact/pull/656

New Contributors

• @​hamirmahal made their first contribution in https://github.com/actions/upload-artifact/pull/578
• @​bdehamer made their first contribution in https://github.com/actions/upload-artifact/pull/656

Full Changelog: actions/upload-artifact@v4.4.3...v4.5.0

step-security/harden-runner (step-security/harden-runner)

v2.10.3

Compare Source

What's Changed

Fixed an issue where DNS requests using uppercase characters (e.g., EXAMPLE.com) were blocked even when the domain was present in the allowed list. This update standardizes domain names to lowercase for consistent comparison.

Full Changelog: step-security/harden-runner@v2...v2.10.3

v2.10.2

Compare Source

What's Changed

1. Fixes low-severity command injection weaknesses
   The advisory is here: GHSA-g85v-wf27-67xc

2. Bug fix to improve detection of whether Harden-Runner is running in a container

Full Changelog: step-security/harden-runner@v2...v2.10.2

diffplug/spotless (com.diffplug.spotless:spotless-maven-plugin)

v2.44.0

Added

• New static method to DiffMessageFormatter which allows to retrieve diffs with their line numbers (#​1960)
• Gradle - Support for formatting shell scripts via shfmt. (#​1994)

Fixed

• Fix empty files with biome >= 1.5.0 when formatting files that are in the ignore list of the biome configuration file. (#​1989 fixes #​1987)
• Fix a regression in BufStep where the same arguments were being provided to every buf invocation. (#​1976)

Changed

• Use palantir-java-format 2.39.0 on Java 21. (#​1948)
• Bump default ktlint version to latest 1.0.1 -> 1.1.1. (#​1973)
• Bump default googleJavaFormat version to latest 1.18.1 -> 1.19.2. (#​1971)
• Bump default diktat version to latest 1.2.5 -> 2.0.0. (#​1972)

apache/commons-codec (commons-codec:commons-codec)

v1.17.2

The Apache Commons Codec component contains encoders and decoders for
formats such as Base16, Base32, Base64, digest, and Hexadecimal. In addition to these
widely used encoders and decoders, the codec package also maintains a
collection of phonetic encoding utilities.

This is a feature and maintenance release. Java 8 or later is required.

mockito/mockito (org.mockito:mockito-core)

v5.15.2

Compare Source

^{Changelog generated by Shipkit Changelog Gradle Plugin}

5.15.2

• 2025-01-02 - 2 commit(s) by Brice Dutheil, dependabot[bot]
• Fix javadoc publication (#​3561)
• Bump org.assertj:assertj-core from 3.27.0 to 3.27.1 (#​3560)
• The release job is failed again (#​3542)

---

Configuration

📅 Schedule: Branch creation - "* 0-3 * * 1" in timezone America/Toronto, Automerge - "after 9:00am and before 12:00pm on tuesday, wednesday, thursday" in timezone America/Toronto.

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.