chore(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Type	Update	Change	Age	Adoption	Passing	Confidence
docker.io/bitnami/kafka (source)		minor	3.7.1 -> 3.8.1
docker.io/bitnami/minio (source)		minor	2024.7.31-debian-12-r0 -> 2024.10.29-debian-12-r1
docker.io/confluentinc/cp-kafkacat		patch	7.1.13 -> 7.1.14
docker.io/hapiproject/hapi		minor	v7.2.0 -> v7.4.0
docker.io/library/gradle	stage	minor	8.9.0-jdk17 -> 8.10.2-jdk17
docker/dockerfile	syntax	minor	1.9 -> 1.11
gradle (source)		minor	8.9 -> 8.10.2
io.minio:minio	dependencies	patch	8.5.11 -> 8.5.13
com.fasterxml.jackson.core:jackson-core	dependencies	minor	2.17.2 -> 2.18.1
org.miracum:kafka-fhir-serializer	dependencies	patch	1.0.6 -> 1.0.8
io.micrometer:micrometer-core	dependencies	patch	1.13.2 -> 1.13.6
io.micrometer:micrometer-registry-prometheus	dependencies	patch	1.13.2 -> 1.13.6
ca.uhn.hapi.fhir:hapi-fhir-caching-caffeine (source)	dependencies	minor	7.2.2 -> 7.4.5
ca.uhn.hapi.fhir:hapi-fhir-client-okhttp (source)	dependencies	minor	7.2.2 -> 7.4.5
ca.uhn.hapi.fhir:hapi-fhir-structures-r4 (source)	dependencies	minor	7.2.2 -> 7.4.5
ca.uhn.hapi.fhir:hapi-fhir-client (source)	dependencies	minor	7.2.2 -> 7.4.5
ca.uhn.hapi.fhir:hapi-fhir-base (source)	dependencies	minor	7.2.2 -> 7.4.5
org.springframework.boot	plugin	patch	3.3.2 -> 3.3.5

---

Release Notes

gradle/gradle (gradle)

v8.10.2

Compare Source

v8.10.1

Compare Source

v8.10

Compare Source

minio/minio-java (io.minio:minio)

v8.5.13: Bugfix Release

Compare Source

What's Changed

• add httpclient close option to minio client builder by @​SerhiiKryvokin in https://github.com/minio/minio-java/pull/1587
• upgrade gradle and dependencies by @​balamurugana in https://github.com/minio/minio-java/pull/1579

New Contributors

• @​SerhiiKryvokin made their first contribution in https://github.com/minio/minio-java/pull/1587

Full Changelog: minio/minio-java@8.5.12...8.5.13

v8.5.12: Bugfix Release

Compare Source

What's Changed

• Add skip bucket/region/object name validation as special usecase by @​rudgal in https://github.com/minio/minio-java/pull/1576
• SignV4: trim leading/trailing spaces in header value by @​balamurugana in https://github.com/minio/minio-java/pull/1578

New Contributors

• @​rudgal made their first contribution in https://github.com/minio/minio-java/pull/1576

Full Changelog: minio/minio-java@8.5.11...8.5.12

miracum/kafka-fhir-serializer (org.miracum:kafka-fhir-serializer)

v1.0.8

What's Changed

• chore(deps): update github-actions by @​renovate in https://github.com/miracum/kafka-fhir-serializer/pull/53
• chore(deps): update github-actions (major) by @​renovate in https://github.com/miracum/kafka-fhir-serializer/pull/54
• chore(deps): update all non-major dependencies by @​renovate in https://github.com/miracum/kafka-fhir-serializer/pull/52
• chore(deps): update github-actions by @​renovate in https://github.com/miracum/kafka-fhir-serializer/pull/55
• fix(deps): update all non-major dependencies by @​renovate in https://github.com/miracum/kafka-fhir-serializer/pull/56
• fix: use singleton default fhir context by @​chgl in https://github.com/miracum/kafka-fhir-serializer/pull/57

Full Changelog: miracum/kafka-fhir-serializer@v1.0.7...v1.0.8

v1.0.7

What's Changed

• chore(deps): update all non-major dependencies by @​renovate in https://github.com/miracum/kafka-fhir-serializer/pull/50
• chore(deps): update github-actions by @​renovate in https://github.com/miracum/kafka-fhir-serializer/pull/49
• chore(deps): update gradle/actions action to v4 by @​renovate in https://github.com/miracum/kafka-fhir-serializer/pull/51

Full Changelog: miracum/kafka-fhir-serializer@v1.0.6...v1.0.7

micrometer-metrics/micrometer (io.micrometer:micrometer-core)

v1.13.6: 1.13.6

⭐ New Features / Enhancements

• Improve memory usage of StepBucketHistogram #​4954

🐞 Bug Fixes

• Instrumented Java 11 HttpClient does not re-throw exceptions in sendAsync call #​5136
• Map time units to UCUM format for Dynatrace #​5588
• Aspects' tagsBasedOnJoinPoint may throw uncaught exception #​5584
• Set user agent header in OTLP registry #​5577
• MicrometerHttpRequestExecutor fails to instrument with Apache HC 5.4 #​5575

📔 Documentation

• Remove duplicated context-propagation documentation in Micrometer docs #​5549
• [OTLP Registry] Document batch size configuration #​5578

🔨 Dependency Upgrades

• Bump dropwizard-metrics from 4.2.27 to 4.2.28 #​5566
• Bump context-propagation to 1.1.2 #​5592

📝 Tasks

• Bump org.junit:junit-bom from 5.10.4 to 5.10.5 #​5571
• Bump me.champeau.gradle:japicmp-gradle-plugin from 0.4.3 to 0.4.4 #​5567
• Bump jersey3 from 3.0.12 to 3.0.16 #​5560
• Do not include formerly removed micrometer-samples-jetty12 subproject #​5554
• Bump spring from 5.3.37 to 5.3.39 #​5419
• Bump org.junit.platform:junit-platform-launcher from 1.10.4 to 1.10.5 #​5557
• Bump org.mongodb:mongodb-driver-sync from 4.11.3 to 4.11.4 #​5538
• Bump uk.org.webcompere:system-stubs-jupiter from 2.1.6 to 2.1.7 #​5536
• Bump io.netty:netty-bom from 4.1.112.Final to 4.1.114.Final #​5534
• Bump io.spring.develocity.conventions from 0.0.20 to 0.0.22 #​5533
• Bump org.junit.platform:junit-platform-launcher from 1.10.3 to 1.10.4 #​5532
• Bump jetty9 from 9.4.55.v20240627 to 9.4.56.v20240826 #​5531
• Bump junit from 5.10.3 to 5.10.4 #​5530
• Bump spring from 5.3.37 to 5.3.39 #​5455

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​lenin-jaganathan, @​pirgeo, @​kinddevil, and @​joaopgrassi

v1.13.5: 1.13.5

🐞 Bug Fixes

• ConcurrentModificationException when late meter filters are added #​5489

🔨 Dependency Upgrades

• Bump com.signalfx.public:signalfx-java from 1.0.45 to 1.0.46 #​5506
• Bump com.netflix.spectator:spectator-reg-atlas from 1.7.19 to 1.7.21 #​5505

Tasks

• Use Prometheus BOMs for dependency management #​5468

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​mabartos, @​emmanuel-ferdman, and @​izeye

v1.13.4: 1.13.4

🐞 Bug Fixes

• BOM contains a non-resolvable dependency: io.micrometer:concurrency-tests #​5395
• Zero percentile can be missing from Dynatrace meters where expected #​4750

📔 Documentation

• Fix a typo in meters.adoc #​5399

🔨 Dependency Upgrades

• Bump com.netflix.spectator:spectator-reg-atlas from 1.7.18 to 1.7.19 #​5425
• Bump dropwizard-metrics from 4.2.26 to 4.2.27 #​5423
• Bump com.signalfx.public:signalfx-java from 1.0.44 to 1.0.45 #​5420

📝 Tasks

• Bump org.apache.maven:maven-resolver-provider from 3.9.8 to 3.9.9 #​5426
• Bump io.spring.develocity.conventions from 0.0.19 to 0.0.20 #​5424
• Bump io.projectreactor:reactor-bom from 2022.0.21 to 2022.0.22 #​5422
• Bump spring-javaformat from 0.0.42 to 0.0.43 #​5421
• Bump org.postgresql:postgresql from 42.7.3 to 42.7.4 #​5418
• Fix GuavaCacheMetricsTest and CaffeineCacheMetricsTest #​5405

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​izeye and @​madhead

v1.13.3: 1.13.3

🐞 Bug Fixes

• Add default factoryType tag in CommonsObjectPool2Metrics #​5316
• Buffered statsd lines are not published on close #​2141
• Disable kotlinSourcesJar since it conflicts with sourcesJar #​5151

📔 Documentation

• Make more explicit that recording a metric is safe to call #​5365

🔨 Dependency Upgrades

• Bump com.fasterxml.jackson.core:jackson-databind from 2.17.1 to 2.17.2 #​5364
• Bump com.gradle.develocity from 3.17.5 to 3.17.6 #​5357
• Bump com.netflix.spectator:spectator-reg-atlas from 1.7.14 to 1.7.17 #​5356
• Bump com.signalfx.public:signalfx-java from 1.0.43 to 1.0.44 #​5362
• Bump io.netty:netty-bom from 4.1.111.Final to 4.1.112.Final #​5360
• Bump io.projectreactor:reactor-bom from 2022.0.20 to 2022.0.21 #​5358
• Bump jersey3 from 3.0.11 to 3.0.12 #​5378
• Bump jetty9 from 9.4.54.v20240208 to 9.4.55.v20240627 #​5361
• Bump org.jetbrains.kotlin.jvm from 1.9.23 to 1.9.24 #​5294

📝 Tasks

• Make PrometheusMeterRegistryTest less flaky #​5302
• Migrate to io.spring.develocity.conventions:0.0.19 #​5312
• Apply test-retry settings to all tests #​5303

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​izeye, @​HYEONSEOK1, @​BJMg, and @​cbrachem

hapifhir/hapi-fhir (ca.uhn.hapi.fhir:hapi-fhir-caching-caffeine)

v7.4.5

7.4.5

v7.4.4

7.4.4

v7.4.3

7.4.3

v7.4.2

7.4.2

v7.4.0

7.4.0

v7.2.3

7.2.3

---

Configuration

📅 Schedule: Branch creation - "every 3 months on the first day of the month" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions]

🦙 MegaLinter status: ❌ ERROR

Descriptor	Linter	Files	Fixed	Errors	Elapsed time
✅ ACTION	actionlint	4		0	0.04s
✅ DOCKERFILE	hadolint	2		0	0.13s
✅ EDITORCONFIG	editorconfig-checker	54		0	0.17s
✅ GROOVY	npm-groovy-lint	2		0	8.68s
✅ JAVA	checkstyle	11		0	4.92s
✅ JSON	jsonlint	4		0	0.22s
✅ JSON	prettier	4		0	0.8s
✅ JSON	v8r	4		0	4.03s
✅ MARKDOWN	markdownlint	2		0	0.61s
✅ PYTHON	bandit	1		0	1.03s
✅ PYTHON	black	1		0	0.82s
✅ PYTHON	flake8	1		0	0.6s
✅ PYTHON	isort	1		0	0.47s
✅ PYTHON	mypy	1		0	7.49s
✅ PYTHON	ruff	1		0	0.03s
✅ REPOSITORY	checkov	yes		no	12.63s
✅ REPOSITORY	gitleaks	yes		no	0.28s
✅ REPOSITORY	git_diff	yes		no	0.02s
✅ REPOSITORY	grype	yes		no	16.83s
✅ REPOSITORY	kics	yes		no	17.55s
✅ REPOSITORY	secretlint	yes		no	0.79s
✅ REPOSITORY	syft	yes		no	0.59s
❌ REPOSITORY	trivy	yes		1	1.6s
✅ REPOSITORY	trivy-sbom	yes		no	1.2s
✅ REPOSITORY	trufflehog	yes		no	4.16s
✅ XML	xmllint	1		0	0.02s
✅ YAML	prettier	15		0	1.07s
✅ YAML	v8r	15		0	14.2s
✅ YAML	yamllint	15		0	0.78s

See detailed report in MegaLinter reports

You could have same capabilities but better runtime performances if you request a new MegaLinter flavor.

• Click here to request the new flavor

MegaLinter is graciously provided by

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

[github-actions]

Trivy image scan report

ghcr.io/miracum/kafka-fhir-to-server:pr-105 (debian 12.6)

12 known vulnerabilities found (LOW: 5 CRITICAL: 2 HIGH: 2 MEDIUM: 3)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
libexpat1	CVE-2024-45491	CRITICAL	2.5.0-1	2.5.0-1+deb12u1
libexpat1	CVE-2024-45492	CRITICAL	2.5.0-1	2.5.0-1+deb12u1
libexpat1	CVE-2024-45490	HIGH	2.5.0-1	2.5.0-1+deb12u1
openjdk-17-jre-headless	CVE-2024-21147	HIGH	17.0.11+9-1~deb12u1	17.0.12+7-2~deb12u1
openjdk-17-jre-headless	CVE-2024-21140	MEDIUM	17.0.11+9-1~deb12u1	17.0.12+7-2~deb12u1
openjdk-17-jre-headless	CVE-2024-21145	MEDIUM	17.0.11+9-1~deb12u1	17.0.12+7-2~deb12u1
openjdk-17-jre-headless	CVE-2024-21235	MEDIUM	17.0.11+9-1~deb12u1	17.0.13+11-2~deb12u1
openjdk-17-jre-headless	CVE-2024-21131	LOW	17.0.11+9-1~deb12u1	17.0.12+7-2~deb12u1
openjdk-17-jre-headless	CVE-2024-21138	LOW	17.0.11+9-1~deb12u1	17.0.12+7-2~deb12u1
openjdk-17-jre-headless	CVE-2024-21208	LOW	17.0.11+9-1~deb12u1	17.0.13+11-2~deb12u1
openjdk-17-jre-headless	CVE-2024-21210	LOW	17.0.11+9-1~deb12u1	17.0.13+11-2~deb12u1
openjdk-17-jre-headless	CVE-2024-21217	LOW	17.0.11+9-1~deb12u1	17.0.13+11-2~deb12u1

No Misconfigurations found

Java

2 known vulnerabilities found (CRITICAL: 0 HIGH: 2 MEDIUM: 0 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
ca.uhn.hapi.fhir:org.hl7.fhir.r4	CVE-2024-51132	HIGH	6.3.23	6.4.0
ca.uhn.hapi.fhir:org.hl7.fhir.utilities	CVE-2024-51132	HIGH	6.3.23	6.4.0

No Misconfigurations found

[miracum-bot]

🎉 This PR is included in version 2.1.6 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