2.0.14

🚀 New features and improvements

• Enhance RRF (#1709) @cstamas
• Locking inhibitor SPI (#1696) @cstamas
• Repository Key Function SPI (#1679) @cstamas
• GH-1668: Add catch-all for group filter (#1694) @cstamas
• Remote repository intent (#1680) @cstamas
• Name mappers cleanup and new GAECV mapper (#1677) @cstamas
• Remove hack from Basic connector (#1676) @cstamas
• HTTP compression support in Java Http Client (#1627) @kwin
• Support preemptive authentication with Java HTTP Client (#1625) @kwin

🐛 Bug Fixes

• Bug: GH-1711 make sure last wins (#1712) @cstamas
• Bug: GH-1703 Gaps in G segments resets result (#1706) @cstamas
• Bug: GH-1703 Locally cached artifacts defy RRF (#1707) @cstamas
• Bug: depMgt in manager was "last wins" instead of "first wins" (#1702) @cstamas
• Bugfix: Prioritized Components Cache change detection got removed (#1698) @cstamas
• TrackingFileManager changes (#1692) @cstamas
• Make filters daemon friendly (#1681) @cstamas
• Fix locking issues (#1660) @cstamas
• Bug: Filter fixes (#1655) @cstamas
• Fix automatic module names and missing methanol (#1651) @cstamas
• ScopeManager: do not interfere with session graph transformer (#1650) @cstamas
• GH-1646 bugfix for filter support in ADNC (#1647) @cstamas
• Set the request timeout with Java HTTP Client (#1633) @kwin

📝 Documentation updates

• Fix typos and improve clarity in using resolver docs (#1713) @elharo

👻 Maintenance

• Test: Increase IPC test timeout (#1710) @cstamas
• Use try-with for resource in test HttpServer (#1521) (#1686) @martins-avots
• Cleanup prefix and others (#1670) @cstamas
• Maven Resolver lockrepro (#1665) @cstamas
• Update GH CI (#1658) @cstamas

📦 Dependency updates

• Update test tools (#1705) @cstamas
• Bump org.mockito:mockito-core from 5.20.0 to 5.21.0 (#1704) @dependabot[bot]
• Bump org.codehaus.plexus:plexus-testing from 2.0.1 to 2.0.2 (#1697) @dependabot[bot]
• Bump bouncycastleVersion from 1.82 to 1.83 (#1693) @dependabot[bot]
• Update to SigStore 2.0.0 (#1685) @cstamas
• Bump org.jboss.forge.roaster:roaster-api from 2.30.1.Final to 2.30.3.Final (#1687) @dependabot[bot]
• Bump org.jboss.forge.roaster:roaster-jdt from 2.30.1.Final to 2.30.3.Final (#1688) @dependabot[bot]
• Bump com.github.siom79.japicmp:japicmp-maven-plugin from 0.24.2 to 0.25.0 (#1689) @dependabot[bot]
• Bump okhttpVersion from 5.3.1 to 5.3.2 (#1678) @dependabot[bot]
• Bump okhttpVersion from 5.3.0 to 5.3.1 (#1672) @dependabot[bot]
• Bump org.apache.commons:commons-lang3 from 3.19.0 to 3.20.0 (#1673) @dependabot[bot]
• Bump commons-codec:commons-codec from 1.19.0 to 1.20.0 (#1652) @dependabot[bot]
• Bump okhttpVersion from 5.2.1 to 5.3.0 (#1645) @dependabot[bot]
• Bump org.codehaus.plexus:plexus-testing from 1.7.0 to 2.0.1 (#1642) @dependabot[bot]
• Bump org.codehaus.mojo:exec-maven-plugin from 3.6.1 to 3.6.2 (#1638) @dependabot[bot]
• Bump com.github.siom79.japicmp:japicmp-maven-plugin from 0.23.1 to 0.24.2 (#1628) @dependabot[bot]
• Bump com.github.mizosoft.methanol:methanol from 1.8.3 to 1.8.4 (#1634) @dependabot[bot]
• Bump org.codehaus.plexus:plexus-testing from 1.6.0 to 1.7.0 (#1635) @dependabot[bot]
• Bump okhttpVersion from 5.1.0 to 5.2.1 (#1626) @dependabot[bot]

1.9.25

🚀 New features and improvements

• Add scope support for trusted checksums (#1700) @slawekjaranowski
• [1.9.x] Name mappers cleanup and new GAECV mapper (#1674) @cstamas
• [1.9.x] Proper metadata locking support (#1669) @cstamas
• Ability to augment metadata nature for version range request (#1518) @cstamas

🐛 Bug Fixes

• [1.9.x] TrackingFileManager changes (#1695) @cstamas
• [1.9.x] Maven filters daemon friendly (#1682) @cstamas
• [1.9.x] Remove hack from Basic connector (#1675) @cstamas
• [1.9.x] Fix locking issues (#1662) @cstamas

📝 Documentation updates

• Updated the documentation to reflect the current list of name mappers (#1699) @slawekjaranowski

👻 Maintenance

• [1.9.x] Mild backport: support same properties as Resolver 2.x (#1656) @cstamas
• [1.9.x] Maven resolver lockrepro (#1664) @cstamas
• Bugfix: Java 25 broke test (#1657) @cstamas

📦 Dependency updates

• Bump com.github.siom79.japicmp:japicmp-maven-plugin from 0.24.2 to 0.25.0 (#1690) @dependabot[bot]
• Bump org.codehaus.mojo:animal-sniffer-maven-plugin from 1.24 to 1.26 (#1624) @dependabot[bot]
• Bump com.github.siom79.japicmp:japicmp-maven-plugin from 0.23.1 to 0.24.2 (#1630) @dependabot[bot]
• Bump commons-codec:commons-codec from 1.19.0 to 1.20.0 (#1653) @dependabot[bot]
• Bump org.redisson:redisson from 3.51.0 to 3.52.0 (#1602) @dependabot[bot]
• Bump com.google.guava:guava from 33.4.8-jre to 33.5.0-jre (#1592) @dependabot[bot]
• Bump com.google.code.gson:gson from 2.13.1 to 2.13.2 (#1580) @dependabot[bot]
• Bump org.redisson:redisson from 3.50.0 to 3.51.0 (#1559) @dependabot[bot]
• Bump jettyVersion from 9.4.57.v20241219 to 9.4.58.v20250814 (#1551) @dependabot[bot]
• Bump commons-codec:commons-codec from 1.18.0 to 1.19.0 (#1536) @dependabot[bot]
• Bump mavenVersion from 3.9.10 to 3.9.11 (#1532) @dependabot[bot]

2.0.13

⚠️ Deprecated

• Deprecate methods that are completely unused or not used outside this… (#1581) @elharo

🚀 New features and improvements

• Stop proliferation of static helper IO methods (#1612) @cstamas
• Make levelOrder the default visitor (#1593) @cstamas
• Improvement: Improve filters logging and lessen noise (#1586) @cstamas

🐛 Bug Fixes

• GH-1609 Bad metadata naming (#1610) @cstamas
• Fix for transitive depManager (#1589) @cstamas
• Bug: Reproducer and fix for #1583 (#1585) @cstamas

📝 Documentation updates

• Document deployment of artifacts (#1588) @kwin
• Oracle javadoc guidelines (#1582) @elharo

👻 Maintenance

• GH-1603 Deprecate Hazelcast support (#1615) @cstamas
• Return JimFS in demo (#1606) @cstamas
• POM tidy up (#1604) @cstamas
• Fix JDK transport mr JAR sources (#1597) @cstamas
• Javadoc fixes (#1596) @cstamas
• Go back to atomic (#1594) @cstamas
• feat: enable prevent branch protection rules (#1563) @sebtiem

📦 Dependency updates

• Bump org.ow2.asm:asm from 9.8 to 9.9 (#1618) @dependabot[bot]
• Bump org.codehaus.mojo:exec-maven-plugin from 3.6.0 to 3.6.1 (#1616) @dependabot[bot]
• Bump org.codehaus.mojo:exec-maven-plugin from 3.5.1 to 3.6.0 (#1607) @dependabot[bot]
• Update MinIO to 8.6.0 (#1605) @cstamas
• Bump org.apache.commons:commons-lang3 from 3.18.0 to 3.19.0 (#1600) @dependabot[bot]
• Bump org.redisson:redisson from 3.51.0 to 3.52.0 (#1601) @dependabot[bot]
• Bump org.mockito:mockito-core from 5.19.0 to 5.20.0 (#1598) @dependabot[bot]
• Bump bouncycastleVersion from 1.81 to 1.82 (#1591) @dependabot[bot]
• Bump com.google.guava:guava from 33.4.8-jre to 33.5.0-jre (#1590) @dependabot[bot]
• Bump com.google.code.gson:gson from 2.13.1 to 2.13.2 (#1579) @dependabot[bot]

2.0.11

⚠️ Deprecated

• Deprecate test methods that are in JUnit and/or the JDK (#1530) @elharo

🚀 New features and improvements

• Make RRF enabled by default (#1575) @cstamas
• Fixes regarding nearest/highest strategies and test (#1565) @cstamas
• Repository ID handling improvement (#1570) @cstamas
• Resolver 2 provides scope manager for mvn3 (#1568) @cstamas
• ConflictResolver improvements (#1558) @cstamas
• Profiling: most hot spots and possibly wasted thread. (#1555) @cstamas
• Resolver Thread management (#1541) @cstamas
• ConflictProcessor; tidy up (#1546) @cstamas
• Simplify filters (#1544) @cstamas
• DependencyManager improvement (#1539) @cstamas
• Ingest Maveniverse Heimdall (#1540) @cstamas
• ConflictResolver improvements, preparations (#1542) @cstamas
• Add scope support for trusted checksums (#1543) @cstamas
• Add more filters; open classes up (#1516) @cstamas
• Ability to augment metadata nature for version range request (#1517) @cstamas

🐛 Bug Fixes

• Prefix file magic detection (#1550) @cstamas
• fix class we log (#1527) @elharo
• Fixes for IPC (#1514) @cstamas

👻 Maintenance

• feat: enable prevent branch protection rules (#1563) @sebtiem
• Fix site (#1578) @cstamas
• Update CI (#1571) @cstamas
• Update to Maven 4.0.0-rc-4 and cleanup p-u usage (#1548) @cstamas
• Create missing output directory in CollectConfiguration (#1534) @slawekjaranowski

📦 Dependency updates

• Bump com.google.code.gson:gson from 2.13.1 to 2.13.2 (#1579) @dependabot[bot]
• Bump org.redisson:redisson from 3.50.0 to 3.51.0 (#1560) @dependabot[bot]
• Bump org.codehaus.plexus:plexus-testing from 1.5.0 to 1.6.0 (#1557) @dependabot[bot]
• Bump org.mockito:mockito-core from 5.18.0 to 5.19.0 (#1556) @dependabot[bot]
• Bump org.apache.commons:commons-compress from 1.27.1 to 1.28.0 (#1538) @dependabot[bot]
• Bump commons-codec:commons-codec from 1.18.0 to 1.19.0 (#1535) @dependabot[bot]
• Bump maven3Version from 3.9.10 to 3.9.11 (#1533) @dependabot[bot]
• Bump com.google.jimfs:jimfs from 1.3.0 to 1.3.1 (#1529) @dependabot[bot]
• Bump org.apache.commons:commons-lang3 from 3.17.0 to 3.18.0 (#1526) @dependabot[bot]
• Bump testcontainersVersion from 1.21.2 to 1.21.3 (#1513) @dependabot[bot]

2.0.10

🚀 New features and improvements

• Add caching for GenericVersion instances in GenericVersionScheme (#1498) @gnodet
• Refine performance (alt) (#1508) @cstamas
• Metadata type out of coordinates (#1491) @cstamas
• Intern context strings (#1488) @cstamas
• Copy in copy method; otherwise reuse (#750) @cstamas
• DepMgr hashCode handling (#749) @cstamas

🐛 Bug Fixes

• Use GET() and PUT() instead of method() (#740) @cstamas

👻 Maintenance

• Align guice with Maven (#748) @cstamas
• Enable Github issues (#734) @Bukama

📦 Dependency updates

• Bump org.apache.maven:maven-parent from 44 to 45 (#1499) @cstamas
• Bump org.redisson:redisson from 3.49.0 to 3.50.0 (#1493) @dependabot[bot]
• Bump testcontainersVersion from 1.21.1 to 1.21.2 (#1497) @dependabot[bot]
• Bump bouncycastleVersion from 1.80 to 1.81 (#744) @dependabot[bot]
• Bump org.codehaus.mojo:build-helper-maven-plugin from 3.6.0 to 3.6.1 (#743) @dependabot[bot]
• Bump org.mockito:mockito-core from 5.17.0 to 5.18.0 (#726) @dependabot[bot]
• Bump sisuVersion from 0.9.0.M3 to 0.9.0.M4 (#727) @dependabot[bot]
• Bump testcontainersVersion from 1.21.0 to 1.21.1 (#733) @dependabot[bot]
• Bump org.redisson:redisson from 3.46.0 to 3.49.0 (#737) @dependabot[bot]
• Bump maven3Version from 3.9.9 to 3.9.10 (#741) @dependabot[bot]
• Bump org.codehaus.mojo:exec-maven-plugin from 3.5.0 to 3.5.1 (#731) @dependabot[bot]

1.9.24

🚀 New features and improvements

• Metadata type out of coordinates (#1503) @cstamas
• RFC9457 implementation (#1502) @doddi
• Intern context strings (#1500) @slawekjaranowski

👻 Maintenance

• Align plexus-util version with Maven (#1506) @slawekjaranowski
• Align guice version with Maven (#1505) @slawekjaranowski
• Enable Github Issues (1.9.x branch) (#735) @Bukama

📦 Dependency updates

• Bump org.redisson:redisson from 3.46.0 to 3.50.0 (#1495) @dependabot[bot]
• Bump sisuVersion from 0.9.0.M3 to 0.9.0.M4 (#725) @dependabot[bot]
• Bump org.apache.maven:maven-parent from 44 to 45 (#1496) @dependabot[bot]
• Bump mavenVersion from 3.9.9 to 3.9.10 (#738) @dependabot[bot]

2.0.9

Release Notes - Maven Resolver - Version 2.0.9

Bug

• [MRESOLVER-588] - Incomplete system properties in SessionBuilderSupplier

Task

• [MRESOLVER-699] - Fix release tag
• [MRESOLVER-700] - Bundle transport: read support
• [MRESOLVER-701] - Restore "aether.layout.maven2.checksumAlgorithms" to obey old (deprecated) key as well
• [MRESOLVER-720] - Add generated file warning headers to velocity templates

Dependency upgrade

• [MRESOLVER-702] - Bump com.google.code.gson:gson from 2.12.1 to 2.13.0
• [MRESOLVER-719] - Bump org.redisson:redisson from 3.45.1 to 3.46.0
• [MRESOLVER-721] - Bump com.google.code.gson:gson from 2.13.0 to 2.13.1
• [MRESOLVER-722] - Bump testcontainersVersion from 1.20.6 to 1.21.0
• [MRESOLVER-723] - Bump info.picocli:picocli from 4.7.6 to 4.7.7

---

What's Changed

• [MRESOLVER-700] Bundle transport: read support by @cstamas in #685
• Bump com.google.code.gson:gson from 2.12.1 to 2.13.0 by @dependabot in #686
• Add standard dependabot labels for 1.9.x by @slawekjaranowski in #690
• Add PR Automation and Stale GitHub Actions by @slawekjaranowski in #692
• Ignore some updates for 1.9.x by @slawekjaranowski in #698
• Ignore plexus-xml 4.x updates for 1.9.x by @slawekjaranowski in #706
• Ignore plexus-xml 4.x updates for 1.9.x - fix by @slawekjaranowski in #707
• Ignore javax.servlet-api 4.x updates for 1.9.x by @slawekjaranowski in #710
• Remove suppressions for checkstyle MagicNumber by @slawekjaranowski in #718
• Bump org.redisson:redisson from 3.45.1 to 3.46.0 by @dependabot in #715
• Add generated file warning headers to velocity templates by @gnodet in #691
• Bump com.google.code.gson:gson from 2.13.0 to 2.13.1 by @dependabot in #689
• Bump testcontainersVersion from 1.20.6 to 1.21.0 by @dependabot in #688
• Bump info.picocli:picocli from 4.7.6 to 4.7.7 by @dependabot in #687
• Mresolver 699 by @cstamas in #722
• [MRESOLVER-701] Support legacy property by @cstamas in #723
• [MRESOLVER-588] Incomplete system properties in suppliers by @cstamas in #724

Full Changelog: maven-resolver-2.0.8...maven-resolver-2.0.9

1.9.23

Release Notes - Maven Resolver - Version 1.9.23

Bug

• [MRESOLVER-659] - NPE in trusted checksum post processor if artifact resolution failed

Improvement

• [MRESOLVER-680] - Disable checksum by default for .sigstore.json as well
• [MRESOLVER-703] - HTTP transport should expose config for max redirects

Dependency upgrade

• [MRESOLVER-704] - Bump sisuVersion from 0.9.0.M2 to 0.9.0.M3
• [MRESOLVER-705] - Bump mavenVersion from 3.9.8 to 3.9.9
• [MRESOLVER-706] - Bump org.hamcrest:hamcrest-core from 2.2 to 3.0
• [MRESOLVER-707] - Bump org.codehaus.plexus:plexus-utils from 4.0.0 to 4.0.2
• [MRESOLVER-708] - Bump com.github.siom79.japicmp:japicmp-maven-plugin from 0.22.0 to 0.23.1
• [MRESOLVER-709] - Bump org.codehaus.mojo:animal-sniffer-maven-plugin from 1.23 to 1.24
• [MRESOLVER-710] - Bump jettyVersion from 9.4.54.v20240208 to 9.4.57.v20241219
• [MRESOLVER-711] - Bump org.redisson:redisson from 3.34.1 to 3.46.0
• [MRESOLVER-712] - Bump commons-codec:commons-codec from 1.17.1 to 1.18.0
• [MRESOLVER-713] - Bump com.hazelcast:hazelcast from 5.3.7 to 5.3.8
• [MRESOLVER-714] - Bump org.codehaus.plexus:plexus-xml from 3.0.0 to 3.0.2
• [MRESOLVER-715] - Bump org.apache.maven:maven-parent from 42 to 44
• [MRESOLVER-716] - Bump com.google.guava:guava from 33.1.0-jre to 33.4.8-jre
• [MRESOLVER-717] - Bump org.codehaus.plexus:plexus-classworlds from 2.7.0 to 2.9.0

What's Changed

• Update Maven in GH workflow by @cstamas in #663
• [1.9.x] [MRESOLVER-680] Sigstore extension added by @cstamas in #662
• [MRESOLVER-659] NPE in trusted checksum post processor if artifact resolution failed by @cstamas in #665
• Add PR Automation in 1.9.x branch by @slawekjaranowski in #693
• [MRESOLVER-704] Bump sisuVersion from 0.9.0.M2 to 0.9.0.M3 by @dependabot in #566
• [MRESOLVER-705] Bump mavenVersion from 3.9.8 to 3.9.9 by @dependabot in #568
• [MRESOLVER-706] Bump org.hamcrest:hamcrest-core from 2.2 to 3.0 by @dependabot in #571
• [MRESOLVER-707] Bump org.codehaus.plexus:plexus-utils from 4.0.0 to 4.0.2 by @dependabot in #580
• [MRESOLVER-708] Bump com.github.siom79.japicmp:japicmp-maven-plugin from 0.22.0 to 0.23.1 by @dependabot in #636
• [MRESOLVER-709] Bump org.codehaus.mojo:animal-sniffer-maven-plugin from 1.23 to 1.24 by @dependabot in #699
• [MRESOLVER-710] Bump jettyVersion from 9.4.54.v20240208 to 9.4.57.v20241219 by @dependabot in #703
• [MRESOLVER-706] Bump org.hamcrest:hamcrest from 2.2 to 3.0 by @dependabot in #704
• [MRESOLVER-711] Bump org.redisson:redisson from 3.34.1 to 3.45.1 by @dependabot in #700
• [MRESOLVER-712] Bump commons-codec:commons-codec from 1.17.1 to 1.18.0 by @dependabot in #705
• [MRESOLVER-715] Bump org.apache.maven:maven-parent from 42 to 44 by @dependabot in #711
• [MRESOLVER-713] Bump com.hazelcast:hazelcast from 5.3.7 to 5.3.8 by @dependabot in #708
• [MRESOLVER-714] Bump org.codehaus.plexus:plexus-xml from 3.0.0 to 3.0.2 by @dependabot in #709
• [MRESOLVER-716] Bump com.google.guava:guava from 33.1.0-jre to 33.4.8-jre by @dependabot in #712
• [MRESOLVER-717] Bump org.codehaus.plexus:plexus-classworlds from 2.7.0 to 2.9.0 by @dependabot in #713
• Update site descriptors by @slawekjaranowski in #717
• Deploy snapshot artifacts by Jenkins by @slawekjaranowski in #719
• [MRESOLVER-711] Bump org.redisson:redisson from 3.45.1 to 3.46.0 by @dependabot in #714
• [MRESOLVER-703] Expose redirect config for http transport by @slawekjaranowski in #716
• Remove suppressions for checkstyle MagicNumber by @slawekjaranowski in #720
• Refresh links on the configuration page by @slawekjaranowski in #721

Full Changelog: maven-resolver-1.9.22...maven-resolver-1.9.23

2.0.8

Release Notes - Maven Resolver - Version 2.0.8

Bug

• [MRESOLVER-569] - DependencyCollectionException.getResult().getExceptions() always returns one exception

Improvement

• [MRESOLVER-685] - Connector pipelining
• [MRESOLVER-687] - Add Artifact/Dependency validation SPI hook

Dependency upgrade

• [MRESOLVER-688] - Bump org.mockito:mockito-core from 5.15.2 to 5.16.1
• [MRESOLVER-689] - Bump testcontainersVersion from 1.20.5 to 1.20.6
• [MRESOLVER-690] - Bump junit from 5.11.2 to 5.12.1
• [MRESOLVER-691] - Bump org.redisson:redisson from 3.45.0 to 3.45.1
• [MRESOLVER-692] - Bump maven-parent from 43 to 44
• [MRESOLVER-694] - Bump org.ow2.asm:asm from 9.7.1 to 9.8
• [MRESOLVER-695] - Bump org.codehaus.plexus:plexus-testing from 1.4.0 to 1.5.0
• [MRESOLVER-696] - Bump org.mockito:mockito-core from 5.16.1 to 5.17.0
• [MRESOLVER-697] - Bump org.codehaus.plexus:plexus-classworlds from 2.8.0 to 2.9.0
• [MRESOLVER-698] - Update mvn4 supplier to Maven 4.0.0-rc3

---

What's Changed

• Bump org.mockito:mockito-core from 5.15.2 to 5.16.1 by @dependabot in #670
• Bump testcontainersVersion from 1.20.5 to 1.20.6 by @dependabot in #669
• Bump org.redisson:redisson from 3.45.0 to 3.45.1 by @dependabot in #673
• [MRESOLVER-687] Validator SPI by @cstamas in #671
• Bump maven-parent from 43 to 44 by @cstamas in #675
• Update site descriptors by @cstamas in #676
• Bump org.ow2.asm:asm from 9.7.1 to 9.8 by @dependabot in #677
• Bump org.codehaus.plexus:plexus-testing from 1.4.0 to 1.5.0 by @dependabot in #680
• Bump org.mockito:mockito-core from 5.16.1 to 5.17.0 by @dependabot in #682
• Bump org.codehaus.plexus:plexus-classworlds from 2.8.0 to 2.9.0 by @dependabot in #681
• [MRESOLVER-685] Connector pipelining by @cstamas in #679
• [MRESOLVER-569] Pass on exceptions by @cstamas in #678
• [MRESOLVER-698] Update Maven4 to rc-3 by @cstamas in #684

Full Changelog: maven-resolver-2.0.7...maven-resolver-2.0.8

2.0.7

Release Notes - Maven Resolver - Version 2.0.7

Bug

• [MRESOLVER-681] - Sigstore generator when loaded as Maven extension fails

Improvement

• [MRESOLVER-633] - Clarify caching of unresolvable artifacts in local repository
• [MRESOLVER-680] - Disable checksum by default for .sigstore.json as well

Dependency upgrade

• [MRESOLVER-678] - (test) Bump com.redis:testcontainers-redis from 2.2.3 to 2.2.4
• [MRESOLVER-679] - (test) Bump testcontainersVersion from 1.20.4 to 1.20.5
• [MRESOLVER-682] - Bump org.redisson:redisson from 3.44.0 to 3.45.0
• [MRESOLVER-683] - Bump dev.sigstore:sigstore-java from 1.2.0 to 1.3.0
• [MRESOLVER-684] - Bump slf4jVersion from 2.0.16 to 2.0.17

---

What's Changed

• [MRESOLVER-633] Document caching of unresolvable artifacts by @kwin in #651
• Do not skip PMD by @pzygielo in #653
• ASCII digits only for versions by @elharo in #652
• Bump com.redis:testcontainers-redis from 2.2.3 to 2.2.4 by @dependabot in #657
• Bump testcontainersVersion from 1.20.4 to 1.20.5 by @dependabot in #656
• [MRESOLVER-681] Sigstore TCCL bugfix by @cstamas in #660
• Bump org.redisson:redisson from 3.44.0 to 3.45.0 by @dependabot in #658
• Update Maven in GH workflow by @cstamas in #664
• [MRESOLVER-680] Sigstore extension added by @cstamas in #661
• Bump dev.sigstore:sigstore-java from 1.2.0 to 1.3.0 by @dependabot in #667
• Bump slf4jVersion from 2.0.16 to 2.0.17 by @dependabot in #666

Full Changelog: maven-resolver-2.0.6...maven-resolver-2.0.7