Skip to content

Bump the monthly-batch group with 28 updates#574

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/maven/monthly-batch-20d8e536f8
Open

Bump the monthly-batch group with 28 updates#574
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/maven/monthly-batch-20d8e536f8

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 14, 2026

Copy link
Copy Markdown
Contributor

Bumps the monthly-batch group with 28 updates:

Package From To
org.junit.jupiter:junit-jupiter-engine 5.13.4 6.1.2
org.junit.jupiter:junit-jupiter-api 5.13.4 6.1.2
com.github.spotbugs:spotbugs 4.9.3 4.10.3
com.puppycrawl.tools:checkstyle 10.26.1 13.8.0
net.sourceforge.pmd:pmd-core 7.22.0 7.26.0
net.sourceforge.pmd:pmd-java 7.22.0 7.26.0
net.sourceforge.pmd:pmd-javascript 7.22.0 7.26.0
net.sourceforge.pmd:pmd-jsp 7.22.0 7.26.0
com.github.spotbugs:spotbugs-maven-plugin 4.9.3.2 4.10.3.0
org.apache.maven.plugins:maven-compiler-plugin 3.14.0 3.15.0
org.apache.maven.plugins:maven-dependency-plugin 3.8.1 3.11.0
org.apache.maven.plugins:maven-enforcer-plugin 3.6.1 3.6.3
org.apache.maven.plugins:maven-jar-plugin 3.4.2 3.5.0
org.apache.maven.plugins:maven-source-plugin 3.3.1 3.4.0
org.apache.maven.plugins:maven-javadoc-plugin 3.11.2 3.12.0
org.apache.maven.plugins:maven-release-plugin 3.1.1 3.3.1
org.apache.maven.plugins:maven-surefire-plugin 3.5.3 3.5.6
org.apache.maven.plugins:maven-resources-plugin 3.3.1 3.5.0
org.apache.maven.plugins:maven-antrun-plugin 3.1.0 3.2.0
org.apache.rat:apache-rat-plugin 0.16.1 0.18
org.codehaus.mojo:exec-maven-plugin 3.5.1 3.6.3
org.codehaus.mojo:license-maven-plugin 2.6.0 2.7.1
org.codehaus.mojo:versions-maven-plugin 2.18.0 2.21.0
org.jacoco:jacoco-maven-plugin 0.8.13 0.8.15
org.mutabilitydetector:MutabilityDetector4FindBugs 0.9.1 0.9.3
org.hjug.refactorfirst.plugin:refactor-first-maven-plugin 0.7.1 0.9.0
org.jreleaser:jreleaser-maven-plugin 1.19.0 1.25.0
io.vertx:vertx-core 5.0.12 5.1.5

Updates org.junit.jupiter:junit-jupiter-engine from 5.13.4 to 6.1.2

Release notes

Sourced from org.junit.jupiter:junit-jupiter-engine's releases.

JUnit 6.1.2 = Platform 6.1.2 + Jupiter 6.1.2 + Vintage 6.1.2

See Release Notes.

Full Changelog: junit-team/junit-framework@r6.1.1...r6.1.2

JUnit 6.1.1 = Platform 6.1.1 + Jupiter 6.1.1 + Vintage 6.1.1

See Release Notes.

Full Changelog: junit-team/junit-framework@r6.1.0...r6.1.1

JUnit 6.1.0 = Platform 6.1.0 + Jupiter 6.1.0 + Vintage 6.1.0

See Release Notes.

New Contributors

Full Changelog: junit-team/junit-framework@r6.0.3...r6.1.0

JUnit 6.1.0-RC1 = Platform 6.1.0-RC1 + Jupiter 6.1.0-RC1 + Vintage 6.1.0-RC1

See Release Notes.

New Contributors

Full Changelog: junit-team/junit-framework@r6.1.0-M1...r6.1.0-RC1

JUnit 6.1.0-M1 = Platform 6.1.0-M1 + Jupiter 6.1.0-M1 + Vintage 6.1.0-M1

See Release Notes.

New Contributors

... (truncated)

Commits
  • b685426 Release 6.1.2
  • ae244a6 Remove blanket outputDirectoryCreator from SuiteEngineTests (#5793)
  • 43bd154 Finalize 6.1.2 release notes
  • 0cd9510 Fix order of release note sections
  • a1507cb Add initial 6.1.2 release notes to release notes index
  • 9326641 Fix NoTestsDiscoveredException for suites containing only dynamic tests (#5839)
  • 2ef1123 Create initial 6.1.2 release notes from template
  • 83fa9ab Back to snapshots for further development
  • 0d85889 Release 6.1.1
  • 0363eee Finalize 6.1.1 release notes
  • Additional commits viewable in compare view

Updates org.junit.jupiter:junit-jupiter-api from 5.13.4 to 6.1.2

Release notes

Sourced from org.junit.jupiter:junit-jupiter-api's releases.

JUnit 6.1.2 = Platform 6.1.2 + Jupiter 6.1.2 + Vintage 6.1.2

See Release Notes.

Full Changelog: junit-team/junit-framework@r6.1.1...r6.1.2

JUnit 6.1.1 = Platform 6.1.1 + Jupiter 6.1.1 + Vintage 6.1.1

See Release Notes.

Full Changelog: junit-team/junit-framework@r6.1.0...r6.1.1

JUnit 6.1.0 = Platform 6.1.0 + Jupiter 6.1.0 + Vintage 6.1.0

See Release Notes.

New Contributors

Full Changelog: junit-team/junit-framework@r6.0.3...r6.1.0

JUnit 6.1.0-RC1 = Platform 6.1.0-RC1 + Jupiter 6.1.0-RC1 + Vintage 6.1.0-RC1

See Release Notes.

