Bump the all group with 5 updates

[dependabot]

Bumps the all group with 5 updates:

Package	From	To
org.commonmark:commonmark	0.27.0	0.27.1
org.flywaydb:flyway-database-postgresql	11.20.1	11.20.2
ch.qos.logback:logback-classic	1.5.24	1.5.25
io.micrometer:micrometer-registry-prometheus	1.16.1	1.16.2
org.postgresql:postgresql	42.7.8	42.7.9

Updates org.commonmark:commonmark from 0.27.0 to 0.27.1

Release notes

Sourced from org.commonmark:commonmark's releases.

commonmark-java 0.27.1

Fixed

• Line(s) after a hard line break would sometimes also get an unwanted hard line break, e.g. if they ended in emphasis or other non-text inlines (#415)
• TextContentRenderer (for plain text): Fix nested lists on the same line (#413)
• Fix minor performance regression with pathological input (deeply nested brackets) that was introduced in version 0.23.0.

Changelog

Sourced from org.commonmark:commonmark's changelog.

[0.27.1] - 2026-01-14

Fixed

• Line(s) after a hard line break would sometimes also get an unwanted hard line break, e.g. if they ended in emphasis or other non-text inlines (#415)
• TextContentRenderer (for plain text): Fix nested lists on the same line (#413)
• Fix minor performance regression with pathological input (deeply nested brackets) that was introduced in version 0.23.0.

Commits

• cded1b1 [maven-release-plugin] prepare release commonmark-parent-0.27.1
• eb7bac0 Prepare CHANGELOG for version 0.27.1
• 582855d Merge pull request #417 from commonmark/issue-413
• fc23e49 Merge pull request #418 from commonmark/fix-parse-brackets-opt
• c946bfe Make nested brackets optimization more effective again
• 67f8405 Make list holder classes innner classes
• 2753bf2 TextContentRenderer: Fix nested lists on the same line
• 353278c Merge pull request #416 from commonmark/issue-415
• fd33435 Fix line break parsing after hard line break
• 0418c83 Merge pull request #409 from zapek/patch-1
• Additional commits viewable in compare view

Updates org.flywaydb:flyway-database-postgresql from 11.20.1 to 11.20.2

Updates ch.qos.logback:logback-classic from 1.5.24 to 1.5.25

Commits

• f426e00 prepare release of 1.5.25
• d28931f restrict object creation to expected supertype
• aa264f7 test default variable values in appender-ref ref attribute
• 8fb403a adjust copyright year
• b294a12 check optionList in start()
• b65040a Add EpochConverter for milliseconds/seconds since epoch (related to issue #96...
• 0690174 cla for Duncan Jauncey
• 71dc2af Removed email address for Tony.
• 1f97ae1 check for undeclared by referenced appenders
• b07355e Move the artifact version checking code to VersionUtil in logback-core.
• Additional commits viewable in compare view

Updates io.micrometer:micrometer-registry-prometheus from 1.16.1 to 1.16.2

Release notes

Sourced from io.micrometer:micrometer-registry-prometheus's releases.

1.16.2

🐞 Bug Fixes

• CaffeineCacheMetrics nullability is incompatible with Caffeine 3.2.3 #6973
• ExecutorServiceMetrics: repeatedly logs exception when monitoring ThreadPerTaskExecutor without --add-opens #6726

🔨 Dependency Upgrades

• Bump ch.qos.logback:logback-classic from 1.5.21 to 1.5.24 #7027
• Bump com.netflix.spectator:spectator-reg-atlas from 1.9.2 to 1.9.3 #7051
• Bump com.uber.nullaway:nullaway from 0.12.14 to 0.12.15 #7020
• Bump grpc from 1.76.1 to 1.76.2 #6952
• Bump maven-resolver from 1.9.24 to 1.9.25 #6965
• Bump org.apache.httpcomponents.client5:httpclient5 from 5.5.1 to 5.5.2 #7019
• Bump org.junit:junit-bom from 5.14.1 to 5.14.2 #7056
• Bump spring6 from 6.2.14 to 6.2.15 #6971
• Bump testcontainers from 1.21.3 to 1.21.4 #6993

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​MariusVolkhart and @​izeye

Commits

• 6286e85 Bump ch.qos.logback:logback-classic from 1.5.23 to 1.5.24 (#7059)
• 5263cc7 Merge branch '1.15.x' into 1.16.x
• 0523810 Polish CurrentObservationTest (#7048)
• 3165fdf Merge branch '1.15.x' into 1.16.x
• 50ba16b Handle when ThreadPerTaskExecutor.threadCount() is not available (#7045)
• c38e88c Bump org.junit:junit-bom from 5.14.1 to 5.14.2 (#7056)
• 22ba833 Bump com.netflix.spectator:spectator-reg-atlas from 1.9.2 to 1.9.3 (#7051)
• 916ced5 Merge branch '1.15.x' into 1.16.x
• 50d273b Merge branch '1.14.x' into 1.15.x
• 6b44cf2 Relax time limit for PushMeterRegistryTest.waitForScheduledPublishToFinish_wh...
• Additional commits viewable in compare view

Updates org.postgresql:postgresql from 42.7.8 to 42.7.9

Release notes

Sourced from org.postgresql:postgresql's releases.

