Bump dependency org.owasp:dependency-check-maven to v12.2.1

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
org.owasp:dependency-check-maven (source)	12.2.0 → 12.2.1

---

Release Notes

dependency-check/DependencyCheck (org.owasp:dependency-check-maven)

v12.2.1

Compare Source

• build: improve GHA workflow experience for forks (#​8285)

• build: use maven jdk toolchains to build with Java 25; test against Java 11/17/21/25 (#​8292)

• chore: avoid use of parent pom and maven properties where unnecessary (#​8322)

• chore: bump java development to 25.0 (#​8365)

• chore: fix Charset warnings; preferring typed charsets (#​8326)

• chore: fix Maven scm tags after 12.2.1-SNAPSHOT bump (#​8265)

• chore: pin GitHub actions to specific SHAs rather than mutable tags (#​8381)

• chore: remove unused properties and schemas (#​8378)

• docs: define schema locations in XML examples (#​8254)

• docs: document external data sources and hostnames (#​8219)

• docs: ensure OSS Index URL override is consistently documented (#​8338)

• docs: fix minor typo in README (#​8246)

• fix(core): correct xml schema validation handling without needing external access (#​8272)

• fix(deps): upgrade slf4j and logback (#​8306)

• fix(test): disable pnpm analyzer during test (#​8305)

• fix: Correct published/hosted suppressions namespace header and indent (#​8258)

• fix: Suppress noisy WARN logging from Apache Lucene within Maven and Ant plugins (#​8248)

• fix: #​8140 AssemblyAnalyzer version resolution issue (#​8352)

• fix: #​8140 fix version resolution

• fix: #​8140 hint azure_identity_library_for_.net

• fix: #​8356 narrow down VersionFilterAnalyzer scope to JAR files (#​8358)

• fix: correct parsing for CVSSv4 strings with Provider Urgency (#​8377)

• fix: evidence source in Retire JS analyzer (#​8303)

• fix: exclude deprecations from Yarn Berry audit results (#​8380)

• fix: improve PEAnalyzer reliability by migrating to maintained PE/COFF 4J library fork (#​8245)

• fix: improve configuration consistency (casing) (#​8355)

• fix: improve logging of unexpected Java Errors during processing of NVD (#​8250)

• fix: raw type warning in ProcessReader (#​8324)

• fix: suppress false positives for zabbix-utils #​8087 (#​8218)

• fix: update docs (#​8405)

• fix: warn if deprecated configs are used (#​8366)

• test: Make tests locale independent (#​8328)

• test: #​8140 reproduce current behavior

• test: avoid polluting test classpaths with sample dependencies to be scanned (#​8267)

• See the full listing of changes

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • At any time (no schedule defined)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions]

☀️   Quality Monitor

Tests

     Unit Tests: ✅ successful — 87 passed, 2 skipped
   ⛔   Architecture Tests: ✅ successful — 17 passed, 2 skipped

Coverage for New Code

   〰️   Line Coverage: 100.00% — perfect 🎉
   ➰   Branch Coverage: 100.00% — perfect 🎉
     Mutation Coverage: 100.00% — perfect 🎉
   💪   Test Strength: 100.00% — perfect 🎉

Coverage for Whole Project

   〰️   Line Coverage: 91.57% — 65 missed lines
   ➰   Branch Coverage: 90.45% — 21 missed branches
     Mutation Coverage: 91.61% — 26 survived mutations
   💪   Test Strength: 94.67% — 16 survived mutations in tested code

Style

     CheckStyle: No warnings
     PMD: No warnings
   ☕   Java Compiler: No warnings

Bugs

     SpotBugs: No bugs
   🐛   Error Prone: No bugs

API Problems

   🚫   Revapi: No warnings

Vulnerabilities

   🛡️   OWASP Dependency Check: No vulnerabilities

Software Metrics

   🌀   Cyclomatic Complexity: 384 (total)
   💭   Cognitive Complexity: 174 (total)
   ➿   N-Path Complexity: 348 (total)
   📏   Lines of Code: 4410 (total)
   📝   Non Commenting Source Statements: 1274 (total)
   🔗   Class Cohesion: 71.43% (maximum)
   ⚖️   Weight of Class: 100.00% (maximum)

🚦 Quality Gates

Overall Status: ✅ SUCCESS

✅ Passed Gates

• ✅ Overall Tests Success Rate: 100.00 >= 100.00
• ✅ Line Coverage in New Code: 100.00 >= 90.00
• ✅ Branch Coverage in New Code: 100.00 >= 90.00
• ✅ Mutation Coverage in New Code: 100.00 >= 90.00
• ✅ Potential Bugs in Whole Project: 0.00 <= 0.00
• ✅ Style Violation in Whole Project: 0.00 <= 0.00

---

Created by Quality Monitor v4.10.0 (#be1b382). More details are shown in the GitHub Checks Result.