chore(deps-dev): bump the dev-deps group across 1 directory with 4 updates

[dependabot]

Bumps the dev-deps group with 4 updates in the / directory: nl.jqno.equalsverifier:equalsverifier, org.apache.maven.plugins:maven-compiler-plugin, org.apache.maven.plugins:maven-surefire-plugin and org.jsonschema2pojo:jsonschema2pojo-maven-plugin.

Updates nl.jqno.equalsverifier:equalsverifier from 4.2.5 to 4.4.1

Release notes

Sourced from nl.jqno.equalsverifier:equalsverifier's releases.

Release equalsverifier-4.4.1

For a list of changes in this version, see CHANGELOG.md.

Release equalsverifier-4.4

For a list of changes in this version, see CHANGELOG.md.

Release equalsverifier-4.3.1

For a list of changes in this version, see CHANGELOG.md.

Release equalsverifier-4.3

For a list of changes in this version, see CHANGELOG.md.

Release equalsverifier-4.2.6

For a list of changes in this version, see CHANGELOG.md.

Changelog

Sourced from nl.jqno.equalsverifier:equalsverifier's changelog.

[4.4.1] - 2026-02-23

Fixed

• A regression where floats and doubles are checked (and throw an exception) that are static (Issue 1183), transient (Issue 1184) or ignored with #withIgnoredFields().

[4.4] - 2026-02-21

Added

• Proper support for JEP 500: "Prepare to Make Final Mean Final", where the JDK emits a warning (or, if so configured, throws an exception) when final fields are mutated.
  • #withFactory() method to provide instances to EqualsVerifier so it doesn't have to mutate final fields;
  • Overloads for #withRedefinedSuperclass() and #withRedefinedSubclass() to do the same;
  • Overloads for #withPrefabValues() and #withPrefabValuesForField() where you explicitly provide a copy of the "red" value, because EqualsVerifier will not be able to make a copy of that value without using final field mutation.
  • .set(Mode.finalMeansFinal() so EqualsVerifier refuses to mutate final fields even when still possible: this is useful when migrating to a newer JDK where this is an issue.
  • Documentation: see the chapter on this subject in the manual.
• Prefab values for java.lang.Number.

Changed

• For doubles and floats, EqualsVerifier now uses 0.0 and -0.0 instead of NaN to test edge case handling without triggering precondition exceptions. For boxed Double/Float, it now suggests equals() over Double.compare()/Float.compare() (they behave identically).

[4.3.1] - 2026-01-24

Changed

• EqualsVerifier now respects Kotlin's data class contract: properties declared in the class body are assumed not to take part in equals() and hashCode(). (Issue 1159; thanks Sogilis Team!)

[4.3] - 2026-01-01

Changed

• Restored original behaviour for multiple predicate-based ScanOption exceptions. (Issue 1167; thanks Mark!)

[4.2.6] - 2025-12-30

Fixed

• If first permitted and non-abstract subclass of a sealed type has a recursion, EqualsVerifier throws RecursionException instead of trying the second permitted non-abstract subclass. (Issue 1081)

Changed

• Avoids potential parameter order bug when instantiating records. (Issue 1160; thanks lycoris106!)
• More performance improvements.

Commits

• 3fadf02 Bumps version to 4.4.1
• cea5157 Updates CHANGELOG for release
• bfaaee3 Merge pull request #1185 from jqno/dependabot/maven/dependencies-190f324d1e
• e588ba7 Bump org.apache.maven.plugins:maven-surefire-plugin
• fc72387 Fixes regression with floats and doubles
• 99cb250 Prepares for next development iteration
• a6d4e87 Bumps version to 4.4
• 17a917a Updates CHANGELOG for release
• 0df7252 Updates CHANGELOG
• 2842295 Merge pull request #1181 from jqno/final-means-final
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-compiler-plugin from 3.14.1 to 3.15.0

Release notes

Sourced from org.apache.maven.plugins:maven-compiler-plugin's releases.

3.15.0

🐛 Bug Fixes

• Fix Java 25 compatibility during integration tests (#1020) @​desruisseaux
• [MCOMPILER-540] - useIncrementalCompilation=false may add generated sources to the sources list (#192) @​mensinda

👻 Maintenance

• Bump org.apache.maven.plugins:maven-plugins from 45 to 46 (#1015) @​slachiewicz
• Remove declaration of "plexus-snapshots" repository (#1010) @​desruisseaux
• Works only with Maven 4.0.0 rc4 (#996) @​slachiewicz
• Enable Java 25 and Maven 4 in CI (#975) @​slachiewicz

📦 Dependency updates

• Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.4.0 to 3.5.0 (#1016) @dependabot[bot]
• Bump plexusCompilerVersion from 2.16.1 to 2.16.2 (#1021) @dependabot[bot]
• Bump org.apache.maven.plugins:maven-plugins from 46 to 47 (#1019) @dependabot[bot]
• Bump org.codehaus.plexus:plexus-java from 1.5.1 to 1.5.2 (#1008) @dependabot[bot]
• Bump org.ow2.asm:asm from 9.9 to 9.9.1 (#1005) @dependabot[bot]
• Bump mavenVersion from 3.9.11 to 3.9.12 (#1007) @dependabot[bot]
• Bump maven-plugin-testing-harness to 3.4.0 (#1001) @​slawekjaranowski
• Bump plexusCompilerVersion from 2.16.0 to 2.16.1 (#999) @dependabot[bot]
• Bump org.codehaus.plexus:plexus-java from 1.5.0 to 1.5.1 (#993) @dependabot[bot]
• Bump plexusCompilerVersion from 2.15.0 to 2.16.0 (#992) @dependabot[bot]
• Bump org.ow2.asm:asm from 9.8 to 9.9 (#981) @dependabot[bot]

Commits

• 9290cb3 [maven-release-plugin] prepare release maven-compiler-plugin-3.15.0
• 3657d40 Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness
• 7bbf805 Bump plexusCompilerVersion from 2.16.1 to 2.16.2
• 57fa938 Bump org.apache.maven.plugins:maven-plugins from 46 to 47
• 385e3f2 Fix Java 25 compatibility during integration tests (#1020)
• 6b34423 Bump org.apache.maven.plugins:maven-plugins from 45 to 46
• aaeb9c6 [MCOMPILER-540] useIncrementalCompilation=false may add generated sources to ...
• 6e3db9d Bump org.codehaus.plexus:plexus-java from 1.5.1 to 1.5.2
• 0fe9b84 Remove declaration of "plexus-snapshots" repository (#1010)
• 35f6800 Bump org.ow2.asm:asm from 9.9 to 9.9.1
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-surefire-plugin from 3.5.4 to 3.5.5

Release notes

Sourced from org.apache.maven.plugins:maven-surefire-plugin's releases.

3.5.5

🚀 New features and improvements

• Replace runing external process and parsing output with simple ProcessHandle if available (Java9+) (#3252) @​olamy
• Pass slf4j context to spawned thread (#3241) @​scottrw93
• [SUREFIRE-3239] - allow override of statistics file checksum (#3247) @​XN137
• Reduce log level for skipped tests result to info (#3232) @​strangelookingnerd

🐛 Bug Fixes

• Use PowerShell instead of WMIC for detecting zombie process on Windows (#3258) @​jbliznak. Please note if you are using Windows with Java 8 and not PowerShell (you have options to: use Java 9+, install PowerShell or stay on Surefire 3.5.4)
• Properly work with test failures caused during beforeAll phase (#3194) @​Frawless

📝 Documentation updates

• Clarify how late placeholder replacement (@{...}) deals with (#3208) @​kwin

👻 Maintenance

• Fix Jenkin badges in README (#3254) @​slawekjaranowski
• Use JUnit5 in failsafe ITs (#3251) @​slawekjaranowski
• Remove long-deprecated unused encoding property from VerifyMojo (#3198) @​Tomlincoln
• Add IT and deal with corner cases of handling beforeAll failures (#3200) @​Frawless
• Revert PR #3194 that handle beforeAll failures to follow proper contributing rules (#3211) @​Frawless

🔧 Build

• Missing many files in the GH Artifacts of CI ex-post. (#3219) @​Tibor17

📦 Dependency updates

• Bump org.xmlunit:xmlunit-core from 2.10.4 to 2.11.0 (#3209) @dependabot[bot]
• Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.4.0 to 3.5.1 (#3260) @dependabot[bot]
• Bump parent from 44 to 47 (#3253) @​slawekjaranowski
• Bump org.assertj:assertj-core from 3.16.1 to 3.27.7 in /surefire-its/src/test/resources/surefire-1733-testng (#3246) @dependabot[bot]
• Bump org.assertj:assertj-core from 3.27.6 to 3.27.7 (#3245) @dependabot[bot]
• Bump org.codehaus.mojo:animal-sniffer-maven-plugin from 1.26 to 1.27 (#3243) @dependabot[bot]
• Bump org.htmlunit:htmlunit from 4.20.0 to 4.21.0 (#3236) @dependabot[bot]
• Bump org.codehaus.plexus:plexus-java from 1.5.1 to 1.5.2 (#3235) @dependabot[bot]
• Bump org.apache.logging.log4j:log4j-core from 2.17.1 to 2.25.3 in /surefire-its/src/test/resources/surefire-1659-stream-corruption (#3234) @dependabot[bot]
• Bump org.htmlunit:htmlunit from 4.19.0 to 4.20.0 (#3228) @dependabot[bot]
• Bump org.htmlunit:htmlunit from 4.18.0 to 4.19.0 (#3224) @dependabot[bot]
• Bump org.apache.commons:commons-lang3 from 3.19.0 to 3.20.0 (#3223) @dependabot[bot]
• Bump org.codehaus.plexus:plexus-interpolation from 1.28 to 1.29 (#3221) @dependabot[bot]
• Bump org.codehaus.plexus:plexus-i18n from 1.0.0 to 1.1.0 (#3220) @dependabot[bot]
• Bump commons-io:commons-io from 2.20.0 to 2.21.0 (#3217) @dependabot[bot]
• Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.3.0 to 3.4.0 (#3214) @dependabot[bot]
• Bump org.codehaus.plexus:plexus-java from 1.5.0 to 1.5.1 (#3218) @dependabot[bot]
• Bump org.htmlunit:htmlunit from 4.16.0 to 4.18.0 (#3213) @dependabot[bot]

... (truncated)

Commits

• 968cb38 [maven-release-plugin] prepare release surefire-3.5.5
• 8e7dc41 Reapply "Replace runing external process and parsing output with simple Proce...
• 4ced57c Revert "Replace runing external process and parsing output with simple Proces…"
• 8496d9a Bump org.xmlunit:xmlunit-core from 2.10.4 to 2.11.0 (#3209)
• 68265e5 Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness (#3260)
• 0b19014 Replace runing external process and parsing output with simple ProcessHandle ...
• 688f8c4 Use PowerShell instead of WMIC for detecting zombie process on Windows (#3258)
• e5c01a6 Build only by the latest Maven on Jenkins (#3255)
• 9c99e97 Fix Jenkin badges in README (#3254)
• 20930ea Bump parent from 44 to 47 (#3253)
• Additional commits viewable in compare view

Updates org.jsonschema2pojo:jsonschema2pojo-maven-plugin from 1.2.2 to 1.3.3

Release notes

Sourced from org.jsonschema2pojo:jsonschema2pojo-maven-plugin's releases.

1.3.3

No release notes provided.

1.3.2

• Could not apply requested plugin error when using version 1.3.1 of Gradle plugin 'org.jsonschema2pojo' (#1769)

1.3.1

• Add plexus-utils dependency, as this is no longer provided in Maven 3.9 (#1751)

1.3.0

• Migrate publishing from legacy OSSRH to Maven Central Portal (#1747)
• Remove Ant task (no longer supported) (#1743)
• Require JDK 17 (#1741)
• Add Jackson 3 annotation support (#1740)
• Prevent StackOverflowError when root is self-referencing (#1679)
• Fix 'AbstractCompile.destinationDir property has been deprecated' error when using Gradle 8 (#1646)
• Fix problems with remote URL (e.g. http) when using Maven Plugin (#1614)
• Fix generics class warning when using generated base builder class (#1587)
• Allow URL(s) as source in jsonschema2pojo-gradle-plugin (#1554)

Changelog

Sourced from org.jsonschema2pojo:jsonschema2pojo-maven-plugin's changelog.

1.3.3

• Support type-use annotations for map value validation (Map<String, @​Valid T>) (#1774)
• Ignore null values when generating item type from array examples (#1772)
• Support type-use annotations for array item validation (List<@​Valid T>) (#1771)

1.3.2

• Could not apply requested plugin error when using version 1.3.1 of Gradle plugin 'org.jsonschema2pojo' (#1769)

1.3.1

• Add plexus-utils dependency, as this is no longer provided in Maven 3.9 (#1751)

1.3.0

• Migrate publishing from legacy OSSRH to Maven Central Portal (#1747)
• Remove Ant task (no longer supported) (#1743)
• Require JDK 17 (#1741)
• Add Jackson 3 annotation support (#1740)
• Prevent StackOverflowError when root is self-referencing (#1679)
• Fix 'AbstractCompile.destinationDir property has been deprecated' error when using Gradle 8 (#1646)
• Fix problems with remote URL (e.g. http) when using Maven Plugin (#1614)
• Fix generics class warning when using generated base builder class (#1587)
• Allow URL(s) as source in jsonschema2pojo-gradle-plugin (#1554)

Commits

• ad02aab [maven-release-plugin] prepare release jsonschema2pojo-1.3.3
• beebaf9 Avoid publishing integration tests
• 49171ff Merge pull request #1774 from joelittlejohn/valid-annotates-value-type-on-maps
• 6beff79 Support type-use annotations for map value validation (Map<String, @​Valid T>)
• dc4677a Ensure integration tests are not published during deploy
• 8833225 Remove noisy warnings and unnecessary info from the build
• 21da375 Avoid producing javadocs unless we are running a release
• e27cc47 Upgrade github actions
• a57294d Dependency and plugin upgrades
• 49f1f19 Upgrade dependencies for all examples
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.