chore: Bump the gradle-version-updates group in /backend with 4 updates by dependabot[bot] · Pull Request #1325 · otto-de/gitactionboard

dependabot · 2026-04-20T04:54:58Z

Bumps the gradle-version-updates group in /backend with 4 updates: org.apache.httpcomponents.client5:httpclient5, com.tngtech.archunit:archunit-junit5, com.github.spotbugs and com.github.ben-manes.versions.

Updates org.apache.httpcomponents.client5:httpclient5 from 5.6 to 5.6.1

Changelog

Sourced from org.apache.httpcomponents.client5:httpclient5's changelog.

Release 5.6.1

This is a maintenance release disables experimental SCRAM auth scheme by default and fixes SCRAM final response handling. The SCRAM auth scheme can be re-enabled by choosing a custom auth scheme preference sequence that explicitly includes SCRAM auth.

Change Log

Fix SCRAM final response handling. Contributed by Arturo Bernal

Auth challenge parsing code improvement. Contributed by Oleg Kalnichevski

Add missing Javadoc for ConnectionConfig (#820). Contributed by Gary Gregory

Bug fix: Corrected async message exchange cancellation logic in InternalHttpAsyncExecRuntime. Contributed by Oleg Kalnichevski

HTTPCLIENT-2417: Honor TlsConfig attachment in async connect path. Contributed by Arturo Bernal

HTTPCLIENT-2414: Fix Basic auth cache scoping across path prefixes (#802). Contributed by Arturo Bernal

HTTPCLIENT-2415: Normalize CookieOrigin path for cookie matching (#803). Contributed by Arturo Bernal

Bug fix: Corrected sleep time calculation in IdleConnectionEvictor; use 1 minute sleep time by default. Contributed by Oleg Kalnichevski

DefaultManagedHttpClientConnection: Restore original socket timeout. Contributed by Ryan Schmitt

HTTPCLIENT-2411: Use standard HTTP-date format for synthesized Date header (#775). Contributed by Arturo Bernal

Fix NPE in connection evictor setup (#774). Contributed by Arturo Bernal

Commits

4f86ca6 HttpClient 5.6.1 release
1b2bafe Updated release notes for HttpClient 5.6.1 release
1acf00b Fix SCRAM final response handling
49549ab Auth challenge parsing code improvement
fa6b6d7 Add missing Javadoc for ConnectionConfig (#820)
3de8ad5 Fixed DefaultClientTlsStrategy test failures on MacOS
c69f38f Bug-fix: corrects message exchange cancellation logic in InternalHttpAsyncExe...
30386d3 HTTPCLIENT-2417 Honor TlsConfig attachment in async connect path
9cc45f6 HTTPCLIENT-2414 - Fix Basic auth cache scoping across path prefixes (#802)
1e01a48 HTTPCLIENT-2415: Normalize CookieOrigin path for cookie matching (#803)
Additional commits viewable in compare view

Updates com.tngtech.archunit:archunit-junit5 from 1.4.1 to 1.4.2

Release notes

Sourced from com.tngtech.archunit:archunit-junit5's releases.

ArchUnit 1.4.2

Enhancements

Core

DescribedPredicate#negate() returns a DescribedPredicate (#1484)

New JavaCodeUnit.Predicates.anyParameterThat and JavaCodeUnit.Predicates.allParameters (#1498; thanks to @mkhl 👏)

Support Java 26 / class file major version 70 (#1544)

Commits

e45aaa2 prepare release 1.4.2
c07193c set version to 1.4.2-SNAPSHOT
ac9b896 migrate from (meanwhile shut down) OSSRH to Central Publisher Portal using th...
b72fcaf Bump actions/github-script from 8 to 9
fc1881d Bump addressable from 2.8.7 to 2.9.0 in /docs
dee39bb Bump activesupport from 7.1.3.4 to 7.2.3.1 in /docs
b097007 Bump gradle/actions from 5 to 6
4d7cfe9 Bump json from 2.18.1 to 2.19.2 in /docs
90dc773 Bump nokogiri from 1.18.9 to 1.19.1 in /docs
7a88298 Bump faraday from 2.10.1 to 2.14.1 in /docs
Additional commits viewable in compare view

Updates com.github.spotbugs from 6.5.0 to 6.5.1

Updates com.github.ben-manes.versions from 0.53.0 to 0.54.0

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
com.github.spotbugs	[< 6.2, > 6.1.0]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the gradle-version-updates group in /backend with 4 updates: [org.apache.httpcomponents.client5:httpclient5](https://github.com/apache/httpcomponents-client), [com.tngtech.archunit:archunit-junit5](https://github.com/TNG/ArchUnit), com.github.spotbugs and com.github.ben-manes.versions. Updates `org.apache.httpcomponents.client5:httpclient5` from 5.6 to 5.6.1 - [Changelog](https://github.com/apache/httpcomponents-client/blob/rel/v5.6.1/RELEASE_NOTES.txt) - [Commits](apache/httpcomponents-client@rel/v5.6...rel/v5.6.1) Updates `com.tngtech.archunit:archunit-junit5` from 1.4.1 to 1.4.2 - [Release notes](https://github.com/TNG/ArchUnit/releases) - [Commits](TNG/ArchUnit@v1.4.1...v1.4.2) Updates `com.github.spotbugs` from 6.5.0 to 6.5.1 Updates `com.github.ben-manes.versions` from 0.53.0 to 0.54.0 --- updated-dependencies: - dependency-name: org.apache.httpcomponents.client5:httpclient5 dependency-version: 5.6.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: gradle-version-updates - dependency-name: com.tngtech.archunit:archunit-junit5 dependency-version: 1.4.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: gradle-version-updates - dependency-name: com.github.spotbugs dependency-version: 6.5.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: gradle-version-updates - dependency-name: com.github.ben-manes.versions dependency-version: 0.54.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gradle-version-updates ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependabot Pull request created by dependabot dependencies Pull requests that update a dependency file java Changes related to backend labels Apr 20, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore: Bump the gradle-version-updates group in /backend with 4 updates#1325

chore: Bump the gradle-version-updates group in /backend with 4 updates#1325
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/gradle/backend/gradle-version-updates-a0aa8fad9e

dependabot bot commented on behalf of github Apr 20, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot bot commented on behalf of github Apr 20, 2026

Release 5.6.1

Change Log

ArchUnit 1.4.2

Enhancements

Core

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants