Bump org.apache.maven.plugins:maven-pmd-plugin from 3.15.0 to 3.23.0

[dependabot[bot]]

Bumps org.apache.maven.plugins:maven-pmd-plugin from 3.15.0 to 3.23.0.

Release notes

Sourced from org.apache.maven.plugins:maven-pmd-plugin's releases.

3.22.0

🚀 New features and improvements

• [MPMD-379] - Upgrade to use PMD 7.0.0 by default (#144) @​mkolesnikov

📦 Dependency updates

• [MPMD-394] - Bump org.apache.maven.plugins:maven-plugins from 41 to 42 (#148) @​dependabot
• [MPMD-393] - Bump commons-io:commons-io from 2.16.0 to 2.16.1 (#147) @​dependabot
• [MPMD-393] - Bump commons-io:commons-io from 2.15.1 to 2.16.0 (#146) @​dependabot
• Bump apache/maven-gh-actions-shared from 3 to 4 (#143) @​dependabot
• Bump org.codehaus.plexus:plexus-resources from 1.2.0 to 1.3.0 (#140) @​dependabot
• Bump org.apache.commons:commons-lang3 from 3.12.0 to 3.14.0 (#137) @​dependabot
• Bump commons-io:commons-io from 2.11.0 to 2.15.1 (#138) @​dependabot

👻 Maintenance

• Bump release-drafter/release-drafter from 5 to 6 (#142) @​dependabot

3.21.2

🐛 Bug Fixes

• MPMD-370 - Remove remaining uses of FileReader
• MPMD-371 - Using two ruleset files with same name in different directories (#127) @​harbulot
• MPMD-382 - Regression in report rendering
• MPMD-384 - maven-pmd-plugin is dowloading transitive dependencies of unmanaged version (#135) @​caiwei-ebay

👻 Maintenance

• Move commons-lang3 to test scope (#131) @​elharo

📝 Documentation updates

• Typo: fill --> file (#133) @​elharo

📦 Dependency updates

• MPMD-380 - Prefer apache commons and JDK to Plexus utils (#132) @​elharo
• MPMD-387 - Upgrade to Parent 40

3.21.0

🚀 New features and improvements

• MPMD-365 - Support Java 20 (#116) @​adangel
• MPMD-375 - Replace *ReportGenerators with new *ReportRenderers (#130) @​michael-o

🐛 Bug Fixes

• MPMD-369 - System encoding conflicts with XML encoding in CpdViolationCheckMojo (#122) @​elharo
• MPMD-373 - System property java.version is overwritten in ITs as model property (#128) @​michael-o

👻 Maintenance

• MPMD-374 - Remove deprecated and unused PmdCollectingRenderer (#128) @​michael-o

... (truncated)

Commits

• 570fe17 [maven-release-plugin] prepare release maven-pmd-plugin-3.23.0
• 872fcd8 [MPMD-397] Upgrade to Maven 3.6.3
• 76f7e11 [MPMD-395] Build doesn't fail for invalid CPD format (#150)
• c541707 Add test parameter which caused exception to be swallowed
• 4afad98 [maven-release-plugin] prepare for next development iteration
• a9dfc30 [maven-release-plugin] prepare release maven-pmd-plugin-3.22.0
• 4bc08a9 (doc) Update release notes for upcoming 3.22.0
• 2823fa0 Bump org.apache.maven.plugins:maven-plugins from 41 to 42 (#148)
• 89a7cdb [MPMD-379] Upgrade to use PMD 7.0.0 by default (#144)
• f884af3 Fixups from review (#144)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)