From f9735fa4b4d44afec0dbc63fb328881fff7fddb2 Mon Sep 17 00:00:00 2001
From: rm-hull <rm-hull@users.noreply.github.com>
Date: Wed, 11 Jun 2025 07:41:40 +0000
Subject: [PATCH] Update stale dependencies

---
 .github/dogfooding_suppressions.xml |  2 +-
 deps.edn                            | 13 ++++++++-----
 project.clj                         | 17 ++++++++++-------
 3 files changed, 19 insertions(+), 13 deletions(-)

diff --git a/.github/dogfooding_suppressions.xml b/.github/dogfooding_suppressions.xml
index 7d201b5..d66be24 100644
--- a/.github/dogfooding_suppressions.xml
+++ b/.github/dogfooding_suppressions.xml
@@ -6,7 +6,7 @@
     <cve>CVE-2021-23463</cve>
   </suppress>
   <suppress>
-    <filePath regex="true">.*\bh2-2\.1\.214\.jar</filePath>
+    <filePath regex="true">.*\bh2-2\.3\.232\.jar</filePath>
     <cve>CVE-2018-14335</cve>
   </suppress>
   <suppress>
diff --git a/deps.edn b/deps.edn
index 86e97ed..0e9f472 100644
--- a/deps.edn
+++ b/deps.edn
@@ -1,10 +1,13 @@
 {:paths ["src"]
- :deps {org.clojure/clojure {:mvn/version "1.11.1"}
-        org.clojure/java.classpath {:mvn/version "1.0.0"}
+ :deps {org.clojure/clojure {:mvn/version "1.12.1"}
+        org.clojure/java.classpath {:mvn/version "1.1.0"}
+        ;; dependency-check-core transitively brings in two versions of
+        ;; this dependency, so we explicitly depend on the latest
+        com.google.errorprone/error_prone_annotations {:mvn/version "2.38.0"}
         clansi/clansi {:mvn/version "1.0.0"}
-        org.clojure/data.json {:mvn/version "2.5.0"}
-        org.slf4j/slf4j-simple {:mvn/version "2.0.12"}
-        org.owasp/dependency-check-core {:mvn/version "12.1.0"}
+        org.clojure/data.json {:mvn/version "2.5.1"}
+        org.slf4j/slf4j-simple {:mvn/version "2.0.17"}
+        org.owasp/dependency-check-core {:mvn/version "12.1.3"}
         rm-hull/table {:mvn/version "0.7.1"}
         trptcolin/versioneer {:mvn/version "0.2.0"}}
  :mvn/repos {"central" {:url "https://repo1.maven.org/maven2/"}
diff --git a/project.clj b/project.clj
index 7303c82..3ee300c 100644
--- a/project.clj
+++ b/project.clj
@@ -3,14 +3,17 @@
   :url "https://github.com/rm-hull/nvd-clojure"
   :license {:name "The MIT License (MIT)"
             :url "https://opensource.org/licenses/MIT"}
-  :dependencies [[org.clojure/clojure "1.11.1"]
+  :dependencies [[org.clojure/clojure "1.12.1"]
                  [clansi "1.0.0"]
-                 [org.clojure/data.json "2.5.0"]
-                 [org.slf4j/slf4j-simple "2.0.12"]
-                 [org.owasp/dependency-check-core "12.1.0"]
+                 ;; dependency-check-core transitively brings in two versions of
+                 ;; this dependency, so we explicitly depend on the latest
+                 [com.google.errorprone/error_prone_annotations "2.38.0"]
+                 [org.clojure/data.json "2.5.1"]
+                 [org.slf4j/slf4j-simple "2.0.17"]
+                 [org.owasp/dependency-check-core "12.1.3"]
                  [rm-hull/table "0.7.1"]
                  [trptcolin/versioneer "0.2.0"]]
-  :managed-dependencies [[com.google.code.gson/gson "2.10.1"]]
+  :managed-dependencies [[com.google.code.gson/gson "2.13.1"]]
   :scm {:url "git@github.com:rm-hull/nvd-clojure.git"}
   :source-paths ["src"]
   :jar-exclusions [#"(?:^|/).git"]
@@ -27,10 +30,10 @@
                              [jonase/eastwood "1.4.0"]]
                    :eastwood {:add-linters [:boxed-math
                                             :performance]}
-                   :dependencies [[clj-kondo "2023.12.15"]
+                   :dependencies [[clj-kondo "2025.06.05"]
                                   [commons-collections "20040616"]]}
              :ci {:pedantic? :abort}
-             :clj-kondo {:dependencies [[clj-kondo "2023.12.15"]]}
+             :clj-kondo {:dependencies [[clj-kondo "2025.06.05"]]}
              :skip-self-check {:jvm-opts ["-Dnvd-clojure.internal.skip-self-check=true"]}}
   :deploy-repositories [["clojars" {:url "https://clojars.org/repo"
                                     :username :env/clojars_username