New Contributors

Full Changelog: junit-team/junit-framework@r6.1.0-M1...r6.1.0-RC1

JUnit 6.1.0-M1 = Platform 6.1.0-M1 + Jupiter 6.1.0-M1 + Vintage 6.1.0-M1

See Release Notes.

New Contributors

... (truncated)

Commits
  • b685426 Release 6.1.2
  • ae244a6 Remove blanket outputDirectoryCreator from SuiteEngineTests (#5793)
  • 43bd154 Finalize 6.1.2 release notes
  • 0cd9510 Fix order of release note sections
  • a1507cb Add initial 6.1.2 release notes to release notes index
  • 9326641 Fix NoTestsDiscoveredException for suites containing only dynamic tests (#5839)
  • 2ef1123 Create initial 6.1.2 release notes from template
  • 83fa9ab Back to snapshots for further development
  • 0d85889 Release 6.1.1
  • 0363eee Finalize 6.1.1 release notes
  • Additional commits viewable in compare view

Updates org.junit.jupiter:junit-jupiter-api from 5.13.4 to 6.1.2

Release notes

Sourced from org.junit.jupiter:junit-jupiter-api's releases.

JUnit 6.1.2 = Platform 6.1.2 + Jupiter 6.1.2 + Vintage 6.1.2

See Release Notes.

Full Changelog: junit-team/junit-framework@r6.1.1...r6.1.2

JUnit 6.1.1 = Platform 6.1.1 + Jupiter 6.1.1 + Vintage 6.1.1

See Release Notes.

Full Changelog: junit-team/junit-framework@r6.1.0...r6.1.1

JUnit 6.1.0 = Platform 6.1.0 + Jupiter 6.1.0 + Vintage 6.1.0

See Release Notes.

New Contributors

Full Changelog: junit-team/junit-framework@r6.0.3...r6.1.0

JUnit 6.1.0-RC1 = Platform 6.1.0-RC1 + Jupiter 6.1.0-RC1 + Vintage 6.1.0-RC1

See Release Notes.

New Contributors

Full Changelog: junit-team/junit-framework@r6.1.0-M1...r6.1.0-RC1

JUnit 6.1.0-M1 = Platform 6.1.0-M1 + Jupiter 6.1.0-M1 + Vintage 6.1.0-M1

See Release Notes.

New Contributors

... (truncated)

Commits
  • b685426 Release 6.1.2
  • ae244a6 Remove blanket outputDirectoryCreator from SuiteEngineTests (#5793)
  • 43bd154 Finalize 6.1.2 release notes
  • 0cd9510 Fix order of release note sections
  • a1507cb Add initial 6.1.2 release notes to release notes index
  • 9326641 Fix NoTestsDiscoveredException for suites containing only dynamic tests (#5839)
  • 2ef1123 Create initial 6.1.2 release notes from template
  • 83fa9ab Back to snapshots for further development
  • 0d85889 Release 6.1.1
  • 0363eee Finalize 6.1.1 release notes
  • Additional commits viewable in compare view

Updates com.github.spotbugs:spotbugs from 4.9.3 to 4.10.3

Release notes

Sourced from com.github.spotbugs:spotbugs's releases.

4.10.3

SpotBugs 4.10.3

CHANGELOG

Fixed

  • Fix LI_LAZY_INIT_STATIC false negative when the null guard is written in yoda-style (null == field) (#4144)
  • Fix DC_DOUBLECHECK, NP_SYNC_AND_NULL_CHECK_FIELD and SP_SPIN_ON_FIELD false negatives when the null guard is written in yoda-style (null == field) (#4144)
  • Fix message for UNS_UNSAFE_CALL bug pattern
  • Restore CLI plugin loading by fixing DetectorFactoryCollection bootstrap ordering (#4191)
  • Fix UWF_NULL_FIELD false negative for fields initialized with cast null values (#4034)
  • Fix UMAC_UNCALLABLE_METHOD_OF_ANONYMOUS_CLASS false positive for methods reached only through method references (#4059)

Changed

  • Ant FindBugsViewerTask: use default look and feel by default. (#4165)

Refactor

  • Ant FindBugsViewerTask: extend AbstractFindBugsTask to reduce duplicate code. (#4165)

CHECKSUM

file checksum (sha256)
spotbugs-4.10.3-javadoc.jar 9670d6569864fd9a45c4aa92f6e3dc2d11e2c24b4ff0a3eabe64b293dc3f0534
spotbugs-4.10.3-sources.jar e00994265d6b771db8cc79edd70500ab8af6334f636d3ac7bf169c5d7daefcbc
spotbugs-4.10.3.tgz 53c03a77da9746ed0c17aae6c0a9419a12ddeb8bf61dd7209a2e417550afd01d
spotbugs-4.10.3.zip e814ee5bf9665412658c4d684e45eae3cf993148a71bc8bc93fb343e92288151
spotbugs-annotations-4.10.3-javadoc.jar 5da6c2d1fe6ef37022dda7fdf221965bb6de57a0276e1735f518840f56ccab1f
spotbugs-annotations-4.10.3-sources.jar 87974d23caffbc8c6e66c567747627267b5ed06573cee966d7af6d236b8d65bd
spotbugs-annotations.jar 3fabaf088f8cd10803cc87dba4666cf874bdcd2e07ad154ed3fe403647ce3f2a
spotbugs-ant-4.10.3-javadoc.jar fab78b3c109057689dc2057a18071b1a997048bb18b45ae39835c1007b18f440
spotbugs-ant-4.10.3-sources.jar af1c78c8e194c2f82ea3e0517ab38a5eb6ba608c8d0e776c9097605d6b7efca6
spotbugs-ant.jar 9ec240477b7c87270be7dfe3196180cd3763f04c369e5691feeb12e66110a065
spotbugs.jar 5b12b471979fd8d664e9772d4c7e7e11b25a55d71dbb0ef2d2dcb749959052e7
test-harness-4.10.3-javadoc.jar 1a495602098f524a4a62f227bc556f75236a0231d08d7bedaeae73d478067e94
test-harness-4.10.3-sources.jar 805d2d124b0d4ea513ee9262d4ad6027c3471d45defd80fd7d20e23425d17df7
test-harness-4.10.3.jar bd10d1f11a1b93e4ca4db4d27772f611bd3407f9452dbbd2d1ba62584ddc171f
test-harness-core-4.10.3-javadoc.jar cb08bb86e5c9d5b4c4459ab103b9cd0dd99527a56f6fa645ec10d07b0fe75735
test-harness-core-4.10.3-sources.jar 043a55d99a517c0d9cf702b0c183b4afd3f03af9eff4a86d59bb37df1b35b532
test-harness-core-4.10.3.jar 1f9a0ee8f150dd71f960ca4f59dcf7912a45d0e9e6aefc4585fd44b975454bc0
test-harness-jupiter-4.10.3-javadoc.jar 02b463d272ccc7e6f9c7dcbfe7087da23afb6f9b8ad24316362397ae21fcf4cc
test-harness-jupiter-4.10.3-sources.jar 17144f315686bfd01c02fa4ae7c916060c41de8eed58d5b8470416fa08f46ced
test-harness-jupiter-4.10.3.jar a91146da3e993479cfefd2690781cbd102c6360ecc63a96d88995be3bd60fcbb

4.10.2

SpotBugs 4.10.2

CHANGELOG

Build

  • Add release protection to ensure version released matches the tag and that snapshot has been removed. (#4156)
  • Drop binary incompatible Saxon-HE back to 12.9 to keep java 11 compatibility. (#4159)

... (truncated)

Changelog

Sourced from com.github.spotbugs:spotbugs's changelog.

4.10.3 - 2026-07-12

Fixed

  • Fix LI_LAZY_INIT_STATIC false negative when the null guard is written in yoda-style (null == field) (#4144)
  • Fix DC_DOUBLECHECK, NP_SYNC_AND_NULL_CHECK_FIELD and SP_SPIN_ON_FIELD false negatives when the null guard is written in yoda-style (null == field) (#4144)
  • Fix message for UNS_UNSAFE_CALL bug pattern
  • Restore CLI plugin loading by fixing DetectorFactoryCollection bootstrap ordering (#4191)
  • Fix UWF_NULL_FIELD false negative for fields initialized with cast null values (#4034)
  • Fix UMAC_UNCALLABLE_METHOD_OF_ANONYMOUS_CLASS false positive for methods reached only through method references (#4059)

Changed

  • Ant FindBugsViewerTask: use default look and feel by default. (#4165)

Refactor

  • Ant FindBugsViewerTask: extend AbstractFindBugsTask to reduce duplicate code. (#4165)

4.10.2 - 2026-06-09

Build

  • Add release protection to ensure version released matches the tag and that snapshot has been removed. (#4156)
  • Drop binary incompatible Saxon-HE back to 12.9 to keep java 11 compatibility. (#4159)
  • Add binary check to the gradle build to ensure compatibility remains. (#4159)

4.10.1 - 2026-06-08

Build

  • 4.10.0 was not released due to a release process error (artifacts were built from a -SNAPSHOT version). 4.10.1 is the corrected release and contains the intended 4.10.0 contents.

4.10.0 - 2026-06-07

Refactor

  • Move internal usage of 'javax.annotation.Nonnull' to 'jakarta.annotation.NonNull'. (#3858)
  • Move internal usage of 'javax.annotation.Nullable' to 'jakarta.annotation.Nullable'. (#3861)
  • Renamed methods from edu.umd.cs.findbugs.SwitchHandler to reflect that they return a PC, not an offset (#3869)
  • Make the progress bar more visually appealing by adding some borders (#3896)
  • Reuse DismantleBytecode.isIf introduced in (#3869)

Added

  • Add partial support for org.jspecify.annotations.Nullable, org.jspecify.annotations.NonNull, org.jspecify.annotations.NullUnmarked and org.jspecify.annotations.NullMarked annotations. These are aliased to the closest existing SpotBugs nullness annotations. This is not a complete implementation of the JSpecify spec; scope-level semantics of @NullMarked and @NullUnmarked are not yet supported. (#3996)
  • Recognize jakarta.annotation.Nonnull and jakarta.annotation.Nullable (#3780)
  • Detect use of sun.misc.Unsafe and jdk.internal.misc.Unsafe (#3804)
  • New bug type is introduced: NCR_NOT_PROPERLY_CHECKED_READ. Improper validation of the return value from the read() method in InputStream and Reader classes may result in an array not being fully filled. (#3766)
  • New detector FindImproperSynchronization and introduced new bug types:
    • USO_UNSAFE_METHOD_SYNCHRONIZATION is reported when using synchronized methods with the class' accessible intrinsic lock,
    • USO_UNSAFE_STATIC_METHOD_SYNCHRONIZATION is reported when using static synchronized methods with the class' exposed intrinsic lock,
    • USO_UNSAFE_OBJECT_SYNCHRONIZATION is reported when the lock used for synchronization is visible from the outside,
    • USO_UNSAFE_ACCESSIBLE_OBJECT_SYNCHRONIZATION is reported when the lock used for synchronization is made accessible, with methods that update or return the lock, to the outside,
    • USO_UNSAFE_INHERITABLE_OBJECT_SYNCHRONIZATION is reported when the lock used for synchronization is can be altered by subclasses,
    • USO_UNSAFE_EXPOSED_OBJECT_SYNCHRONIZATION is reported when the lock used for synchronization is later exposed in the subclasses.
    • USBC_UNSAFE_SYNCHRONIZATION_WITH_BACKING_COLLECTION is reported when the backing collection of a lock is visible from the outside,
    • USBC_UNSAFE_SYNCHRONIZATION_WITH_ACCESSIBLE_BACKING_COLLECTION is reported when the backing collection of a lock is made accessible, with methods that update or return the lock, to the outside,
    • USBC_UNSAFE_SYNCHRONIZATION_WITH_INHERITABLE_BACKING_COLLECTION is reported when the backing collection of a lock can be altered by subclasses. (See SEI CERT rule LCK00-J and SEI CERT rule LCK04-J)
  • New detector FindIncreasedAccessibilityOfMethods for new bug type IAOM_DO_NOT_INCREASE_METHOD_ACCESSIBILITY. This detector reports a bug if a class increases the accessibility of overridden or hidden methods. (See SEI CERT rule MET04-J)

... (truncated)

Commits
  • 8d5cad4 release v4.10.3
  • f849bce Update junit-framework monorepo to v6.1.2 (#4199)
  • 368a213 Fixes #4138 : Detect yoda-style null guards in lazy-init and related detector...
  • 21ba538 Update actions/stale digest to 1e223db (#4197)
  • 6c91a0d Update dependency net.sf.saxon:Saxon-HE to v12.10 (#4198)
  • 7fb263e Update actions/setup-java digest to 0f481fc (#4196)
  • c8f9bb1 fix(deprecations): Replace deprecated io close with try with resources (#4194)
  • 1c78756 chore{build): Update eclipse-convention.gradle.kts file (#4193)
  • 1aec284 fix: improve EQ_DOESNT_OVERRIDE_EQUALS warning to mention symmetry risk (#4016)
  • f3ddc36 Fixes #4055 : Record method-reference targets as called methods (#4059)
  • Additional commits viewable in compare view

Updates com.puppycrawl.tools:checkstyle from 10.26.1 to 13.8.0

Release notes

Sourced from com.puppycrawl.tools:checkstyle's releases.

checkstyle-13.8.0

Checkstyle 13.8.0 - https://checkstyle.org/releasenotes.html#Release_13.8.0

New:

#20225 - MethodCountCheck: top-level methods not counted toward limits in compact source files (JEP 512).

Bug fixes:

#20527 - Javadoc Ast: PARAMETER_TYPE has problems during parsing of generic methods. #20490 - UnusedLocalVariable: jdkVersion pre-22 should allow unused named pattern matched destructured variables via instanceof for pre-Java 22 code. #20641 - Add checks for Openjdk style chapter - Programming Practices. #19670 - Add checks for OpenJDK Style chapter - Braces. #20526 - Add checks for Openjdk style chapter - Horizontal WhiteSpace. #20588 - Add checks for openjdk style - Vertical WhiteSpace. #20622 - Add checks for openjdk style - Type Variables. #20523 - FinalClassCheck: NullPointerException on compact source files (JEP 512). #9806 - Javadoc summary not processed inside html tags. #20228 - OverloadMethodsDeclarationOrderCheck: split top-level overloads not flagged in compact source files (JEP 512). #20437 - Add checks for Openjdk style chapter - Wrapping Expressions. #20470 - False negative in UnnecessarySemicolonInEnumeration for multiple semicolons in enum body. #20597 - Add checks for Openjdk style chapter - Formatting. #20524 - AbbreviationAsWordInNameCheck: NullPointerException on compact source files (JEP 512). #20392 - Javadoc parse error while parsing reference. #20547 - UnusedImports: imported types inside Javadoc generic method-reference arguments are reported as unused. #20471 - Add checks for Openjdk style chapter - Variables. #20446 - Javadoc parse error on @link method reference containing generic parameter type. #20222 - HiddenFieldCheck: parameter shadowing top-level field not flagged in compact source files (JEP 512). #20330 - EmptyLineSeparator: false positive "',' should be separated from previous line" on multi-variable field declaration.

... (truncated)

Commits
  • 8b72cc9 [maven-release-plugin] prepare release checkstyle-13.8.0
  • 3a411fd doc: release notes for 13.8.0
  • fe864d1 Issue #20527: skip whitespace inside Javadoc @​link parameter type lists
  • 204bae1 Issue #15456: specify violation messgaes for AbstractJavadocCheckTest and Req...
  • 4d4e09f Issue #20590: add NeedBraces compact source input coverage
  • 30f8362 Issue #20590: add StringLiteralEquality compact source input coverage
  • 6f9a2b5 Issue #20590: add OuterTypeFilename compact source input coverage
  • d973cd2 Issue #20653: unexpected output to logs from XdocsExamplesAstConsistencyTest
  • 1b03c1b Issue #20654: Unexpected output in maven build from SearchIndexGenerator
  • aa432dd Issue #15456: specify violation messages for MissingJavadocTypeCheck
  • Additional commits viewable in compare view

Updates net.sourceforge.pmd:pmd-core from 7.22.0 to 7.26.0

Release notes

Sourced from net.sourceforge.pmd:pmd-core's releases.

PMD 7.26.0 (29-June-2026)

29-June-2026 - 7.26.0

The PMD team is pleased to announce PMD 7.26.0.

This is a minor release.

Table Of Contents

🚀️ New and noteworthy

Swift Changes

The Swift parser now forwards syntax errors as usual processing errors. Before it just logged any errors and tried to move on, resulting in an incomplete AST with error nodes. As part of this change, the grammar has been slightly improved around macro declarations, generic parameters and parameter packs.
This means that PMD might fail now on Swift files with processing errors, when it previously ran without obvious problems. The Swift module in PMD now behaves like other modules in regard to error handling.

Updated PMD Designer

This PMD release ships a new version of the pmd-designer. For the changes, see PMD Designer Changelog (7.19.3).

