fix(deps): bump the prod-deps group across 1 directory with 5 updates

[dependabot]

Bumps the prod-deps group with 5 updates in the / directory:

Package	From	To
org.springframework.boot:spring-boot-starter-parent	4.0.2	4.0.3
org.testcontainers:testcontainers-bom	1.21.4	2.0.3
org.folio:folio-service-tools-spring-dev	4.1.1	5.0.1
org.apache.commons:commons-collections4	4.4	4.5.0
org.projectlombok:lombok	1.18.42	1.18.44

Updates org.springframework.boot:spring-boot-starter-parent from 4.0.2 to 4.0.3

Release notes

Sourced from org.springframework.boot:spring-boot-starter-parent's releases.

v4.0.3

⭐ New Features

• Add TWENTY_SIX to JavaVersion enum #49193

🐞 Bug Fixes

• Jackson properties may not be applied correctly to RestClients #49223
• ClassNotFoundException when using Actuator without spring-boot-health #49196
• Using the OTel and Zipkin starters together creates invalid configuration #49183
• Whitespace can be incorrectly removed when spring-boot-configuration-processor runs on multi-line javadoc #49060
• Jackson2HttpMessageConvertersConfiguration uses ConditionOn Jackson3 XMLMapper class #49015
• server.jetty.threads.max is ignored when using virtual threads #48989
• Slice test includes fail to load when using spring-boot-starter-test-classic #48981
• Docker credential helpers with file extensions cannot be executed on Windows #48979
• Java version requirement check for native image is confusing if AOT didn't run #48963
• TestPropertyValues.Pair.fromMapEntry(Entry<String, String>) does not comply with its nullability contract #48948

📔 Documentation

• Couchbase and Kafka are incorrectly listed as supporting SSL with Docker Compose #49212
• Document that use of non idiomatic format for '@Value' still apply for environment variables #49109
• Document naming convention for custom test-scoped starters #49017
• Delay removal of Jackson 2 support until 4.3 at the earliest #49010
• LICENSE.txt and NOTICE.txt files have the wrong content in the latest releases #49003
• ApplicationContextAssert documents a non-existent assertion in getFailure() #48977
• Highlight the importance of the preStop hook when configuring Kubernetes probes #48946

🔨 Dependency Upgrades

• Upgrade to AssertJ 3.27.7 #49095
• Upgrade to Elasticsearch Client 9.2.5 #49184
• Upgrade to Groovy 5.0.4 #49097
• Upgrade to Hibernate 7.2.3.Final #49098
• Upgrade to Hibernate 7.2.4.Final #49167
• Upgrade to Jaybird 6.0.4 #49099
• Upgrade to JBoss Logging 3.6.2.Final #49100
• Upgrade to Jersey 4.0.2 #49101
• Upgrade to Jetty 12.1.6 #49102
• Upgrade to jOOQ 3.19.30 #49103
• Upgrade to JUnit Jupiter 6.0.3 #49233
• Upgrade to Logback 1.5.29 #49169
• Upgrade to Logback 1.5.32 #49245
• Upgrade to Micrometer 1.16.3 #49111
• Upgrade to Micrometer Tracing 1.6.3 #49112
• Upgrade to MongoDB 5.6.3 #49105
• Upgrade to MySQL 9.6.0 #49106
• Upgrade to Netty 4.2.10.Final #49107
• Upgrade to Postgresql 42.7.10 #49202
• Upgrade to Reactor Bom 2025.0.3 #49087

... (truncated)

Commits

• 1ab1436 Release v4.0.3
• 5cc488d Merge branch '3.5.x' into 4.0.x
• 9138ae2 Next development version (v3.5.12-SNAPSHOT)
• a7e63a7 Merge branch '3.5.x' into 4.0.x
• 54ab3c5 Align "noteworthy" issues in release notes with Spring Framework
• b3ae5b1 Merge branch '3.5.x' into 4.0.x
• 996664f Temporarily switch Docker to overlay2
• 1ce8743 Revert "Temporarily disable containerd snapshotter"
• 5ba88c6 Temporarily disable containerd snapshotter
• 1f1a88c Revert "Temporarily update system tests to use specific platform"
• Additional commits viewable in compare view

Updates org.testcontainers:testcontainers-bom from 1.21.4 to 2.0.3

Release notes

Sourced from org.testcontainers:testcontainers-bom's releases.

2.0.3

What's Changed

• Update questdb/questdb image version to 9.2.2 (#11347) @​eddumelendez
• Fix GitHub-Action Generate PR descriptions (#11129) @​JackPGreen
• Update testcontainers version to ${GITHUB_REF##*/} (#11220) @github-actions[bot]
• Update docs version to ${GITHUB_REF##*/} (#11221) @github-actions[bot]

🐛 Bug Fixes

• Fix compatibility with older Docker Engines by falling back to v1.32 (#11346) @​eddumelendez

📖 Documentation

• Dead links in CircleCI reference documentation (#10789) @​JohnWill14

📦 Dependency updates

• Combined dependencies PR (#11353) @​eddumelendez
• Combined dependencies PR (#11352) @​eddumelendez
• Combined dependencies PR (#11341) @​eddumelendez
• Combined dependencies PR (#11334) @​eddumelendez
• Combined dependencies PR (#11333) @​eddumelendez
• Combined dependencies PR (#11332) @​eddumelendez
• Combined dependencies PR (#11323) @​eddumelendez

2.0.2

What's Changed

• Update docker image version to 25.0.5 (#11219) @​eddumelendez
• Set default docker API version to 1.44 (#11216) @​eddumelendez
• Fix ollama example (#11217) @​eddumelendez
• Update testcontainers version to ${GITHUB_REF##*/} (#11125) @github-actions[bot]
• Update docs version to ${GITHUB_REF##*/} (#11126) @github-actions[bot]

🐛 Bug Fixes

• Optimize ScriptSplitter from O(n*m) to O(1) when initializing database (#11130) @​hspragg-godaddy

📖 Documentation

• Update kotest-extensions-testcontainers link (#11138) @​noojung

🧹 Housekeeping

• Add getBaseUrl() to NginxContainer using NGINX_DEFAULT_PORT (#11137) @​ghusta

... (truncated)

Commits

• 43c6a97 Combined dependencies PR (#11353)
• 7778cc5 Merge remote-tracking branch 'origin/dependabot/gradle/modules/activemq/org.a...
• 30b043f Merge remote-tracking branch 'origin/dependabot/gradle/modules/db2/com.ibm.db...
• 17d570b Merge remote-tracking branch 'origin/dependabot/gradle/modules/elasticsearch/...
• 47e9ae5 Merge remote-tracking branch 'origin/dependabot/gradle/modules/gcloud/com.goo...
• f34ab26 Merge remote-tracking branch 'origin/dependabot/gradle/modules/couchbase/com....
• ac66ad6 Merge remote-tracking branch 'origin/dependabot/gradle/modules/activemq/org.a...
• b6a1f28 Merge remote-tracking branch 'origin/dependabot/gradle/modules/milvus/io.milv...
• 6a99624 Merge remote-tracking branch 'origin/dependabot/gradle/modules/influxdb/com.i...
• 4ff0770 Merge remote-tracking branch 'origin/dependabot/gradle/modules/grafana/io.mic...
• Additional commits viewable in compare view

Updates org.folio:folio-service-tools-spring-dev from 4.1.1 to 5.0.1

Release notes

Sourced from org.folio:folio-service-tools-spring-dev's releases.

v5.0.1

Dependencies

• Bump RMB from 35.4.0 to 35.4.1 (FST-98)
• Bump Vertx from 4.5.13 to 4.5.22

v5.0.0

Breaking changes

• Upgrade to Java 21 (FST-88)
• Remove TokenUtils and UserInfo classes (FST-89)

Features

Add autoOffsetReset to KafkaListenerProperties (FST-87) Add maxPollRecords and maxPollIntervalMs to KafkaListenerProperties (FST-85)

Dependencies

• Bump RMB from 35.3.0 to 35.4.0
• Bump folio-spring-support from 8.2.0 to 9.0.0
• Bump spring-boot from 3.3.4 to 3.4.3
• Bump Vertx from 4.5.10 to 4.5.13

v4.1.2

Dependencies

• Bump RMB from 35.3.0 to Ramsons version 35.3.1. (FST-97)
• Bump Vertx from 4.5.10 to Ramsons version 4.5.22.

Changelog

Sourced from org.folio:folio-service-tools-spring-dev's changelog.

v5.0.1 2025-12-11

Dependencies

• Bump RMB from 35.4.0 to 35.4.1 (FST-98)
• Bump Vertx from 4.5.13 to 4.5.22

---

v5.0.0 2025-02-28

Breaking changes

• Upgrade to Java 21 (FST-88)
• Remove TokenUtils and UserInfo classes (FST-89)

Features

Add autoOffsetReset to KafkaListenerProperties (FST-87) Add maxPollRecords and maxPollIntervalMs to KafkaListenerProperties (FST-85)

Dependencies

• Bump RMB from 35.3.0 to 35.4.0
• Bump folio-spring-support from 8.2.0 to 9.0.0
• Bump spring-boot from 3.3.4 to 3.4.3
• Bump Vertx from 4.5.10 to 4.5.13

---

v4.1.0 2024-10-25

Bug fixes

• Do not delete kafka topics if collection topic is enabled (FST-77)
• Fix incorrect base64 decoding in TokenUtils (FST-80)

Dependencies

• Bump RMB from 35.2.2 to version 35.3.0.
• Bump Vertx from 4.5.5 to version 4.5.10.
• Bump folio-spring-support/folio-spring-base from 8.2.0-SNAPSHOT to final version 8.2.0.
• Bump Spring Boot from 3.2.3 to version 3.3.4.
• Bump log4j-slf4j-impl to log4j-slf4j2-impl.
• Bump log4j from 2.23.1 to 2.24.1.
• Bump commons-io from 2.15.1 to 2.17.0.

v4.0.0 2024-03-18

Breaking changes

• Remove system-user related functionality from "folio-service-tools-spring-dev" (FST-68)
• Delete TestSetUpHelper.getPgClient() method (FST-73)
• Remove "folio-service-tools-spring-test" submodule (FST-74)

Bug fixes

• Avoid additional totalRecords SQL query for offset=0 limit=MAX_INT (FST-72)

Tech Debt

• Spring Boot 3.1.5, folio-spring-base 7.2.2, Snakeyaml, Snappy (FST-70)

... (truncated)

Commits

• 5cf7f8b [maven-release-plugin] prepare release v5.0.1
• 12c99d8 feat(deps): upgrade to RMB 35.4.1
• bb62fb1 [maven-release-plugin] prepare for next development iteration
• dd544bf [maven-release-plugin] prepare release v5.0.0
• fb94b4f [maven-release-plugin] prepare branch release/v5.0
• 91b7618 Update NEWS
• 972a21f Update dependencies
• 2809c56 fix(deps): bump the prod-deps group with 2 updates (#214)
• a020daf fix: do not fail on javadoc generation (#213)
• 38d2000 chore: upgrade to Java 21 (#212)
• Additional commits viewable in compare view

Updates org.apache.commons:commons-collections4 from 4.4 to 4.5.0

Updates org.projectlombok:lombok from 1.18.42 to 1.18.44

Changelog

Sourced from org.projectlombok:lombok's changelog.

v1.18.44 (March 11th, 2026)

• FEATURE: @Jacksonized now supports both Jackson2 and Jackson3; you'll get a warning until you configure which one (or even both!) you want lombok to generate. #3950.
• BUGFIX: On JDK25, val and @ExtensionMethod could sometimes cause erroneous errors (in that you see errors but compilation succeeds anyway) using javac. #3947.
• BUGFIX: @Jacksonized + fields marked transient would result in those transient fields being serialised which is surprising (and thus undesired) behaviour. #3936.

Commits

• 17c78fe [version] pre-release version bump
• 1edca70 [test][@Jacksonized] Test emission of warning when not choosing jackson ver...
• e789e82 [test] Update the generation of eclipse test targets from JDK14 to JDK25.
• a54cecd [trivial][changelog]
• 3db0a6c [bugfix][@Jacksonized] javac handler of jacksonized checked for existing ja...
• 12572fc [test] Adjusted tests to the new 'jackson version is a list' config key setup.
• 0e9699c [changelog] Document implementation of Jackson3 support: #3950.
• d441be1 [jacksonized] infrastructure for previous merge resolution: Changed to the co...
• d62b2d5 Merge branch 'master' into cachescrubber-gh-3950
• f49f0fe [test] Remove tests for deprecated @Logger(access = MODULE). They're deprec...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions