Skip to content

deps: bump version.io.quarkus from 3.36.3 to 3.37.1#2467

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/maven/version.io.quarkus-3.37.1
Open

deps: bump version.io.quarkus from 3.36.3 to 3.37.1#2467
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/maven/version.io.quarkus-3.37.1

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 5, 2026

Copy link
Copy Markdown
Contributor

Bumps version.io.quarkus from 3.36.3 to 3.37.1.
Updates io.quarkus:quarkus-bom from 3.36.3 to 3.37.1

Release notes

Sourced from io.quarkus:quarkus-bom's releases.

3.37.1

Complete changelog

  • #49919 - Prevent invocation of Task.project at execution time in Gradle plugin
  • #54854 - OIDC DPoP Nonce response uses from status code and message
  • #54855 - For missing and invalid nonces, return 401/use_dpop_nonce
  • #54889 - Response not handled in ContainerResponseFilter for dropped HTTP requests
  • #54903 - Allow the use of @Cancellable on ContainerResponseFilter
  • #54909 - Change log level of some OIDC log messages from debug to warn
  • #54919 - Improve the update-quarkus.adoc guide a bit
  • #54924 - Fix status in update-quarkus.adoc
  • #54942 - Include additional args in AOTMode=create" command
  • #54949 - Infinispan - Add missing service implementations for native
  • #54950 - JAXB - Register a new service implementation for native
  • #54955 - Significant CPU regression
  • #54958 - Prevent invocation of Task.project at execution time in Gradle plugin
  • #54975 - Infinispan - Register services properly and enforce basic client intelligence in ITs
  • #54997 - Bump org.hibernate.validator:hibernate-validator from 9.1.0.Final to 9.1.1.Final
  • #55008 - Quarkus REST sub-resources return 500 for malformed content type unlike 415 from top-level resource
  • #55009 - Quarkus REST: fix response status for sub-resource requests with a malformed content type
  • #55010 - Fix TransactionalInterceptorBase to handle reaper-cancelled transactions
  • #55018 - Enforce no duplicate POM dependencies via maven-enforcer-plugin
  • #55022 - infinispan-client and infinispan-cache IT tests fail with GraalVM CE 25.2.4-dev
  • #55028 - Switch from org.fusesource.jansi to org.jline:jansi
  • #55030 - Reduce allocation in HTTP instrumentation
  • #55046 - CycloneDX SBOM fixes
  • #55048 - Add Literal helper to NamedOidcClient qualifier
  • #55053 - Register for reflection all constructors of service providers
  • #55057 - Qute should handle properties that are not found more gracefully than throwing ClassCastException
  • #55066 - Qute: handle not-found params in JsonObject and Plus value resolvers
  • #55068 - Bump io.quarkus.develocity:quarkus-project-develocity-extension from 1.3.0 to 1.3.1
  • #55080 - Generated quarkusjacksonserializer fails for JSON property names containing ‘-’ and ‘.’
  • #55081 - Sanitize json property names while generating reflection-free Jackson serializers
  • #55095 - Bump eu.maveniverse.maven.nisse:extension3 from 0.9.2 to 0.9.3
  • #55096 - Bump eu.maveniverse.maven.njord:extension3 from 0.9.8 to 0.9.9
  • #55099 - Update to MicroProfile API 3.1.1
  • #55105 - Bump Agroal to 3.2.1
  • #55107 - Signals: clarify SignalMetadataEnricher threading
  • #55121 - Bump com.ibm.db2:jcc from 12.1.0.0 to 12.1.5.0
  • #55128 - @JsonFormat on java.util.Date ignored by reflection-free Jackson serializers
  • #55140 - Fix support for @JsonFormat on java.util.Date in reflection-free Jackson serializers
  • #55143 - quarkus-rest-jackson: reflection-free serializer drops JsonNullable contained type (3.37.0 regression)
  • #55146 - Generalize handing of any single-type-parameter parameterized type
  • #55158 - OIDC: Multiple AuthenticationCompletionAction beans silently ignored
  • #55159 - Bump org.junit:junit-bom from 6.1.0 to 6.1.1 in /devtools/gradle
  • #55165 - Bump the hibernate group across 1 directory with 11 updates
  • #55168 - Bump org.junit:junit-bom from 6.1.0 to 6.1.1
  • #55173 - quarkus-rest-jackson ignores @JsonIgnoreProperties in combination with @JsonUnwrapped
  • #55176 - Fix performance regression in AotQuarkusEntryPoint

... (truncated)

Commits
  • 2fd50a7 [RELEASE] - Bump version to 3.37.1
  • b46ba0d Merge pull request #55210 from gsmet/3.37.1-backports-1
  • b20d158 Use maven.compiler.testRelease for Signals Java 21 tests
  • e2e6579 Switch from org.fusesource.jansi to org.jline:jansi
  • e74ece3 Bump org.hibernate.validator:hibernate-validator
  • d1b9ece Add maven.compiler.release and testRelease to independent-projects parent POM
  • 0f1bafd Make sure tree-shaken classes are recorded in pedigree for native build SBOMs
  • d142ff0 Fix performance regression in AotQuarkusEntryPoint
  • d03ab29 Generalize handing of any single-type-parameter parameterized type
  • 237ebf9 Update to MicroProfile API 3.1.1
  • Additional commits viewable in compare view

Updates io.quarkus:quarkus-maven-plugin from 3.36.3 to 3.37.1

Updates io.quarkus:quarkus-extension-maven-plugin from 3.36.3 to 3.37.1

Release notes

Sourced from io.quarkus:quarkus-extension-maven-plugin's releases.

3.37.1

Complete changelog

  • #49919 - Prevent invocation of Task.project at execution time in Gradle plugin
  • #54854 - OIDC DPoP Nonce response uses from status code and message
  • #54855 - For missing and invalid nonces, return 401/use_dpop_nonce
  • #54889 - Response not handled in ContainerResponseFilter for dropped HTTP requests
  • #54903 - Allow the use of @Cancellable on ContainerResponseFilter
  • #54909 - Change log level of some OIDC log messages from debug to warn
  • #54919 - Improve the update-quarkus.adoc guide a bit
  • #54924 - Fix status in update-quarkus.adoc
  • #54942 - Include additional args in AOTMode=create" command
  • #54949 - Infinispan - Add missing service implementations for native
  • #54950 - JAXB - Register a new service implementation for native
  • #54955 - Significant CPU regression
  • #54958 - Prevent invocation of Task.project at execution time in Gradle plugin
  • #54975 - Infinispan - Register services properly and enforce basic client intelligence in ITs
  • #54997 - Bump org.hibernate.validator:hibernate-validator from 9.1.0.Final to 9.1.1.Final
  • #55008 - Quarkus REST sub-resources return 500 for malformed content type unlike 415 from top-level resource
  • #55009 - Quarkus REST: fix response status for sub-resource requests with a malformed content type
  • #55010 - Fix TransactionalInterceptorBase to handle reaper-cancelled transactions
  • #55018 - Enforce no duplicate POM dependencies via maven-enforcer-plugin
  • #55022 - infinispan-client and infinispan-cache IT tests fail with GraalVM CE 25.2.4-dev
  • #55028 - Switch from org.fusesource.jansi to org.jline:jansi
  • #55030 - Reduce allocation in HTTP instrumentation
  • #55046 - CycloneDX SBOM fixes
  • #55048 - Add Literal helper to NamedOidcClient qualifier
  • #55053 - Register for reflection all constructors of service providers
  • #55057 - Qute should handle properties that are not found more gracefully than throwing ClassCastException
  • #55066 - Qute: handle not-found params in JsonObject and Plus value resolvers
  • #55068 - Bump io.quarkus.develocity:quarkus-project-develocity-extension from 1.3.0 to 1.3.1
  • #55080 - Generated quarkusjacksonserializer fails for JSON property names containing ‘-’ and ‘.’
  • #55081 - Sanitize json property names while generating reflection-free Jackson serializers
  • #55095 - Bump eu.maveniverse.maven.nisse:extension3 from 0.9.2 to 0.9.3
  • #55096 - Bump eu.maveniverse.maven.njord:extension3 from 0.9.8 to 0.9.9
  • #55099 - Update to MicroProfile API 3.1.1
  • #55105 - Bump Agroal to 3.2.1
  • #55107 - Signals: clarify SignalMetadataEnricher threading
  • #55121 - Bump com.ibm.db2:jcc from 12.1.0.0 to 12.1.5.0
  • #55128 - @JsonFormat on java.util.Date ignored by reflection-free Jackson serializers
  • #55140 - Fix support for @JsonFormat on java.util.Date in reflection-free Jackson serializers
  • #55143 - quarkus-rest-jackson: reflection-free serializer drops JsonNullable contained type (3.37.0 regression)
  • #55146 - Generalize handing of any single-type-parameter parameterized type
  • #55158 - OIDC: Multiple AuthenticationCompletionAction beans silently ignored
  • #55159 - Bump org.junit:junit-bom from 6.1.0 to 6.1.1 in /devtools/gradle
  • #55165 - Bump the hibernate group across 1 directory with 11 updates
  • #55168 - Bump org.junit:junit-bom from 6.1.0 to 6.1.1
  • #55173 - quarkus-rest-jackson ignores @JsonIgnoreProperties in combination with @JsonUnwrapped
  • #55176 - Fix performance regression in AotQuarkusEntryPoint

... (truncated)

Commits
  • 2fd50a7 [RELEASE] - Bump version to 3.37.1
  • b46ba0d Merge pull request #55210 from gsmet/3.37.1-backports-1
  • b20d158 Use maven.compiler.testRelease for Signals Java 21 tests
  • e2e6579 Switch from org.fusesource.jansi to org.jline:jansi
  • e74ece3 Bump org.hibernate.validator:hibernate-validator
  • d1b9ece Add maven.compiler.release and testRelease to independent-projects parent POM
  • 0f1bafd Make sure tree-shaken classes are recorded in pedigree for native build SBOMs
  • d142ff0 Fix performance regression in AotQuarkusEntryPoint
  • d03ab29 Generalize handing of any single-type-parameter parameterized type
  • 237ebf9 Update to MicroProfile API 3.1.1
  • Additional commits viewable in compare view

Updates io.quarkus:quarkus-extension-processor from 3.36.3 to 3.37.1

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps `version.io.quarkus` from 3.36.3 to 3.37.1.

Updates `io.quarkus:quarkus-bom` from 3.36.3 to 3.37.1
- [Release notes](https://github.com/quarkusio/quarkus/releases)
- [Commits](quarkusio/quarkus@3.36.3...3.37.1)

Updates `io.quarkus:quarkus-maven-plugin` from 3.36.3 to 3.37.1

Updates `io.quarkus:quarkus-extension-maven-plugin` from 3.36.3 to 3.37.1
- [Release notes](https://github.com/quarkusio/quarkus/releases)
- [Commits](quarkusio/quarkus@3.36.3...3.37.1)

Updates `io.quarkus:quarkus-extension-processor` from 3.36.3 to 3.37.1

---
updated-dependencies:
- dependency-name: io.quarkus:quarkus-bom
  dependency-version: 3.37.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: io.quarkus:quarkus-maven-plugin
  dependency-version: 3.37.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: io.quarkus:quarkus-extension-maven-plugin
  dependency-version: 3.37.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: io.quarkus:quarkus-extension-processor
  dependency-version: 3.37.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file; used by Dependabot. label Jul 5, 2026
@dependabot dependabot Bot requested review from rsynek and triceo as code owners July 5, 2026 23:12
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file; used by Dependabot.

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants