Bump graalvm.version from 24.2.2 to 25.0.0 by dependabot[bot] · Pull Request #703 · apache/commons-text

dependabot · 2025-09-19T20:01:29Z

Bumps graalvm.version from 24.2.2 to 25.0.0.
Updates org.graalvm.js:js from 24.2.2 to 25.0.0

Release notes

Sourced from org.graalvm.js:js's releases.

GraalJS 25.0.0

GraalJS is an ECMAScript-compliant runtime to execute JavaScript and Node.js applications. It is fully standard-compliant, executes applications with high performance, and provides all benefits from the GraalVM stack, including language interoperability and common tooling.

GraalJS version 25.0.0 is designed for use with Oracle GraalVM 25.0.0 or GraalVM Community Edition 25.0.0, and can be downloaded separately.

There are two standalone types to choose from:

Native Standalone: This contains a Native Image compiled launcher

JVM Standalone: This contains JavaScript in the JVM configuration

To distinguish between them, the GraalVM Community Edition version has the suffix -community in its name. A JVM standalone has a -jvm suffix in its name.

Learn more about GraalJS and how to get started on the website at https://www.graalvm.org/javascript/.

Changelog

Sourced from org.graalvm.js:js's changelog.

Version 25.0.0

ECMAScript 2025 mode/features enabled by default.

Updated Node.js to version 22.17.1.

Implemented the Intl.DurationFormat proposal.

Made option js.text-encoding stable and allowed in SandboxPolicy.CONSTRAINED.

Implemented the import defer proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the Upsert proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Enabled source phase imports from WebAssembly modules (import source mod from "./mod.wasm") by default if the js.webassembly option is enabled and the js.source-phase-imports option is not explicitly set to false.

Version 24.2.0

Updated Node.js to version 22.13.1.

Implemented the Error.isError proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the Math.sumPrecise proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the Promise.try proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the Atomics.pause proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the Uint8Array to/from base64 and hex proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the Source Phase Imports proposal. It is available behind the experimental option (--js.source-phase-imports).

Implemented the WebAssembly/ES Module Integration proposal, allowing .wasm modules to be loaded via import statements.

Implemented basic Worker API (resembling the API available in d8). It is available behind the experimental option --js.worker.

Added option js.stack-trace-api that enables/disables Error.captureStackTrace, Error.prepareStackTrace and Error.stackTraceLimit. These non-standard extensions are disabled by default (unless js.v8-compat or js.nashorn-compat is used).

Made option js.webassembly stable.

Made options js.load, js.print, and js.graal-builtin stable and allowed in SandboxPolicy.UNTRUSTED.

Made option js.locale stable and allowed in SandboxPolicy.UNTRUSTED. Its value, if non-empty, must be a well-formed Unicode BCP 47 locale identifier and is now validated.

Added an experimental java.util.concurrent.Executor that can be used to post tasks into the event loop thread in graal-nodejs. It is available as require('node:graal').eventLoopExecutor.

Implemented the TextDecoder and TextEncoder APIs of the WHATWG Encoding Standard. They are available behind the experimental option (--js.text-encoding).

Implemented the RegExp.escape proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the Regular Expression Pattern Modifiers proposal.

Implemented the Iterator Sequencing proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Version 24.1.0

ECMAScript 2024 mode/features enabled by default.

Implemented the Make eval-introduced global vars redeclarable proposal.

Implemented the Float16Array proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the Array.fromAsync proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the Resizable and Growable ArrayBuffers proposal.

Updated Node.js to version 20.13.1.

Made option js.esm-eval-returns-exports stable and allowed in SandboxPolicy.UNTRUSTED.

Version 24.0.0

Implemented the WebAssembly threads proposal.

Implemented the Promise.withResolvers proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implementation of Async Iterator Helpers proposal (that was split out from Iterator Helpers proposal) was moved behind the experimental option --js.async-iterator-helpers.

Implemented the Well-Formed Unicode Strings proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the JSON.parse source text access proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Updated Node.js to version 18.18.2.

WebAssembly support in Node.js has been enabled by default. It can be disabled using the experimental option --js.webassembly=false.

--js.import-assertions option has been replaced by --js.import-attributes option because the corresponding proposal has migrated from the usage of assertions to the usage of attributes.

Version 23.1.0

NOTE: GraalVM no longer ships with a "js" ScriptEngine. Please either use the Maven dependency or explicitly put js-scriptengine.jar on the module path. See ScriptEngine documentation for details.

... (truncated)

Commits

930257e Release GraalVM 25.0.0.
633e62a [GR-68100] Backport to 25: Build Graal.js and GraalNode.js native standalones...
44cb2a6 Do not set Vector API specific options for libjsvm and libgraal-nodejs on pre...
6073998 [GR-67852] Backport to 25.0: Merge master into release branch.
fa450a6 Update the status of sequential test suite.
2b263ff Sync CI files.
e863e8e Update graal import.
9957c13 Revert "Start 26.0.0 dev cycle."
1aa4a8a [GR-67647] Upgrading the underlying Node.js to version 22.17.1.
113cb44 [GR-65834] Fix possible deopt cycle in property cache.
Additional commits viewable in compare view

Updates org.graalvm.js:js-scriptengine from 24.2.2 to 25.0.0

Release notes

Sourced from org.graalvm.js:js-scriptengine's releases.

GraalJS 25.0.0

GraalJS is an ECMAScript-compliant runtime to execute JavaScript and Node.js applications. It is fully standard-compliant, executes applications with high performance, and provides all benefits from the GraalVM stack, including language interoperability and common tooling.

GraalJS version 25.0.0 is designed for use with Oracle GraalVM 25.0.0 or GraalVM Community Edition 25.0.0, and can be downloaded separately.

There are two standalone types to choose from:

Native Standalone: This contains a Native Image compiled launcher

JVM Standalone: This contains JavaScript in the JVM configuration

To distinguish between them, the GraalVM Community Edition version has the suffix -community in its name. A JVM standalone has a -jvm suffix in its name.

Learn more about GraalJS and how to get started on the website at https://www.graalvm.org/javascript/.

Changelog

Sourced from org.graalvm.js:js-scriptengine's changelog.

Version 25.0.0

ECMAScript 2025 mode/features enabled by default.

Updated Node.js to version 22.17.1.

Implemented the Intl.DurationFormat proposal.

Made option js.text-encoding stable and allowed in SandboxPolicy.CONSTRAINED.

Implemented the import defer proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the Upsert proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Enabled source phase imports from WebAssembly modules (import source mod from "./mod.wasm") by default if the js.webassembly option is enabled and the js.source-phase-imports option is not explicitly set to false.

Version 24.2.0

Updated Node.js to version 22.13.1.

Implemented the Error.isError proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the Math.sumPrecise proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the Promise.try proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the Atomics.pause proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the Uint8Array to/from base64 and hex proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the Source Phase Imports proposal. It is available behind the experimental option (--js.source-phase-imports).

Implemented the WebAssembly/ES Module Integration proposal, allowing .wasm modules to be loaded via import statements.

Implemented basic Worker API (resembling the API available in d8). It is available behind the experimental option --js.worker.

Added option js.stack-trace-api that enables/disables Error.captureStackTrace, Error.prepareStackTrace and Error.stackTraceLimit. These non-standard extensions are disabled by default (unless js.v8-compat or js.nashorn-compat is used).

Made option js.webassembly stable.

Made options js.load, js.print, and js.graal-builtin stable and allowed in SandboxPolicy.UNTRUSTED.

Made option js.locale stable and allowed in SandboxPolicy.UNTRUSTED. Its value, if non-empty, must be a well-formed Unicode BCP 47 locale identifier and is now validated.

Added an experimental java.util.concurrent.Executor that can be used to post tasks into the event loop thread in graal-nodejs. It is available as require('node:graal').eventLoopExecutor.

Implemented the TextDecoder and TextEncoder APIs of the WHATWG Encoding Standard. They are available behind the experimental option (--js.text-encoding).

Implemented the RegExp.escape proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the Regular Expression Pattern Modifiers proposal.

Implemented the Iterator Sequencing proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Version 24.1.0

ECMAScript 2024 mode/features enabled by default.

Implemented the Make eval-introduced global vars redeclarable proposal.

Implemented the Float16Array proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the Array.fromAsync proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the Resizable and Growable ArrayBuffers proposal.

Updated Node.js to version 20.13.1.

Made option js.esm-eval-returns-exports stable and allowed in SandboxPolicy.UNTRUSTED.

Version 24.0.0

Implemented the WebAssembly threads proposal.

Implemented the Promise.withResolvers proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implementation of Async Iterator Helpers proposal (that was split out from Iterator Helpers proposal) was moved behind the experimental option --js.async-iterator-helpers.

Implemented the Well-Formed Unicode Strings proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the JSON.parse source text access proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Updated Node.js to version 18.18.2.

WebAssembly support in Node.js has been enabled by default. It can be disabled using the experimental option --js.webassembly=false.

--js.import-assertions option has been replaced by --js.import-attributes option because the corresponding proposal has migrated from the usage of assertions to the usage of attributes.

Version 23.1.0

NOTE: GraalVM no longer ships with a "js" ScriptEngine. Please either use the Maven dependency or explicitly put js-scriptengine.jar on the module path. See ScriptEngine documentation for details.

... (truncated)

Commits

930257e Release GraalVM 25.0.0.
633e62a [GR-68100] Backport to 25: Build Graal.js and GraalNode.js native standalones...
44cb2a6 Do not set Vector API specific options for libjsvm and libgraal-nodejs on pre...
6073998 [GR-67852] Backport to 25.0: Merge master into release branch.
fa450a6 Update the status of sequential test suite.
2b263ff Sync CI files.
e863e8e Update graal import.
9957c13 Revert "Start 26.0.0 dev cycle."
1aa4a8a [GR-67647] Upgrading the underlying Node.js to version 22.17.1.
113cb44 [GR-65834] Fix possible deopt cycle in property cache.
Additional commits viewable in compare view

Updates org.graalvm.js:js-language from 24.2.2 to 25.0.0

Release notes

Sourced from org.graalvm.js:js-language's releases.

GraalJS 25.0.0

GraalJS is an ECMAScript-compliant runtime to execute JavaScript and Node.js applications. It is fully standard-compliant, executes applications with high performance, and provides all benefits from the GraalVM stack, including language interoperability and common tooling.

GraalJS version 25.0.0 is designed for use with Oracle GraalVM 25.0.0 or GraalVM Community Edition 25.0.0, and can be downloaded separately.

There are two standalone types to choose from:

Native Standalone: This contains a Native Image compiled launcher

JVM Standalone: This contains JavaScript in the JVM configuration

To distinguish between them, the GraalVM Community Edition version has the suffix -community in its name. A JVM standalone has a -jvm suffix in its name.

Learn more about GraalJS and how to get started on the website at https://www.graalvm.org/javascript/.

Changelog

Sourced from org.graalvm.js:js-language's changelog.

Version 25.0.0

ECMAScript 2025 mode/features enabled by default.

Updated Node.js to version 22.17.1.

Implemented the Intl.DurationFormat proposal.

Made option js.text-encoding stable and allowed in SandboxPolicy.CONSTRAINED.

Implemented the import defer proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the Upsert proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Enabled source phase imports from WebAssembly modules (import source mod from "./mod.wasm") by default if the js.webassembly option is enabled and the js.source-phase-imports option is not explicitly set to false.

Version 24.2.0

Updated Node.js to version 22.13.1.

Implemented the Error.isError proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the Math.sumPrecise proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the Promise.try proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the Atomics.pause proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the Uint8Array to/from base64 and hex proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the Source Phase Imports proposal. It is available behind the experimental option (--js.source-phase-imports).

Implemented the WebAssembly/ES Module Integration proposal, allowing .wasm modules to be loaded via import statements.

Implemented basic Worker API (resembling the API available in d8). It is available behind the experimental option --js.worker.

Added option js.stack-trace-api that enables/disables Error.captureStackTrace, Error.prepareStackTrace and Error.stackTraceLimit. These non-standard extensions are disabled by default (unless js.v8-compat or js.nashorn-compat is used).

Made option js.webassembly stable.

Made options js.load, js.print, and js.graal-builtin stable and allowed in SandboxPolicy.UNTRUSTED.

Made option js.locale stable and allowed in SandboxPolicy.UNTRUSTED. Its value, if non-empty, must be a well-formed Unicode BCP 47 locale identifier and is now validated.

Added an experimental java.util.concurrent.Executor that can be used to post tasks into the event loop thread in graal-nodejs. It is available as require('node:graal').eventLoopExecutor.

Implemented the TextDecoder and TextEncoder APIs of the WHATWG Encoding Standard. They are available behind the experimental option (--js.text-encoding).

Implemented the RegExp.escape proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the Regular Expression Pattern Modifiers proposal.

Implemented the Iterator Sequencing proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Version 24.1.0

ECMAScript 2024 mode/features enabled by default.

Implemented the Make eval-introduced global vars redeclarable proposal.

Implemented the Float16Array proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the Array.fromAsync proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the Resizable and Growable ArrayBuffers proposal.

Updated Node.js to version 20.13.1.

Made option js.esm-eval-returns-exports stable and allowed in SandboxPolicy.UNTRUSTED.

Version 24.0.0

Implemented the WebAssembly threads proposal.

Implemented the Promise.withResolvers proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implementation of Async Iterator Helpers proposal (that was split out from Iterator Helpers proposal) was moved behind the experimental option --js.async-iterator-helpers.

Implemented the Well-Formed Unicode Strings proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Implemented the JSON.parse source text access proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Updated Node.js to version 18.18.2.

WebAssembly support in Node.js has been enabled by default. It can be disabled using the experimental option --js.webassembly=false.

--js.import-assertions option has been replaced by --js.import-attributes option because the corresponding proposal has migrated from the usage of assertions to the usage of attributes.

Version 23.1.0

NOTE: GraalVM no longer ships with a "js" ScriptEngine. Please either use the Maven dependency or explicitly put js-scriptengine.jar on the module path. See ScriptEngine documentation for details.

... (truncated)

Commits

930257e Release GraalVM 25.0.0.
633e62a [GR-68100] Backport to 25: Build Graal.js and GraalNode.js native standalones...
44cb2a6 Do not set Vector API specific options for libjsvm and libgraal-nodejs on pre...
6073998 [GR-67852] Backport to 25.0: Merge master into release branch.
fa450a6 Update the status of sequential test suite.
2b263ff Sync CI files.
e863e8e Update graal import.
9957c13 Revert "Start 26.0.0 dev cycle."
1aa4a8a [GR-67647] Upgrading the underlying Node.js to version 22.17.1.
113cb44 [GR-65834] Fix possible deopt cycle in property cache.
Additional commits viewable in compare view

Updates org.graalvm.truffle:truffle-runtime from 24.2.2 to 25.0.0

Commits

082f26e Release GraalVM 25.0.0.
0cc910a [GR-67856] Update 3rd party license file.
ce41e5b Update 3rd party license file.
cb9d29e [GR-69263] Update labsjdk to 25+37-jvmci-b01
9f2a62e update JVMCI to 25+37-jvmci-b01
7e37405 [GR-69039] Remove Jipher from the base GraalVM EE artifact.
26f2032 Remove Jipher from the base GraalVM EE artifact.
f94cbf0 [GR-68894] Backport to 25.0: GraalWasm performance regressions due to unsuppo...
b00e6bf [GR-68876] Backport to 25.0.0: Comment out lock assertion that doesn't always...
4412bdc [GR-68825] Backport to 25.0: Fix truncated decompression in java zlib backend
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps `graalvm.version` from 24.2.2 to 25.0.0. Updates `org.graalvm.js:js` from 24.2.2 to 25.0.0 - [Release notes](https://github.com/graalvm/graaljs/releases) - [Changelog](https://github.com/oracle/graaljs/blob/master/CHANGELOG.md) - [Commits](oracle/graaljs@vm-24.2.2...vm-25.0.0) Updates `org.graalvm.js:js-scriptengine` from 24.2.2 to 25.0.0 - [Release notes](https://github.com/graalvm/graaljs/releases) - [Changelog](https://github.com/oracle/graaljs/blob/master/CHANGELOG.md) - [Commits](oracle/graaljs@vm-24.2.2...vm-25.0.0) Updates `org.graalvm.js:js-language` from 24.2.2 to 25.0.0 - [Release notes](https://github.com/graalvm/graaljs/releases) - [Changelog](https://github.com/oracle/graaljs/blob/master/CHANGELOG.md) - [Commits](oracle/graaljs@vm-24.2.2...vm-25.0.0) Updates `org.graalvm.truffle:truffle-runtime` from 24.2.2 to 25.0.0 - [Release notes](https://github.com/oracle/graal/releases) - [Commits](oracle/graal@vm-24.2.2...vm-25.0.0) --- updated-dependencies: - dependency-name: org.graalvm.js:js dependency-version: 25.0.0 dependency-type: direct:development update-type: version-update:semver-major - dependency-name: org.graalvm.js:js-scriptengine dependency-version: 25.0.0 dependency-type: direct:development update-type: version-update:semver-major - dependency-name: org.graalvm.js:js-language dependency-version: 25.0.0 dependency-type: direct:development update-type: version-update:semver-major - dependency-name: org.graalvm.truffle:truffle-runtime dependency-version: 25.0.0 dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>

…#959) Bumps the base group with 1 update: [graalvm/setup-graalvm](https://github.com/graalvm/setup-graalvm). Updates `graalvm/setup-graalvm` from 1.4.3 to 1.4.4 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/graalvm/setup-graalvm/releases">graalvm/setup-graalvm's releases</a>.</em></p> <blockquote> <h2>v1.4.4</h2> <h2>What's Changed</h2> <ul> <li>Bump actions/checkout from 5.0.0 to 6.0.0 in the github-actions-updates group by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/graalvm/setup-graalvm/pull/198">graalvm/setup-graalvm#198</a></li> <li>Bump the npm-updates group with 10 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/graalvm/setup-graalvm/pull/197">graalvm/setup-graalvm#197</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/graalvm/setup-graalvm/compare/v1.4.3...v1.4.4">https://github.com/graalvm/setup-graalvm/compare/v1.4.3...v1.4.4</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/graalvm/setup-graalvm/commit/790e28947b79a9c09c3391c0f18bf8d0f102ed69"><code>790e289</code></a> Bump version to <code>1.4.4</code>.</li> <li><a href="https://github.com/graalvm/setup-graalvm/commit/434a92bc4faf302845542ab080ba51cea01d392d"><code>434a92b</code></a> Update dist files.</li> <li><a href="https://github.com/graalvm/setup-graalvm/commit/fe4a6b3a89d8ba8639f157689d83cbe564402ce5"><code>fe4a6b3</code></a> Update dependencies</li> <li><a href="https://github.com/graalvm/setup-graalvm/commit/d8578a7f98f24a05ed4eddd4f76472b40cae484e"><code>d8578a7</code></a> Bump the npm-updates group with 10 updates</li> <li><a href="https://github.com/graalvm/setup-graalvm/commit/98e485c1fbbf7e7a85fd316979ff3424e8814f2f"><code>98e485c</code></a> Bump actions/checkout in the github-actions-updates group</li> <li>See full diff in <a href="https://github.com/graalvm/setup-graalvm/compare/dec5790292b7b36d7ad368abe856887749c6c520...790e28947b79a9c09c3391c0f18bf8d0f102ed69">compare view</a></li> </ul> </details> <br /> Bumps the base group with 1 update: [org.apache.commons:commons-text](https://github.com/apache/commons-text). Updates `org.apache.commons:commons-text` from 1.14.0 to 1.15.0 <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/apache/commons-text/blob/master/RELEASE-NOTES.txt">org.apache.commons:commons-text's changelog</a>.</em></p> <blockquote> <h2>Apache Commons Text 1.15.0 Release Notes</h2> <p>The Apache Commons Text team is pleased to announce the release of Apache Commons Text 1.15.0.</p> <p>Apache Commons Text is a set of utility functions and reusable components for processing and manipulating text in a Java environment.</p> <p>Release 1.15.0. This is a feature and maintenance release. Java 8 or later is required.</p> <h2>New features</h2> <ul> <li> <pre><code> Add experimental CycloneDX VEX file [#683](apache/commons-text#683). Thanks to Piotr P. Karwasz, Gary Gregory. </code></pre> </li> <li>TEXT-235: Add Damerau-Levenshtein distance <a href="https://redirect.github.com/apache/commons-text/issues/687">#687</a>. Thanks to LorgeN, Gary Gregory.</li> <li> <pre><code> Add unit tests to increase coverage [#719](apache/commons-text#719). Thanks to Michael Hausegger, Gary Gregory. </code></pre> </li> <li> <pre><code> Add new test for CharSequenceTranslator#with() [#725](apache/commons-text#725). Thanks to Michael Hausegger, Gary Gregory. </code></pre> </li> <li> <pre><code> Add tests and assertions to org.apache.commons.text.similarity to get to 100% code coverage [#727](apache/commons-text#727), [#728](apache/commons-text#728). Thanks to Michael Hausegger. </code></pre> </li> </ul> <h2>Fixed Bugs</h2> <ul> <li> <pre><code> Fix exception message typo in XmlStringLookup.XmlStringLookup(Map, Path...). Thanks to Gary Gregory. </code></pre> </li> <li>TEXT-236: Inserting at the end of a TextStringBuilder throws a StringIndexOutOfBoundsException. Thanks to Pierre Post, Sumit Bera, Alex Herbert, Gary Gregory.</li> <li> <pre><code> Fix TextStringBuilderTest.testAppendToCharBuffer() to use proper argument type [#724](apache/commons-text#724). Thanks to Michael Hausegger. </code></pre> </li> <li> <pre><code> Fix Apache RAT plugin console warnings. Thanks to Gary Gregory. </code></pre> </li> <li> <pre><code> Fix site XML to use version 2.0.0 XML schema. Thanks to Gary Gregory. </code></pre> </li> <li> <pre><code> Removed unreachable threshold verification code in src/main/java/org/apache/commons/text/similarity [#730](apache/commons-text#730). Thanks to Michael Hausegger. </code></pre> </li> <li> <pre><code> Enable secure processing for the XML parser in XmlStringLookup in case the underlying JAXP implementation doesn't [#729](apache/commons-text#729). Thanks to 김민재 (minjas0507), Gary Gregory, Piotr Karwasz. </code></pre> </li> </ul> <h2>Changes</h2> <ul> <li> <pre><code> Bump org.apache.commons:commons-parent from 85 to 93 [#704](apache/commons-text#704), [#723](apache/commons-text#723), [#726](apache/commons-text#726). Thanks to Gary Gregory. </code></pre> </li> <li> <pre><code> Bump commons.bytebuddy.version from 1.17.6 to 1.18.2 [#696](apache/commons-text#696), [#722](apache/commons-text#722). Thanks to Gary Gregory. </code></pre> </li> <li> <pre><code> Bump graalvm.version from 24.2.2 to 25.0.1 [#703](apache/commons-text#703), [#716](apache/commons-text#716). Thanks to Gary Gregory, Dependabot. </code></pre> </li> <li> <pre><code> Bump org.apache.commons:commons-lang3 from 3.18.0 to 3.20.0. Thanks to Gary Gregory. </code></pre> </li> <li> <pre><code> Bump commons-io:commons-io from 2.20.0 to 2.21.0. Thanks to Gary Gregory. </code></pre> </li> </ul> <p>Historical list of changes: <a href="https://commons.apache.org/proper/commons-text/changes.html">https://commons.apache.org/proper/commons-text/changes.html</a></p> <p>For complete information on Apache Commons Text, including instructions on how to submit bug reports, patches, or suggestions for improvement, see the Apache Commons Text website:</p> <p><a href="https://commons.apache.org/proper/commons-text">https://commons.apache.org/proper/commons-text</a></p> <p>Download page: <a href="https://commons.apache.org/proper/commons-text/download_text.cgi">https://commons.apache.org/proper/commons-text/download_text.cgi</a></p>  </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/apache/commons-text/commit/04e937470d3679cc163df85d82d5b6d2e3e71128"><code>04e9374</code></a> Prepare for the release candidate 1.15.0 RC1</li> <li><a href="https://github.com/apache/commons-text/commit/502c4c41be5671681b58a9b50297f99737e8ea93"><code>502c4c4</code></a> Prepare for the next release candidate</li> <li><a href="https://github.com/apache/commons-text/commit/c6e17ec24cc8374eb12676b717bf797f41b6e539"><code>c6e17ec</code></a> Use direct access</li> <li><a href="https://github.com/apache/commons-text/commit/58e1e125daaa0aebf8c5ffaa82af48821a1ccf2d"><code>58e1e12</code></a> Simplify XML FSP (<a href="https://redirect.github.com/apache/commons-text/issues/731">#731</a>)</li> <li><a href="https://github.com/apache/commons-text/commit/b5052c97e84e1c174ec8bfbbb749e33f22917a07"><code>b5052c9</code></a> Bump actions/setup-java from 5.0.0 to 5.1.0</li> <li><a href="https://github.com/apache/commons-text/commit/2e2d4bc90f1b3274e7943ac27d037d47c0cc098d"><code>2e2d4bc</code></a> Revert "Bump actions/setup-java from 5.0.0 to 5.1.0"</li> <li><a href="https://github.com/apache/commons-text/commit/b0ddbd17bbeee12ad33b8a61c60b4edbe6c85838"><code>b0ddbd1</code></a> Bump actions/setup-java from 5.0.0 to 5.1.0</li> <li><a href="https://github.com/apache/commons-text/commit/1c2d3821e67e08342b8cef4d4445c30b4a22daca"><code>1c2d382</code></a> Add tests with external DTD</li> <li><a href="https://github.com/apache/commons-text/commit/ed3df4b25cd5301921a6523ae7db2411f4a84d98"><code>ed3df4b</code></a> Internal clean up</li> <li><a href="https://github.com/apache/commons-text/commit/bb508f304a8835ac2319af1d872b2f1a9ff6f81d"><code>bb508f3</code></a> Bump actions/checkout from 6.0.0 to 6.0.1</li> <li>Additional commits viewable in <a href="https://github.com/apache/commons-text/compare/rel/commons-text-1.14.0...rel/commons-text-1.15.0">compare view</a></li> </ul> </details> <br /> [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions </details> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Lukáš Petrovický <lukas@timefold.ai>

Bumps [org.apache.commons:commons-text](https://github.com/apache/commons-text) from 1.14.0 to 1.15.0. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/apache/commons-text/blob/master/RELEASE-NOTES.txt">org.apache.commons:commons-text's changelog</a>.</em></p> <blockquote> <h2>Apache Commons Text 1.15.0 Release Notes</h2> <p>The Apache Commons Text team is pleased to announce the release of Apache Commons Text 1.15.0.</p> <p>Apache Commons Text is a set of utility functions and reusable components for processing and manipulating text in a Java environment.</p> <p>Release 1.15.0. This is a feature and maintenance release. Java 8 or later is required.</p> <h2>New features</h2> <ul> <li> <pre><code> Add experimental CycloneDX VEX file [#683](apache/commons-text#683). Thanks to Piotr P. Karwasz, Gary Gregory. </code></pre> </li> <li>TEXT-235: Add Damerau-Levenshtein distance <a href="https://redirect.github.com/apache/commons-text/issues/687">#687</a>. Thanks to LorgeN, Gary Gregory.</li> <li> <pre><code> Add unit tests to increase coverage [#719](apache/commons-text#719). Thanks to Michael Hausegger, Gary Gregory. </code></pre> </li> <li> <pre><code> Add new test for CharSequenceTranslator#with() [#725](apache/commons-text#725). Thanks to Michael Hausegger, Gary Gregory. </code></pre> </li> <li> <pre><code> Add tests and assertions to org.apache.commons.text.similarity to get to 100% code coverage [#727](apache/commons-text#727), [#728](apache/commons-text#728). Thanks to Michael Hausegger. </code></pre> </li> </ul> <h2>Fixed Bugs</h2> <ul> <li> <pre><code> Fix exception message typo in XmlStringLookup.XmlStringLookup(Map, Path...). Thanks to Gary Gregory. </code></pre> </li> <li>TEXT-236: Inserting at the end of a TextStringBuilder throws a StringIndexOutOfBoundsException. Thanks to Pierre Post, Sumit Bera, Alex Herbert, Gary Gregory.</li> <li> <pre><code> Fix TextStringBuilderTest.testAppendToCharBuffer() to use proper argument type [#724](apache/commons-text#724). Thanks to Michael Hausegger. </code></pre> </li> <li> <pre><code> Fix Apache RAT plugin console warnings. Thanks to Gary Gregory. </code></pre> </li> <li> <pre><code> Fix site XML to use version 2.0.0 XML schema. Thanks to Gary Gregory. </code></pre> </li> <li> <pre><code> Removed unreachable threshold verification code in src/main/java/org/apache/commons/text/similarity [#730](apache/commons-text#730). Thanks to Michael Hausegger. </code></pre> </li> <li> <pre><code> Enable secure processing for the XML parser in XmlStringLookup in case the underlying JAXP implementation doesn't [#729](apache/commons-text#729). Thanks to 김민재 (minjas0507), Gary Gregory, Piotr Karwasz. </code></pre> </li> </ul> <h2>Changes</h2> <ul> <li> <pre><code> Bump org.apache.commons:commons-parent from 85 to 93 [#704](apache/commons-text#704), [#723](apache/commons-text#723), [#726](apache/commons-text#726). Thanks to Gary Gregory. </code></pre> </li> <li> <pre><code> Bump commons.bytebuddy.version from 1.17.6 to 1.18.2 [#696](apache/commons-text#696), [#722](apache/commons-text#722). Thanks to Gary Gregory. </code></pre> </li> <li> <pre><code> Bump graalvm.version from 24.2.2 to 25.0.1 [#703](apache/commons-text#703), [#716](apache/commons-text#716). Thanks to Gary Gregory, Dependabot. </code></pre> </li> <li> <pre><code> Bump org.apache.commons:commons-lang3 from 3.18.0 to 3.20.0. Thanks to Gary Gregory. </code></pre> </li> <li> <pre><code> Bump commons-io:commons-io from 2.20.0 to 2.21.0. Thanks to Gary Gregory. </code></pre> </li> </ul> <p>Historical list of changes: <a href="https://commons.apache.org/proper/commons-text/changes.html">https://commons.apache.org/proper/commons-text/changes.html</a></p> <p>For complete information on Apache Commons Text, including instructions on how to submit bug reports, patches, or suggestions for improvement, see the Apache Commons Text website:</p> <p><a href="https://commons.apache.org/proper/commons-text">https://commons.apache.org/proper/commons-text</a></p> <p>Download page: <a href="https://commons.apache.org/proper/commons-text/download_text.cgi">https://commons.apache.org/proper/commons-text/download_text.cgi</a></p>  </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/apache/commons-text/commit/04e937470d3679cc163df85d82d5b6d2e3e71128"><code>04e9374</code></a> Prepare for the release candidate 1.15.0 RC1</li> <li><a href="https://github.com/apache/commons-text/commit/502c4c41be5671681b58a9b50297f99737e8ea93"><code>502c4c4</code></a> Prepare for the next release candidate</li> <li><a href="https://github.com/apache/commons-text/commit/c6e17ec24cc8374eb12676b717bf797f41b6e539"><code>c6e17ec</code></a> Use direct access</li> <li><a href="https://github.com/apache/commons-text/commit/58e1e125daaa0aebf8c5ffaa82af48821a1ccf2d"><code>58e1e12</code></a> Simplify XML FSP (<a href="https://redirect.github.com/apache/commons-text/issues/731">#731</a>)</li> <li><a href="https://github.com/apache/commons-text/commit/b5052c97e84e1c174ec8bfbbb749e33f22917a07"><code>b5052c9</code></a> Bump actions/setup-java from 5.0.0 to 5.1.0</li> <li><a href="https://github.com/apache/commons-text/commit/2e2d4bc90f1b3274e7943ac27d037d47c0cc098d"><code>2e2d4bc</code></a> Revert "Bump actions/setup-java from 5.0.0 to 5.1.0"</li> <li><a href="https://github.com/apache/commons-text/commit/b0ddbd17bbeee12ad33b8a61c60b4edbe6c85838"><code>b0ddbd1</code></a> Bump actions/setup-java from 5.0.0 to 5.1.0</li> <li><a href="https://github.com/apache/commons-text/commit/1c2d3821e67e08342b8cef4d4445c30b4a22daca"><code>1c2d382</code></a> Add tests with external DTD</li> <li><a href="https://github.com/apache/commons-text/commit/ed3df4b25cd5301921a6523ae7db2411f4a84d98"><code>ed3df4b</code></a> Internal clean up</li> <li><a href="https://github.com/apache/commons-text/commit/bb508f304a8835ac2319af1d872b2f1a9ff6f81d"><code>bb508f3</code></a> Bump actions/checkout from 6.0.0 to 6.0.1</li> <li>Additional commits viewable in <a href="https://github.com/apache/commons-text/compare/rel/commons-text-1.14.0...rel/commons-text-1.15.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.commons:commons-text&package-manager=maven&previous-version=1.14.0&new-version=1.15.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

….0 in the apache-commons group (#495) Bumps the apache-commons group with 1 update: [org.apache.commons:commons-text](https://github.com/apache/commons-text). Updates `org.apache.commons:commons-text` from 1.14.0 to 1.15.0 <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/apache/commons-text/blob/master/RELEASE-NOTES.txt">org.apache.commons:commons-text's changelog</a>.</em></p> <blockquote> <h2>Apache Commons Text 1.15.0 Release Notes</h2> <p>The Apache Commons Text team is pleased to announce the release of Apache Commons Text 1.15.0.</p> <p>Apache Commons Text is a set of utility functions and reusable components for processing and manipulating text in a Java environment.</p> <p>Release 1.15.0. This is a feature and maintenance release. Java 8 or later is required.</p> <h2>New features</h2> <ul> <li> <pre><code> Add experimental CycloneDX VEX file [#683](apache/commons-text#683). Thanks to Piotr P. Karwasz, Gary Gregory. </code></pre> </li> <li>TEXT-235: Add Damerau-Levenshtein distance <a href="https://redirect.github.com/apache/commons-text/issues/687">#687</a>. Thanks to LorgeN, Gary Gregory.</li> <li> <pre><code> Add unit tests to increase coverage [#719](apache/commons-text#719). Thanks to Michael Hausegger, Gary Gregory. </code></pre> </li> <li> <pre><code> Add new test for CharSequenceTranslator#with() [#725](apache/commons-text#725). Thanks to Michael Hausegger, Gary Gregory. </code></pre> </li> <li> <pre><code> Add tests and assertions to org.apache.commons.text.similarity to get to 100% code coverage [#727](apache/commons-text#727), [#728](apache/commons-text#728). Thanks to Michael Hausegger. </code></pre> </li> </ul> <h2>Fixed Bugs</h2> <ul> <li> <pre><code> Fix exception message typo in XmlStringLookup.XmlStringLookup(Map, Path...). Thanks to Gary Gregory. </code></pre> </li> <li>TEXT-236: Inserting at the end of a TextStringBuilder throws a StringIndexOutOfBoundsException. Thanks to Pierre Post, Sumit Bera, Alex Herbert, Gary Gregory.</li> <li> <pre><code> Fix TextStringBuilderTest.testAppendToCharBuffer() to use proper argument type [#724](apache/commons-text#724). Thanks to Michael Hausegger. </code></pre> </li> <li> <pre><code> Fix Apache RAT plugin console warnings. Thanks to Gary Gregory. </code></pre> </li> <li> <pre><code> Fix site XML to use version 2.0.0 XML schema. Thanks to Gary Gregory. </code></pre> </li> <li> <pre><code> Removed unreachable threshold verification code in src/main/java/org/apache/commons/text/similarity [#730](apache/commons-text#730). Thanks to Michael Hausegger. </code></pre> </li> <li> <pre><code> Enable secure processing for the XML parser in XmlStringLookup in case the underlying JAXP implementation doesn't [#729](apache/commons-text#729). Thanks to 김민재 (minjas0507), Gary Gregory, Piotr Karwasz. </code></pre> </li> </ul> <h2>Changes</h2> <ul> <li> <pre><code> Bump org.apache.commons:commons-parent from 85 to 93 [#704](apache/commons-text#704), [#723](apache/commons-text#723), [#726](apache/commons-text#726). Thanks to Gary Gregory. </code></pre> </li> <li> <pre><code> Bump commons.bytebuddy.version from 1.17.6 to 1.18.2 [#696](apache/commons-text#696), [#722](apache/commons-text#722). Thanks to Gary Gregory. </code></pre> </li> <li> <pre><code> Bump graalvm.version from 24.2.2 to 25.0.1 [#703](apache/commons-text#703), [#716](apache/commons-text#716). Thanks to Gary Gregory, Dependabot. </code></pre> </li> <li> <pre><code> Bump org.apache.commons:commons-lang3 from 3.18.0 to 3.20.0. Thanks to Gary Gregory. </code></pre> </li> <li> <pre><code> Bump commons-io:commons-io from 2.20.0 to 2.21.0. Thanks to Gary Gregory. </code></pre> </li> </ul> <p>Historical list of changes: <a href="https://commons.apache.org/proper/commons-text/changes.html">https://commons.apache.org/proper/commons-text/changes.html</a></p> <p>For complete information on Apache Commons Text, including instructions on how to submit bug reports, patches, or suggestions for improvement, see the Apache Commons Text website:</p> <p><a href="https://commons.apache.org/proper/commons-text">https://commons.apache.org/proper/commons-text</a></p> <p>Download page: <a href="https://commons.apache.org/proper/commons-text/download_text.cgi">https://commons.apache.org/proper/commons-text/download_text.cgi</a></p>  </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/apache/commons-text/commit/04e937470d3679cc163df85d82d5b6d2e3e71128"><code>04e9374</code></a> Prepare for the release candidate 1.15.0 RC1</li> <li><a href="https://github.com/apache/commons-text/commit/502c4c41be5671681b58a9b50297f99737e8ea93"><code>502c4c4</code></a> Prepare for the next release candidate</li> <li><a href="https://github.com/apache/commons-text/commit/c6e17ec24cc8374eb12676b717bf797f41b6e539"><code>c6e17ec</code></a> Use direct access</li> <li><a href="https://github.com/apache/commons-text/commit/58e1e125daaa0aebf8c5ffaa82af48821a1ccf2d"><code>58e1e12</code></a> Simplify XML FSP (<a href="https://redirect.github.com/apache/commons-text/issues/731">#731</a>)</li> <li><a href="https://github.com/apache/commons-text/commit/b5052c97e84e1c174ec8bfbbb749e33f22917a07"><code>b5052c9</code></a> Bump actions/setup-java from 5.0.0 to 5.1.0</li> <li><a href="https://github.com/apache/commons-text/commit/2e2d4bc90f1b3274e7943ac27d037d47c0cc098d"><code>2e2d4bc</code></a> Revert "Bump actions/setup-java from 5.0.0 to 5.1.0"</li> <li><a href="https://github.com/apache/commons-text/commit/b0ddbd17bbeee12ad33b8a61c60b4edbe6c85838"><code>b0ddbd1</code></a> Bump actions/setup-java from 5.0.0 to 5.1.0</li> <li><a href="https://github.com/apache/commons-text/commit/1c2d3821e67e08342b8cef4d4445c30b4a22daca"><code>1c2d382</code></a> Add tests with external DTD</li> <li><a href="https://github.com/apache/commons-text/commit/ed3df4b25cd5301921a6523ae7db2411f4a84d98"><code>ed3df4b</code></a> Internal clean up</li> <li><a href="https://github.com/apache/commons-text/commit/bb508f304a8835ac2319af1d872b2f1a9ff6f81d"><code>bb508f3</code></a> Bump actions/checkout from 6.0.0 to 6.0.1</li> <li>Additional commits viewable in <a href="https://github.com/apache/commons-text/compare/rel/commons-text-1.14.0...rel/commons-text-1.15.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.commons:commons-text&package-manager=gradle&previous-version=1.14.0&new-version=1.15.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions </details> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: MonTransit Bot <84137772+montransit@users.noreply.github.com>

Bumps [org.apache.commons:commons-text](https://github.com/apache/commons-text) from 1.14.0 to 1.15.0. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/apache/commons-text/blob/master/RELEASE-NOTES.txt">org.apache.commons:commons-text's changelog</a>.</em></p> <blockquote> <h2>Apache Commons Text 1.15.0 Release Notes</h2> <p>The Apache Commons Text team is pleased to announce the release of Apache Commons Text 1.15.0.</p> <p>Apache Commons Text is a set of utility functions and reusable components for processing and manipulating text in a Java environment.</p> <p>Release 1.15.0. This is a feature and maintenance release. Java 8 or later is required.</p> <h2>New features</h2> <ul> <li> <pre><code> Add experimental CycloneDX VEX file [#683](apache/commons-text#683). Thanks to Piotr P. Karwasz, Gary Gregory. </code></pre> </li> <li>TEXT-235: Add Damerau-Levenshtein distance <a href="https://redirect.github.com/apache/commons-text/issues/687">#687</a>. Thanks to LorgeN, Gary Gregory.</li> <li> <pre><code> Add unit tests to increase coverage [#719](apache/commons-text#719). Thanks to Michael Hausegger, Gary Gregory. </code></pre> </li> <li> <pre><code> Add new test for CharSequenceTranslator#with() [#725](apache/commons-text#725). Thanks to Michael Hausegger, Gary Gregory. </code></pre> </li> <li> <pre><code> Add tests and assertions to org.apache.commons.text.similarity to get to 100% code coverage [#727](apache/commons-text#727), [#728](apache/commons-text#728). Thanks to Michael Hausegger. </code></pre> </li> </ul> <h2>Fixed Bugs</h2> <ul> <li> <pre><code> Fix exception message typo in XmlStringLookup.XmlStringLookup(Map, Path...). Thanks to Gary Gregory. </code></pre> </li> <li>TEXT-236: Inserting at the end of a TextStringBuilder throws a StringIndexOutOfBoundsException. Thanks to Pierre Post, Sumit Bera, Alex Herbert, Gary Gregory.</li> <li> <pre><code> Fix TextStringBuilderTest.testAppendToCharBuffer() to use proper argument type [#724](apache/commons-text#724). Thanks to Michael Hausegger. </code></pre> </li> <li> <pre><code> Fix Apache RAT plugin console warnings. Thanks to Gary Gregory. </code></pre> </li> <li> <pre><code> Fix site XML to use version 2.0.0 XML schema. Thanks to Gary Gregory. </code></pre> </li> <li> <pre><code> Removed unreachable threshold verification code in src/main/java/org/apache/commons/text/similarity [#730](apache/commons-text#730). Thanks to Michael Hausegger. </code></pre> </li> <li> <pre><code> Enable secure processing for the XML parser in XmlStringLookup in case the underlying JAXP implementation doesn't [#729](apache/commons-text#729). Thanks to 김민재 (minjas0507), Gary Gregory, Piotr Karwasz. </code></pre> </li> </ul> <h2>Changes</h2> <ul> <li> <pre><code> Bump org.apache.commons:commons-parent from 85 to 93 [#704](apache/commons-text#704), [#723](apache/commons-text#723), [#726](apache/commons-text#726). Thanks to Gary Gregory. </code></pre> </li> <li> <pre><code> Bump commons.bytebuddy.version from 1.17.6 to 1.18.2 [#696](apache/commons-text#696), [#722](apache/commons-text#722). Thanks to Gary Gregory. </code></pre> </li> <li> <pre><code> Bump graalvm.version from 24.2.2 to 25.0.1 [#703](apache/commons-text#703), [#716](apache/commons-text#716). Thanks to Gary Gregory, Dependabot. </code></pre> </li> <li> <pre><code> Bump org.apache.commons:commons-lang3 from 3.18.0 to 3.20.0. Thanks to Gary Gregory. </code></pre> </li> <li> <pre><code> Bump commons-io:commons-io from 2.20.0 to 2.21.0. Thanks to Gary Gregory. </code></pre> </li> </ul> <p>Historical list of changes: <a href="https://commons.apache.org/proper/commons-text/changes.html">https://commons.apache.org/proper/commons-text/changes.html</a></p> <p>For complete information on Apache Commons Text, including instructions on how to submit bug reports, patches, or suggestions for improvement, see the Apache Commons Text website:</p> <p><a href="https://commons.apache.org/proper/commons-text">https://commons.apache.org/proper/commons-text</a></p> <p>Download page: <a href="https://commons.apache.org/proper/commons-text/download_text.cgi">https://commons.apache.org/proper/commons-text/download_text.cgi</a></p>  </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/apache/commons-text/commit/04e937470d3679cc163df85d82d5b6d2e3e71128"><code>04e9374</code></a> Prepare for the release candidate 1.15.0 RC1</li> <li><a href="https://github.com/apache/commons-text/commit/502c4c41be5671681b58a9b50297f99737e8ea93"><code>502c4c4</code></a> Prepare for the next release candidate</li> <li><a href="https://github.com/apache/commons-text/commit/c6e17ec24cc8374eb12676b717bf797f41b6e539"><code>c6e17ec</code></a> Use direct access</li> <li><a href="https://github.com/apache/commons-text/commit/58e1e125daaa0aebf8c5ffaa82af48821a1ccf2d"><code>58e1e12</code></a> Simplify XML FSP (<a href="https://redirect.github.com/apache/commons-text/issues/731">#731</a>)</li> <li><a href="https://github.com/apache/commons-text/commit/b5052c97e84e1c174ec8bfbbb749e33f22917a07"><code>b5052c9</code></a> Bump actions/setup-java from 5.0.0 to 5.1.0</li> <li><a href="https://github.com/apache/commons-text/commit/2e2d4bc90f1b3274e7943ac27d037d47c0cc098d"><code>2e2d4bc</code></a> Revert "Bump actions/setup-java from 5.0.0 to 5.1.0"</li> <li><a href="https://github.com/apache/commons-text/commit/b0ddbd17bbeee12ad33b8a61c60b4edbe6c85838"><code>b0ddbd1</code></a> Bump actions/setup-java from 5.0.0 to 5.1.0</li> <li><a href="https://github.com/apache/commons-text/commit/1c2d3821e67e08342b8cef4d4445c30b4a22daca"><code>1c2d382</code></a> Add tests with external DTD</li> <li><a href="https://github.com/apache/commons-text/commit/ed3df4b25cd5301921a6523ae7db2411f4a84d98"><code>ed3df4b</code></a> Internal clean up</li> <li><a href="https://github.com/apache/commons-text/commit/bb508f304a8835ac2319af1d872b2f1a9ff6f81d"><code>bb508f3</code></a> Bump actions/checkout from 6.0.0 to 6.0.1</li> <li>Additional commits viewable in <a href="https://github.com/apache/commons-text/compare/rel/commons-text-1.14.0...rel/commons-text-1.15.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.commons:commons-text&package-manager=gradle&previous-version=1.14.0&new-version=1.15.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Sep 19, 2025

garydgregory merged commit d454232 into master Sep 19, 2025
15 checks passed

garydgregory deleted the dependabot/maven/graalvm.version-25.0.0 branch September 19, 2025 21:21

garydgregory added a commit that referenced this pull request Sep 19, 2025

Bump graalvm.version from 24.2.2 to 25.0.0 #703

618cc66

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump graalvm.version from 24.2.2 to 25.0.0#703

Bump graalvm.version from 24.2.2 to 25.0.0#703
garydgregory merged 1 commit intomasterfrom
dependabot/maven/graalvm.version-25.0.0

dependabot bot commented on behalf of github Sep 19, 2025

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

dependabot bot commented on behalf of github Sep 19, 2025

GraalJS 25.0.0

Version 25.0.0

Version 24.2.0

Version 24.1.0

Version 24.0.0

Version 23.1.0

GraalJS 25.0.0

Version 25.0.0

Version 24.2.0

Version 24.1.0

Version 24.0.0

Version 23.1.0

GraalJS 25.0.0

Version 25.0.0

Version 24.2.0

Version 24.1.0

Version 24.0.0

Version 23.1.0

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant