Skip to content

chore(deps): bump the low-risk group with 2 updates#349

Closed
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/maven/low-risk-d40732034e
Closed

chore(deps): bump the low-risk group with 2 updates#349
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/maven/low-risk-d40732034e

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 2, 2026
edited
Loading

Bumps the low-risk group with 2 updates: org.yaml:snakeyaml and org.mockito:mockito-junit-jupiter.

Updates org.yaml:snakeyaml from 2.5 to 2.6

Commits

Updates org.mockito:mockito-junit-jupiter from 5.21.0 to 5.22.0

Release notes

Sourced from org.mockito:mockito-junit-jupiter's releases.

v5.22.0

Changelog generated by Shipkit Changelog Gradle Plugin

5.22.0

Commits
  • 25f1395 Add core API to enable Kotlin singleton mocking (#3762)
  • ef9ee55 Avoids mocking private static methods, as well as package-private static meth...
  • d16fcfc Bump graalvm/setup-graalvm from 1.4.4 to 1.4.5 (#3780)
  • 27eb8a3 Clarify RETURNS_MOCKS behavior with sealed abstract enums (Java 15+) (#3773)
  • 9e5d449 Add tests for Sets utility class (#3771)
  • 8d9a62f Bump actions/upload-artifact from 5 to 6 (#3774)
  • See full diff in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the low-risk group with 2 updates
4e9d0b4 
Bumps the low-risk group with 2 updates: [org.yaml:snakeyaml](https://bitbucket.org/snakeyaml/snakeyaml) and [org.mockito:mockito-junit-jupiter](https://github.com/mockito/mockito).


Updates `org.yaml:snakeyaml` from 2.5 to 2.6
- [Commits](https://bitbucket.org/snakeyaml/snakeyaml/branches/compare/snakeyaml-2.6..snakeyaml-2.5)

Updates `org.mockito:mockito-junit-jupiter` from 5.21.0 to 5.22.0
- [Release notes](https://github.com/mockito/mockito/releases)
- [Commits](mockito/mockito@v5.21.0...v5.22.0)

---
updated-dependencies:
- dependency-name: org.yaml:snakeyaml
  dependency-version: '2.6'
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: low-risk
- dependency-name: org.mockito:mockito-junit-jupiter
  dependency-version: 5.22.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: low-risk
...

Signed-off-by: dependabot[bot] <support@github.com>
Copilot AI review requested due to automatic review settings March 2, 2026 09:13
@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Mar 2, 2026
@dependabot dependabot bot review requested due to automatic review settings March 2, 2026 09:13
@RichardSlater
Copy link
Contributor

RichardSlater commented Mar 2, 2026

/azp run

@azure-pipelines
Copy link

azure-pipelines bot commented Mar 2, 2026

Azure Pipelines successfully started running 1 pipeline(s).

RichardSlater
RichardSlater approved these changes Mar 2, 2026
View reviewed changes
Copy link
Contributor

@RichardSlater RichardSlater left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Low-risk group, standard pre-approved change.

@RichardSlater RichardSlater enabled auto-merge (squash) March 2, 2026 09:41
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Mar 9, 2026

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Mar 9, 2026
auto-merge was automatically disabled March 9, 2026 09:10

Pull request was closed

@dependabot dependabot bot deleted the dependabot/maven/low-risk-d40732034e branch March 9, 2026 09:10
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@RichardSlater RichardSlater RichardSlater approved these changes

Assignees

@RichardSlater RichardSlater

Labels

dependencies Pull requests that update a dependency file java Pull requests that update java code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@RichardSlater