This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
Config Migration Needed
Edited/Blocked
These updates have been manually edited so Renovate will no longer make changes. To discard all commits and start over, click on a checkbox.
Open
These updates have all been created already. Click a checkbox below to force a retry/rebase of any.
fix(deps): update all dependencies j:cdx-227 (ossf/scorecard-action, step-security/harden-runner, org.mockito:mockito-core, com.google.code.gson:gson, org.apache.logging.log4j:log4j-core, org.apache.maven.plugins:maven-javadoc-plugin)fix(deps): update all dependencies j:cdx-227 (major) (@commitlint/config-conventional, @octokit/auth-app, actions/checkout, actions/setup-java, actions/setup-node, com.diffplug.spotless:spotless-maven-plugin, io.github.resilience4j:resilience4j-retry)
Detected dependencies
github-actions
.github/workflows/build.yml
step-security/harden-runner v2.13.0@ec9f2d5744a09debf3a187a3f4f675c53b671911actions/checkout v4.3.0@08eba0b27e820071cde6df949e0beb9ba4906955actions/setup-java v4.7.1@c5195efecf7bdfc987ee8bae7a71cb8b11521c00
.github/workflows/codeql.yml
coveo/public-actions main
.github/workflows/dependency-review.yml
coveo/public-actions main
.github/workflows/maven-publish.yml
step-security/harden-runner v2.13.0@ec9f2d5744a09debf3a187a3f4f675c53b671911actions/checkout v4.3.0@08eba0b27e820071cde6df949e0beb9ba4906955actions/setup-java v4.7.1@c5195efecf7bdfc987ee8bae7a71cb8b11521c00
.github/workflows/pr-title-semantic-lint.yml
step-security/harden-runner v2.13.0@ec9f2d5744a09debf3a187a3f4f675c53b671911actions/checkout v4@08eba0b27e820071cde6df949e0beb9ba4906955
.github/workflows/release.yml
step-security/harden-runner v2.13.0@ec9f2d5744a09debf3a187a3f4f675c53b671911actions/checkout v4.3.0@08eba0b27e820071cde6df949e0beb9ba4906955actions/setup-node v4.4.0@49933ea5288caeca8642d1e84afbd3f7d6820020actions/setup-java v4.7.1@c5195efecf7bdfc987ee8bae7a71cb8b11521c00google-github-actions/release-please-action v4.1.1@e4dc86ba9405554aeba3c6bb2d169500e7d3b4eenode 18
.github/workflows/scorecards.yml
step-security/harden-runner v2.13.0@ec9f2d5744a09debf3a187a3f4f675c53b671911actions/checkout v4.3.0@08eba0b27e820071cde6df949e0beb9ba4906955ossf/scorecard-action v2.4.2@05b42c624433fc40578a4040d5cf5e36ddca8cdeactions/upload-artifact v4.6.2@ea165f8d65b6e75b540449e92b4886f43607fa02github/codeql-action v3.26.13@f779452ac5af1c261dce0346a8f964149f49322b
maven
pom.xml
org.apache.maven.plugins:maven-source-plugin 3.3.1com.diffplug.spotless:spotless-maven-plugin 2.46.1org.apache.maven.plugins:maven-javadoc-plugin 3.11.3org.apache.maven.plugins:maven-gpg-plugin 3.2.8org.apache.logging.log4j:log4j-core 2.25.1com.google.code.gson:gson 2.13.1io.github.cdimascio:dotenv-java 3.2.0joda-time:joda-time 2.14.0org.mockito:mockito-core 5.19.0junit:junit 4.13.2commons-codec:commons-codec 1.19.0io.github.resilience4j:resilience4j-retry 1.7.1org.apache.maven:maven-model 3.9.11
npm
package.json
@actions/core ^1.10.0@commitlint/config-conventional 19.8.1@octokit/auth-app ^7.0.0
This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
Config Migration Needed
Edited/Blocked
These updates have been manually edited so Renovate will no longer make changes. To discard all commits and start over, click on a checkbox.
Open
These updates have all been created already. Click a checkbox below to force a retry/rebase of any.
ossf/scorecard-action,step-security/harden-runner,org.mockito:mockito-core,com.google.code.gson:gson,org.apache.logging.log4j:log4j-core,org.apache.maven.plugins:maven-javadoc-plugin)@commitlint/config-conventional,@octokit/auth-app,actions/checkout,actions/setup-java,actions/setup-node,com.diffplug.spotless:spotless-maven-plugin,io.github.resilience4j:resilience4j-retry)Detected dependencies
github-actions
maven
npm