chore(deps): bump the github-actions group across 1 directory with 3 updates

[dependabot]

Bumps the github-actions group with 3 updates in the / directory: actions/setup-java, actions/upload-artifact and JetBrains/qodana-action.

Updates actions/setup-java from 3 to 4

Release notes

Sourced from actions/setup-java's releases.

v4.0.0

What's Changed

In the scope of this release, the version of the Node.js runtime was updated to 20. The majority of dependencies were updated to the latest versions. From now on, the code for the setup-java will run on Node.js 20 instead of Node.js 16.

Breaking changes

• Update Node.js runtime to version 20 by @​aparnajyothi-y in actions/setup-java#558

Non-breaking changes

• Adding support for microsoft openjdk 21.0.0 by @​ralfstuckert in actions/setup-java#546
• Update @​actions/cache dependency and documentation by @​IvanZosimov in actions/setup-java#549
• Implementation of the cache-dependency-path option to control caching dependency by @​itchyny in actions/setup-java#499

New Contributors

• @​ralfstuckert made their first contribution in actions/setup-java#546
• @​itchyny made their first contribution in actions/setup-java#499

Full Changelog: actions/setup-java@v3...v4.0.0

v3.13.0

What's changed

In the scope of this release, support for Dragonwell JDK was added by @​Accelerator1996 in actions/setup-java#532

steps:
 - name: Checkout
   uses: actions/checkout@v3
 - name: Setup-java
   uses: actions/setup-java@v3
   with:
     distribution: 'dragonwell'
     java-version: '17'

Several inaccuracies were also fixed:

• Fix XML namespaces wrongly using https by @​gnodet in actions/setup-java#503
• Fix typo and remove unintentional(?) word by @​CyberFlameGO in actions/setup-java#518
• Fix usage link within the README.md file by @​dassiorleando in actions/setup-java#525

New Contributors

• @​CyberFlameGO made their first contribution in actions/setup-java#518
• @​dassiorleando made their first contribution in actions/setup-java#525
• @​gnodet made their first contribution in actions/setup-java#503
• @​Accelerator1996 made their first contribution in actions/setup-java#532

Full Changelog: actions/setup-java@v3...v3.13.0

v3.12.0

... (truncated)

Commits

• 6a0805f Fix the bug about parsing dragonwell version (#642) (#643)
• fd08b9c Bump undici from 5.28.3 to 5.28.4 (#616)
• 2e74cbc Fix versions check failures (#634)
• a1c6c9c Updated advanced-usage.md (#622)
• 99b8673 Patch for java version file (#610)
• 5896cec Added .tool-versions file support (#606)
• 80ae3c2 Update httpclient version and other dependencies (#607)
• 9704b39 Added Windows Arm64 Support for Windows Arm64 Runners (#595)
• 7a445ee Fix typo in configuration example (#572)
• 3232623 Oracle JDK 21 support (#538)
• Additional commits viewable in compare view

Updates actions/upload-artifact from 3 to 4

Release notes

Sourced from actions/upload-artifact's releases.

v4.0.0

What's Changed

The release of upload-artifact@v4 and download-artifact@v4 are major changes to the backend architecture of Artifacts. They have numerous performance and behavioral improvements.

ℹ️ However, this is a major update that includes breaking changes. Artifacts created with versions v3 and below are not compatible with the v4 actions. Uploads and downloads must use the same major actions versions. There are also key differences from previous versions that may require updates to your workflows.

For more information, please see:

1. The changelog post.
2. The README.
3. The migration documentation.
4. As well as the underlying npm package, @​actions/artifact documentation.

New Contributors

• @​vmjoseph made their first contribution in actions/upload-artifact#464

Full Changelog: actions/upload-artifact@v3...v4.0.0

v3.1.3

What's Changed

• chore(github): remove trailing whitespaces by @​ljmf00 in actions/upload-artifact#313
• Bump @​actions/artifact version to v1.1.2 by @​bethanyj28 in actions/upload-artifact#436

Full Changelog: actions/upload-artifact@v3...v3.1.3

v3.1.2

• Update all @actions/* NPM packages to their latest versions- #374
• Update all dev dependencies to their most recent versions - #375

v3.1.1

• Update actions/core package to latest version to remove set-output deprecation warning #351

v3.1.0

What's Changed

• Bump @​actions/artifact to v1.1.0 (actions/upload-artifact#327)
  • Adds checksum headers on artifact upload (actions/toolkit#1095) (actions/toolkit#1063)

Commits

• 834a144 Merge pull request #594 from actions/robherley/4.3.6
• 134dcf3 v4.3.6
• 73a0b9c revert back to @​actions/artifact 2.1.8
• 89ef406 Merge pull request #588 from actions/robherley/4.3.5
• 23d796d license updates
• e445c64 bump @​actions/artifact to v2.1.9
• 0b2256b Merge pull request #584 from actions/robherley/bump-pkgs
• 488dcef licensed cache
• 04c51f5 ncc
• 32a9e27 bump @​actions/artifact and npm audit
• Additional commits viewable in compare view

Updates JetBrains/qodana-action from 2024.1.8 to 2024.1.9

Release notes

Sourced from JetBrains/qodana-action's releases.

v2024.1.9

Changelog

• a913367 🧱 Always bump azure-dev to ensure constant publishing (QD-9451)
• 5436cb0 ⬆️ Bump @​types/node in the npm-development group
• cef6958 🧱 Fix Gradle project (QD-9459)
• e82b6cf 📝 Add required docs (QD-9495)
• 86eb286 🐛 Fix node version incompatibilities for old runners (QD-9488)
• 607c987 ⚡ Enable darwin support (limited for nightly)
• c11f536 ⬆️ Bump actions/setup-node in the dependencies group
• aa51170 ⬆️ Bump the npm-development group with 3 updates
• 0661dd3 ⬆️ Bump the npm-production group across 1 directory with 3 updates
• bb67688 🧱 Allow nightly CLI
• 3b09d12 ⬆️ Bump gradle/wrapper-validation-action
• 551fa32 ⬆️ Bump the npm-development group across 1 directory with 4 updates
• c5b8969 ⬆️ Bump @​octokit/rest in the npm-production group
• 94c715f ⬆️ Bump @​octokit/webhooks from 13.2.8 to 13.3.0
• 62b2204 ⬆️ Bump @​typescript-eslint/parser from 7.17.0 to 7.18.0
• 798c90b ⬆️ Bump azure-pipelines-task-lib from 4.13.0 to 4.15.0
• b1f009c ⬆️ Bump the npm-development group with 3 updates
• d273417 ⬆️ Bump @​types/node from 20.14.10 to 22.1.0
• 21595cb 🐛 Limit dependencies list in GitHub commit if it's too large (QD-9677)
• b15143e ⬆️ Bump @​actions/artifact in the npm-production group
• 19b560d 🧱 Use Java 8 for the plugin
• 15519c3 🧱 Fix updater script
• 999cd87 ⬆️ Update qodana to v2024.1.9
• c5a69b0 🧱 Update azure-pipelines.yml

Commits

• c5a69b0 🧱 Update azure-pipelines.yml
• 999cd87 ⬆️ Update qodana to v2024.1.9
• 15519c3 🧱 Fix updater script
• 19b560d 🧱 Use Java 8 for the plugin
• b15143e ⬆️ Bump @​actions/artifact in the npm-production group
• 21595cb 🐛 Limit dependencies list in GitHub commit if it's too large (QD-9677)
• d273417 ⬆️ Bump @​types/node from 20.14.10 to 22.1.0
• b1f009c ⬆️ Bump the npm-development group with 3 updates
• 798c90b ⬆️ Bump azure-pipelines-task-lib from 4.13.0 to 4.15.0
• 62b2204 ⬆️ Bump @​typescript-eslint/parser from 7.17.0 to 7.18.0
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

Qodana Community for JVM

It seems all right 👌

No new problems were found according to the checks applied

💡 Qodana analysis was run in the pull request mode: only the changed files were checked

View the detailed Qodana report

To be able to view the detailed Qodana report, you can either:

• Register at Qodana Cloud and configure the action
• Use GitHub Code Scanning with Qodana
• Host Qodana report at GitHub Pages
• Inspect and use qodana.sarif.json (see the Qodana SARIF format for details)

To get *.log files or any other Qodana artifacts, run the action with upload-result option set to true,
so that the action will upload the files as the job artifacts:

      - name: 'Qodana Scan'
        uses: JetBrains/[email protected]
        with:
          upload-result: true

Contact Qodana team

Contact us at [email protected]

• Or via our issue tracker: https://jb.gg/qodana-issue
• Or share your feedback: https://jb.gg/qodana-discussions