chore(deps): bump the dependencies group with 4 updates

[dependabot]

Bumps the dependencies group with 4 updates: com.fasterxml.jackson:jackson-bom, io.opentelemetry:opentelemetry-bom, org.junit.jupiter:junit-jupiter and gradle-wrapper.

Updates com.fasterxml.jackson:jackson-bom from 2.20.1 to 2.21.0

Commits

• 901b398 [maven-release-plugin] prepare release jackson-bom-2.21.0
• 86a4b9f ...
• 6b5de3a Prep for 2.21 release
• 3001d78 Merge pull request #116 from FasterXML/tatu/2.21/115-fix-cyclonedx-backport-i...
• 9370292 makeAggregateBom -> makeBom
• 3e4db58 Backport #115 in 2.x for 2.21
• 0ce4467 Merge branch '2.20' into 2.x
• 0dc79f5 ...
• 6a3d76b Merge branch '2.20' into 2.x
• 1d52817 Post-release dep version bump
• Additional commits viewable in compare view

Updates io.opentelemetry:opentelemetry-bom from 1.57.0 to 1.58.0

Release notes

Sourced from io.opentelemetry:opentelemetry-bom's releases.

Version 1.58.0

API

Incubator

• Delete GlobalConfigProvider in favor of access via ExtendedOpenTelemetry (#7914)
• Add DeclarativeConfigProperties#get method (#7923)
• Update ConfigProvider#getInstrumentationConfig response to be non-null (#7954)
• Add declarative config utility methods for common operations (#7927)

SDK

Traces

• Implement SDK metrics for trace (#7895, #7930)
• Emit warning when TraceIdRatioBasedSampler is used as child sampler (#7937)

Logs

• Implement SDK metrics for logs (#7931)

Exporters

• Prom exporter update (#7934)

Extensions

• Declarative config: update to opentelemetry-configuration 1.0.0-rc.3 (#7861)
• Declarative config: update jaeger remote sampler to require endpoint, initial_sampler (#7943)
• Declarative config: add support for view unit (#7942)
• Declarative config: add support for new logger config minimum_severity and trace_based properties (#7940)
• Declarative config: add support for composable parent threshold sampler (#7941)
• Declarative config: improve pattern for validating and loading SDK extension plugins (#7947)

Project tooling

• Use develocity build cache in PRs and local builds (#7906)
• Configure japicmp classpath to avoid false positives (#7945)

🙇 Thank you

This release was possible thanks to the following contributors who shared their brilliant ideas and awesome pull requests:

@​anuraaga @​breedx-splk @​Gosling-dude @​jack-berg @​jkwatson @​JonasKunz @​SylvainJuge

... (truncated)

Changelog

Sourced from io.opentelemetry:opentelemetry-bom's changelog.

Version 1.58.0 (2026-01-09)

API

Incubator

• Delete GlobalConfigProvider in favor of access via ExtendedOpenTelemetry (#7914)
• Add DeclarativeConfigProperties#get method (#7923)
• Update ConfigProvider#getInstrumentationConfig response to be non-null (#7954)
• Add declarative config utility methods for common operations (#7927)

SDK

Traces

• Implement SDK metrics for trace (#7895, #7930)
• Emit warning when TraceIdRatioBasedSampler is used as child sampler (#7937)

Logs

• Implement SDK metrics for logs (#7931)

Exporters

• Prom exporter update (#7934)

Extensions

• Declarative config: update to opentelemetry-configuration 1.0.0-rc.3 (#7861)
• Declarative config: update jaeger remote sampler to require endpoint, initial_sampler (#7943)
• Declarative config: add support for view unit (#7942)
• Declarative config: add support for new logger config minimum_severity and trace_based properties (#7940)
• Declarative config: add support for composable parent threshold sampler (#7941)
• Declarative config: improve pattern for validating and loading SDK extension plugins (#7947)

... (truncated)

Commits

• 1e377b4 [release/v1.58.x] Prepare release 1.58.0 (#7968)
• b882815 Prepare 1.58.0 (#7965)
• 826c4e9 Improve pattern for validating and loading SDK extension plugins (#7947)
• da310cc Prom exporter update (#7934)
• a15659d add method to retrieve instrumentation configuration by name (#7927)
• 2d38562 fix(deps): update armeriaversion to v1.35.0 (#7959)
• ca536b2 fix(deps): update junit-framework monorepo to v5.14.2 (#7956)
• 5150e52 chore(deps): update otel/opentelemetry-collector-contrib docker tag to v0.143...
• 15b41f1 chore(deps): update plugin com.gradleup.shadow to v9.3.1 (#7955)
• a46b073 make getInstrumentationConfig non-null (#7954)
• Additional commits viewable in compare view

Updates org.junit.jupiter:junit-jupiter from 5.14.1 to 5.14.2

Release notes

Sourced from org.junit.jupiter:junit-jupiter's releases.

JUnit 5.14.2 = Platform 1.14.2 + Jupiter 5.14.2 + Vintage 5.14.2

See Release Notes.

New Contributors

• @​uglide made their first contribution in junit-team/junit-framework#5245

Full Changelog: junit-team/junit-framework@r5.14.1...r5.14.2

Commits

• 538370c Release 5.14.2
• 36f8dae Finalize 5.14.2 release notes
• 608fc0c Update copyright headers
• 098cdb7 Consistently add license header to all java source files
• 4133d24 Allow @​ResourceLock on @​ClassTemplate classes (#5245)
• d70e5e9 Remove JavaScript CodeQL job
• 2331b35 Adjust release workflow for Antora documentation site deployment
• a59073d Update external GitHub Actions
• 9b90b24 Avoid mutating final fields
• 7c1a995 Create initial 5.14.2 release notes from template
• Additional commits viewable in compare view

Updates gradle-wrapper from 8.2.1 to 9.3.1

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
org.junit.jupiter:junit-jupiter	[>= 6.a, < 7]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[coderabbitai]

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

• 🔍 Trigger a full review

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[dosubot]

Related Documentation

Checked 5 published document(s) in 1 knowledge base(s). No updates required.

^{How did I do? Any feedback?}