chore: bump the all group across 1 directory with 7 updates

[dependabot]

Bumps the all group with 7 updates in the /examples/msal-java directory:

Package	From	To
com.azure:azure-security-keyvault-secrets	4.7.3	4.8.7
com.azure:azure-identity	1.12.2	1.14.0
com.azure:azure-core	1.45.1	1.53.0
com.microsoft.azure:msal4j	1.14.2	1.17.2
org.slf4j:slf4j-simple	2.0.10	2.0.16
org.apache.maven.plugins:maven-shade-plugin	3.5.1	3.6.0
org.apache.maven.plugins:maven-dependency-plugin	3.6.1	3.8.0

Updates com.azure:azure-security-keyvault-secrets from 4.7.3 to 4.8.7

Release notes

Sourced from com.azure:azure-security-keyvault-secrets's releases.

azure-security-keyvault-secrets_4.8.7

4.8.7 (2024-09-27)

Other Changes

Dependency Updates

• Upgraded azure-json from 1.2.0 to version 1.3.0.
• Upgraded azure-core-http-netty from 1.15.3 to version 1.15.4.
• Upgraded azure-core from 1.51.0 to version 1.52.0.

Commits

• cab0715 [PatchRelease] Prepare 2024 August Patch Release (#41630)
• dcdba22 Migrate to stream style serialization - Azure communication rooms (#40966)
• 2e2577d Increment package versions for resourcemanager releases (#41621)
• f12de07 Allow Save-package-properties to exit 0 when prs produce no package changes (...
• 093f6c5 Update Live test package versions (#41623)
• 38bc240 Prepare release branch for v4.63.2 of azure-cosmos and v4.33.1 of `azure-co...
• fc2be76 Retrying on a new BulkWriter when commit task gets stuck (#41553)
• 30e6467 Allow duplicate uniqueKeyPolicy in DocumentCollection (#41608)
• d0f7cdb mgmt, prepare release 2.42.0 (#41616)
• a7ceacb mgmt, local generation for Compute ComputeRP 2024-07-01 (#41599)
• Additional commits viewable in compare view

Updates com.azure:azure-identity from 1.12.2 to 1.14.0

Release notes

Sourced from com.azure:azure-identity's releases.

azure-identity_1.14.0

1.14.0 (2024-10-03)

Features Added

• Features now generally available from previous betas:
  • Added object id support in ManagedIdentityCredential. It can be configured via ManagedIdentityCredentialBuilder.
  • Added support for a client assertion in OnBehalfOfCredential #40552

Breaking Changes

• Breaking changes generally available from previous betas:
  • Removed support in IntelliJCredential for legacy Azure Toolkit for IntelliJ versions. Please upgrade to latest if you are using 3.52 or below.

Bugs Fixed

• Fixed the request sent in AzurePipelinesCredential so it doesn't result in a redirect response when an invalid system access token is provided.

Other Changes

• Allow certain response headers to be logged in AzurePipelinesCredential for diagnostics and include them in the exception message.
• Mark AzureAuthorityHosts.AZURE_GERMANY deprecated as the Germany cloud closed in 2021. #42148
• Using msal4j's managed identity implementation is now on by default. (Added in 1.13.0-beta.1)

Dependency Updates

• Upgraded azure-core from 1.52.0 to version 1.53.0.
• Upgraded azure-core-http-netty from 1.15.4 to version 1.15.5.
• Upgraded msal4j from 1.17.1 to version 1.17.2.

azure-core-http-okhttp_1.12.4

1.12.4 (2024-10-01)

Other Changes

Dependency Updates

• Upgraded azure-core from 1.52.0 to 1.53.0.

Commits

• cd30e0c Prepare Azure Core Libraries for March 2021 Release (#19703)
• 1d905cd Rework tests (#19614)
• 94285f5 Reactor, Reactor Netty, and Spring Framework Version Upgrades (#19563)
• 1c993ba Fix live test pipeline - Formrecognizer (#19656)
• 3acc7f3 Synapse march 2021 update (#19632)
• ce0f46a Add step annotate and improve AADHandleConditionalAccessFilter for Conditiona...
• e9d211e mgmt, make storage account more secure by setting better default (#19649)
• 4ec4b2a Increment package version after release of com.azure.resourcemanager azure-re...
• ea06450 Increment package version after release of com.azure.resourcemanager azure-re...
• cc15ee1 [Automation] Generate Fluent Lite from datadog# (#19689)
• Additional commits viewable in compare view

Updates com.azure:azure-core from 1.45.1 to 1.53.0

Release notes

Sourced from com.azure:azure-core's releases.

azure-core_1.53.0

1.53.0 (2024-10-01)

Features Added

• Allow setting SharedExecutorService's backing ExecutorService to allow for external configuration to manage the shared thread pool. (#41885)
• Change SharedExecutorService from implementing ExecutorService to ScheduledExecutorService to allow scheduled-based execution. (#41885)
• Allow passing schemaUrl when creating a Meter or Tracer using MeterProvider and TracerProvider. (#41789)
• Added Binary.writeTo(JsonWriter) to enable BinaryData to better integrate with azure-json. (#42107)
• Added ProofOfPossessionOptions and a field to TokenRequestContext to indicate its use. (#41852)

Other Changes

• Reduced synchronization lock contention when creating URLs with UrlBuilder. (#41816)
• Don't let SPI loading errors crash an application. (#41991)

Commits

• e083a77 Fix Azure Redis Checkpoint Store Samples Issue (#41511)
• fd60255 [AI] [Inference] Add correct Auth policy for non-AOAI models (#42105)
• c32d9bd Increment versions for schemaregistry releases (#42080)
• 2ec0458 Prepare Core libraries for October 2024 release (#42139)
• 0cff707 initial changes, need to figure out monitoring pt parse issue (#42147)
• bb3d2ce Quickpulse Post Request Json Bug Fix (#42144)
• 7da661f Add SHR PoP support to azure core. (#41852)
• d0c4a25 [BOM] Prepare for BOM release for September (#42137)
• 7cac012 Use doclint -missing to handle Java 21 Javadoc errors instead of setting diff...
• a43653d Add writeTo(JsonWriter) to BinaryData (#42107)
• Additional commits viewable in compare view

Updates com.microsoft.azure:msal4j from 1.14.2 to 1.17.2

Release notes

Sourced from com.microsoft.azure:msal4j's releases.

v1.17.2

• Make ManagedIdentityApplication.getManagedIdentitySource static (#864)

v1.17.1

• Fix 'refresh on' value calculation in Managed Identity flows (#858)
• Bump nimbusds-oauth2-oidc-sdk version (#859)

v1.17.0

• Add object ID option for Managed Identity (#854)
• Add support for custom authorities (#851)
• Fix bug where claims did not cause cache to be skipped (#811)

v1.16.2

• Use SHA256 thumbprints in non-ADFS cert flows (#840)
• Reduce logging level of cache miss messages (#844)
• Make ManagedIdentitySourceType enum public (#845)

v1.16.1

• Add missing refreshOn metadata (#838)

v1.16.0

• Fix breaking API changes introduced in v1.15.0 (AzureAD/microsoft-authentication-library-for-java#828)
• Expose refreshOn parameter in AuthenticationResultMetadata (AzureAD/microsoft-authentication-library-for-java#829)

v1.15.1

• Fix to correctly use custom SSLSocketFactory (#821)
• Add public API to determine the Managed Identity environment (#823)

v1.15.0

• GA support for Azure managed identity scenarios
• Support managed identities in Azure Functions, App Service, IMDS (#661)
• Support MI in Cloud Shell (#713)
• Support MI in Service Fabric (#729)
• Support MI in Azure Arc (#730)
• Adjust loopback address binding in interactive flow by @​crimsonvspurple (#797)

Changelog

Sourced from com.microsoft.azure:msal4j's changelog.

Version 1.17.2

• Make ManagedIdentityApplication.getManagedIdentitySource static (#864)

Version 1.17.1

• Fix 'refresh on' value calculation in Managed Identity flows (#858)
• Bump nimbusds-oauth2-oidc-sdk version (#859)

Version 1.17.0

• Add object ID option for Managed Identity (#854)
• Add support for custom authorities (#851)
• Fix bug where claims did not cause cache to be skipped (#811)

Version 1.16.2

• Use SHA256 thumbprints in non-ADFS cert flows (#840)
• Reduce logging level of cache miss messages (#844)
• Make ManagedIdentitySourceType enum public (#845)

Version 1.16.1

• Add missing refreshOn metadata (#838)

Version 1.16.0

• Fix breaking API changes introduced in v1.15.0 (#828)
• Expose refreshOn parameter in AuthenticationResultMetadata (#829)

Version 1.15.1

• Fix to correctly use custom SSLSocketFactory (#821)
• Add public API to determine the Managed Identity environment (#823)

Version 1.15.0

• GA support for Azure managed identity scenarios
• Support managed identities in Azure Functions, App Service, IMDS (#661)
• Support MI in Cloud Shell (#713)
• Support MI in Service Fabric (#729)
• Support MI in Azure Arc (#730)
• Adjust loopback address binding in interactive flow (#797)

Version 1.14.3

• Hotfix to update oauth2-oidc-sdk dependency (#781)

Commits

• 081341c Merge pull request #865 from AzureAD/avdunn/release-1.17.2
• 8431576 Version updates for 1.17.2
• d27faab Merge pull request #864 from AzureAD/avdunn/mi-sourcetype-static
• 02ca194 Make getManagedIdentitySource static
• 46cc756 Update README.md
• 64a462c Merge pull request #861 from AzureAD/avdunn/release-1.17.1
• 4a5cfb8 Version updates for 1.17.1
• 7d9ce19 Merge pull request #858 from AzureAD/avdunn/mi-refreshon
• 6f431a3 Merge pull request #859 from crimsonvspurple/dev
• 791f30a Bump com.nimbusds.oauth2-oidc-sdk from 11.9.1 to 11.18
• Additional commits viewable in compare view

Updates org.slf4j:slf4j-simple from 2.0.10 to 2.0.16

Updates org.apache.maven.plugins:maven-shade-plugin from 3.5.1 to 3.6.0

Commits

• 9a572e2 [maven-release-plugin] prepare release maven-shade-plugin-3.6.0
• ade2e35 [MSHADE-428] Prevent null value in array of transformers (#229)
• b573b8c [MSHADE-478] Extra JARs feature (#228)
• 199ffae Drop the cruft (#225)
• 912a81d Bump maven-gh-actions-shared to v4
• 80e4420 [maven-release-plugin] prepare for next development iteration
• 19618cd [maven-release-plugin] prepare release maven-shade-plugin-3.5.3
• faf233e [MSHADE-472] upgrade parent POM
• 7de9ae7 [MSHADE-471] deal with DST
• 58d8cfe [MSHADE-470] Bump asmVersion from 9.6 to 9.7 (#218)
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-dependency-plugin from 3.6.1 to 3.8.0

Release notes

Sourced from org.apache.maven.plugins:maven-dependency-plugin's releases.

3.7.1

🐛 Bug Fixes

• [MDEP-943] - Fix appendOutput option (#414) @​slawekjaranowski

📦 Dependency updates

• [MDEP-944] - Bump org.apache.maven.shared:maven-common-artifact-filters from 3.3.2 to 3.4.0 (#413) @​dependabot

👻 Maintenance

• [MDEP-945] - Fix documentation about get goal (#415) @​slawekjaranowski
• [MDEP-940] - Use Resolver API instead of m-a-t for resolving artifacts (#410) @​slawekjaranowski

3.7.0

• [MDEP-941] - Deprecate dependency:sources in favor of dependency:resolv… (#411) @​michael-o
• [MDEP-838] - "Artifact has not been packaged yet" error message is not … (#412) @​michael-o
• [MDEP-939] - Lock down classifier in dependency:sources goal (#409) @​michael-o
• Revert "Fix sources goal for multimodule projects" (#408) @​michael-o
• [MDEP-923] - Move methods in place where are used (#407) @​slawekjaranowski
• MDEP-938] Correct invalid property name and add deprecated old one (#404) @​hazendaz
• [MDEP-835] - Add optional dependency for tree IT (#403) @​slawekjaranowski
• Add missing dependency (#401) @​michael-o

🚀 New features and improvements

• [MDEP-799] - tree: add optional output type json (#391) @​LogFlames
• [MDEP-928] - Allow excluding classes from dependency:analyze (#393) @​slawekjaranowski
• [MDEP-924] - Get rid of maven-artifact-transfer from list-classes goal (#382) @​slawekjaranowski
• [MDEP-925] - Require Maven 3.6.3 (#381) @​slawekjaranowski
• [MDEP-922] - dependency:analyze-exclusions - should report issue only in current project (#378) @​slawekjaranowski
• [MDEP-917] - dependency:analyze-exclusions - use Resolver API instead of ProjectBuilder (#374) @​slawekjaranowski
• [MDEP-317] - add mojo to analyze invalid exclusions (#362) @​vbreivik
• [MDEP-894] - Use @Component only - fix tests (#360) @​michael-o

🐛 Bug Fixes

• [MDEP-914] - Fix link in collect goal description (#380) @​slawekjaranowski
• [MDEP-895] - dependency:sources fails for multi-module project (#349) @​jmle
• [MDEP-771] - Remove broken 404 link (#344) @​elharo

📦 Dependency updates

• [MDEP-936] - Bump org.apache.maven.shared:maven-dependency-tree from 3.2.1 to 3.3.0 (#397) @​dependabot
• [MDEP-920] - Bump org.assertj:assertj-core from 3.25.3 to 3.26.0 (#395) @​dependabot
• [MDEP-929] - Bump org.apache.maven.shared:maven-dependency-analyzer from 1.14.0 to 1.14.1 (#394) @​dependabot
• Bump org.apache.maven.shared:maven-dependency-analyzer from 1.13.2 to 1.14.0 (#392) @​dependabot
• [MDEP-921] - Bump org.apache.commons:commons-text from 1.11.0 to 1.12.0 (#376) @​dependabot

... (truncated)

Commits

• 75814c7 [maven-release-plugin] prepare release maven-dependency-plugin-3.8.0
• 50397c4 [MDEP-903] Upgrade to Doxia 2.0.0 Milestone Stack
• 1115ecb Bump org.codehaus.plexus:plexus-archiver from 4.9.2 to 4.10.0
• 5288cec Bump org.apache.maven.plugins:maven-plugins from 42 to 43
• ea4d8e2 Bump jettyVersion from 9.4.54.v20240208 to 9.4.55.v20240627
• 2d0b82a Bump org.codehaus.plexus:plexus-io from 3.4.2 to 3.5.0
• 86b7772 (doc) Remove repeated word
• 94e1caf Bump org.jsoup:jsoup from 1.17.2 to 1.18.1
• 06b4273 Bump org.assertj:assertj-core from 3.26.0 to 3.26.3
• 71cee33 Remove outdated invoker conditions
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Superseded by #1480.