From 6c58cc5698c40acdbe20317f24b80f0bf8d0b085 Mon Sep 17 00:00:00 2001
From: Gary Gregory <garydgregory@gmail.com>
Date: Mon, 23 Feb 2026 10:59:05 -0500
Subject: [PATCH 01/10] Bump github/codeql-action from 4.32.0 to 4.32.4

---
 .github/workflows/codeql-analysis.yml     | 6 +++---
 .github/workflows/scorecards-analysis.yml | 2 +-
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
index c47806d71..d5d490d2d 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -58,7 +58,7 @@ jobs:
 
     # Initializes the CodeQL tools for scanning.
     - name: Initialize CodeQL
-      uses: github/codeql-action/init@9e907b5e64f6b83e7804b09294d44122997950d6 # v4.32.3
+      uses: github/codeql-action/init@89a39a4e59826350b863aa6b6252a07ad50cf83e # v4.32.4
       with:
         languages: ${{ matrix.language }}
         # If you wish to specify custom queries, you can do so here or in a config file.
@@ -69,7 +69,7 @@ jobs:
     # Autobuild attempts to build any compiled languages  (C/C++, C#, or Java).
     # If this step fails, then you should remove it and run the build manually (see below)
     - name: Autobuild
-      uses: github/codeql-action/autobuild@9e907b5e64f6b83e7804b09294d44122997950d6 # v4.32.3
+      uses: github/codeql-action/autobuild@89a39a4e59826350b863aa6b6252a07ad50cf83e # v4.32.4
 
     # ℹ️ Command-line programs to run using the OS shell.
     # 📚 https://git.io/JvXDl
@@ -83,4 +83,4 @@ jobs:
     #   make release
 
     - name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@9e907b5e64f6b83e7804b09294d44122997950d6 # v4.32.3
+      uses: github/codeql-action/analyze@89a39a4e59826350b863aa6b6252a07ad50cf83e # v4.32.4
diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml
index cb3e06bc6..f01ca3a11 100644
--- a/.github/workflows/scorecards-analysis.yml
+++ b/.github/workflows/scorecards-analysis.yml
@@ -64,6 +64,6 @@ jobs:
           retention-days: 5
 
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@9e907b5e64f6b83e7804b09294d44122997950d6 # v4.32.3
+        uses: github/codeql-action/upload-sarif@89a39a4e59826350b863aa6b6252a07ad50cf83e # v4.32.4
         with:
           sarif_file: results.sarif

From c7df29ea90d465be4269c8a2f0b264c3423eccf5 Mon Sep 17 00:00:00 2001
From: Gary Gregory <garydgregory@gmail.com>
Date: Thu, 26 Feb 2026 13:05:18 +0000
Subject: [PATCH 02/10] Updates for the next release

---
 src/changes/changes.xml | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/src/changes/changes.xml b/src/changes/changes.xml
index e83531125..db6bb1de5 100644
--- a/src/changes/changes.xml
+++ b/src/changes/changes.xml
@@ -57,6 +57,11 @@ The <action> type attribute can be add,update,fix,remove.
     The changes report outputs actions in the order they appear in this file.
      -->
     <body>
+      <release version="98" date="YYYY-MM-DD" description="This is a feature and maintenance release. Java 8 or later is required.">
+	    <!-- FIX -->
+	    <!-- ADD -->
+	    <!-- UPDATE -->
+	  </release>
       <release version="97" date="2026-02-21" description="This is a feature and maintenance release. Java 8 or later is required.">
         <!-- FIX -->
         <!-- ADD -->

From 87ea60cfdca87658752030e5cf44f3c91852c305 Mon Sep 17 00:00:00 2001
From: Gary Gregory <garydgregory@gmail.com>
Date: Thu, 26 Feb 2026 13:57:29 +0000
Subject: [PATCH 03/10] Updates for the next release

---
 pom.xml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/pom.xml b/pom.xml
index f057343d8..9656d9e4c 100644
--- a/pom.xml
+++ b/pom.xml
@@ -76,13 +76,13 @@
     <project.build.outputTimestamp>2026-02-26T13:04:11Z</project.build.outputTimestamp>
     <commons.main.branch>master</commons.main.branch>
     <commons.release.branch>release</commons.release.branch>
-    <commons.release.version>97</commons.release.version>
-    <commons.release.next>98</commons.release.next>
+    <commons.release.version>98</commons.release.version>
+    <commons.release.next>99</commons.release.next>
     <commons.rc.version>RC1</commons.rc.version>
     <commons.jira.id>COMMONSSITE</commons.jira.id>
     <!-- Commons Release Plugin -->
     <!-- Previous version of the component (used for reporting binary compatibility check)-->
-    <commons.bc.version>96</commons.bc.version>
+    <commons.bc.version>97</commons.bc.version>
     <commons.release.isDistModule>true</commons.release.isDistModule>
     <!--
       Define the following in ~/.m2/settings.xml in an active profile:

From fe9bf43d9824205b0d66df70c3424ded9a8bd5ca Mon Sep 17 00:00:00 2001
From: Gary Gregory <garydgregory@gmail.com>
Date: Sat, 28 Feb 2026 08:01:21 -0500
Subject: [PATCH 04/10] Bump net.sourceforge.pmd:pmd-* from 7.21.0 to 7.22.0.

---
 pom.xml                 | 2 +-
 src/changes/changes.xml | 1 +
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/pom.xml b/pom.xml
index 9656d9e4c..2c78248b0 100644
--- a/pom.xml
+++ b/pom.xml
@@ -133,7 +133,7 @@
     <commons.javadoc.version>3.12.0</commons.javadoc.version>
     <commons.jxr.version>3.6.0</commons.jxr.version>
     <commons.pmd.version>3.28.0</commons.pmd.version>
-    <commons.pmd-impl.version>7.21.0</commons.pmd-impl.version>
+    <commons.pmd-impl.version>7.22.0</commons.pmd-impl.version>
     <commons.project-info.version>3.9.0</commons.project-info.version>
     <commons.rat.version>0.17</commons.rat.version>
     <commons.release-plugin.version>1.9.2</commons.release-plugin.version>
diff --git a/src/changes/changes.xml b/src/changes/changes.xml
index db6bb1de5..b53093e17 100644
--- a/src/changes/changes.xml
+++ b/src/changes/changes.xml
@@ -61,6 +61,7 @@ The <action> type attribute can be add,update,fix,remove.
 	    <!-- FIX -->
 	    <!-- ADD -->
 	    <!-- UPDATE -->
+        <action type="update" dev="ggregory" due-to="Gary Gregory">Bump net.sourceforge.pmd:pmd-* from 7.21.0 to 7.22.0.</action>
 	  </release>
       <release version="97" date="2026-02-21" description="This is a feature and maintenance release. Java 8 or later is required.">
         <!-- FIX -->

From e86afba65ef61c638e9f3300e04bdb164760aef8 Mon Sep 17 00:00:00 2001
From: Gary Gregory <garydgregory@gmail.com>
Date: Sat, 28 Feb 2026 08:09:49 -0500
Subject: [PATCH 05/10] Bump org.apache.felix:maven-bundle-plugin from 6.0.0 on
 6.0.2 on Java 17 and above.

---
 pom.xml                 | 2 +-
 src/changes/changes.xml | 1 +
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/pom.xml b/pom.xml
index 2c78248b0..d002cab40 100644
--- a/pom.xml
+++ b/pom.xml
@@ -1772,7 +1772,7 @@
         <jdk>[17,)</jdk>
 	  </activation>
       <properties>
-        <commons.felix.version>6.0.0</commons.felix.version>
+        <commons.felix.version>6.0.2</commons.felix.version>
         <commons.biz.aQute.bndlib.version>7.2.1</commons.biz.aQute.bndlib.version>
       </properties>
     </profile>
diff --git a/src/changes/changes.xml b/src/changes/changes.xml
index b53093e17..19e2efb45 100644
--- a/src/changes/changes.xml
+++ b/src/changes/changes.xml
@@ -62,6 +62,7 @@ The <action> type attribute can be add,update,fix,remove.
 	    <!-- ADD -->
 	    <!-- UPDATE -->
         <action type="update" dev="ggregory" due-to="Gary Gregory">Bump net.sourceforge.pmd:pmd-* from 7.21.0 to 7.22.0.</action>
+        <action type="update" dev="ggregory" due-to="Gary Gregory">Bump org.apache.felix:maven-bundle-plugin from 6.0.0 on 6.0.2 on Java 17 and above.</action>
 	  </release>
       <release version="97" date="2026-02-21" description="This is a feature and maintenance release. Java 8 or later is required.">
         <!-- FIX -->

From d2e2427856e546f645a2ba543726e70675355c7c Mon Sep 17 00:00:00 2001
From: Gary Gregory <garydgregory@gmail.com>
Date: Mon, 2 Mar 2026 08:34:29 -0500
Subject: [PATCH 06/10] Bump github/codeql-action from 4.32.4 to 4.32.5

---
 .github/workflows/codeql-analysis.yml     | 6 +++---
 .github/workflows/scorecards-analysis.yml | 2 +-
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
index d5d490d2d..81b660702 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -58,7 +58,7 @@ jobs:
 
     # Initializes the CodeQL tools for scanning.
     - name: Initialize CodeQL
-      uses: github/codeql-action/init@89a39a4e59826350b863aa6b6252a07ad50cf83e # v4.32.4
+      uses: github/codeql-action/init@c793b717bc78562f491db7b0e93a3a178b099162 # v4.32.5
       with:
         languages: ${{ matrix.language }}
         # If you wish to specify custom queries, you can do so here or in a config file.
@@ -69,7 +69,7 @@ jobs:
     # Autobuild attempts to build any compiled languages  (C/C++, C#, or Java).
     # If this step fails, then you should remove it and run the build manually (see below)
     - name: Autobuild
-      uses: github/codeql-action/autobuild@89a39a4e59826350b863aa6b6252a07ad50cf83e # v4.32.4
+      uses: github/codeql-action/autobuild@c793b717bc78562f491db7b0e93a3a178b099162 # v4.32.5
 
     # ℹ️ Command-line programs to run using the OS shell.
     # 📚 https://git.io/JvXDl
@@ -83,4 +83,4 @@ jobs:
     #   make release
 
     - name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@89a39a4e59826350b863aa6b6252a07ad50cf83e # v4.32.4
+      uses: github/codeql-action/analyze@c793b717bc78562f491db7b0e93a3a178b099162 # v4.32.5
diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml
index f01ca3a11..569f386ee 100644
--- a/.github/workflows/scorecards-analysis.yml
+++ b/.github/workflows/scorecards-analysis.yml
@@ -64,6 +64,6 @@ jobs:
           retention-days: 5
 
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@89a39a4e59826350b863aa6b6252a07ad50cf83e # v4.32.4
+        uses: github/codeql-action/upload-sarif@c793b717bc78562f491db7b0e93a3a178b099162 # v4.32.5
         with:
           sarif_file: results.sarif

From 46257235d183c6e1c015e012b253c26e9a3b65da Mon Sep 17 00:00:00 2001
From: Gary Gregory <garydgregory@gmail.com>
Date: Wed, 4 Mar 2026 13:36:14 -0500
Subject: [PATCH 07/10] Bump com.puppycrawl.tools:checkstyle from 12.3.1 to
 13.3.0 on Java 21 and up.

---
 pom.xml                 | 1 +
 src/changes/changes.xml | 3 ++-
 2 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/pom.xml b/pom.xml
index d002cab40..c24b15ff6 100644
--- a/pom.xml
+++ b/pom.xml
@@ -1789,6 +1789,7 @@
         <jdk>[21,)</jdk>
 	  </activation>
       <properties>
+        <commons.checkstyle.version>13.3.0</commons.checkstyle.version>
         <argLine>-XX:+EnableDynamicAgentLoading</argLine>
       </properties>
     </profile>
diff --git a/src/changes/changes.xml b/src/changes/changes.xml
index 19e2efb45..558bd7720 100644
--- a/src/changes/changes.xml
+++ b/src/changes/changes.xml
@@ -62,7 +62,8 @@ The <action> type attribute can be add,update,fix,remove.
 	    <!-- ADD -->
 	    <!-- UPDATE -->
         <action type="update" dev="ggregory" due-to="Gary Gregory">Bump net.sourceforge.pmd:pmd-* from 7.21.0 to 7.22.0.</action>
-        <action type="update" dev="ggregory" due-to="Gary Gregory">Bump org.apache.felix:maven-bundle-plugin from 6.0.0 on 6.0.2 on Java 17 and above.</action>
+        <action type="update" dev="ggregory" due-to="Gary Gregory">Bump org.apache.felix:maven-bundle-plugin from 6.0.0 on 6.0.2 on Java 17 and up.</action>
+        <action type="update" dev="ggregory" due-to="Gary Gregory">Bump com.puppycrawl.tools:checkstyle from 12.3.1 to 13.3.0 on Java 21 and up.</action>
 	  </release>
       <release version="97" date="2026-02-21" description="This is a feature and maintenance release. Java 8 or later is required.">
         <!-- FIX -->

From f9da9f6ad765108efb685c7cf57dedbfe54214f3 Mon Sep 17 00:00:00 2001
From: Gary Gregory <garydgregory@gmail.com>
Date: Fri, 6 Mar 2026 07:36:27 -0500
Subject: [PATCH 08/10] Bump github/codeql-action from 4.32.5 to 4.32.6

---
 .github/workflows/codeql-analysis.yml     | 6 +++---
 .github/workflows/scorecards-analysis.yml | 2 +-
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
index 81b660702..4cb7f64a0 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -58,7 +58,7 @@ jobs:
 
     # Initializes the CodeQL tools for scanning.
     - name: Initialize CodeQL
-      uses: github/codeql-action/init@c793b717bc78562f491db7b0e93a3a178b099162 # v4.32.5
+      uses: github/codeql-action/init@0d579ffd059c29b07949a3cce3983f0780820c98 # v4.32.6
       with:
         languages: ${{ matrix.language }}
         # If you wish to specify custom queries, you can do so here or in a config file.
@@ -69,7 +69,7 @@ jobs:
     # Autobuild attempts to build any compiled languages  (C/C++, C#, or Java).
     # If this step fails, then you should remove it and run the build manually (see below)
     - name: Autobuild
-      uses: github/codeql-action/autobuild@c793b717bc78562f491db7b0e93a3a178b099162 # v4.32.5
+      uses: github/codeql-action/autobuild@0d579ffd059c29b07949a3cce3983f0780820c98 # v4.32.6
 
     # ℹ️ Command-line programs to run using the OS shell.
     # 📚 https://git.io/JvXDl
@@ -83,4 +83,4 @@ jobs:
     #   make release
 
     - name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@c793b717bc78562f491db7b0e93a3a178b099162 # v4.32.5
+      uses: github/codeql-action/analyze@0d579ffd059c29b07949a3cce3983f0780820c98 # v4.32.6
diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml
index 569f386ee..d41ee17be 100644
--- a/.github/workflows/scorecards-analysis.yml
+++ b/.github/workflows/scorecards-analysis.yml
@@ -64,6 +64,6 @@ jobs:
           retention-days: 5
 
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@c793b717bc78562f491db7b0e93a3a178b099162 # v4.32.5
+        uses: github/codeql-action/upload-sarif@0d579ffd059c29b07949a3cce3983f0780820c98 # v4.32.6
         with:
           sarif_file: results.sarif

From 180ab8c07f9ef5de622bf6dfd7c25edc9c77be12 Mon Sep 17 00:00:00 2001
From: Gary Gregory <garydgregory@gmail.com>
Date: Mon, 9 Mar 2026 08:44:09 -0400
Subject: [PATCH 09/10] Bump actions/upload-artifact from 6.0.0 to 7.0.0

---
 .github/workflows/scorecards-analysis.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml
index d41ee17be..c170b0e14 100644
--- a/.github/workflows/scorecards-analysis.yml
+++ b/.github/workflows/scorecards-analysis.yml
@@ -57,7 +57,7 @@ jobs:
           publish_results: true
 
       - name: "Upload artifact"
-        uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f    # 6.0.0
+        uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
         with:
           name: SARIF file
           path: results.sarif

From 2046c7cdd10fdd70acefef87157fc9754efa8229 Mon Sep 17 00:00:00 2001
From: Gary Gregory <garydgregory@gmail.com>
Date: Fri, 20 Mar 2026 17:32:41 -0700
Subject: [PATCH 10/10] Bump github/codeql-action from 4.32.6 to 4.34.0

---
 .github/workflows/codeql-analysis.yml     | 6 +++---
 .github/workflows/scorecards-analysis.yml | 2 +-
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
index 4cb7f64a0..7c5a1e957 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -58,7 +58,7 @@ jobs:
 
     # Initializes the CodeQL tools for scanning.
     - name: Initialize CodeQL
-      uses: github/codeql-action/init@0d579ffd059c29b07949a3cce3983f0780820c98 # v4.32.6
+      uses: github/codeql-action/init@c6f931105cb2c34c8f901cc885ba1e2e259cf745 # v4.34.0
       with:
         languages: ${{ matrix.language }}
         # If you wish to specify custom queries, you can do so here or in a config file.
@@ -69,7 +69,7 @@ jobs:
     # Autobuild attempts to build any compiled languages  (C/C++, C#, or Java).
     # If this step fails, then you should remove it and run the build manually (see below)
     - name: Autobuild
-      uses: github/codeql-action/autobuild@0d579ffd059c29b07949a3cce3983f0780820c98 # v4.32.6
+      uses: github/codeql-action/autobuild@c6f931105cb2c34c8f901cc885ba1e2e259cf745 # v4.34.0
 
     # ℹ️ Command-line programs to run using the OS shell.
     # 📚 https://git.io/JvXDl
@@ -83,4 +83,4 @@ jobs:
     #   make release
 
     - name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@0d579ffd059c29b07949a3cce3983f0780820c98 # v4.32.6
+      uses: github/codeql-action/analyze@c6f931105cb2c34c8f901cc885ba1e2e259cf745 # v4.34.0
diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml
index c170b0e14..b7c1f9fb3 100644
--- a/.github/workflows/scorecards-analysis.yml
+++ b/.github/workflows/scorecards-analysis.yml
@@ -64,6 +64,6 @@ jobs:
           retention-days: 5
 
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@0d579ffd059c29b07949a3cce3983f0780820c98 # v4.32.6
+        uses: github/codeql-action/upload-sarif@c6f931105cb2c34c8f901cc885ba1e2e259cf745 # v4.34.0
         with:
           sarif_file: results.sarif