build(deps): bump org.owasp:dependency-check-maven from 11.0.0 to 11.1.0

[dependabot]

Bumps org.owasp:dependency-check-maven from 11.0.0 to 11.1.0.

Release notes

Sourced from org.owasp:dependency-check-maven's releases.

Version 11.1.0

Refer to the CHANGELOG.md for information about improvements and upgrade notes.

Changelog

Sourced from org.owasp:dependency-check-maven's changelog.

Version 11.1.0 (2024-10-30)

• feat: PHP Composer Analyzer now scans packages-dev by default (#7114)
  • Users can configure if packages-dev should be skipped
• fix(regression): re-add h2 database driver name (#7115)
• fix(regression): Make the Downloader honour the proxy.nonproxyhosts ODC Setting (#7077)
• fix: do not set legacy proxy from maven or env (#7072) (#7074)
• docs: add missing documentation for the MS Build Analyzer (#7113)
• docs: Document the breaking change for Maven plugin as reporting plugin (#7079)

See the full listing of changes.

Commits

• 91ba878 build: prepare release v11.1.0
• a610dbd build: bump minor semantic version number to 11.1.0
• f8505fb docs: update release notes
• 519707a fix: re-add h2 database driver name (#7115)
• 08d7657 feat: PHP Composer Analyzer Scans packages-dev by default (#7114)
• 910570d docs: add missing documentation for the MS Build Analyzer (#7113)
• 4c2fcef build(deps): bump jackson.version from 2.18.0 to 2.18.1 (#7111)
• 5f3061d build(deps): bump io.github.jeremylong:open-vulnerability-clients from 7.0.0 ...
• 116a63f fix(regression): Make the Downloader honour the proxy.nonproxyhosts ODC Setti...
• c87d3cf docs: Document the breaking change for Maven plugin as reporting plugin (#7079)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 38%. Comparing base (bc5aa92) to head (66892dc).
Report is 2 commits behind head on master.

Additional details and impacted files

@@           Coverage Diff            @@
##             master   #2291   +/-   ##
========================================
+ Coverage        38%     38%   +1%     
  Complexity      806     806           
========================================
  Files           371     371           
  Lines         18863   18863           
  Branches       1777    1777           
========================================
+ Hits           7153    7154    +1     
  Misses        11138   11138           
+ Partials        572     571    -1     

see 1 file with indirect coverage changes