Bump com.github.chrisvest:stormpot from 4.1 to 4.2 in the prod-deps group by dependabot[bot] · Pull Request #615 · CondationCMS/cms-server

dependabot · 2026-03-09T11:23:13Z

Bumps the prod-deps group with 1 update: com.github.chrisvest:stormpot.

Updates com.github.chrisvest:stormpot from 4.1 to 4.2

Release notes

Sourced from com.github.chrisvest:stormpot's releases.

Stormpot 4.2

This release adds multi-threaded allocation. The number of parallel allocations permitted is configured with the PoolBuilder.setMaxConcurrentAllocations(int) method. By default, this is set to 1, which matches the behavior of prior Stormpot versions. The parallelism also help with deallocation and reallocation – all these tasks tap into the same concurrency budget. This feature can significantly speed up pool hydration, i.e. filling it up with objects after it's been created.

What's Changed

Features and fixes

Multi-threaded/parallel allocation by @chrisvest in chrisvest/stormpot#259

Add a LoggingAllocator by @chrisvest in chrisvest/stormpot#275

Miscellaneous changes

Try adding some custom Copilot instructions by @chrisvest in chrisvest/stormpot#235

Update license header configuration by @chrisvest in chrisvest/stormpot#248

Try to abstract the dead queue into a reactor pattern by @chrisvest in chrisvest/stormpot#249

Simplify license headers by @chrisvest in chrisvest/stormpot#250

Fix benchmark license header check by @chrisvest in chrisvest/stormpot#255

BSlot should carry Throwable poison by @chrisvest in chrisvest/stormpot#258

Remove the year from all license headers by @chrisvest in chrisvest/stormpot#260

Try updating the maven release process by @chrisvest in chrisvest/stormpot#277

Apply some workflow security enhancements by @chrisvest in chrisvest/stormpot#278

Flaky test fixes

Fix flaky test by @chrisvest in chrisvest/stormpot#236

Make the PreciseLeakDetectorIT more stable on Semeru by @chrisvest in chrisvest/stormpot#251

Flaky tests by @chrisvest in chrisvest/stormpot#267

Fix more flaky tests by @chrisvest in chrisvest/stormpot#272

Yet more flaky test fixes by @chrisvest in chrisvest/stormpot#276

Version bumps

Bump org.revapi:revapi-java from 0.28.1 to 0.28.4 by @dependabot[bot] in chrisvest/stormpot#222

Update PR build to latest Java versions by @chrisvest in chrisvest/stormpot#217

Bump com.github.spotbugs:spotbugs-maven-plugin from 4.8.5.0 to 4.9.8.1 by @dependabot[bot] in chrisvest/stormpot#219

Bump org.apache.maven.plugins:maven-compiler-plugin from 3.13.0 to 3.14.1 by @dependabot[bot] in chrisvest/stormpot#220

Bump org.apache.maven.plugins:maven-failsafe-plugin from 3.2.5 to 3.5.4 by @dependabot[bot] in chrisvest/stormpot#218

Bump org.junit.jupiter:junit-jupiter-params from 5.11.2 to 6.0.0 by @dependabot[bot] in chrisvest/stormpot#221

Bump org.apache.maven.plugins:maven-javadoc-plugin from 3.7.0 to 3.12.0 by @dependabot[bot] in chrisvest/stormpot#226

Bump org.apache.maven.plugins:maven-jxr-plugin from 3.4.0 to 3.6.0 by @dependabot[bot] in chrisvest/stormpot#224

Bump org.jacoco:jacoco-maven-plugin from 0.8.12 to 0.8.14 by @dependabot[bot] in chrisvest/stormpot#228

Bump org.apache.maven.plugins:maven-site-plugin from 3.12.1 to 3.21.0 by @dependabot[bot] in chrisvest/stormpot#227

Bump org.apache.maven.plugins:maven-gpg-plugin from 3.2.4 to 3.2.8 by @dependabot[bot] in chrisvest/stormpot#225

Bump org.revapi:revapi-maven-plugin from 0.15.0 to 0.15.1 by @dependabot[bot] in chrisvest/stormpot#234

Bump io.dropwizard.metrics:metrics-core from 4.2.25 to 4.2.37 by @dependabot[bot] in chrisvest/stormpot#233

Bump org.apache.maven.plugins:maven-pmd-plugin from 3.22.0 to 3.28.0 by @dependabot[bot] in chrisvest/stormpot#232

Bump io.micrometer:micrometer-core from 1.13.0 to 1.15.5 by @dependabot[bot] in chrisvest/stormpot#231

Bump org.apache.maven.plugins:maven-enforcer-plugin from 3.5.0 to 3.6.2 by @dependabot[bot] in chrisvest/stormpot#240

Bump org.assertj:assertj-core from 3.26.0 to 3.27.6 by @dependabot[bot] in chrisvest/stormpot#238

Bump org.apache.maven.plugins:maven-project-info-reports-plugin from 3.5.0 to 3.9.0 by @dependabot[bot] in chrisvest/stormpot#237

... (truncated)

Commits

5fef451 Update modular pom versions for release
a98e54c Update version for release
00d8938 Update the release process doc
72e67f7 Apply some workflow security enhancements (#278)
5309eba Remove old concurrency group from snapshot-release
99da87b More permissions configuration
8677f43 Update codeql versions to immutable tags
adb77b3 Pin the setup-java action
3ae38e2 Pin the checkout action
f18b2b3 Apply some workflow security enhancements
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the prod-deps group with 1 update: [com.github.chrisvest:stormpot](https://github.com/chrisvest/stormpot). Updates `com.github.chrisvest:stormpot` from 4.1 to 4.2 - [Release notes](https://github.com/chrisvest/stormpot/releases) - [Commits](chrisvest/stormpot@stormpot-4.1...stormpot-4.2) --- updated-dependencies: - dependency-name: com.github.chrisvest:stormpot dependency-version: '4.2' dependency-type: direct:production update-type: version-update:semver-minor dependency-group: prod-deps ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Mar 9, 2026

thmarx merged commit bb70d6e into main Mar 9, 2026
1 check passed

dependabot bot deleted the dependabot/maven/prod-deps-423bc41438 branch March 9, 2026 13:24

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump com.github.chrisvest:stormpot from 4.1 to 4.2 in the prod-deps group#615

Bump com.github.chrisvest:stormpot from 4.1 to 4.2 in the prod-deps group#615
thmarx merged 1 commit intomainfrom
dependabot/maven/prod-deps-423bc41438

dependabot bot commented on behalf of github Mar 9, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

dependabot bot commented on behalf of github Mar 9, 2026

Stormpot 4.2

What's Changed

Features and fixes

Miscellaneous changes

Flaky test fixes

Version bumps

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant