Bump quarkus.platform.version from 3.31.0 to 3.31.1

[dependabot]

Bumps quarkus.platform.version from 3.31.0 to 3.31.1.
Updates io.quarkus:quarkus-bom from 3.31.0 to 3.31.1

Release notes

Sourced from io.quarkus:quarkus-bom's releases.

3.31.1

Complete changelog

• #25852 - Testcontainers ryuk abandoned during build without testing using Gradle
• #40503 - Remote development mode: RemoteSyncHandler interrupted exception
• #46078 - X-Forwarded-Host header resets the request port
• #50752 - OpenAPI - Multiple custom annotation classes of same type not working
• #51845 - Inconsistent error behavior with an empty host header
• #51861 - Better handling for null or empty authority
• #51931 - Transform CleanerJava9
• #52004 - Dev UI Js Dependencies updates (grouped)
• #52035 - Dev UI: Upgrade to vaadin 25
• #52092 - Newline character in access log pattern
• #52094 - Testing authentication with quarkus-websocket-next breaks if you have quarkus-test-security enabled too
• #52096 - Better duplicate files warning
• #52105 - Quarkus restarts 2 times when an annotation processor creates classes
• #52108 - WebSockets Next Security: use identity stored on connection for @TestSecurity and fallback to deferred identity for lazy authentication in all situations
• #52109 - Remember timestamp of generated java files
• #52110 - Log InterruptedException as debug for RemoteSyncHandler
• #52115 - Exception Mapping does not work anymore for streaming responses
• #52116 - Arc: fix class generation bug
• #52117 - testcontainers reuse property override
• #52118 - Don't wrap exceptions thrown by StreamingOutput
• #52127 - Uber jar - Add a couple of ignore rules
• #52128 - Do not leak internal host port into Host header when host is taken from Forwarded header without proto or scheme directives
• #52130 - ListeningAddress to be Optional.empty when port and protocol are null
• #52131 - build(deps): bump org.jetbrains.kotlinx:kotlinx-serialization-json from 1.9.0 to 1.10.0
• #52135 - TestContainersStrategy.get to prevent potential concurrency issues
• #52136 - Upgrade Dev UI to vaadin 25.x
• #52155 - Annotation can be applied either on class or its methods
• #52157 - Document in Infinispan protostream annotations processor
• #52158 - OIDC token propagation: allow to combine @AccessToken on class and its methods
• #52159 - build(deps): bump io.quarkus:quarkus-platform-bom-maven-plugin from 0.0.128 to 0.0.129
• #52160 - Add documentation for proxy-registry to allow reference for others extensions
• #52161 - New Assistant component to navigate to the chat screen
• #52163 - Vert.x - Avoid reflection when creating virtual thread factory
• #52167 - Use platform-independent newline in access logs
• #52169 - Fix trailing slash handling in forwarded prefix
• #52171 - Introduce a BuildItem to express the need to load native libraries
• #52173 - Avoid warnings about native libraries by Brotli, Jansi and MSSQL JDBC (production mode only)
• #52183 - Address native library loading needs for Kafka extensions
• #52184 - Enable native access for mongodb-crypt
• #52185 - Enable native access for epoll/kqueue transports for Netty
• #52186 - Bump smallrye-open-api.version from 4.2.3 to 4.2.4
• #52188 - Update README.md for Java 25 support
• #52194 - Upgrade to PostgreSQL JDBC 42.7.9
• #52197 - BuildMetrics: fix produced items when extended capture is enabled
• #52199 - Fix VertxImplGetVirtualThreadFactory transformation
• #52203 - Bump org.assertj:assertj-core from 3.27.6 to 3.27.7 in /devtools/gradle

... (truncated)

Commits

• a5108a2 [RELEASE] - Bump version to 3.31.1
• d6ed070 Merge pull request #52221 from gsmet/3.31.1-backports-1
• 9a03fe2 Rewrite DefaultChannelId to avoid reflection
• 758e9ef Bump org.assertj:assertj-core from 3.27.6 to 3.27.7
• fbaf04d Transform Netty's isSharable check to use a marker interface
• 7a0cd37 Bump org.assertj:assertj-core from 3.27.6 to 3.27.7 in /build-parent
• 91f524f Bump org.assertj:assertj-core from 3.27.6 to 3.27.7 in /devtools/gradle
• 3678217 Bump com.microsoft.azure.functions:azure-functions-java-library
• f6348c1 Bump smallrye-open-api.version from 4.2.3 to 4.2.4
• 108eca9 build(deps): bump org.jetbrains.kotlinx:kotlinx-serialization-json
• Additional commits viewable in compare view

Updates io.quarkus:quarkus-maven-plugin from 3.31.0 to 3.31.1

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[tomjenkinson]

@marcosgopen - do you think this one might need something like a mix of https://github.com/jbosstm/lra/pull/229/changes and https://github.com/jbosstm/lra/pull/230/changes? It's strange the micro causes problems

There is also jbosstm/lra-coordinator-quarkus#251

It's interesting about the smallrye mention in errors in both

[marcosgopen]

@marcosgopen - do you think this one might need something like a mix of https://github.com/jbosstm/lra/pull/229/changes and https://github.com/jbosstm/lra/pull/230/changes? It's strange the micro causes problems

There is also jbosstm/lra-coordinator-quarkus#251

It's interesting about the smallrye mention in errors in both

I am looking into this.
I agree this would need something like a mix of https://github.com/jbosstm/lra/pull/229/changes and https://github.com/jbosstm/lra/pull/230/changes but that would require a major effort at the moment as many dependencies from the narayana bom are used in the quarkus modules here.

It's interesting about the smallrye mention in errors in both

openapi is involved, it is a minor of quarkus but I suppose there is a major bump of smallryeOpenApi.
The root cause is having 2 ApiResponse with the same responseCode (in this case 412). I did not know it was a problem and I am trying to understand whether we need to merge those 2 'ApiResponse's.
I am looking into smallrye openapi to find the PR ... maybe this smallrye/smallrye-open-api#2419

[marcosgopen]

Here you can find the update to openapi 4.2.3 in quarkus 3.31.1 : quarkusio/quarkus@4d783d2

I wonder whether it is a bug that got resolved with openapi 4.2.4 quarkusio/quarkus@3fe392e (from main)

[tomjenkinson]

Interesting, it does have similarity. There they talk about the same key, here we talk about the same response code but still could be our code is our key or something? If it is that, I am not sure what anyOf does though and whether it might only send one of the responses rather than both?

[marcosgopen]

They changed the readMap implementation (https://github.com/smallrye/smallrye-open-api/pull/2419/changes#diff-b3e8999815ff8fa2bff057b8964faed04257092ee2f4556c81e3523acafe4f81R44-R48) that ultimately uses the linkedMap method which throws the error: https://github.com/smallrye/smallrye-open-api/blob/main/core/src/main/java/io/smallrye/openapi/runtime/io/ModelIO.java#L163-L164

That might be intended, but I cannot find the doc saying a duplicate responseCode is not allowed.

[tomjenkinson]

Ah, interesting - thanks for finding it and I think now having got the clarification from them. Do you have thoughts on how we can address it?

[marcosgopen]

Addressing the failure here: jbosstm/lra#232

[marcosgopen]

@dependabot rebase

[dependabot]

Superseded by #563.