chore: Configure Renovate

[renovate]

Welcome to Renovate! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin.

🚦 To activate Renovate, merge this Pull Request. To disable Renovate, simply close this Pull Request unmerged.

---

Detected Package Files

• .github/workflows/maven.yml (github-actions)
• kinde-core/pom.xml (maven)
• kinde-j2ee/pom.xml (maven)
• kinde-management/pom.xml (maven)
• kinde-report-aggregate/pom.xml (maven)
• kinde-springboot/kinde-springboot-core/pom.xml (maven)
• kinde-springboot/kinde-springboot-starter/pom.xml (maven)
• kinde-springboot/pom.xml (maven)
• playground/kinde-core-example/pom.xml (maven)
• playground/kinde-j2ee-app/pom.xml (maven)
• playground/kinde-management-example/pom.xml (maven)
• playground/kinde-springboot-starter-example/pom.xml (maven)
• playground/springboot-pkce-client-example/pom.xml (maven)
• playground/springboot-thymeleaf-full-example/pom.xml (maven)
• pom.xml (maven)

Configuration Summary

Based on the default config's presets, Renovate will:

• Start dependency updates only once this onboarding PR is merged
• Show all Merge Confidence badges for pull requests.
• Enable Renovate Dependency Dashboard creation.
• Use semantic commit type fix for dependencies and chore for all others if semantic commits are in use.
• Ignore node_modules, bower_components, vendor and various test/tests (except for nuget) directories.
• Group known monorepo packages together.
• Use curated list of recommended non-monorepo package groupings.
• Apply crowd-sourced package replacement rules.
• Apply crowd-sourced workarounds for known problems with packages.

🔡 Do you want to change how Renovate upgrades your dependencies? Add your custom config to renovate.json in this branch. Renovate will update the Pull Request description the next time it runs.

---

What to Expect

With your current configuration, Renovate will create 35 Pull Requests:

fix(deps): update dependency org.springframework:spring-webflux to v6.1.13 [security]

• Branch name: renovate/maven-org.springframework-spring-webflux-vulnerability
• Merge into: main
• Upgrade org.springframework:spring-webflux to 6.1.13

chore(deps): update dependency com.github.tomakehurst:wiremock-jre8 to v2.35.1 [security]

• Branch name: renovate/maven-com.github.tomakehurst-wiremock-jre8-vulnerability
• Merge into: main
• Upgrade com.github.tomakehurst:wiremock-jre8 to 2.35.1

chore(deps): update dependency junit:junit to v4.13.1 [security]

• Branch name: renovate/maven-junit-junit-vulnerability
• Merge into: main
• Upgrade junit:junit to 4.13.1

chore(deps): update dependency com.github.tomakehurst:wiremock-standalone to v3.0.1

• Schedule: ["at any time"]
• Branch name: renovate/com.github.tomakehurst-wiremock-standalone-3.x
• Merge into: main
• Upgrade com.github.tomakehurst:wiremock-standalone to 3.0.1

chore(deps): update dependency junit:junit to v3.8.2

• Schedule: ["at any time"]
• Branch name: renovate/junit-junit-3.x
• Merge into: main
• Upgrade junit:junit to 3.8.2

chore(deps): update dependency org.apache.maven.plugins:maven-gpg-plugin to v3.2.7

• Schedule: ["at any time"]
• Branch name: renovate/org.apache.maven.plugins-maven-gpg-plugin-3.x
• Merge into: main
• Upgrade org.apache.maven.plugins:maven-gpg-plugin to 3.2.7

chore(deps): update dependency org.projectlombok:lombok to v1.18.36

• Schedule: ["at any time"]
• Branch name: renovate/org.projectlombok-lombok-1.x
• Merge into: main
• Upgrade org.projectlombok:lombok to 1.18.36

fix(deps): update dependency ch.qos.logback:logback-classic to v1.5.12

• Schedule: ["at any time"]
• Branch name: renovate/ch.qos.logback-logback-classic-1.x
• Merge into: main
• Upgrade ch.qos.logback:logback-classic to 1.5.12

fix(deps): update dependency com.fasterxml.jackson.core:jackson-databind to v2.18.2

• Schedule: ["at any time"]
• Branch name: renovate/jackson-monorepo
• Merge into: main
• Upgrade com.fasterxml.jackson.core:jackson-databind to 2.18.2

fix(deps): update dependency io.github.cdimascio:dotenv-java to v3.0.2

• Schedule: ["at any time"]
• Branch name: renovate/io.github.cdimascio-dotenv-java-3.x
• Merge into: main
• Upgrade io.github.cdimascio:dotenv-java to 3.0.2

fix(deps): update dependency io.swagger.core.v3:swagger-annotations to v2.2.26

• Schedule: ["at any time"]
• Branch name: renovate/swagger-annotations-version
• Merge into: main
• Upgrade io.swagger.core.v3:swagger-annotations to 2.2.26

fix(deps): update dependency jakarta.annotation:jakarta.annotation-api to v3.0.0

• Schedule: ["at any time"]
• Branch name: renovate/jakarta.annotation-jakarta.annotation-api-3.x
• Merge into: main
• Upgrade jakarta.annotation:jakarta.annotation-api to 3.0.0

fix(deps): update dependency net.bytebuddy:byte-buddy to v1.15.10

• Schedule: ["at any time"]
• Branch name: renovate/net.bytebuddy-byte-buddy-1.x
• Merge into: main
• Upgrade net.bytebuddy:byte-buddy to 1.15.10

fix(deps): update dependency org.glassfish.jersey.connectors:jersey-apache-connector to v3.1.9

• Schedule: ["at any time"]
• Branch name: renovate/jersey-monorepo
• Merge into: main
• Upgrade org.glassfish.jersey.connectors:jersey-apache-connector to 3.1.9

fix(deps): update dependency org.thymeleaf:thymeleaf to v3.1.3.release

• Schedule: ["at any time"]
• Branch name: renovate/org.thymeleaf-thymeleaf-3.x
• Merge into: main
• Upgrade org.thymeleaf:thymeleaf to 3.1.3.RELEASE

fix(deps): update dependency org.thymeleaf:thymeleaf-spring6 to v3.1.3.release

• Schedule: ["at any time"]
• Branch name: renovate/org.thymeleaf-thymeleaf-spring6-3.x
• Merge into: main
• Upgrade org.thymeleaf:thymeleaf-spring6 to 3.1.3.RELEASE

fix(deps): update jackson-version to v2.18.2

• Schedule: ["at any time"]
• Branch name: renovate/jackson-version
• Merge into: main
• Upgrade com.fasterxml.jackson.datatype:jackson-datatype-jsr310 to 2.18.2
• Upgrade com.fasterxml.jackson.datatype:jackson-datatype-joda to 2.18.2
• Upgrade com.fasterxml.jackson.core:jackson-annotations to 2.18.2
• Upgrade com.fasterxml.jackson.core:jackson-core to 2.18.2

fix(deps): update junit5 monorepo to v5.11.3

• Schedule: ["at any time"]
• Branch name: renovate/junit5-monorepo
• Merge into: main
• Upgrade org.junit.jupiter:junit-jupiter-api to 5.11.3
• Upgrade org.junit.jupiter:junit-jupiter-params to 5.11.3
• Upgrade org.junit.jupiter:junit-jupiter-engine to 5.11.3

fix(deps): update slf4j monorepo to v2.0.16

• Schedule: ["at any time"]
• Branch name: renovate/slf4j-monorepo
• Merge into: main
• Upgrade org.slf4j:slf4j-api to 2.0.16
• Upgrade org.slf4j:jcl-over-slf4j to 2.0.16

chore(deps): update dependency org.apache.maven.plugins:maven-antrun-plugin to v3.1.0

• Schedule: ["at any time"]
• Branch name: renovate/org.apache.maven.plugins-maven-antrun-plugin-3.x
• Merge into: main
• Upgrade org.apache.maven.plugins:maven-antrun-plugin to 3.1.0

chore(deps): update dependency org.apache.maven.plugins:maven-compiler-plugin to v3.13.0

• Schedule: ["at any time"]
• Branch name: renovate/org.apache.maven.plugins-maven-compiler-plugin-3.x
• Merge into: main
• Upgrade org.apache.maven.plugins:maven-compiler-plugin to 3.13.0

chore(deps): update dependency org.apache.maven.plugins:maven-source-plugin to v3.3.1

• Schedule: ["at any time"]
• Branch name: renovate/org.apache.maven.plugins-maven-source-plugin-3.x
• Merge into: main
• Upgrade org.apache.maven.plugins:maven-source-plugin to 3.3.1

chore(deps): update dependency org.apache.maven.plugins:maven-surefire-plugin to v3.5.2

• Schedule: ["at any time"]
• Branch name: renovate/org.apache.maven.plugins-maven-surefire-plugin-3.x
• Merge into: main
• Upgrade org.apache.maven.plugins:maven-surefire-plugin to 3.5.2

chore(deps): update dependency org.apache.maven.plugins:maven-war-plugin to v3.4.0

• Schedule: ["at any time"]
• Branch name: renovate/org.apache.maven.plugins-maven-war-plugin-3.x
• Merge into: main
• Upgrade org.apache.maven.plugins:maven-war-plugin to 3.4.0

chore(deps): update dependency org.mockito:mockito-core to v5.14.2

• Schedule: ["at any time"]
• Branch name: renovate/mockito-monorepo
• Merge into: main
• Upgrade org.mockito:mockito-core to 5.14.2

chore(deps): update dependency org.openapitools:openapi-generator-maven-plugin to v7.10.0

• Schedule: ["at any time"]
• Branch name: renovate/org.openapitools-openapi-generator-maven-plugin-7.x
• Merge into: main
• Upgrade org.openapitools:openapi-generator-maven-plugin to 7.10.0

chore(deps): update dependency org.springframework:spring-test to v6.2.0

• Schedule: ["at any time"]
• Branch name: renovate/spring-core
• Merge into: main
• Upgrade org.springframework:spring-test to 6.2.0

chore(deps): update spring boot to v3.4.0

• Schedule: ["at any time"]
• Branch name: renovate/spring-boot
• Merge into: main
• Upgrade org.springframework.boot:spring-boot-maven-plugin to 3.4.0
• Upgrade org.springframework.boot:spring-boot-starter-test to 3.4.0
• Upgrade org.springframework.boot:spring-boot-test to 3.4.0
• Upgrade org.springframework.boot:spring-boot-configuration-processor to 3.4.0
• Upgrade org.springframework.boot:spring-boot-devtools to 3.4.0
• Upgrade org.springframework.boot:spring-boot-starter-security to 3.4.0
• Upgrade org.springframework.boot:spring-boot-starter-thymeleaf to 3.4.0
• Upgrade org.springframework.boot:spring-boot-starter-web to 3.4.0
• Upgrade org.springframework.boot:spring-boot-starter-oauth2-resource-server to 3.4.0
• Upgrade org.springframework.boot:spring-boot-starter-oauth2-client to 3.4.0
• Upgrade org.springframework.boot:spring-boot-starter-actuator to 3.4.0
• Upgrade org.springframework.boot:spring-boot-starter-webflux to 3.4.0
• Upgrade org.springframework.boot:spring-boot-starter-data-rest to 3.4.0

fix(deps): update dependency com.nimbusds:nimbus-jose-jwt to v9.47

• Schedule: ["at any time"]
• Branch name: renovate/com.nimbusds-nimbus-jose-jwt-9.x
• Merge into: main
• Upgrade com.nimbusds:nimbus-jose-jwt to 9.47

fix(deps): update dependency com.nimbusds:oauth2-oidc-sdk to v11.20.1

• Schedule: ["at any time"]
• Branch name: renovate/com.nimbusds-oauth2-oidc-sdk-11.x
• Merge into: main
• Upgrade com.nimbusds:oauth2-oidc-sdk to 11.20.1

fix(deps): update spring security to v6.4.1

• Schedule: ["at any time"]
• Branch name: renovate/spring-security
• Merge into: main
• Upgrade org.springframework.security:spring-security-oauth2-resource-server to 6.4.1
• Upgrade org.springframework.security:spring-security-oauth2-jose to 6.4.1
• Upgrade org.springframework.security:spring-security-oauth2-client to 6.4.1
• Upgrade org.springframework.security:spring-security-config to 6.4.1

chore(deps): update codecov/codecov-action action to v5

• Schedule: ["at any time"]
• Branch name: renovate/codecov-codecov-action-5.x
• Merge into: main
• Upgrade codecov/codecov-action to v5

chore(deps): update dependency junit:junit to v4

• Schedule: ["at any time"]
• Branch name: renovate/junit-junit-4.x
• Merge into: main
• Upgrade junit:junit to 4.13.2

fix(deps): update dependency com.google.guava:guava to v33

• Schedule: ["at any time"]
• Branch name: renovate/major-guava-monorepo
• Merge into: main
• Upgrade com.google.guava:guava to 33.3.1-jre

fix(deps): update dependency jakarta.servlet:jakarta.servlet-api to v6.1.0

• Schedule: ["at any time"]
• Branch name: renovate/jakarta.servlet-jakarta.servlet-api-6.x
• Merge into: main
• Upgrade jakarta.servlet:jakarta.servlet-api to 6.1.0

🚸 Branch creation will be limited to maximum 2 per hour, so it doesn't swamp any CI resources or overwhelm the project. See docs for prhourlylimit for details.

---

❓ Got questions? Check out Renovate's Docs, particularly the Getting Started section.
If you need any further assistance then you can also request help here.

---

This PR was generated by Mend Renovate. View the repository job log.

[coderabbitai]

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

---

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 37.35%. Comparing base (36ec2c8) to head (73798f9).
Report is 5 commits behind head on main.

Additional details and impacted files

@@            Coverage Diff            @@
##               main      #34   +/-   ##
=========================================
  Coverage     37.35%   37.35%           
  Complexity      174      174           
=========================================
  Files            67       67           
  Lines          1119     1119           
  Branches         90       90           
=========================================
  Hits            418      418           
  Misses          663      663           
  Partials         38       38