Configure Renovate

[renovate]

Welcome to Renovate! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin.

🚦 To activate Renovate, merge this Pull Request. To disable Renovate, simply close this Pull Request unmerged.

📚 See our Reading List for relevant documentation you may be interested in reading.

🔡 Do you want to change how Renovate upgrades your dependencies? Add your custom config to renovate.json in this branch. Renovate will update the Pull Request description the next time it runs.

---

Detected Package Files

• .github/workflows/PullRequestClosed.yml (github-actions)
• .github/workflows/RequestReview.yml (github-actions)
• .github/workflows/SubmitReview.yml (github-actions)
• .github/workflows/ToggleLockBranch.yml (github-actions)
• .github/workflows/build.yml (github-actions)
• .github/workflows/mark-prs-stale.yml (github-actions)
• .github/workflows/pr-cleanup.yml (github-actions)
• .github/workflows/release.yml (github-actions)
• pom.xml (maven)
• sslr-benchmarks/pom.xml (maven)
• sslr-core/pom.xml (maven)
• sslr-examples/pom.xml (maven)
• sslr-testing-harness/pom.xml (maven)
• sslr-tests/pom.xml (maven)
• sslr-toolkit/pom.xml (maven)
• sslr-xpath/pom.xml (maven)
• mise.toml (mise)
• renovate.json (renovate-config)
• .github/workflows/build.yml (regex)

Configuration Summary

Based on the default config's presets, Renovate will:

• Start dependency updates only once this onboarding PR is merged
• Hopefully safe environment variables to allow users to configure.
• Show all Merge Confidence badges for pull requests.
• Enable Renovate Dependency Dashboard creation.
• Use semantic commit type fix for dependencies and chore for all others if semantic commits are in use.
• Ignore node_modules, bower_components, vendor and various test/tests (except for nuget) directories.
• Group known monorepo packages together.
• Use curated list of recommended non-monorepo package groupings.
• Show only the Age and Confidence Merge Confidence badges for pull requests.
• Apply crowd-sourced package replacement rules.
• Apply crowd-sourced workarounds for known problems with packages.
• Ensure that every dependency pinned by digest and sourced from Forgejo contains a link to the commit-to-commit diff
• Ensure that every dependency pinned by digest and sourced from Gitea contains a link to the commit-to-commit diff
• Ensure that every dependency pinned by digest and sourced from GitHub.com and Github enterprise contains a link to the commit-to-commit diff
• Ensure that every dependency pinned by digest and sourced from GitLab.com contains a link to the commit-to-commit diff
• Correctly link to the source code for golang.org/x packages
• Link to pkg.go.dev/... for golang.org/x packages' title
• Provide a link to octochangelog's improved breakdown for Renovate's changelogs
• Evaluate schedules according to timezone CET.
• Remove hourly and concurrent rate limits.

---

What to Expect

With your current configuration, Renovate will create 7 Pull Requests:

Pin dependencies

• Schedule: ["at any time"]
• Branch name: renovate/github-actions-dependencies
• Merge into: master
• Pin SonarSource/ci-github-actions to 997186ca343b5605ed587eb739d5b36ccd421898
• Pin SonarSource/gh-action_release to 0c9c1cc54cbdd24258f135601d1b77cfc87e67ae
• Pin SonarSource/vault-action-wrapper to 881045d830534a70ec3c7c275fa3714412c8ff6e
• Upgrade actions/checkout to df4cb1c069e1874edd31b4311f1884172cec0e10
• Upgrade actions/stale to eb5cf3af3ac0a1aa4c9c45633dd1ae542a27a899
• Upgrade jdx/mise-action to e6a8b3978addb5a52f2b4cd9d91eafa7f0ab959d

Update dependency mise to 2026.6.11

• Schedule: ["at any time"]
• Branch name: renovate/mise
• Merge into: master
• Upgrade mise to 2026.6.11

Update Maven dependencies

• Schedule: ["at any time"]
• Branch name: renovate/maven-dependencies
• Merge into: master
• Upgrade org.jacoco:jacoco-maven-plugin to 0.8.15
• Upgrade org.mockito:mockito-core to 2.28.2
• Upgrade junit:junit to 4.13.2
• Upgrade jaxen:jaxen to 1.2.0
• Upgrade org.codehaus.sonar:sonar-colorizer to 3.7.4
• Upgrade org.openjdk.jmh:jmh-generator-annprocess to 1.37
• Upgrade org.openjdk.jmh:jmh-core to 1.37
• Upgrade org.ow2.asm:asm to 9.10.1

Update Mise tool dependencies

• Schedule: ["at any time"]
• Branch name: renovate/mise-tool-dependencies
• Merge into: master
• Upgrade java to 17.0.19+10

Update GitHub Actions dependencies (major)

• Schedule: ["at any time"]
• Branch name: renovate/major-github-actions-dependencies
• Merge into: master
• Upgrade actions/checkout to 9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0

Update Maven dependencies (major)

• Schedule: ["at any time"]
• Branch name: renovate/major-maven-dependencies
• Merge into: master
• Upgrade org.mockito:mockito-core to 5.23.0
• Upgrade jaxen:jaxen to 2.0.6
• Upgrade com.google.code.findbugs:jsr305 to 3.0.2
• Upgrade org.apache.maven.plugins:maven-release-plugin to 3.3.1
• Upgrade org.codehaus.sonar:sonar-colorizer to 5.1
• Upgrade org.sonarsource.parent:parent to 87.0.0.3057

Update Mise tool dependencies (major)

• Schedule: ["at any time"]
• Branch name: renovate/major-mise-tool-dependencies
• Merge into: master
• Upgrade java to 25.0.3+9.0.LTS

---

❓ Got questions? Check out Renovate's Docs, particularly the Getting Started section.
If you need any further assistance then you can also request help here.

---

This PR was generated by Mend Renovate. View the repository job log.

[sonarqube-next]

Quality Gate passed

Issues
0 New issues
0 Fixed issues
0 Accepted issues

Measures
0 Security Hotspots
0 Dependency risks
No data about Coverage
No data about Duplication

See analysis details on SonarQube