Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.

Deprecations / Replacements

Warning

The following dependencies are either deprecated or have replacements available.

Datasource	Package	Replacement PR?
gradle	org.hibernate.orm:hibernate-jpamodelgen

Awaiting Schedule

The following updates are awaiting their schedule. To get an update now, click on a checkbox below.

• Update azure-sdk-for-java monorepo (com.azure:azure-storage-blob, com.azure.spring:spring-cloud-azure-starter-active-directory)
• Update dependency com.auth0:java-jwt to v4.5.1
• Update dependency com.microsoft.azure:applicationinsights-core to v3.7.8
• Update dependency microsoft/ApplicationInsights-Java to v3.7.8
• Update dependency org.hibernate.orm:hibernate-jpamodelgen to v6.6.49.Final
• Update dependency org.jsoup:jsoup to v1.22.2
• Update dependency org.postgresql:postgresql to v42.7.10
• Update dependency org.springdoc:springdoc-openapi-starter-webmvc-ui to v2.8.17
• Update dependency org.springframework.hateoas:spring-hateoas to v2.5.2
• Update eclipse-temurin Docker tag to v21.0.10_7-jre-jammy
• Update job Docker tag to v2.2.1
• Update junit-framework monorepo (org.junit.platform:junit-platform-launcher, org.junit.platform:junit-platform-engine, org.junit.platform:junit-platform-commons, org.junit.jupiter:junit-jupiter-params, org.junit.jupiter:junit-jupiter-engine, org.junit.jupiter:junit-jupiter-api)
• Update plugin org.owasp.dependencycheck to v12.2.1
• Update plugin org.springframework.boot to v3.5.13
• Update spring cloud to v4.3.2 (org.springframework.cloud:spring-cloud-starter-loadbalancer, org.springframework.cloud:spring-cloud-starter-openfeign)
• Update spring security to v6.5.10 (org.springframework.security:spring-security-web, org.springframework.security:spring-security-test)
• Update dependency com.microsoft.graph:microsoft-graph to v6.63.0
• Update dependency hashicorp/terraform to v1.14.9
• Update dependency io.hypersistence:hypersistence-utils-hibernate-63 to v3.15.2
• Update dependency org.apache.commons:commons-exec to v1.6.0
• Update dependency pmd to v7.23.0
• Update feign monorepo to v13.12 (io.github.openfeign:feign-jackson, io.github.openfeign:feign-slf4j, io.github.openfeign:feign-gson)
• Update jackson monorepo (com.fasterxml.jackson.core:jackson-annotations, com.fasterxml.jackson.core:jackson-core, com.fasterxml.jackson.core:jackson-databind)
• Update plugin com.github.ben-manes.versions to v0.54.0
• Update plugin info.solidsoft.pitest to v1.19.0
• Update plugin io.freefair.lombok to v9.4.0
• Update postgres Docker tag to v18.3
• Update Terraform azurerm to v4.69.0
• Update actions/checkout action to v6
• Update dependency checkstyle to v13
• Update dependency com.azure.spring:spring-cloud-azure-starter-active-directory to v7
• Update dependency io.rest-assured:rest-assured to v6
• Update dependency node to v24
• Update dependency org.springdoc:springdoc-openapi-starter-webmvc-ui to v3
• Update dependency org.springframework.hateoas:spring-hateoas to v3
• Update dependency org.testcontainers:testcontainers-bom to v2
• Update dependency uk.gov.service.notify:notifications-java-client to v6
• Update eclipse-temurin Docker tag to v25
• Update flyway to v12 (major) (org.flywaydb:flyway-database-postgresql, org.flywaydb:flyway-core, org.flywaydb.flyway)
• Update plugin org.sonarqube to v7
• Update plugin org.springframework.boot to v4
• Update spring cloud to v5 (major) (org.springframework.cloud:spring-cloud-starter-loadbalancer, org.springframework.cloud:spring-cloud-starter-openfeign)
• Update spring security to v7 (major) (org.springframework.security:spring-security-web, org.springframework.security:spring-security-test)
• 🔐 Create all awaiting schedule PRs at once 🔐

Open

The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.

• Update dependency requests to v2.33.0 [SECURITY]

PR Closed (Blocked)

The following updates are blocked by an existing closed PR. To recreate the PR, click on a checkbox below.

• Update Gradle to v8.14.4
• Update dependency org.hibernate.orm:hibernate-jpamodelgen to v7
• Update Gradle to v9
• Update junit-framework monorepo to v6 (major) (org.junit.platform:junit-platform-launcher, org.junit.platform:junit-platform-engine, org.junit.platform:junit-platform-commons, org.junit.jupiter:junit-jupiter-params, org.junit.jupiter:junit-jupiter-engine, org.junit.jupiter:junit-jupiter-api)

Detected Dependencies

docker-compose (1)

docker-compose.yml (1)

• postgres 18.0-alpine → [Updates: 18.3-alpine]

dockerfile (2)

docker/database/Dockerfile (1)

• postgres 18.0-alpine → [Updates: 18.3-alpine]

Dockerfile (2)

• eclipse-temurin 21-jre-jammy → [Updates: 21.0.10_7-jre-jammy, 25.0.2_10-jre-jammy]
• hmctsprod.azurecr.io/base/java 21-distroless

github-actions (3)

.github/workflows/codeql.yml (5)

• actions/checkout v5 → [Updates: v6]
• github/codeql-action v4
• actions/setup-java v5
• github/codeql-action v4
• github/codeql-action v4

.github/workflows/publish-swagger-v2-and-bump-apim-revision.yaml (4)

• actions/setup-node v6
• actions/checkout v5 → [Updates: v6]
• actions/setup-java v5
• node 22 → [Updates: 24]

.github/workflows/shared-openapi-publish-steps.yaml (2)

• actions/checkout v5 → [Updates: v6]
• actions/setup-java v5

gradle (1)

build.gradle (51)

• org.flywaydb:flyway-database-postgresql 11.20.3 → [Updates: 12.4.0]
• io.spring.dependency-management 1.1.7
• org.springframework.boot 3.5.6 → [Updates: 3.5.13, 4.0.5]
• org.owasp.dependencycheck 12.2.0 → [Updates: 12.2.1]
• com.github.ben-manes.versions 0.53.0 → [Updates: 0.54.0]
• org.sonarqube 6.3.1.5724 → [Updates: 7.2.3.7755]
• io.freefair.lombok 9.0.0 → [Updates: 9.4.0]
• org.flywaydb.flyway 11.20.3 → [Updates: 12.4.0]
• info.solidsoft.pitest 1.15.0 → [Updates: 1.19.0]
• checkstyle 11.1.0 → [Updates: 13.4.0]
• pmd 7.17.0 → [Updates: 7.23.0]
• org.junit.jupiter:junit-jupiter-api 5.14.2 → [Updates: 5.14.3, 6.0.3]
• org.junit.jupiter:junit-jupiter-engine 5.14.2 → [Updates: 5.14.3, 6.0.3]
• org.junit.jupiter:junit-jupiter-params 5.14.2 → [Updates: 5.14.3, 6.0.3]
• org.junit.platform:junit-platform-commons 1.14.2 → [Updates: 1.14.3, 6.0.3]
• org.junit.platform:junit-platform-engine 1.14.2 → [Updates: 1.14.3, 6.0.3]
• org.junit.platform:junit-platform-launcher 1.14.2 → [Updates: 1.14.3, 6.0.3]
• org.testcontainers:testcontainers-bom 1.21.4 → [Updates: 2.0.5]
• com.microsoft.azure:applicationinsights-core 3.7.7 → [Updates: 3.7.8]
• org.springdoc:springdoc-openapi-starter-webmvc-ui 2.8.15 → [Updates: 2.8.17, 3.0.3]
• org.springframework.hateoas:spring-hateoas 2.5.1 → [Updates: 2.5.2, 3.0.3]
• com.azure.spring:spring-cloud-azure-starter-active-directory 6.1.0 → [Updates: 6.2.0, 7.2.0]
• org.apache.commons:commons-exec 1.5.0 → [Updates: 1.6.0]
• org.flywaydb:flyway-core 11.20.3 → [Updates: 12.4.0]
• org.flywaydb:flyway-database-postgresql 11.20.3 → [Updates: 12.4.0]
• org.postgresql:postgresql 42.7.9 → [Updates: 42.7.10]
• io.hypersistence:hypersistence-utils-hibernate-63 3.11.0 → [Updates: 3.15.2]
• io.rest-assured:rest-assured 5.5.7 → [Updates: 6.0.0]
• io.github.openfeign:feign-gson 13.6 → [Updates: 13.12]
• io.github.openfeign:feign-slf4j 13.6 → [Updates: 13.12]
• io.github.openfeign:feign-jackson 13.6 → [Updates: 13.12]
• org.springframework.cloud:spring-cloud-starter-openfeign 4.3.0 → [Updates: 4.3.2, 5.0.1]
• org.springframework.cloud:spring-cloud-starter-loadbalancer 4.3.0 → [Updates: 4.3.2, 5.0.1]
• com.fasterxml.jackson.core:jackson-databind 2.20.0 → [Updates: 2.21.2]
• com.fasterxml.jackson.core:jackson-core 2.20.0 → [Updates: 2.21.2]
• com.fasterxml.jackson.core:jackson-annotations 2.20 → [Updates: 2.21]
• com.opencsv:opencsv 5.12.0
• com.azure:azure-storage-blob 12.33.2 → [Updates: 12.33.3]
• com.azure:azure-core-serializer-json-jackson 1.6.3
• com.azure.resourcemanager:azure-resourcemanager-mediaservices 2.4.0
• org.testcontainers:postgresql 1.21.4
• com.auth0:java-jwt 4.5.0 → [Updates: 4.5.1]
• uk.gov.service.notify:notifications-java-client 5.2.1-RELEASE → [Updates: 6.0.0-RELEASE]
• com.microsoft.graph:microsoft-graph 6.24.0 → [Updates: 6.63.0]
• com.azure:azure-identity 1.18.2
• org.jsoup:jsoup 1.22.1 → [Updates: 1.22.2]
• org.hibernate.orm:hibernate-jpamodelgen 6.6.42.Final → [Updates: 6.6.49.Final, 7.3.2.Final]
• com.github.hmcts:fortify-client 1.4.10
• org.springframework.security:spring-security-test 6.5.8 → [Updates: 6.5.10, 7.0.5]
• org.springframework.security:spring-security-web 6.5.8 → [Updates: 6.5.10, 7.0.5]
• org.testcontainers:junit-jupiter 1.21.4

gradle-wrapper (1)

gradle/wrapper/gradle-wrapper.properties (1)

• gradle 8.14.3 → [Updates: 8.14.4, 9.4.1]

helm-values (1)

charts/pre-api/values.yaml

helmv3 (1)

charts/pre-api/Chart.yaml (2)

• java 5.3.0
• job 2.2.0 → [Updates: 2.2.1]

pip_requirements (1)

scripts/requirements.txt (1)

• requests ==2.32.5 → [Updates: ==2.33.0]

regex (1)

Dockerfile (1)

• microsoft/ApplicationInsights-Java 3.7.7 → [Updates: 3.7.8]

renovate-config-presets (1)

.github/renovate.json

terraform (4)

infrastructure/exception-alert.tf (1)

• pre-api-exception-alert unknown version

infrastructure/liveness-alert.tf (1)

• pre-api-liveness-alert unknown version

infrastructure/main.tf

infrastructure/state.tf (1)

• azurerm 4.47.0 → [Updates: 4.69.0]

terraform-version (1)

infrastructure/.terraform-version (1)

• hashicorp/terraform 1.13.3 → [Updates: 1.14.9]

---

• Check this box to trigger a request for Renovate to run again on this repository