chore: [DevOps] bump the production-minor-patch group across 1 directory with 7 updates

[dependabot]

Bumps the production-minor-patch group with 7 updates in the / directory:

Package	From	To
com.sap.cloud.sdk:sdk-bom	5.25.0	5.26.0
com.fasterxml.jackson.module:jackson-module-parameter-names	2.20.1	2.21.0
com.fasterxml.jackson.module:jackson-module-jsonSchema	2.20.1	2.21.0
com.fasterxml.jackson.dataformat:jackson-dataformat-yaml	2.20.1	2.21.0
org.assertj:assertj-core	3.27.6	3.27.7
org.apache.tomcat.embed:tomcat-embed-core	11.0.15	11.0.18
org.apache.tomcat.embed:tomcat-embed-websocket	11.0.15	11.0.18

Updates com.sap.cloud.sdk:sdk-bom from 5.25.0 to 5.26.0

Release notes

Sourced from com.sap.cloud.sdk:sdk-bom's releases.

Release 5.26.0

What's Changed

• chore: [DevOps] bump the production-major group across 1 directory with 2 updates by @​dependabot[bot] in SAP/cloud-sdk-java#1047
• chore: Ignore incompatible spring boot updates by @​newtork in SAP/cloud-sdk-java#1049
• chore: [DevOps] bump the github-actions group with 3 updates by @​dependabot[bot] in SAP/cloud-sdk-java#1050
• chore: [DevOps] bump the test group across 1 directory with 3 updates by @​dependabot[bot] in SAP/cloud-sdk-java#1043
• chore: [DevOps] bump the production-minor-patch group with 19 updates by @​dependabot[bot] in SAP/cloud-sdk-java#1051
• chore: replace guava identity function reference with java.util.function by @​newtork in SAP/cloud-sdk-java#1059
• chore: Add release note for updated Apache HttpClient 5.6 by @​newtork in SAP/cloud-sdk-java#1060
• chore: [Dependabot] ignore checkstyle >=13.0.0 by @​CharlesDuboisSAP in SAP/cloud-sdk-java#1061
• feat: Temporary: Use email as fallback principal id when user_uuid is missing. by @​CharlesDuboisSAP in SAP/cloud-sdk-java#1065
• fix: Fix caching in getOrComputeAllDestinationsCommand by @​Jonas-Isr in SAP/cloud-sdk-java#1055
• feat: Add pre lookup check to DestinationService.tryGetDestination by @​Jonas-Isr in SAP/cloud-sdk-java#1056
• chore: [DevOps] bump org.junit.jupiter:junit-jupiter-engine from 6.0.1 to 6.0.2 in the test group by @​dependabot[bot] in SAP/cloud-sdk-java#1064
• chore: [DevOps] bump the production-minor-patch group across 1 directory with 5 updates by @​dependabot[bot] in SAP/cloud-sdk-java#1069
• chore: [DevOps] bump the plugins group with 2 updates by @​dependabot[bot] in SAP/cloud-sdk-java#1068
• feat: [OpenAPI] Make Spring Optional with Apache HttpClient by @​rpanackal in SAP/cloud-sdk-java#1046
• chore: [DevOps] bump the test group with 2 updates by @​dependabot[bot] in SAP/cloud-sdk-java#1073
• chore: [DevOps] bump the production-minor-patch group with 9 updates by @​dependabot[bot] in SAP/cloud-sdk-java#1072
• feat: [OpenAPI] ResponseMetadataListener with case insensitive header map by @​rpanackal in SAP/cloud-sdk-java#1070
• fix: [OpenAPI] Revert making Spring optional in OpenAPI by @​rpanackal in SAP/cloud-sdk-java#1077
• fix: Correct OAuth2 parameter for IAS refresh token workaround by @​davidkna-sap in SAP/cloud-sdk-java#1066

New Contributors

• @​davidkna-sap made their first contribution in SAP/cloud-sdk-java#1066

Full Changelog: https://github.com/SAP/cloud-sdk-java/commits/rel/5.26.0

Commits

• 2a91c81 Update to version 5.26.0
• 5588566 fix: Correct OAuth2 parameter for IAS refresh token workaround (#1066)
• 1d68090 fix: [OpenAPI] Revert making Spring optional in OpenAPI (#1077)
• c567b5b feat: [OpenAPI] ResponseMetadataListener with case insensitive header map (...
• d9b1dd8 chore: [DevOps] bump the production-minor-patch group with 9 updates (#1072)
• 0896b76 chore: [DevOps] bump the test group with 2 updates (#1073)
• c249940 feat: [OpenAPI] Make Spring Optional with Apache HttpClient (#1046)
• 4fd151b chore: [DevOps] bump the plugins group with 2 updates (#1068)
• 4103745 chore: [DevOps] bump the production-minor-patch group across 1 directory with...
• c8e25d6 chore: [DevOps] bump org.junit.jupiter:junit-jupiter-engine from 6.0.1 to 6.0...
• Additional commits viewable in compare view

Updates com.fasterxml.jackson.module:jackson-module-parameter-names from 2.20.1 to 2.21.0

Commits

• ee83463 [maven-release-plugin] prepare release jackson-modules-java8-2.21.0
• 796595c Prep for 2.21.0 release
• aa4de63 Fix a potential problem in JavaTimeModule._findFactory() (#381)
• e66b5c1 Merge branch '2.x' of github.com:FasterXML/jackson-modules-java8 into 2.x
• ad491b8 Change OffsetTimeSerializer._serializeAsArrayContents() to protected to a...
• ec2fa91 Fix #376: add factory methods/constructor for OffsetDateTime ser/deser with c...
• 22b224f Merge branch '2.20' into 2.x
• 048efe0 Merge branch '2.19' into 2.20
• f2f5272 Fix test for #307 to show solution
• cde7c55 Update release notes wrt #307
• Additional commits viewable in compare view

Updates com.fasterxml.jackson.module:jackson-module-jsonSchema from 2.20.1 to 2.21.0

Commits

• e5e5495 [maven-release-plugin] prepare release jackson-module-jsonSchema-parent-2.21.0
• c4a871d Prep for 2.21.0 release
• c8f2cf4 Merge branch '2.20' into 2.x
• d89221c Post-release dep version bump
• 2ef3a16 [maven-release-plugin] prepare for next development iteration
• 110598f Start 2.20 branch; update 2.x to 2.21
• See full diff in compare view

Updates com.fasterxml.jackson.dataformat:jackson-dataformat-yaml from 2.20.1 to 2.21.0

Commits

• a2c870d [maven-release-plugin] prepare release jackson-dataformats-text-2.21.0
• 301e028 Prep for 2.21.0 release
• 7b434d8 Backport #479 fix to 2.21 (#599)
• 70d6f4b Mark test as "not a bug"
• 3edd0bc Rm accidentally added files
• 0cda81d ...
• 473f7a8 Implement #154: ability to map empty Doc into empty Object (instead of empty ...
• e5beb4b Fixes #10: missing null writes with Object[] (#585)
• bc72beb Remove test for invalid/dup issue #296
• 8e13c53 Further tweaks to failing #296 test (#584)
• Additional commits viewable in compare view

Updates com.fasterxml.jackson.module:jackson-module-jsonSchema from 2.20.1 to 2.21.0

Commits

• e5e5495 [maven-release-plugin] prepare release jackson-module-jsonSchema-parent-2.21.0
• c4a871d Prep for 2.21.0 release
• c8f2cf4 Merge branch '2.20' into 2.x
• d89221c Post-release dep version bump
• 2ef3a16 [maven-release-plugin] prepare for next development iteration
• 110598f Start 2.20 branch; update 2.x to 2.21
• See full diff in compare view

Updates com.fasterxml.jackson.dataformat:jackson-dataformat-yaml from 2.20.1 to 2.21.0

Commits

• a2c870d [maven-release-plugin] prepare release jackson-dataformats-text-2.21.0
• 301e028 Prep for 2.21.0 release
• 7b434d8 Backport #479 fix to 2.21 (#599)
• 70d6f4b Mark test as "not a bug"
• 3edd0bc Rm accidentally added files
• 0cda81d ...
• 473f7a8 Implement #154: ability to map empty Doc into empty Object (instead of empty ...
• e5beb4b Fixes #10: missing null writes with Object[] (#585)
• bc72beb Remove test for invalid/dup issue #296
• 8e13c53 Further tweaks to failing #296 test (#584)
• Additional commits viewable in compare view

Updates org.assertj:assertj-core from 3.27.6 to 3.27.7

Release notes

Sourced from org.assertj:assertj-core's releases.

v3.27.7

🔒 Security

Core

• Fix XXE vulnerability in isXmlEqualTo assertion (CVE-2026-24400)
  • See GHSA-rqfh-9r24-8c9r for details; many thanks to @​wxt201 and @​Song-Li for responsibly reporting it!

🚫 Deprecated

Core

• Deprecate XmlStringPrettyFormatter with no replacement

🐛 Bug Fixes

Guava

• Navigation to assertj-core or guava types from assertj-guava Javadoc site has unnecessary header #3478

🔨 Dependency Upgrades

Core

• Upgrade to Byte Buddy 1.18.3
• Upgrade to JUnit BOM 5.14.1

Guava

• Upgrade to Guava 33.5.0-jre

Commits

• e840716 [maven-release-plugin] prepare release assertj-build-3.27.7
• 85ca7eb Deprecate XmlStringPrettyFormatter
• 77081dc Merge commit from fork
• b68fc24 Bump github/codeql-action from 4.31.9 to 4.31.10 in the github-actions group ...
• 0cf5bb6 Bump kotlin.version from 2.1.0 to 2.2.21
• d393ef1 Abort tests when symbolic links cannot be created (#3788)
• 2212433 Add IntelliJ custom inspection for test class names
• 5717d02 Update JetBrains icon
• a8ec20b Add icon for JetBrains products
• c05fb3d Bump Maven to 3.9.12 and Wrapper to 3.3.4
• Additional commits viewable in compare view

Updates org.apache.tomcat.embed:tomcat-embed-core from 11.0.15 to 11.0.18

Updates org.apache.tomcat.embed:tomcat-embed-websocket from 11.0.15 to 11.0.18

Updates org.apache.tomcat.embed:tomcat-embed-websocket from 11.0.15 to 11.0.18

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions