Updated several (transitive) dependencies (OFBIZ-13123)

[dtrunk90]

Improved:

• Update Apache PDFBox to 2.0.32
• Update Apache CXF Runtime JAX-RS Frontend to 3.6.4
• Update Asciidoctor Gradle Plugin to 4.0.2
• Update transitive dependency testng to 7.7.0
• Update Groovy to 4.0.22 ¹
• Update Apache MINA sshd to 2.13.1
• Update poi to 5.3.0
• Update ez-vcard to 0.12.1
• Update jdom to 2.0.6.1
• Update Apache CXF Runtime JAX-RS Frontend to 3.6.3
• Update transitive dependency bcprov-jdk18on to 1.78
• Update tika parsers to 2.9.2
• Update fop to 2.9
• Update transitive dependency mime4j to 0.8.10
• Update clojure to 1.11.3
• Update derby to 10.16.1.1 ²
• Update jackson-databind to 2.17.1
• Update esapi to 2.5.4.0
• Add guava as dependency
• Set checkstyle.toolVersion
• Update org.owasp.dependencycheck to 10.0.2
• Upgrade to gradle 8.8

Reverted:

• Improved: Abandon the Gradle Owasp dependencycheck task (OFBIZ-13121) 0a9ee32 ³

Fixed:

• Corrections based on Checkstyle errors

I've updated several (transitive) dependencies. For the transitive dependencies see the because clause in their respective constraint.

¹ Maven coordinates have changed for Groovy 4+ (see https://groovy-lang.org/releasenotes/groovy-4.0.html).

² org.apache.derby.jdbc.EmbeddedDriver is now in derbytools.

³ The new REST API from NVD isn't stable (currently) because it's under massive load and returning HTTP 503 Service Unavailable sometimes. On a clean/purged CVE DB I had to wait ~1h 30m for dependencyCheckAnalyze to finish. But it worked and I think DependencyCheck is a good tool for finding at least some reasonable CVEs. This shouldn't be abandoned imho.