Skip to content

Bump joda-time:joda-time from 2.14.1 to 2.14.2#1649

Merged
MancunianSam merged 20 commits into
developfrom
dependabot/maven/joda-time-joda-time-2.14.2
Jun 4, 2026
Merged

Bump joda-time:joda-time from 2.14.1 to 2.14.2#1649
MancunianSam merged 20 commits into
developfrom
dependabot/maven/joda-time-joda-time-2.14.2

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 2, 2026

Copy link
Copy Markdown
Contributor

Bumps joda-time:joda-time from 2.14.1 to 2.14.2.

Release notes

Sourced from joda-time:joda-time's releases.

Release v2.14.2

See the change notes for more information.

What's Changed

Full Changelog: JodaOrg/joda-time@v2.14.1...v2.14.2

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

dependabot Bot added 10 commits June 2, 2026 22:12
Bumps `aws.version` from 2.42.0 to 2.44.13.

Updates `software.amazon.awssdk:s3` from 2.42.0 to 2.44.13

Updates `software.amazon.awssdk:regions` from 2.42.0 to 2.44.13

Updates `software.amazon.awssdk:sdk-core` from 2.42.0 to 2.44.13

Updates `software.amazon.awssdk:sso` from 2.42.0 to 2.44.13

Updates `software.amazon.awssdk:ssooidc` from 2.42.0 to 2.44.13

Updates `software.amazon.awssdk:apache-client` from 2.42.0 to 2.44.13

Updates `software.amazon.awssdk:http-client-spi` from 2.42.0 to 2.44.13

Updates `software.amazon.awssdk:aws-core` from 2.42.0 to 2.44.13

---
updated-dependencies:
- dependency-name: software.amazon.awssdk:s3
  dependency-version: 2.44.13
  dependency-type: direct:development
  update-type: version-update:semver-minor
- dependency-name: software.amazon.awssdk:regions
  dependency-version: 2.44.13
  dependency-type: direct:development
  update-type: version-update:semver-minor
- dependency-name: software.amazon.awssdk:sdk-core
  dependency-version: 2.44.13
  dependency-type: direct:development
  update-type: version-update:semver-minor
- dependency-name: software.amazon.awssdk:sso
  dependency-version: 2.44.13
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: software.amazon.awssdk:ssooidc
  dependency-version: 2.44.13
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: software.amazon.awssdk:apache-client
  dependency-version: 2.44.13
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: software.amazon.awssdk:http-client-spi
  dependency-version: 2.44.13
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: software.amazon.awssdk:aws-core
  dependency-version: 2.44.13
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Bumps `junit.version` from 6.0.3 to 6.1.0.

Updates `org.junit.jupiter:junit-jupiter-params` from 6.0.3 to 6.1.0
- [Release notes](https://github.com/junit-team/junit-framework/releases)
- [Commits](junit-team/junit-framework@r6.0.3...r6.1.0)

Updates `org.junit.jupiter:junit-jupiter-api` from 6.0.3 to 6.1.0
- [Release notes](https://github.com/junit-team/junit-framework/releases)
- [Commits](junit-team/junit-framework@r6.0.3...r6.1.0)

---
updated-dependencies:
- dependency-name: org.junit.jupiter:junit-jupiter-params
  dependency-version: 6.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: org.junit.jupiter:junit-jupiter-api
  dependency-version: 6.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Bumps `cxf.version` from 4.2.0 to 4.2.1.

Updates `org.apache.cxf:cxf-codegen-plugin` from 4.2.0 to 4.2.1

Updates `org.apache.cxf:cxf-rt-frontend-jaxws` from 4.2.0 to 4.2.1

Updates `org.apache.cxf:cxf-rt-transports-http` from 4.2.0 to 4.2.1

Updates `org.apache.cxf:cxf-core` from 4.2.0 to 4.2.1

Updates `org.apache.cxf:cxf-rt-frontend-simple` from 4.2.0 to 4.2.1

Updates `org.apache.cxf:cxf-rt-bindings-soap` from 4.2.0 to 4.2.1

---
updated-dependencies:
- dependency-name: org.apache.cxf:cxf-codegen-plugin
  dependency-version: 4.2.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.apache.cxf:cxf-rt-frontend-jaxws
  dependency-version: 4.2.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.apache.cxf:cxf-rt-transports-http
  dependency-version: 4.2.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.apache.cxf:cxf-core
  dependency-version: 4.2.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.apache.cxf:cxf-rt-frontend-simple
  dependency-version: 4.2.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.apache.cxf:cxf-rt-bindings-soap
  dependency-version: 4.2.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Bumps [software.amazon.nio.s3:aws-java-nio-spi-for-s3](https://github.com/awslabs/aws-java-nio-spi-for-s3) from 2.3.0 to 2.4.0.
- [Release notes](https://github.com/awslabs/aws-java-nio-spi-for-s3/releases)
- [Commits](awslabs/aws-java-nio-spi-for-s3@v2.3.0...v2.4.0)

---
updated-dependencies:
- dependency-name: software.amazon.nio.s3:aws-java-nio-spi-for-s3
  dependency-version: 2.4.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Bumps `log4j2.version` from 2.25.4 to 2.26.0.

Updates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.25.4 to 2.26.0

Updates `org.apache.logging.log4j:log4j-api` from 2.25.4 to 2.26.0

Updates `org.apache.logging.log4j:log4j-core` from 2.25.4 to 2.26.0

---
updated-dependencies:
- dependency-name: org.apache.logging.log4j:log4j-slf4j2-impl
  dependency-version: 2.26.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: org.apache.logging.log4j:log4j-api
  dependency-version: 2.26.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: org.apache.logging.log4j:log4j-core
  dependency-version: 2.26.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Bumps org.netbeans.api:org-netbeans-swing-outline from RELEASE290 to RELEASE300.

---
updated-dependencies:
- dependency-name: org.netbeans.api:org-netbeans-swing-outline
  dependency-version: RELEASE300
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Bumps org.apache.commons:commons-configuration2 from 2.15.0 to 2.15.1.

---
updated-dependencies:
- dependency-name: org.apache.commons:commons-configuration2
  dependency-version: 2.15.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Bumps [org.apache.maven.plugins:maven-surefire-plugin](https://github.com/apache/maven-surefire) from 3.5.5 to 3.5.6.
- [Release notes](https://github.com/apache/maven-surefire/releases)
- [Commits](apache/maven-surefire@surefire-3.5.5...surefire-3.5.6)

---
updated-dependencies:
- dependency-name: org.apache.maven.plugins:maven-surefire-plugin
  dependency-version: 3.5.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Bumps org.netbeans.api:org-openide-util from RELEASE290 to RELEASE300.

---
updated-dependencies:
- dependency-name: org.netbeans.api:org-openide-util
  dependency-version: RELEASE300
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Bumps [joda-time:joda-time](https://github.com/JodaOrg/joda-time) from 2.14.1 to 2.14.2.
- [Release notes](https://github.com/JodaOrg/joda-time/releases)
- [Changelog](https://github.com/JodaOrg/joda-time/blob/main/RELEASE-NOTES.txt)
- [Commits](JodaOrg/joda-time@v2.14.1...v2.14.2)

---
updated-dependencies:
- dependency-name: joda-time:joda-time
  dependency-version: 2.14.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Jun 2, 2026
…rg.netbeans.api-org-openide-util-RELEASE300

Bump org.netbeans.api:org-openide-util from RELEASE290 to RELEASE300
…rg.apache.maven.plugins-maven-surefire-plugin-3.5.6

Bump org.apache.maven.plugins:maven-surefire-plugin from 3.5.5 to 3.5.6
…rg.apache.commons-commons-configuration2-2.15.1

Bump org.apache.commons:commons-configuration2 from 2.15.0 to 2.15.1
…rg.netbeans.api-org-netbeans-swing-outline-RELEASE300

Bump org.netbeans.api:org-netbeans-swing-outline from RELEASE290 to RELEASE300
…og4j2.version-2.26.0

Bump log4j2.version from 2.25.4 to 2.26.0
…oftware.amazon.nio.s3-aws-java-nio-spi-for-s3-2.4.0

Bump software.amazon.nio.s3:aws-java-nio-spi-for-s3 from 2.3.0 to 2.4.0
…xf.version-4.2.1

Bump cxf.version from 4.2.0 to 4.2.1
…unit.version-6.1.0

Bump junit.version from 6.0.3 to 6.1.0
@wiz-2986343e2e

wiz-2986343e2e Bot commented Jun 4, 2026

Copy link
Copy Markdown

Wiz Scan Summary

Scanner Findings
Vulnerability Finding Vulnerabilities 4 High 4 Medium
Data Finding Sensitive Data -
Secret Finding Secrets -
IaC Misconfiguration IaC Misconfigurations -
SAST Finding SAST Findings -
Software Management Finding Software Management Findings -
Total 4 High 4 Medium

View scan details in Wiz

To detect these findings earlier in the dev lifecycle, try using Wiz Code VS Code Extension.

Pull Request Developer Guidance

If the link to the Wiz scan details doesn't work, please ensure you are using the right role in Wiz and that the repository is assigned to the correct project within our Wiz Terraform. Or, you can ask for help in #tna-cloud-security on Slack.

…ws.version-2.44.13

Bump aws.version from 2.42.0 to 2.44.13
@MancunianSam MancunianSam merged commit 5819bb7 into develop Jun 4, 2026
18 checks passed
@dependabot dependabot Bot deleted the dependabot/maven/joda-time-joda-time-2.14.2 branch June 4, 2026 12:38
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file java Pull requests that update java code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant