Bump org.dbunit:dbunit from 3.0.0 to 3.1.0

[dependabot]

Bumps org.dbunit:dbunit from 3.0.0 to 3.1.0.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[coderabbitai]

📝 Walkthrough

Walkthrough

This PR updates the test-scoped org.dbunit:dbunit dependency in xmppserver/pom.xml from version 3.0.0 to 3.1.0, a minor version bump.

Possibly related PRs

• igniterealtime/Openfire#3320: Both PRs modify xmppserver/pom.xml to bump dependency versions in the same build configuration area.

Suggested reviewers

• akrherz
• Fishbowler

🚥 Pre-merge checks | ✅ 3

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description check	✅ Passed	The pull request description clearly indicates it updates the dbunit dependency version from 3.0.0 to 3.1.0, which matches the changeset in xmppserver/pom.xml.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@xmppserver/pom.xml`:
- Line 569: The pom declares org.dbunit:dbunit with <version>3.1.0</version>,
but that artifact/version isn’t available on Maven Central; change the
dependency version in the pom for artifactId dbunit (groupId org.dbunit) to a
valid published version (e.g., 3.0.0) or to the correct intended version, verify
via Dependabot or Maven Central, and then run a Maven update (mvn -U) / build to
confirm resolution; if a private repo is required, add the repository entry
instead of using a non-existent public version.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Repository UI

Review profile: CHILL

Plan: Pro Plus

Run ID: f1ecae1b-5676-4476-8115-fe84f4ea95f7

📥 Commits

Reviewing files that changed from the base of the PR and between 3f41ce4 and 410fff9.

📒 Files selected for processing (1)

• xmppserver/pom.xml

[coderabbitai]

⚠️ Potential issue | 🔴 Critical

🧩 Analysis chain

🏁 Script executed:

#!/bin/bash
# Description: Verify DBUnit 3.1.0 exists and check for security advisories

# Check Maven Central for version 3.1.0
echo "Checking Maven Central for org.dbunit:dbunit:3.1.0..."
curl -s "https://search.maven.org/solrsearch/select?q=g:org.dbunit+AND+a:dbunit+AND+v:3.1.0" | jq '.response.numFound'

# Check for security advisories
echo "Checking for security advisories..."
gh api graphql -f query='
{
  securityVulnerabilities(first: 10, ecosystem: MAVEN, package: "org.dbunit:dbunit") {
    nodes {
      advisory {
        summary
        severity
        publishedAt
      }
      vulnerableVersionRange
      firstPatchedVersion {
        identifier
      }
    }
  }
}'

Repository: igniterealtime/Openfire

Length of output: 208

---

🏁 Script executed:

#!/bin/bash
# Find available versions of org.dbunit:dbunit on Maven Central
curl -s "https://search.maven.org/solrsearch/select?q=g:org.dbunit+AND+a:dbunit&rows=100&core=gav" | jq '.response.docs[] | {version: .v}' | head -20

Repository: igniterealtime/Openfire

Length of output: 240

---

Version 3.1.0 of org.dbunit:dbunit does not exist on Maven Central.

The build will fail because Maven cannot resolve version 3.1.0. The latest available version on Maven Central is 3.0.0. Verify with dependabot whether this version number is correct or if there's a typo. If the intent is to upgrade beyond 3.0.0, confirm that a newer version actually exists in a public repository.

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@xmppserver/pom.xml` at line 569, The pom declares org.dbunit:dbunit with
<version>3.1.0</version>, but that artifact/version isn’t available on Maven
Central; change the dependency version in the pom for artifactId dbunit (groupId
org.dbunit) to a valid published version (e.g., 3.0.0) or to the correct
intended version, verify via Dependabot or Maven Central, and then run a Maven
update (mvn -U) / build to confirm resolution; if a private repo is required,
add the repository entry instead of using a non-existent public version.