dependabot[bot] opened a new pull request, #2497: URL: https://github.com/apache/cxf/pull/2497
Bumps [net.sourceforge.pmd:pmd-core](https://github.com/pmd/pmd) from 7.14.0 to 7.15.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/pmd/pmd/releases";>net.sourceforge.pmd:pmd-core's releases</a>.</em></p> <blockquote> <h2>PMD 7.15.0 (27-June-2025)</h2> <h2>27-June-2025 - 7.15.0</h2> <p>The PMD team is pleased to announce PMD 7.15.0.</p> <p>This is a minor release.</p> <h3>Table Of Contents</h3> <ul> <li><a href="https://github.com/pmd/pmd/blob/HEAD/#new-and-noteworthy";>🚀 New and noteworthy</a> <ul> <li><a href="https://github.com/pmd/pmd/blob/HEAD/#new-rules";>✨ New Rules</a></li> </ul> </li> <li><a href="https://github.com/pmd/pmd/blob/HEAD/#fixed-issues";>🐛 Fixed Issues</a></li> <li><a href="https://github.com/pmd/pmd/blob/HEAD/#api-changes";>🚨 API Changes</a> <ul> <li><a href="https://github.com/pmd/pmd/blob/HEAD/#rule-test-schema";>Rule Test Schema</a></li> </ul> </li> <li><a href="https://github.com/pmd/pmd/blob/HEAD/#financial-contributions";>💵 Financial Contributions</a></li> <li><a href="https://github.com/pmd/pmd/blob/HEAD/#merged-pull-requests";>✨ Merged pull requests</a></li> <li><a href="https://github.com/pmd/pmd/blob/HEAD/#dependency-updates";>📦 Dependency updates</a></li> <li><a href="https://github.com/pmd/pmd/blob/HEAD/#stats";>📈 Stats</a></li> </ul> <h3>🚀 New and noteworthy</h3> <h4>✨ New Rules</h4> <ul> <li>The new Apex rule <a href="https://docs.pmd-code.org/pmd-doc-7.15.0/pmd_rules_apex_design.html#avoidbooleanmethodparameters";><code>AvoidBooleanMethodParameters</code></a> finds methods that take a boolean parameter. This can make method calls difficult to understand and maintain as the method is clearly doing two things.</li> </ul> <h3>🐛 Fixed Issues</h3> <ul> <li>apex-design <ul> <li><a href="https://redirect.github.com/pmd/pmd/issues/5427";>#5427</a>: [apex] New Rule: Avoid Boolean Method Parameters</li> </ul> </li> <li>apex-security <ul> <li><a href="https://redirect.github.com/pmd/pmd/issues/5788";>#5788</a>: [apex] ApexCRUDViolation unable to detect insecure SOQL if it is a direct input argument</li> </ul> </li> <li>doc <ul> <li><a href="https://redirect.github.com/pmd/pmd/issues/5790";>#5790</a>: [doc] Website rule reference pages are returning 404</li> </ul> </li> <li>java-bestpractices <ul> <li><a href="https://redirect.github.com/pmd/pmd/issues/5785";>#5785</a>: [java] UnusedPrivateField doesn't play well with UnnecessaryWarningSuppression</li> <li><a href="https://redirect.github.com/pmd/pmd/issues/5793";>#5793</a>: [java] NonExhaustiveSwitch fails on exhaustive switch with sealed class</li> </ul> </li> <li>java-codestyle <ul> <li><a href="https://redirect.github.com/pmd/pmd/issues/1639";>#1639</a>: [java] UnnecessaryImport false positive for multiline @<!-- raw HTML omitted -->link Javadoc</li> <li><a href="https://redirect.github.com/pmd/pmd/issues/2304";>#2304</a>: [java] UnnecessaryImport false positive for on-demand imports in JavaDoc</li> <li><a href="https://redirect.github.com/pmd/pmd/issues/5832";>#5832</a>: [java] UnnecessaryImport false positive for multiline @<!-- raw HTML omitted -->see Javadoc</li> </ul> </li> <li>java-design <ul> <li><a href="https://redirect.github.com/pmd/pmd/issues/5804";>#5804</a>: [java] UselessOverridingMethod doesn't play well with UnnecessarySuppressWarning</li> </ul> </li> </ul> <h3>🚨 API Changes</h3> <h4>Rule Test Schema</h4> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/pmd/pmd/commit/f06835e0afc59b11f440fffd999d13ebe48a43d2";><code>f06835e</code></a> [release] prepare release pmd_releases/7.15.0</li> <li><a href="https://github.com/pmd/pmd/commit/e84f47ade44726923f65d60a66fa39677ab41328";><code>e84f47a</code></a> Prepare pmd release 7.15.0</li> <li><a href="https://github.com/pmd/pmd/commit/8e5654fa786955f969b6904241fd56b2d10bb6b3";><code>8e5654f</code></a> [ci] publish-snapshot/release: also create javadocs for kotlin (dokka)</li> <li><a href="https://github.com/pmd/pmd/commit/48e6c5fb906858bce774dcdf1aa54684705be54e";><code>48e6c5f</code></a> [doc] Fix javadoc plugin offline link configuration</li> <li><a href="https://github.com/pmd/pmd/commit/77276fb5453220a3951c29004645f44552ff111b";><code>77276fb</code></a> [ci] Fix condition for publish-release</li> <li><a href="https://github.com/pmd/pmd/commit/2b40c9eac39b4f4b450edde6a316d568e03de900";><code>2b40c9e</code></a> [ci] Fix regression tester script for release builds</li> <li><a href="https://github.com/pmd/pmd/commit/888eb624616dcc660c096d5136a8c3768a32851d";><code>888eb62</code></a> [ci] Fix dogfood check during release builds</li> <li><a href="https://github.com/pmd/pmd/commit/59e32be4d8a807c4ef378aa1a2869e89df1aa660";><code>59e32be</code></a> Bump build-tools from 30 to 32 (<a href="https://redirect.github.com/pmd/pmd/issues/5853";>#5853</a>)</li> <li><a href="https://github.com/pmd/pmd/commit/5e2bf355ae7af818cc5f81f52008e524fc4693d5";><code>5e2bf35</code></a> [ci] New "Publish Release" workflow (<a href="https://redirect.github.com/pmd/pmd/issues/5745";>#5745</a>)</li> <li><a href="https://github.com/pmd/pmd/commit/6462b0cf0993b72e9093e0bbd095bc0b9aebecef";><code>6462b0c</code></a> [ci] Small fixes</li> <li>Additional commits viewable in <a href="https://github.com/pmd/pmd/compare/pmd_releases/7.14.0...pmd_releases/7.15.0";>compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
