From 3c29d838f974aa5270da2d135155849d22f12c40 Mon Sep 17 00:00:00 2001
From: Mercy Ma <mercyblitz@gmail.com>
Date: Sat, 21 Dec 2024 17:15:16 +0800
Subject: [PATCH 1/3] Create dependabot.yml

---
 .github/dependabot.yml | 11 +++++++++++
 1 file changed, 11 insertions(+)
 create mode 100644 .github/dependabot.yml

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
new file mode 100644
index 000000000..c877372c3
--- /dev/null
+++ b/.github/dependabot.yml
@@ -0,0 +1,11 @@
+# To get started with Dependabot version updates, you'll need to specify which
+# package ecosystems to update and where the package manifests are located.
+# Please see the documentation for all configuration options:
+# https://docs.github.com/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file
+
+version: 2
+updates:
+  - package-ecosystem: "maven" # See documentation for possible values
+    directory: "/"
+    schedule:
+      interval: "daily"

From 5bb106cd3227d74d0bf7c1e6ed6d91c87a2a121a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 21 Dec 2024 09:16:10 +0000
Subject: [PATCH 2/3] Bump org.antlr:antlr4-runtime from 4.13.1 to 4.13.2

Bumps [org.antlr:antlr4-runtime](https://github.com/antlr/antlr4) from 4.13.1 to 4.13.2.
- [Release notes](https://github.com/antlr/antlr4/releases)
- [Changelog](https://github.com/antlr/antlr4/blob/dev/CHANGES.txt)
- [Commits](https://github.com/antlr/antlr4/compare/4.13.1...4.13.2)

---
updated-dependencies:
- dependency-name: org.antlr:antlr4-runtime
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 microsphere-java-parent/pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/microsphere-java-parent/pom.xml b/microsphere-java-parent/pom.xml
index d3a59dddc..17161fb4a 100644
--- a/microsphere-java-parent/pom.xml
+++ b/microsphere-java-parent/pom.xml
@@ -32,7 +32,7 @@
         <spring.version>5.3.31</spring.version>
 
         <p6spy.version>3.9.1</p6spy.version>
-        <antlr.version>4.13.1</antlr.version>
+        <antlr.version>4.13.2</antlr.version>
         <slf4j.version>1.7.36</slf4j.version>
         <logback.version>1.2.13</logback.version>
 

From db6772faa6a9eadda276fc01ac6c13dbce5cd7ca Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 21 Dec 2024 09:17:12 +0000
Subject: [PATCH 3/3] Bump com.google.code.findbugs:jsr305 from 3.0.1 to 3.0.2

Bumps com.google.code.findbugs:jsr305 from 3.0.1 to 3.0.2.

---
updated-dependencies:
- dependency-name: com.google.code.findbugs:jsr305
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 microsphere-java-parent/pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/microsphere-java-parent/pom.xml b/microsphere-java-parent/pom.xml
index d3a59dddc..fadf1b015 100644
--- a/microsphere-java-parent/pom.xml
+++ b/microsphere-java-parent/pom.xml
@@ -22,7 +22,7 @@
         <javax.annotation-api.version>1.3.2</javax.annotation-api.version>
         <javax.ws.rs.version>2.1</javax.ws.rs.version>
         <jaxws-api.version>2.3.1</jaxws-api.version>
-        <jsr305.version>3.0.1</jsr305.version>
+        <jsr305.version>3.0.2</jsr305.version>
 
         <apache.commons.lang3.version>3.4</apache.commons.lang3.version>
         <apache.commons.io.version>2.14.0</apache.commons.io.version>