v42.7.9

Changes

• Added changelogs for version 42.7.9 @​davecramer (#3908)
• the classloader is nullable, and remove a space @​davecramer (#3907)
• fix: incorrect pg_stat_replication.reply_time calculation @​atorik (#3906)
• fix: issue #3892, PGXAConnection.prepare(Xid) should return XA_RDONLY if the connection is read only @​davecramer (#3897)
• fix badges for maven central and search paths. Sonatype has changed the search paths @​davecramer (#3901)
• fix: make all Calendar instances proleptic Gregorian (#3837) @​m-van-tilburg (#3887)
• test: add CI tests with Java 26 @​vlsi (#3893)
• perf: optimize PGInterval.getValue() by replacing String.format with StringBuilder @​vlsi (#3866)
• use ssl_is_used() to check for ssl connection @​davecramer (#3867)
• Add PEMKeyManager to handle PEM based certs and keys. @​harinath001 (#3700)
• Comment and simplify the complex state machine logic in QueryExecutorImpl @​davecramer (#3850)
• Revert "fix: Issue #3784 pgjdbc can't decode numeric arrays containing special numbers like NaN" @​davecramer (#3851)
• fix: Issue #3784 pgjdbc can't decode numeric arrays containing special numbers like NaN @​ShenFeng312 (#3838)
• Small simplication of locking patterns in QueryExecutorBase @​Sanne (#3849)
• doc: update property quoteReturningIdentifiers default value @​sodekim (#3847)
• feat: default query timeout property @​cfredri4 (#3705)
• create action to deploy docs to https://pgjdbc.github.io/ @​davecramer (#3819)
• fix homepage release note @​davecramer (#3817)

🐛 Bug Fixes

• fix: close temporary lob descriptors that are used internally in PreparedStatement#setBlob @​vlsi (#3903)
• fix: avoid memory leaks in Java <= 21 caused by Thread.inheritedAccessControlContext @​vlsi (#3886)

📝 Documentation

• doc: add the new PGP signing key to the official documentation @​vlsi (#3813)

🧰 Maintenance

• chore: remove unused com.github.spotbugs Gradle plugin dependency @​vlsi (#3868)
• chore: drop SpotBugs as we do not seem to use it @​vlsi (#3834)
• chore: bump version to 42.7.9 after 42.7.8 release @​vlsi (#3810)

⬆️ Dependencies

• chore(deps): update actions/create-github-app-token digest to 29824e6 @​renovate-bot (#3898)
• chore(deps): update actions/setup-java digest to c1e3236 @​renovate-bot (#3899)
• chore(deps): update codecov/codecov-action digest to 671740a @​renovate-bot (#3900)
• fix(deps): update dependency org.junit:junit-bom to v5.14.1 - autoclosed @​renovate-bot (#3884)
• fix(deps): update dependency org.apache.bcel:bcel to v6.11.0 @​renovate-bot (#3883)
• fix(deps): update dependency org.mockito:mockito-bom to v5.20.0 @​renovate-bot (#3885)
• fix(deps): update dependency net.bytebuddy:byte-buddy-parent to v1.18.2 @​renovate-bot (#3882)
• chore(deps): update github/codeql-action digest to 497990d @​renovate-bot (#3881)

... (truncated)

Changelog

Sourced from org.postgresql:postgresql's changelog.

[42.7.9] (2026-01-14)

Added

• feat: query timeout property [PR #3705](pgjdbc/pgjdbc#3705)
• feat: Add PEMKeyManager to handle PEM based certs and keys [PR #3700](pgjdbc/pgjdbc#3700)

Changed

• perf: optimize PGInterval.getValue() by replacing String.format with StringBuilder
• doc: update property quoteReturningIdentifiers default value [PR #3847](pgjdbc/pgjdbc#3847)
• security: Use a static method forName to load all user supplied classes. Use the Class.forName 3 parameter method and do not initilize it unless it is a subclass of the expected class

Fixed

• fix: incorrect pg_stat_replication.reply_time calculation [PR #3906](pgjdbc/pgjdbc#3906)
• fix: close temporary lob descriptors that are used internally in PreparedStatement#setBlob
• fix: PGXAConnection.prepare(Xid) should return XA_RDONLY if the connection is read only [PR #3897](pgjdbc/pgjdbc#3897)
• fix: make all Calendar instances proleptic Gregorian [PR #3837](pgjdbc/pgjdbc#3887)
• fix: Simplify concurrency guards on QueryExecutorBase#transaction and QueryExecutorBase#standardConformingStrings [PR #3897](pgjdbc/pgjdbc#3849)
• fix: avoid memory leaks in Java <= 21 caused by Thread.inheritedAccessControlContext [PR #3886](pgjdbc/pgjdbc#3886)
• fix: Issue #3784 pgjdbc can't decode numeric arrays containing special numbers like NaN [PR #3838](pgjdbc/pgjdbc#3838)
• fix: use ssl_is_used() to check for ssl connection [PR #3867](pgjdbc/pgjdbc#3867)
• fix: the classloader is nullable [PR #3907](pgjdbc/pgjdbc#3907)

Commits

• 79b784e Added changelogs for version 42.7.9 (#3908)
• 1c00ffc doc: add the new PGP signing key to the official documentation
• f774000 chore(deps): update actions/create-github-app-token digest to 29824e6
• 27daf3b chore(deps): update actions/setup-java digest to c1e3236
• 6eb01ff chore(deps): update codecov/codecov-action digest to 671740a
• dbf1e57 the classloader is nullable, and remove a space (#3907)
• 6a20574 Merge commit from fork
• c07721a fix: incorrect pg_stat_replication.reply_time calculation (#3906)
• 83023f3 fix: close temporary lob descriptors that are used internally in PreparedStat...
• 62c9805 fix: issue #3892, PGXAConnection.prepare(Xid) should return XA_RDONLY if the ...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions