Skip to content

Bump org.dbunit:dbunit from 3.0.0 to 3.2.0#1660

Merged
MancunianSam merged 24 commits into
developfrom
dependabot/maven/org.dbunit-dbunit-3.2.0
Jul 2, 2026
Merged

Bump org.dbunit:dbunit from 3.0.0 to 3.2.0#1660
MancunianSam merged 24 commits into
developfrom
dependabot/maven/org.dbunit-dbunit-3.2.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 1, 2026

Copy link
Copy Markdown
Contributor

Bumps org.dbunit:dbunit from 3.0.0 to 3.2.0.

Commits
  • dab7c34 chore(release): Prep 3.2.0
  • 16ddb56 docs(release): Update notes for releasing
  • 55d50fe docs(site): Add "we've moved" News item
  • 43c78f1 refactor: git --renormalize files for line endings
  • 0e58d46 chore(git): Adjust .gitattributes
  • 05ceb93 ci: Skip build for docs-only changes
  • 0ba80c3 docs(site): Specify main branch for build badge
  • 4c5263d chore(git): Adjust .gitattributes
  • 9dd5907 chore(git): Adjust .gitattributes
  • b9f2b06 build(jacoco): Fix Surefire Jacoco configuration
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

dependabot Bot added 10 commits July 1, 2026 15:43
Bumps `spring.version` from 7.0.7 to 7.0.8.

Updates `org.springframework:spring-core` from 7.0.7 to 7.0.8
- [Release notes](https://github.com/spring-projects/spring-framework/releases)
- [Commits](spring-projects/spring-framework@v7.0.7...v7.0.8)

Updates `org.springframework:spring-context` from 7.0.7 to 7.0.8
- [Release notes](https://github.com/spring-projects/spring-framework/releases)
- [Commits](spring-projects/spring-framework@v7.0.7...v7.0.8)

Updates `org.springframework:spring-beans` from 7.0.7 to 7.0.8
- [Release notes](https://github.com/spring-projects/spring-framework/releases)
- [Commits](spring-projects/spring-framework@v7.0.7...v7.0.8)

Updates `org.springframework:spring-test` from 7.0.7 to 7.0.8
- [Release notes](https://github.com/spring-projects/spring-framework/releases)
- [Commits](spring-projects/spring-framework@v7.0.7...v7.0.8)

Updates `org.springframework:spring-tx` from 7.0.7 to 7.0.8
- [Release notes](https://github.com/spring-projects/spring-framework/releases)
- [Commits](spring-projects/spring-framework@v7.0.7...v7.0.8)

Updates `org.springframework:spring-jdbc` from 7.0.7 to 7.0.8
- [Release notes](https://github.com/spring-projects/spring-framework/releases)
- [Commits](spring-projects/spring-framework@v7.0.7...v7.0.8)

---
updated-dependencies:
- dependency-name: org.springframework:spring-core
  dependency-version: 7.0.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.springframework:spring-context
  dependency-version: 7.0.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.springframework:spring-beans
  dependency-version: 7.0.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.springframework:spring-test
  dependency-version: 7.0.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.springframework:spring-tx
  dependency-version: 7.0.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.springframework:spring-jdbc
  dependency-version: 7.0.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Bumps [org.jacoco:jacoco-maven-plugin](https://github.com/jacoco/jacoco) from 0.8.14 to 0.8.15.
- [Release notes](https://github.com/jacoco/jacoco/releases)
- [Commits](jacoco/jacoco@v0.8.14...v0.8.15)

---
updated-dependencies:
- dependency-name: org.jacoco:jacoco-maven-plugin
  dependency-version: 0.8.15
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Bumps `aws.version` from 2.44.13 to 2.46.17.

Updates `software.amazon.awssdk:s3` from 2.44.13 to 2.46.17

Updates `software.amazon.awssdk:regions` from 2.44.13 to 2.46.17

Updates `software.amazon.awssdk:sdk-core` from 2.44.13 to 2.46.17

Updates `software.amazon.awssdk:sso` from 2.44.13 to 2.46.17

Updates `software.amazon.awssdk:ssooidc` from 2.44.13 to 2.46.17

Updates `software.amazon.awssdk:apache-client` from 2.44.13 to 2.46.17

Updates `software.amazon.awssdk:http-client-spi` from 2.44.13 to 2.46.17

Updates `software.amazon.awssdk:aws-core` from 2.44.13 to 2.46.17

---
updated-dependencies:
- dependency-name: software.amazon.awssdk:s3
  dependency-version: 2.46.17
  dependency-type: direct:development
  update-type: version-update:semver-minor
- dependency-name: software.amazon.awssdk:regions
  dependency-version: 2.46.17
  dependency-type: direct:development
  update-type: version-update:semver-minor
- dependency-name: software.amazon.awssdk:sdk-core
  dependency-version: 2.46.17
  dependency-type: direct:development
  update-type: version-update:semver-minor
- dependency-name: software.amazon.awssdk:sso
  dependency-version: 2.46.17
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: software.amazon.awssdk:ssooidc
  dependency-version: 2.46.17
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: software.amazon.awssdk:apache-client
  dependency-version: 2.46.17
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: software.amazon.awssdk:http-client-spi
  dependency-version: 2.46.17
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: software.amazon.awssdk:aws-core
  dependency-version: 2.46.17
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Bumps `cxf.version` from 4.2.1 to 4.2.2.

Updates `org.apache.cxf:cxf-codegen-plugin` from 4.2.1 to 4.2.2

Updates `org.apache.cxf:cxf-rt-frontend-jaxws` from 4.2.1 to 4.2.2

Updates `org.apache.cxf:cxf-rt-transports-http` from 4.2.1 to 4.2.2

Updates `org.apache.cxf:cxf-core` from 4.2.1 to 4.2.2

Updates `org.apache.cxf:cxf-rt-frontend-simple` from 4.2.1 to 4.2.2

Updates `org.apache.cxf:cxf-rt-bindings-soap` from 4.2.1 to 4.2.2

---
updated-dependencies:
- dependency-name: org.apache.cxf:cxf-codegen-plugin
  dependency-version: 4.2.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.apache.cxf:cxf-rt-frontend-jaxws
  dependency-version: 4.2.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.apache.cxf:cxf-rt-transports-http
  dependency-version: 4.2.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.apache.cxf:cxf-core
  dependency-version: 4.2.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.apache.cxf:cxf-rt-frontend-simple
  dependency-version: 4.2.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.apache.cxf:cxf-rt-bindings-soap
  dependency-version: 4.2.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Bumps `jackson.version` from 2.20.2 to 2.22.0.

Updates `com.fasterxml.jackson.core:jackson-databind` from 2.20.2 to 2.22.0
- [Commits](https://github.com/FasterXML/jackson/commits)

Updates `com.fasterxml.jackson.core:jackson-core` from 2.20.2 to 2.22.0
- [Commits](FasterXML/jackson-core@jackson-core-2.20.2...jackson-core-2.22.0)

---
updated-dependencies:
- dependency-name: com.fasterxml.jackson.core:jackson-databind
  dependency-version: 2.22.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: com.fasterxml.jackson.core:jackson-core
  dependency-version: 2.22.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Bumps [software.amazon.nio.s3:aws-java-nio-spi-for-s3](https://github.com/awslabs/aws-java-nio-spi-for-s3) from 2.4.0 to 2.5.0.
- [Release notes](https://github.com/awslabs/aws-java-nio-spi-for-s3/releases)
- [Commits](awslabs/aws-java-nio-spi-for-s3@v2.4.0...v2.5.0)

---
updated-dependencies:
- dependency-name: software.amazon.nio.s3:aws-java-nio-spi-for-s3
  dependency-version: 2.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Bumps [org.apache.maven.plugins:maven-surefire-report-plugin](https://github.com/apache/maven-surefire) from 3.5.5 to 3.5.6.
- [Release notes](https://github.com/apache/maven-surefire/releases)
- [Commits](apache/maven-surefire@surefire-3.5.5...surefire-3.5.6)

---
updated-dependencies:
- dependency-name: org.apache.maven.plugins:maven-surefire-report-plugin
  dependency-version: 3.5.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Bumps com.sun.xml.ws:jaxws-ri from 4.0.4 to 4.0.5.

---
updated-dependencies:
- dependency-name: com.sun.xml.ws:jaxws-ri
  dependency-version: 4.0.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Bumps [commons-logging:commons-logging](https://github.com/apache/commons-logging) from 1.3.6 to 1.4.0.
- [Changelog](https://github.com/apache/commons-logging/blob/master/RELEASE-NOTES.txt)
- [Commits](apache/commons-logging@rel/commons-logging-1.3.6...rel/commons-logging-1.4.0)

---
updated-dependencies:
- dependency-name: commons-logging:commons-logging
  dependency-version: 1.4.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Bumps [org.dbunit:dbunit](https://github.com/dbunit/dbunit-extension) from 3.0.0 to 3.2.0.
- [Commits](dbunit/dbunit-extension@dbunit-3.0.0...dbunit-3.2.0)

---
updated-dependencies:
- dependency-name: org.dbunit:dbunit
  dependency-version: 3.2.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Jul 1, 2026
…ommons-logging-commons-logging-1.4.0

Bump commons-logging:commons-logging from 1.3.6 to 1.4.0
…om.sun.xml.ws-jaxws-ri-4.0.5

Bump com.sun.xml.ws:jaxws-ri from 4.0.4 to 4.0.5
…rg.apache.maven.plugins-maven-surefire-report-plugin-3.5.6

Bump org.apache.maven.plugins:maven-surefire-report-plugin from 3.5.5 to 3.5.6
…oftware.amazon.nio.s3-aws-java-nio-spi-for-s3-2.5.0

Bump software.amazon.nio.s3:aws-java-nio-spi-for-s3 from 2.4.0 to 2.5.0
…ackson.version-2.22.0

Bump jackson.version from 2.20.2 to 2.22.0
…xf.version-4.2.2

Bump cxf.version from 4.2.1 to 4.2.2
…ws.version-2.46.17

Bump aws.version from 2.44.13 to 2.46.17
…rg.jacoco-jacoco-maven-plugin-0.8.15

Bump org.jacoco:jacoco-maven-plugin from 0.8.14 to 0.8.15
…pring.version-7.0.8

Bump spring.version from 7.0.7 to 7.0.8
@wiz-2986343e2e

wiz-2986343e2e Bot commented Jul 1, 2026

Copy link
Copy Markdown

Wiz Scan Summary

Scanner Findings
Vulnerability Finding Vulnerabilities 3 High 4 Medium
Data Finding Sensitive Data -
Secret Finding Secrets -
IaC Misconfiguration IaC Misconfigurations -
SAST Finding SAST Findings -
Software Management Finding Software Management Findings -
Total 3 High 4 Medium

View scan details in Wiz

To detect these findings earlier in the dev lifecycle, try using Wiz Code VS Code Extension.

Pull Request Developer Guidance

If the link to the Wiz scan details doesn't work, please ensure you are using the right role in Wiz and that the repository is assigned to the correct project within our Wiz Terraform. Or, you can ask for help in #tna-cloud-security on Slack.

@MancunianSam MancunianSam force-pushed the dependabot/maven/org.dbunit-dbunit-3.2.0 branch from dcf2340 to 13f9401 Compare July 2, 2026 08:50
@MancunianSam MancunianSam merged commit deb91d0 into develop Jul 2, 2026
17 of 18 checks passed
@dependabot dependabot Bot deleted the dependabot/maven/org.dbunit-dbunit-3.2.0 branch July 2, 2026 15:31
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file java Pull requests that update java code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant