Bump the java group across 1 directory with 5 updates

[dependabot]

Bumps the java group with 5 updates in the /java directory:

Package	From	To
com.google.protobuf:protobuf-bom	4.30.0	4.30.2
com.google.api.grpc:proto-google-common-protos	2.53.0	2.54.1
com.google.guava:guava	33.4.0-android	33.4.6-android
org.apache.maven.plugins:maven-surefire-plugin	3.5.2	3.5.3
org.jacoco:jacoco-maven-plugin	0.8.12	0.8.13

Updates com.google.protobuf:protobuf-bom from 4.30.0 to 4.30.2

Commits

• 43e1626 Updating version.json and repo version numbers to: 30.2
• 7a4c63b Fix lite classes in the protobuf-java Maven release to be JDK8 compatible. (#...
• 7831669 Remove dllexport attribute on variable definition. (#20833)
• da9cadc Restore JDK8 compatibility in Bazel for libraries with dependencies from Mave...
• 09b5078 Add protobuf_maven artifacts to protobuf_maven_dev as well so they can still ...
• b7f06f1 Add volatile to featuresResolved (#20766)
• b69f653 Restore generator headers in cmake install until the next breaking C++ releas...
• f4b0a79 Restore custom protobuf maven namespaces to avoid polluting main maven namesp...
• 2dc9f35 Fix Java concurrency issue in feature resolution for old <=3.25.x gencode usi...
• 221b2a0 Change how we decide which empty string implementation to use. (#20708)
• Additional commits viewable in compare view

Updates com.google.api.grpc:proto-google-common-protos from 2.53.0 to 2.54.1

Release notes

Sourced from com.google.api.grpc:proto-google-common-protos's releases.

v2.54.0

2.54.0 (2025-02-25)

Features

• add client side logging with slf4j (#3403) (fe002fa)

Bug Fixes

• S2A gRPC flow creates ComputeEngineCredentials via newBuilder. (#3651) (29c061e)

Dependencies

• update dependency ch.qos.logback:logback-core to v1.3.15 [security] (#3654) (093d867)
• update google api dependencies (#3631) (48db2a1)
• update google auth library dependencies to v1.33.1 (#3656) (f7877a5)
• update google http client dependencies to v1.46.3 (#3657) (9d5b3b5)
• update grpc to 1.70.0 (#3641) (ad26cf9)
• update grpc to 1.70.0 (missed update) (#3658) (6ca0599)
• Update opentelemetry-semconv to v1.29.0-alpha (#3635) (49ac09d)

Documentation

• update showcase readme (#3659) (0ddf073)

Changelog

Sourced from com.google.api.grpc:proto-google-common-protos's changelog.

Changelog

2.55.1 (2025-03-12)

Dependencies

• revert "deps: update arrow.version to v18.2.0" (#3694) (2725744)

2.55.0 (2025-03-12)

Features

• generate showcase using docker image (#3568) (3857e3f)
• next release from main branch is 2.55.0 (#3668) (1eda55f)

Bug Fixes

• remove call credentials from call options if DirectPath (#3670) (5ede29c)

Dependencies

• update arrow.version to v18.2.0 (#3675) (5a555e5)

2.54.0 (2025-02-25)

Features

• add client side logging with slf4j (#3403) (fe002fa)

Bug Fixes

• S2A gRPC flow creates ComputeEngineCredentials via newBuilder. (#3651) (29c061e)

Dependencies

• update dependency ch.qos.logback:logback-core to v1.3.15 [security] (#3654) (093d867)
• update google api dependencies (#3631) (48db2a1)
• update google auth library dependencies to v1.33.1 (#3656) (f7877a5)
• update google http client dependencies to v1.46.3 (#3657) (9d5b3b5)
• update grpc to 1.70.0 (#3641) (ad26cf9)
• update grpc to 1.70.0 (missed update) (#3658) (6ca0599)
• Update opentelemetry-semconv to v1.29.0-alpha (#3635) (49ac09d)

... (truncated)

Commits

• 95fb766 chore(main): release 2.46.1 (#3238)
• a7781a6 deps: update dependency net.bytebuddy:byte-buddy to v1.15.2 (#3235)
• f6e30a5 deps: update grpc dependencies to v1.68.0 (#3220)
• ed976ff chore: update googleapis commit at Tue Sep 24 02:26:35 UTC 2024 (#3230)
• 8b42993 deps: update junit5 monorepo to v5.11.1 (#3236)
• 4803738 deps: update google api dependencies (#3224)
• 69e3e38 deps: update google.cloud.opentelemetry.version to v0.32.0 (#3225)
• 73d803b deps: update dependency black to v24.8.0 (#3234)
• ab0976b deps: update dependency watchdog to v4.0.2 (#3232)
• ce60bdf deps: update dependency pyyaml to v6.0.2 (#3231)
• Additional commits viewable in compare view

Updates com.google.guava:guava from 33.4.0-android to 33.4.6-android

Release notes

Sourced from com.google.guava:guava's releases.

33.4.6

Guava 33.4.6 fixes two problems that we introduced while modularizing Guava in 33.4.5.

Even if you're not upgrading from Guava 33.4.0 or earlier, still read the release notes for Guava 33.4.1. Those release notes contain information about Guava 33.4.5 and 33.4.6's effect on the module system.

Maven

<dependency>
  <groupId>com.google.guava</groupId>
  <artifactId>guava</artifactId>
  <version>33.4.6-jre</version>
  <!-- or, for Android: -->
  <version>33.4.6-android</version>
</dependency>

Jar files

• 33.4.6-jre.jar
• 33.4.6-android.jar

Guava requires one runtime dependency, which you can download here:

• failureaccess-1.0.3.jar

Javadoc

• 33.4.6-jre
• 33.4.6-android

JDiff

• 33.4.6-jre vs. 33.4.5-jre
• 33.4.6-android vs. 33.4.5-android
• 33.4.6-android vs. 33.4.6-jre

Changelog

• Removed the extra copy of each class from the Guava jar. The extra copies were an accidental addition from the modularization work in Guava 33.4.5. (40485b93ce)
• Fixed annotation-related warnings when using Guava in modular builds. The most common such warning is Cannot find annotation method 'value()' in type 'DoNotMock': .... (7e15ab3566)

33.4.5

Use Guava 33.4.6, not Guava 33.4.5. 33.4.5 was our first attempt to modularize Guava, but we misconfigured our build, so it:

• contains an extra copy of each of its classes
• does not declare its dependencies on artifacts of annotations

These issues are fixed in release 33.4.6. Sorry for the trouble.

... (truncated)

Commits

• See full diff in compare view

Updates org.apache.maven.plugins:maven-surefire-plugin from 3.5.2 to 3.5.3

Release notes

Sourced from org.apache.maven.plugins:maven-surefire-plugin's releases.

3.5.3

🐛 Bug Fixes

• [SUREFIRE-1737] - Fix disable in statelessTestsetReporter (#816) @​slawekjaranowski
• [SUREFIRE-1643] - surefire junit5 parallel tests (#815) @​olamy
• [SUREFIRE-2289] - Make exceptions more appropriate to context (#798) @​elharo

👻 Maintenance

• surefire shared utils version current version (#825) @​olamy
• Update site descriptors (#821) @​slawekjaranowski
• Use newer version of surefire for itself testing, enable JUnit 5 in tests (#822) @​slawekjaranowski
• Remove dependencies from root pom (#819) @​slawekjaranowski
• move this dependency to dptMngt (#818) @​olamy
• [SUREFIRE-2291] - Change logger from Plexus to SLF4J (#811) @​jeffjensen
• Add GitHub Automation actions (#812) @​slawekjaranowski
• Convert reports to Guice (#803) @​elharo
• [MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#809) @​Bukama
• Update encoding docs (#802) @​elharo
• Guice injection (#801) @​elharo

📦 Dependency updates

• Bump org.htmlunit:htmlunit from 4.10.0 to 4.11.1 (#823) @dependabot[bot]
• Bump parent to 44 (#817) @​slawekjaranowski
• Bump org.codehaus.plexus:plexus-java from 1.3.0 to 1.4.0 (#810) @dependabot[bot]
• Bump org.htmlunit:htmlunit from 4.4.0 to 4.10.0 (#813) @dependabot[bot]
• Bump commons-io:commons-io from 2.17.0 to 2.18.0 (#797) @dependabot[bot]
• Bump org.assertj:assertj-core from 3.27.2 to 3.27.3 (#807) @dependabot[bot]
• Bump org.assertj:assertj-core from 3.27.0 to 3.27.2 (#805) @dependabot[bot]
• Bump org.assertj:assertj-core from 3.26.3 to 3.27.0 (#800) @dependabot[bot]

Commits

• 4434650 [maven-release-plugin] prepare release surefire-3.5.3
• 1270950 use github directly
• 59f3a1f release tag name backward compatible
• dfbabe2 assertj-core must be test scope (#826)
• e1f8119 back to 3.5.3-SNAPSHOT
• c497559 [maven-release-plugin] prepare for next development iteration
• 3962112 [maven-release-plugin] prepare release v3.5.3
• 227c134 surefire shared utils version current version (#825)
• 1d34c34 Bump org.htmlunit:htmlunit from 4.10.0 to 4.11.1
• 906b65a Update site descriptors
• Additional commits viewable in compare view

Updates org.jacoco:jacoco-maven-plugin from 0.8.12 to 0.8.13

Release notes

Sourced from org.jacoco:jacoco-maven-plugin's releases.

0.8.13

New Features

• JaCoCo now officially supports Java 23 and Java 24 (GitHub #1757, #1631, #1867).
• Experimental support for Java 25 class files (GitHub #1807).
• Calculation of line coverage for Kotlin inline functions (GitHub #1670).
• Calculation of line coverage for Kotlin inline functions with reified type parameter (GitHub #1670, #1700).
• Calculation of coverage for Kotlin JvmSynthetic functions (GitHub #1700).
• Part of bytecode generated by the Kotlin Compose compiler plugin is filtered out during generation of report (GitHub #1616).
• Part of bytecode generated by the Kotlin compiler for inline value classes is filtered out during generation of report (GitHub #1475).
• Part of bytecode generated by the Kotlin compiler for suspending lambdas without suspension points is filtered out during generation of report (GitHub #1283).
• Part of bytecode generated by the Kotlin compiler for when expressions and statements with nullable enum subject is filtered out during generation of report (GitHub #1774).
• Part of bytecode generated by the Kotlin compiler for when expressions and statements with nullable String subject is filtered out during generation of report (GitHub #1769).
• Part of bytecode generated by the Kotlin compiler for chains of safe call operators is filtered out during generation of report (GitHub #1810, #1818).
• Method getEntries generated by the Kotlin compiler for enum classes is filtered out during generation of report (GitHub #1625).
• Methods generated by the Kotlin compiler for constructors and functions with JvmOverloads annotation are filtered out (GitHub #1768).

Fixed bugs

• Fixed interpretation of Kotlin SMAP (GitHub #1525).
• File extensions are preserved in HTML report in case of clashes of normalized file names (GitHub #1660).

Non-functional Changes

• JaCoCo build now uses Maven Wrapper and requires at least Maven 3.9.9 (GitHub #1708, #1707, #1681).
• JaCoCo now depends on ASM 9.8 (GitHub #1862).
• More context information when IllegalArgumentException occurs during reading of zip file (GitHub #1833).

Commits

• 78d5eff Prepare release 0.8.13
• e579092 Happy birthday Java 24! (#1867)
• 17d31aa Upgrade ASM to 9.8 (#1863)
• ee07ecb Upgrade Kotlin to 2.1.20 (#1860)
• f0dcc6b Bump actions/upload-artifact from 4.6.1 to 4.6.2 (#1861)
• 99707c3 Upgrade spotless-maven-plugin to 2.44.3 (#1851)
• 21f6a99 Upgrade maven-deploy-plugin to 3.1.4 (#1854)
• c7da68b Upgrade maven-install-plugin to 3.1.4 (#1853)
• 80ebc77 Upgrade maven-clean-plugin to 3.4.1 (#1850)
• 0bb8bd5 Bump actions/upload-artifact from 4.6.0 to 4.6.1 (#1852)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions