MLE-26437 Bumping dependencies to eliminate CVEs

[rjrudin]

Main thing is getting onto Spring 6.2.11 instead of Spring 5. Bumped Gradle to 8.14.3 and NiFi from 2.3.0 to 2.5.0 too.

[Copilot]

Pull Request Overview

This PR updates dependencies to eliminate CVEs by upgrading to Spring 6.2.11 (from Spring 5), Gradle 8.14.3, and NiFi 2.5.0 (from 2.3.0). The changes focus on security improvements through dependency version bumps.

• Updated core dependencies (Spring Framework, NiFi, Gradle) to address security vulnerabilities
• Added Spring BOM for consistent dependency management
• Updated documentation to reflect new NiFi version requirements

Reviewed Changes

Copilot reviewed 10 out of 11 changed files in this pull request and generated 1 comment.

Show a summary per file

File	Description
pom.xml	Added Spring 6.2.11 BOM and updated NiFi to 2.5.0 with MarkLogic client API to 7.2.0
test-app/gradle/wrapper/gradle-wrapper.properties	Updated Gradle wrapper from 8.13 to 8.14.3
test-app/gradlew	Modified Gradle wrapper script to use -jar flag instead of classpath
test-app/gradlew.bat	Updated Windows Gradle wrapper script to use -jar flag
test-app/build.gradle	Bumped MarkLogic Data Hub plugin from 6.2.0 to 6.2.1
nifi-marklogic-services-api/pom.xml	Updated ml-javaclient-util from 5.0.0 to 6.0.1
nifi-marklogic-processors/pom.xml	Updated multiple dependencies and added Spring test dependencies with exclusions
nifi-marklogic-processors/flows-for-manual-testing.json	Updated NiFi version references from 2.3.0 to 2.5.0
docs/index.md	Updated documentation to reflect NiFi 2.5.0 testing requirement
README.md	Updated README to mention NiFi 2.5.0 development and testing

---

_{Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.}

[Copilot]

The CLASSPATH is set to an escaped empty string \"\"\"\" which appears incorrect. This should likely be an empty string or properly escaped quotes if intentional.

Suggested change

	CLASSPATH="\\\"\\\""
	CLASSPATH=""

[github-actions]

Copyright Validation Results
Total: 17 | Passed: 0 | Failed: 0 | Skipped: 17 | at: 2025-10-08 18:21:32 UTC | commit: 40adc84

⏭️ Skipped (Excluded) Files

• .copyrightconfig
• .gitignore
• Jenkinsfile
• README.md
• docs/index.md
• gradle/wrapper/gradle-wrapper.jar
• gradle/wrapper/gradle-wrapper.properties
• gradlew
• gradlew.bat
• nifi-marklogic-processors/flows-for-manual-testing.json
• nifi-marklogic-processors/pom.xml
• nifi-marklogic-services-api/pom.xml
• pom.xml
• settings.gradle
• test-app/.gitignore
• test-app/build.gradle
• test-app/settings.gradle

✅ All files have valid copyright headers!