Bump pf4j from 3.1.0 to 3.7.0

[dependabot[bot]]

Bumps pf4j from 3.1.0 to 3.7.0.

Changelog

Sourced from pf4j's changelog.

Change Log

All notable changes to this project will be documented in this file. This project adheres to Semantic Versioning.

[Unreleased][unreleased]

Fixed

• #435: Fix the path separator used in the SingletonExtensionFactoryTest.java
• #451: Fix Dependency version check fails even if required is '*'
• #490: Fix memory leak in SingletonExtensionFactory

Changed

• Update mockito version from 2.24.0 to 3.8.0
• #426: Update module-info.java
• #455: Do not rely on version from Manifest
• Update Log4j version to 2.17.1

Added

• #430: Add a unit test in AbstractExtensionFinderTest to reproduce #428
• #450: Add wrapper to plugin manager (SecurePluginManagerWrapper)
• Add code analyses via Sonar
• Add support for reading plugin descriptor from zip

Removed

[3.6.0] - 2021-01-16

Fixed

• #394: DependencyResolver lost dependent info after plugin stop

Changed

Added

• #415: Externalize some useful classes from testing

Removed

[3.5.0] - 2020-11-08

Fixed

• #378: Wrong log message
• #396: WrongDependencyVersionException logs do not contain any info

Changed

• #395: Make ClassLoadingStrategy's constructor public
• #398: Make DefaultPluginDescriptor#addDependency usable
• #402: Bucketed caching in SingletonExtensionFactory

Added

• #400: Add support for JPMS (module-info.java)

... (truncated)

Commits

• 35a8cf2 [maven-release-plugin] prepare release release-3.7.0
• fad044b Update changelog
• f08ef76 Create FUNDING.yml
• 1d58b17 Fix memory leak in SingletonExtensionFactory (#487) (#490)
• 34dd4ef Update README url (#485)
• c2a1b09 Update Log4j version to 2.17.1 (#480)
• 74f1284 Update Log4j version to 2.17.0 (#479)
• a82cb67 Upgrade to Log4j version to 2.15.0 (#478)
• 5385c7f Add project url in pom.xml
• b7f03a2 Add support for reading plugin descriptor from zip
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)