🌟️ New and Changed Rules

New Rules

  • The new Java rule WrongTestAnnotation detects when test annotations from the wrong testing framework (JUnit 4, JUnit Jupiter, or TestNG) are used in your code, preventing tests from being silently skipped due to framework mismatches. This helps avoid the silent failure where tests compile but don't execute because the test runner doesn't recognize the annotation.
  • The new Java rule AssertEqualsArgumentOrder detects assertions where the expected and actual arguments were swapped. This helps find assertions that are producing a confusing error message when they fail.
  • The new Kotlin rule LocalVariableShadowsParameter detects local variable declarations that use the same name as a parameter of the enclosing function. This shadows the parameter and may lead to confusion about which value is used.
  • The new Apex rule InvocableClassNoArgConstructor detects classes that use @InvocableVariable properties, but that don't provide a no-arg constructor. Without such a constructor,

... (truncated)

Commits
  • 8fd38ed [release] prepare release pmd_releases/7.26.0
  • 9a1791a Prepare pmd release 7.26.0
  • 5d38f78 Update contributors for 7.26.0
  • 07bab85 [java] Fix #6627: UnusedPrivateMethod: add javax to ignored annotations (#6821)
  • b886772 [java] AvoidDeepNestedIfStmts: count ifs properly in else branch (#6814)
  • 62afded Merge branch 'main' into pr-6814
  • 4c54901 [doc] Update release notes (#6814)
  • 99a8d9c Update pmd-java/src/main/java/net/sourceforge/pmd/lang/java/rule/design/Avoid...
  • dbdec25 [java] Fix #6740: Fix FP in OptimizableToArrayCall (#6813)
  • 41f0d39 [java] Rename ASTMethodDeclaration#isOverridden() to isOverride() (#6812)
  • Additional commits viewable in compare view

Updates net.sourceforge.pmd:pmd-java from 7.22.0 to 7.26.0

Release notes

Sourced from net.sourceforge.pmd:pmd-java's releases.

PMD 7.26.0 (29-June-2026)

29-June-2026 - 7.26.0

The PMD team is pleased to announce PMD 7.26.0.

This is a minor release.

Table Of Contents

🚀️ New and noteworthy

Swift Changes

The Swift parser now forwards syntax errors as usual processing errors. Before it just logged any errors and tried to move on, resulting in an incomplete AST with error nodes. As part of this change, the grammar has been slightly improved around macro declarations, generic parameters and parameter packs.
This means that PMD might fail now on Swift files with processing errors, when it previously ran without obvious problems. The Swift module in PMD now behaves like other modules in regard to error handling.

Updated PMD Designer

This PMD release ships a new version of the pmd-designer. For the changes, see PMD Designer Changelog (7.19.3).

🌟️ New and Changed Rules

New Rules

  • The new Java rule WrongTestAnnotation detects when test annotations from the wrong testing framework (JUnit 4, JUnit Jupiter, or TestNG) are used in your code, preventing tests from being silently skipped due to framework mismatches. This helps avoid the silent failure where tests compile but don't execute because the test runner doesn't recognize the annotation.
  • The new Java rule AssertEqualsArgumentOrder detects assertions where the expected and actual arguments were swapped. This helps find assertions that are producing a confusing error message when they fail.
  • The new Kotlin rule LocalVariableShadowsParameter detects local variable declarations that use the same name as a parameter of the enclosing function. This shadows the parameter and may lead to confusion about which value is used.
  • The new Apex rule InvocableClassNoArgConstructor detects classes that use @InvocableVariable properties, but that don't provide a no-arg constructor. Without such a constructor,

... (truncated)

Commits
  • 8fd38ed [release] prepare release pmd_releases/7.26.0
  • 9a1791a Prepare pmd release 7.26.0
  • 5d38f78 Update contributors for 7.26.0
  • 07bab85 [java] Fix #6627: UnusedPrivateMethod: add javax to ignored annotations (#6821)
  • b886772 [java] AvoidDeepNestedIfStmts: count ifs properly in else branch (#6814)
  • 62afded Merge branch 'main' into pr-6814
  • 4c54901 [doc] Update release notes (#6814)
  • 99a8d9c Update pmd-java/src/main/java/net/sourceforge/pmd/lang/java/rule/design/Avoid...
  • dbdec25 [java] Fix #6740: Fix FP in OptimizableToArrayCall (#6813)
  • 41f0d39 [java] Rename ASTMethodDeclaration#isOverridden() to isOverride() (#6812)
  • Additional commits viewable in compare view

Updates net.sourceforge.pmd:pmd-javascript from 7.22.0 to 7.26.0

Release notes

Sourced from net.sourceforge.pmd:pmd-javascript's releases.

PMD 7.26.0 (29-June-2026)

29-June-2026 - 7.26.0

The PMD team is pleased to announce PMD 7.26.0.

This is a minor release.

Table Of Contents

🚀️ New and noteworthy

Swift Changes

The Swift parser now forwards syntax errors as usual processing errors. Before it just logged any errors and tried to move on, resulting in an incomplete AST with error nodes. As part of this change, the grammar has been slightly improved around macro declarations, generic parameters and parameter packs.
This means that PMD might fail now on Swift files with processing errors, when it previously ran without obvious problems. The Swift module in PMD now behaves like other modules in regard to error handling.

Updated PMD Designer

This PMD release ships a new version of the pmd-designer. For the changes, see PMD Designer Changelog (7.19.3).

🌟️ New and Changed Rules

New Rules

  • The new Java rule WrongTestAnnotation detects when test annotations from the wrong testing framework (JUnit 4, JUnit Jupiter, or TestNG) are used in your code, preventing tests from being silently skipped due to framework mismatches. This helps avoid the silent failure where tests compile but don't execute because the test runner doesn't recognize the annotation.
  • The new Java rule AssertEqualsArgumentOrder detects assertions where the expected and actual arguments were swapped. This helps find assertions that are producing a confusing error message when they fail.
  • The new Kotlin rule LocalVariableShadowsParameter detects local variable declarations that use the same name as a parameter of the enclosing function. This shadows the parameter and may lead to confusion about which value is used.
  • The new Apex rule InvocableClassNoArgConstructor detects classes that use @InvocableVariable properties, but that don't provide a no-arg constructor. Without such a constructor,

... (truncated)

Commits
  • 8fd38ed [release] prepare release pmd_releases/7.26.0
  • 9a1791a Prepare pmd release 7.26.0
  • 5d38f78 Update contributors for 7.26.0
  • 07bab85 [java] Fix

Bumps the monthly-batch group with 28 updates:

| Package | From | To |
| --- | --- | --- |
| [org.junit.jupiter:junit-jupiter-engine](https://github.com/junit-team/junit-framework) | `5.13.4` | `6.1.2` |
| [org.junit.jupiter:junit-jupiter-api](https://github.com/junit-team/junit-framework) | `5.13.4` | `6.1.2` |
| [com.github.spotbugs:spotbugs](https://github.com/spotbugs/spotbugs) | `4.9.3` | `4.10.3` |
| [com.puppycrawl.tools:checkstyle](https://github.com/checkstyle/checkstyle) | `10.26.1` | `13.8.0` |
| [net.sourceforge.pmd:pmd-core](https://github.com/pmd/pmd) | `7.22.0` | `7.26.0` |
| [net.sourceforge.pmd:pmd-java](https://github.com/pmd/pmd) | `7.22.0` | `7.26.0` |
| [net.sourceforge.pmd:pmd-javascript](https://github.com/pmd/pmd) | `7.22.0` | `7.26.0` |
| [net.sourceforge.pmd:pmd-jsp](https://github.com/pmd/pmd) | `7.22.0` | `7.26.0` |
| [com.github.spotbugs:spotbugs-maven-plugin](https://github.com/spotbugs/spotbugs-maven-plugin) | `4.9.3.2` | `4.10.3.0` |
| [org.apache.maven.plugins:maven-compiler-plugin](https://github.com/apache/maven-compiler-plugin) | `3.14.0` | `3.15.0` |
| [org.apache.maven.plugins:maven-dependency-plugin](https://github.com/apache/maven-dependency-plugin) | `3.8.1` | `3.11.0` |
| [org.apache.maven.plugins:maven-enforcer-plugin](https://github.com/apache/maven-enforcer) | `3.6.1` | `3.6.3` |
| [org.apache.maven.plugins:maven-jar-plugin](https://github.com/apache/maven-jar-plugin) | `3.4.2` | `3.5.0` |
| [org.apache.maven.plugins:maven-source-plugin](https://github.com/apache/maven-source-plugin) | `3.3.1` | `3.4.0` |
| [org.apache.maven.plugins:maven-javadoc-plugin](https://github.com/apache/maven-javadoc-plugin) | `3.11.2` | `3.12.0` |
| [org.apache.maven.plugins:maven-release-plugin](https://github.com/apache/maven-release) | `3.1.1` | `3.3.1` |
| [org.apache.maven.plugins:maven-surefire-plugin](https://github.com/apache/maven-surefire) | `3.5.3` | `3.5.6` |
| [org.apache.maven.plugins:maven-resources-plugin](https://github.com/apache/maven-resources-plugin) | `3.3.1` | `3.5.0` |
| [org.apache.maven.plugins:maven-antrun-plugin](https://github.com/apache/maven-antrun-plugin) | `3.1.0` | `3.2.0` |
| org.apache.rat:apache-rat-plugin | `0.16.1` | `0.18` |
| [org.codehaus.mojo:exec-maven-plugin](https://github.com/mojohaus/exec-maven-plugin) | `3.5.1` | `3.6.3` |
| [org.codehaus.mojo:license-maven-plugin](https://github.com/mojohaus/license-maven-plugin) | `2.6.0` | `2.7.1` |
| [org.codehaus.mojo:versions-maven-plugin](https://github.com/mojohaus/versions) | `2.18.0` | `2.21.0` |
| [org.jacoco:jacoco-maven-plugin](https://github.com/jacoco/jacoco) | `0.8.13` | `0.8.15` |
| [org.mutabilitydetector:MutabilityDetector4FindBugs](https://github.com/MutabilityDetector/MutabilityDetector4FindBugs) | `0.9.1` | `0.9.3` |
| [org.hjug.refactorfirst.plugin:refactor-first-maven-plugin](https://github.com/refactorfirst/RefactorFirst) | `0.7.1` | `0.9.0` |
| [org.jreleaser:jreleaser-maven-plugin](https://github.com/jreleaser/jreleaser) | `1.19.0` | `1.25.0` |
| [io.vertx:vertx-core](https://github.com/eclipse/vert.x) | `5.0.12` | `5.1.5` |


Updates `org.junit.jupiter:junit-jupiter-engine` from 5.13.4 to 6.1.2
- [Release notes](https://github.com/junit-team/junit-framework/releases)
- [Commits](junit-team/junit-framework@r5.13.4...r6.1.2)

Updates `org.junit.jupiter:junit-jupiter-api` from 5.13.4 to 6.1.2
- [Release notes](https://github.com/junit-team/junit-framework/releases)
- [Commits](junit-team/junit-framework@r5.13.4...r6.1.2)

Updates `org.junit.jupiter:junit-jupiter-api` from 5.13.4 to 6.1.2
- [Release notes](https://github.com/junit-team/junit-framework/releases)
- [Commits](junit-team/junit-framework@r5.13.4...r6.1.2)

Updates `com.github.spotbugs:spotbugs` from 4.9.3 to 4.10.3
- [Release notes](https://github.com/spotbugs/spotbugs/releases)
- [Changelog](https://github.com/spotbugs/spotbugs/blob/master/CHANGELOG.md)
- [Commits](spotbugs/spotbugs@4.9.3...4.10.3)

Updates `com.puppycrawl.tools:checkstyle` from 10.26.1 to 13.8.0
- [Release notes](https://github.com/checkstyle/checkstyle/releases)
- [Commits](checkstyle/checkstyle@checkstyle-10.26.1...checkstyle-13.8.0)

Updates `net.sourceforge.pmd:pmd-core` from 7.22.0 to 7.26.0
- [Release notes](https://github.com/pmd/pmd/releases)
- [Commits](pmd/pmd@pmd_releases/7.22.0...pmd_releases/7.26.0)

Updates `net.sourceforge.pmd:pmd-java` from 7.22.0 to 7.26.0
- [Release notes](https://github.com/pmd/pmd/releases)
- [Commits](pmd/pmd@pmd_releases/7.22.0...pmd_releases/7.26.0)

Updates `net.sourceforge.pmd:pmd-javascript` from 7.22.0 to 7.26.0
- [Release notes](https://github.com/pmd/pmd/releases)
- [Commits](pmd/pmd@pmd_releases/7.22.0...pmd_releases/7.26.0)

Updates `net.sourceforge.pmd:pmd-jsp` from 7.22.0 to 7.26.0
- [Release notes](https://github.com/pmd/pmd/releases)
- [Commits](pmd/pmd@pmd_releases/7.22.0...pmd_releases/7.26.0)

Updates `net.sourceforge.pmd:pmd-java` from 7.22.0 to 7.26.0
- [Release notes](https://github.com/pmd/pmd/releases)
- [Commits](pmd/pmd@pmd_releases/7.22.0...pmd_releases/7.26.0)

Updates `net.sourceforge.pmd:pmd-javascript` from 7.22.0 to 7.26.0
- [Release notes](https://github.com/pmd/pmd/releases)
- [Commits](pmd/pmd@pmd_releases/7.22.0...pmd_releases/7.26.0)

Updates `net.sourceforge.pmd:pmd-jsp` from 7.22.0 to 7.26.0
- [Release notes](https://github.com/pmd/pmd/releases)
- [Commits](pmd/pmd@pmd_releases/7.22.0...pmd_releases/7.26.0)

Updates `com.github.spotbugs:spotbugs-maven-plugin` from 4.9.3.2 to 4.10.3.0
- [Release notes](https://github.com/spotbugs/spotbugs-maven-plugin/releases)
- [Commits](spotbugs/spotbugs-maven-plugin@spotbugs-maven-plugin-4.9.3.2...spotbugs-maven-plugin-4.10.3.0)

Updates `org.apache.maven.plugins:maven-compiler-plugin` from 3.14.0 to 3.15.0
- [Release notes](https://github.com/apache/maven-compiler-plugin/releases)
- [Commits](apache/maven-compiler-plugin@maven-compiler-plugin-3.14.0...maven-compiler-plugin-3.15.0)

Updates `org.apache.maven.plugins:maven-dependency-plugin` from 3.8.1 to 3.11.0
- [Release notes](https://github.com/apache/maven-dependency-plugin/releases)
- [Commits](apache/maven-dependency-plugin@maven-dependency-plugin-3.8.1...maven-dependency-plugin-3.11.0)

Updates `org.apache.maven.plugins:maven-enforcer-plugin` from 3.6.1 to 3.6.3
- [Release notes](https://github.com/apache/maven-enforcer/releases)
- [Commits](apache/maven-enforcer@enforcer-3.6.1...enforcer-3.6.3)

Updates `org.apache.maven.plugins:maven-jar-plugin` from 3.4.2 to 3.5.0
- [Release notes](https://github.com/apache/maven-jar-plugin/releases)
- [Commits](apache/maven-jar-plugin@maven-jar-plugin-3.4.2...maven-jar-plugin-3.5.0)

Updates `org.apache.maven.plugins:maven-source-plugin` from 3.3.1 to 3.4.0
- [Release notes](https://github.com/apache/maven-source-plugin/releases)
- [Commits](apache/maven-source-plugin@maven-source-plugin-3.3.1...maven-source-plugin-3.4.0)

Updates `org.apache.maven.plugins:maven-javadoc-plugin` from 3.11.2 to 3.12.0
- [Release notes](https://github.com/apache/maven-javadoc-plugin/releases)
- [Commits](apache/maven-javadoc-plugin@maven-javadoc-plugin-3.11.2...maven-javadoc-plugin-3.12.0)

Updates `org.apache.maven.plugins:maven-release-plugin` from 3.1.1 to 3.3.1
- [Release notes](https://github.com/apache/maven-release/releases)
- [Commits](apache/maven-release@maven-release-3.1.1...maven-release-3.3.1)

Updates `org.apache.maven.plugins:maven-surefire-plugin` from 3.5.3 to 3.5.6
- [Release notes](https://github.com/apache/maven-surefire/releases)
- [Commits](apache/maven-surefire@surefire-3.5.3...surefire-3.5.6)

Updates `org.apache.maven.plugins:maven-resources-plugin` from 3.3.1 to 3.5.0
- [Release notes](https://github.com/apache/maven-resources-plugin/releases)
- [Commits](apache/maven-resources-plugin@maven-resources-plugin-3.3.1...maven-resources-plugin-3.5.0)

Updates `org.apache.maven.plugins:maven-antrun-plugin` from 3.1.0 to 3.2.0
- [Release notes](https://github.com/apache/maven-antrun-plugin/releases)
- [Commits](apache/maven-antrun-plugin@maven-antrun-plugin-3.1.0...maven-antrun-plugin-3.2.0)

Updates `org.apache.rat:apache-rat-plugin` from 0.16.1 to 0.18

Updates `org.codehaus.mojo:exec-maven-plugin` from 3.5.1 to 3.6.3
- [Release notes](https://github.com/mojohaus/exec-maven-plugin/releases)
- [Commits](mojohaus/exec-maven-plugin@3.5.1...3.6.3)

Updates `org.codehaus.mojo:license-maven-plugin` from 2.6.0 to 2.7.1
- [Release notes](https://github.com/mojohaus/license-maven-plugin/releases)
- [Commits](mojohaus/license-maven-plugin@2.6.0...2.7.1)

Updates `org.codehaus.mojo:versions-maven-plugin` from 2.18.0 to 2.21.0
- [Release notes](https://github.com/mojohaus/versions/releases)
- [Changelog](https://github.com/mojohaus/versions/blob/master/ReleaseNotes.md)
- [Commits](mojohaus/versions@2.18.0...2.21.0)

Updates `org.jacoco:jacoco-maven-plugin` from 0.8.13 to 0.8.15
- [Release notes](https://github.com/jacoco/jacoco/releases)
- [Commits](jacoco/jacoco@v0.8.13...v0.8.15)

Updates `org.mutabilitydetector:MutabilityDetector4FindBugs` from 0.9.1 to 0.9.3
- [Release notes](https://github.com/MutabilityDetector/MutabilityDetector4FindBugs/releases)
- [Commits](https://github.com/MutabilityDetector/MutabilityDetector4FindBugs/commits)

Updates `org.hjug.refactorfirst.plugin:refactor-first-maven-plugin` from 0.7.1 to 0.9.0
- [Release notes](https://github.com/refactorfirst/RefactorFirst/releases)
- [Commits](refactorfirst/RefactorFirst@0.7.1...0.9.0)

Updates `org.jreleaser:jreleaser-maven-plugin` from 1.19.0 to 1.25.0
- [Release notes](https://github.com/jreleaser/jreleaser/releases)
- [Commits](jreleaser/jreleaser@v1.19.0...v1.25.0)

Updates `io.vertx:vertx-core` from 5.0.12 to 5.1.5
- [Commits](eclipse-vertx/vert.x@5.0.12...5.1.5)

---
updated-dependencies:
- dependency-name: org.junit.jupiter:junit-jupiter-engine
  dependency-version: 6.1.2
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: monthly-batch
- dependency-name: org.junit.jupiter:junit-jupiter-api
  dependency-version: 6.1.2
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: monthly-batch
- dependency-name: org.junit.jupiter:junit-jupiter-api
  dependency-version: 6.1.2
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: monthly-batch
- dependency-name: com.github.spotbugs:spotbugs
  dependency-version: 4.10.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: monthly-batch
- dependency-name: com.puppycrawl.tools:checkstyle
  dependency-version: 13.8.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: monthly-batch
- dependency-name: net.sourceforge.pmd:pmd-core
  dependency-version: 7.26.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: monthly-batch
- dependency-name: net.sourceforge.pmd:pmd-java
  dependency-version: 7.26.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: monthly-batch
- dependency-name: net.sourceforge.pmd:pmd-javascript
  dependency-version: 7.26.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: monthly-batch
- dependency-name: net.sourceforge.pmd:pmd-jsp
  dependency-version: 7.26.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: monthly-batch
- dependency-name: net.sourceforge.pmd:pmd-java
  dependency-version: 7.26.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: monthly-batch
- dependency-name: net.sourceforge.pmd:pmd-javascript
  dependency-version: 7.26.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: monthly-batch
- dependency-name: net.sourceforge.pmd:pmd-jsp
  dependency-version: 7.26.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: monthly-batch
- dependency-name: com.github.spotbugs:spotbugs-maven-plugin
  dependency-version: 4.10.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: monthly-batch
- dependency-name: org.apache.maven.plugins:maven-compiler-plugin
  dependency-version: 3.15.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: monthly-batch
- dependency-name: org.apache.maven.plugins:maven-dependency-plugin
  dependency-version: 3.11.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: monthly-batch
- dependency-name: org.apache.maven.plugins:maven-enforcer-plugin
  dependency-version: 3.6.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: monthly-batch
- dependency-name: org.apache.maven.plugins:maven-jar-plugin
  dependency-version: 3.5.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: monthly-batch
- dependency-name: org.apache.maven.plugins:maven-source-plugin
  dependency-version: 3.4.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: monthly-batch
- dependency-name: org.apache.maven.plugins:maven-javadoc-plugin
  dependency-version: 3.12.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: monthly-batch
- dependency-name: org.apache.maven.plugins:maven-release-plugin
  dependency-version: 3.3.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: monthly-batch
- dependency-name: org.apache.maven.plugins:maven-surefire-plugin
  dependency-version: 3.5.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: monthly-batch
- dependency-name: org.apache.maven.plugins:maven-resources-plugin
  dependency-version: 3.5.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: monthly-batch
- dependency-name: org.apache.maven.plugins:maven-antrun-plugin
  dependency-version: 3.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: monthly-batch
- dependency-name: org.apache.rat:apache-rat-plugin
  dependency-version: '0.18'
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: monthly-batch
- dependency-name: org.codehaus.mojo:exec-maven-plugin
  dependency-version: 3.6.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: monthly-batch
- dependency-name: org.codehaus.mojo:license-maven-plugin
  dependency-version: 2.7.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: monthly-batch
- dependency-name: org.codehaus.mojo:versions-maven-plugin
  dependency-version: 2.21.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: monthly-batch
- dependency-name: org.jacoco:jacoco-maven-plugin
  dependency-version: 0.8.15
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: monthly-batch
- dependency-name: org.mutabilitydetector:MutabilityDetector4FindBugs
  dependency-version: 0.9.3
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: monthly-batch
- dependency-name: org.hjug.refactorfirst.plugin:refactor-first-maven-plugin
  dependency-version: 0.9.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: monthly-batch
- dependency-name: org.jreleaser:jreleaser-maven-plugin
  dependency-version: 1.25.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: monthly-batch
- dependency-name: io.vertx:vertx-core
  dependency-version: 5.1.5
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: monthly-batch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Jul 14, 2026
@sonarqubecloud

Copy link
Copy Markdown

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file java Pull requests that update Java code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants