chore(deps): bump the dependencies group with 9 updates

[dependabot]

Bumps the dependencies group with 9 updates:

Package	From	To
com.fasterxml.jackson.core:jackson-core	2.19.2	2.20.0
com.fasterxml.jackson.core:jackson-annotations	2.19.2	2.20.0
com.fasterxml.jackson.core:jackson-databind	2.19.2	2.20.0
com.fasterxml.jackson.datatype:jackson-datatype-jsr310	2.19.2	2.20.0
io.opentelemetry:opentelemetry-bom	1.53.0	1.54.1
org.assertj:assertj-core	3.27.4	3.27.6
org.mockito:mockito-core	5.19.0	5.20.0
org.junit.jupiter:junit-jupiter	5.13.4	6.0.0
com.diffplug.spotless	7.2.1	8.0.0

Updates com.fasterxml.jackson.core:jackson-core from 2.19.2 to 2.20.0

Commits

• ea0830a [maven-release-plugin] prepare release jackson-core-2.20.0
• e16733a Prep for 2.20.0
• 93deb38 Drop RC from version pre-2.20.0 release
• f0bcc3c Handle deprecation warnings
• 6e70d08 Fix #1462: deprecate JsonFactory.createParser(URL) (#1464)
• 588cc76 Post release version bump
• 018f9e1 [maven-release-plugin] prepare for next development iteration
• 360e498 [maven-release-plugin] prepare release jackson-core-2.20.0-rc1
• 538ac44 Prep for 2.20.0-rc1
• dfbf47b Merge branch '2.19' into 2.x
• Additional commits viewable in compare view

Updates com.fasterxml.jackson.core:jackson-annotations from 2.19.2 to 2.20.0

Updates com.fasterxml.jackson.core:jackson-databind from 2.19.2 to 2.20.0

Commits

• See full diff in compare view

Updates com.fasterxml.jackson.datatype:jackson-datatype-jsr310 from 2.19.2 to 2.20.0

Updates com.fasterxml.jackson.core:jackson-annotations from 2.19.2 to 2.20.0

Updates com.fasterxml.jackson.core:jackson-databind from 2.19.2 to 2.20.0

Commits

• See full diff in compare view

Updates com.fasterxml.jackson.datatype:jackson-datatype-jsr310 from 2.19.2 to 2.20.0

Updates io.opentelemetry:opentelemetry-bom from 1.53.0 to 1.54.1

Release notes

Sourced from io.opentelemetry:opentelemetry-bom's releases.

Version 1.54.1

This is a patch release on the previous 1.54.0 release, fixing the issue(s) below.

SDK

Exporters

• Prometheus: Fix regression in protobuf format export (#7664)

Version 1.54.0

API

Baggage

• Fix guard against ArrayIndexOutOfBoundsException in BaggageCodec (#7239)

SDK

Metrics

• Fix MetricData.getDoubleSumData() ClassCastException with custom implementations (#7597)

Exporters

• Fix HttpExporterBuilder.copy() and GrpcExporterBuilder.copy() to preserve component loader (#7596)

Extensions

• Autoconfigure: Remove support for old EnvironmentResourceProvider package name (#7622)
• Declarative config: Add DeclarativeConfigurationProvider SPI (#7472)
• Declarative config: Pass meter provider to avoid using the global OpenTelemetry instance (#7475)

Project tooling

• Update to Gradle v9 (#7590)

🙇 Thank you

This release was possible thanks to the following contributors who shared their brilliant ideas and awesome pull requests:

@​anuraaga @​breedx-splk @​chengchen @​halasz-csaba @​jack-berg @​jaydeluca @​jkwatson @​laurit @​opentelemetrybot @​rlacksgus97

... (truncated)

Changelog

Sourced from io.opentelemetry:opentelemetry-bom's changelog.

Version 1.54.1 (2025-09-18)

SDK

Exporters

• Prometheus: Fix regression in protobuf format export (#7664)

Version 1.54.0 (2025-09-05)

API

Baggage

• Fix guard against ArrayIndexOutOfBoundsException in BaggageCodec (#7239)

SDK

Metrics

• Fix MetricData.getDoubleSumData() ClassCastException with custom implementations (#7597)

Exporters

• Fix HttpExporterBuilder.copy() and GrpcExporterBuilder.copy() to preserve component loader (#7596)

Extensions

• Autoconfigure: Remove support for old EnvironmentResourceProvider package name (#7622)
• Declarative config: Add DeclarativeConfigurationProvider SPI (#7472)
• Declarative config: Pass meter provider to avoid using the global OpenTelemetry instance (#7475)

Project tooling

• Update to Gradle v9 (#7590)

Commits

• edf8896 [release/v1.54.x] Prepare release 1.54.1 (#7672)
• 7aedd4b [release/v1.54.x] Add change log for upcoming patch release (#7671)
• 4d4218b [release/v1.54.x] Update Prometheus Exporter dependencies to use no-protobuf ...
• 61e066b [release/v1.54.x] Prepare release 1.54.0 (#7644)
• 5f4d898 Add change log for upcoming release (#7641)
• 2a92794 fix(deps): update armeriaversion to v1.33.2 (#7625)
• 7ef1410 don't call old plugin when declarative config is in use (#7472)
• b18583a pass meter provider to avoid using the global otel instance (#7475)
• 6610806 chore(deps): update plugin com.gradleup.shadow to v9.1.0 (#7628)
• 35fda16 fix(deps): update dependency io.netty:netty-bom to v4.2.5.final (#7635)
• Additional commits viewable in compare view

Updates org.assertj:assertj-core from 3.27.4 to 3.27.6

Release notes

Sourced from org.assertj:assertj-core's releases.

v3.27.6

🐛 Bug Fixes

Core

• Add missing export for org.assertj.core.annotation #3951

❤️ Contributors

Thanks to all the contributors who worked on this release:

@​duponter

v3.27.5

⚡ Improvements

Core

• ByteBuddy in AssertJ 3.27.4 not compatible with Java 25 #3946

🔨 Dependency Upgrades

Core

• Upgrade to Byte Buddy 1.17.7 #3947
• Upgrade to JUnit BOM 5.13.4 #3947

Guava

• Upgrade to Guava 33.4.8-jre #3947

Commits

• 716b1e0 [maven-release-plugin] prepare release assertj-build-3.27.6
• e189652 Add missing export for org.assertj.core.annotation (#3951)
• 0cb489e Update Maven Central URL
• 7286309 [maven-release-plugin] prepare for next development iteration
• dd4cc1d [maven-release-plugin] prepare release assertj-build-3.27.5
• 1d0defc Add missing permission to release workflow
• 844d5d0 Add missing GitHub Actions pinning to CodeQL workflow
• bdd7106 Add CodeQL custom workflow
• a93d7e6 Remove EOL Java 24
• 26ea866 Update production dependencies (#3947)
• Additional commits viewable in compare view

Updates org.mockito:mockito-core from 5.19.0 to 5.20.0

Release notes

Sourced from org.mockito:mockito-core's releases.

v5.20.0

Changelog generated by Shipkit Changelog Gradle Plugin

5.20.0

• 2025-09-20 - 11 commit(s) by Adrian-Kim, Giulio Longfils, Rafael Winterhalter, dependabot[bot]
• Bump org.assertj:assertj-core from 3.27.4 to 3.27.5 [(#3730)](mockito/mockito#3730)
• Introducing the Ability to Mock Construction of Generic Types (#2401) [(#3729)](mockito/mockito#3729)
• Bump com.gradle.develocity from 4.1.1 to 4.2 [(#3726)](mockito/mockito#3726)
• Bump graalvm/setup-graalvm from 1.3.6 to 1.3.7 [(#3725)](mockito/mockito#3725)
• Bump org.eclipse.platform:org.eclipse.osgi from 3.23.100 to 3.23.200 [(#3720)](mockito/mockito#3720)
• Bump graalvm/setup-graalvm from 1.3.5 to 1.3.6 [(#3719)](mockito/mockito#3719)
• Bump actions/setup-java from 4 to 5 [(#3715)](mockito/mockito#3715)
• Bump com.gradle.develocity from 4.1 to 4.1.1 [(#3713)](mockito/mockito#3713)
• Bump bytebuddy from 1.17.6 to 1.17.7 [(#3712)](mockito/mockito#3712)
• test: Use Assume.assumeThat for SequencedCollection tests [(#3711)](mockito/mockito#3711)
• Fix #3709 [(#3710)](mockito/mockito#3710)
• feat: Add support for JDK21 Sequenced Collections. [(#3708)](mockito/mockito#3708)
• Introducing the Ability to Mock Construction of Generic Types [(#2401)](mockito/mockito#2401)

Commits

• 3a1a19e Add support for generic types in MockedConstruction and MockedStatic (#3729)
• f3c957a Bump org.assertj:assertj-core from 3.27.4 to 3.27.5 (#3730)
• 3cfbd42 Bump graalvm/setup-graalvm from 1.3.6 to 1.3.7 (#3725)
• 6f9a04b Bump com.gradle.develocity from 4.1.1 to 4.2 (#3726)
• c75dfb8 Bump org.eclipse.platform:org.eclipse.osgi from 3.23.100 to 3.23.200 (#3720)
• 54474fa Bump graalvm/setup-graalvm from 1.3.5 to 1.3.6 (#3719)
• bc06f21 Use Assume.assumeThat for SequencedCollection tests (#3711)
• a10aed0 Bump actions/setup-java from 4 to 5 (#3715)
• 37bb3e5 Fix metadata generation on GraalVM (#3710)
• ef2fd6f Bump com.gradle.develocity from 4.1 to 4.1.1 (#3713)
• Additional commits viewable in compare view

Updates org.junit.jupiter:junit-jupiter from 5.13.4 to 6.0.0

Release notes

Sourced from org.junit.jupiter:junit-jupiter's releases.

JUnit 6.0.0 = Platform 6.0.0 + Jupiter 6.0.0 + Vintage 6.0.0

See Release Notes.

New Contributors

• @​2897robo made their first contribution in junit-team/junit-framework#4525
• @​strangelookingnerd made their first contribution in junit-team/junit-framework#4683
• @​eric6iese made their first contribution in junit-team/junit-framework#4717
• @​raccoonback made their first contribution in junit-team/junit-framework#4822
• @​currenjin made their first contribution in junit-team/junit-framework#4823
• @​mehulimukherjee made their first contribution in junit-team/junit-framework#4913
• @​lslonina made their first contribution in junit-team/junit-framework#4629

Full Changelog: junit-team/junit-framework@r5.14.0...r6.0.0

JUnit 6.0.0-RC3 = Platform 6.0.0-RC3 + Jupiter 6.0.0-RC3 + Vintage 6.0.0-RC3

See Release Notes.

New Contributors

• @​mehulimukherjee made their first contribution in junit-team/junit-framework#4913
• @​lslonina made their first contribution in junit-team/junit-framework#4629

Full Changelog: junit-team/junit-framework@r6.0.0-RC2...r6.0.0-RC3

JUnit 6.0.0-RC2 = Platform 6.0.0-RC2 + Jupiter 6.0.0-RC2 + Vintage 6.0.0-RC2

See Release Notes.

Full Changelog: junit-team/junit-framework@r6.0.0-RC1...r6.0.0-RC2

JUnit 6.0.0-RC1 = Platform 6.0.0-RC1 + Jupiter 6.0.0-RC1 + Vintage 6.0.0-RC1

See Release Notes.

New Contributors

• @​raccoonback made their first contribution in junit-team/junit-framework#4822
• @​currenjin made their first contribution in junit-team/junit-framework#4823

Full Changelog: junit-team/junit-framework@r6.0.0-M2...r6.0.0-RC1

JUnit 6.0.0-M2 = Platform 6.0.0-M2 + Jupiter 6.0.0-M2 + Vintage 6.0.0-M2

See Release Notes.

New Contributors

• @​eric6iese made their first contribution in junit-team/junit-framework#4717

Full Changelog: junit-team/junit-framework@r6.0.0-M1...r6.0.0-M2

... (truncated)

Commits

• 4f79594 Release 6.0.0
• 55af30a Revert "Use develop/6.x branch for junit-examples during release build"
• df3cfdd Release 5.14.0
• fcb84a2 Disable backward compatibility check when offline
• c9c8344 Prune 5.14.0 release notes
• 03d8a72 Update broken link to using API Gaurdian with bndtools
• 3a0b29b Use temporary JUnit 6 logo
• 6603caa Rename eclipseClasspath to eclipseConventions to avoid confusion
• ab3470b Make sealed MediaType work in Eclipse
• a8cd41e Remove annotations not visible in Eclipse
• Additional commits viewable in compare view

Updates com.diffplug.spotless from 7.2.1 to 8.0.0

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[coderabbitai]

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[rhamzeh]

@jimmyjames do you think it's time to drop support for Java 11? We were discussing following in Springboot's footsteps earlier this year and maybe it is about time.

cc @dyeam0 / @aaguiarz for input.