build(deps): bump org.apache.tomcat.embed:tomcat-embed-core

dependabot[bot] · web-flow · commit a9e8a150557d · 2025-07-14T10:56:40.000Z
Bumps org.apache.tomcat.embed:tomcat-embed-core from 10.1.42 to 11.0.9.

---
updated-dependencies:
- dependency-name: org.apache.tomcat.embed:tomcat-embed-core
  dependency-version: 11.0.9
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] &lt;support@github.com&gt;
diff --git a/build.gradle b/build.gradle
@@ -72,7 +72,7 @@ subprojects {
             implementation("org.springframework:spring-web:6.2.8") {
                 because("versions below 6.2.8 have security vulnerabilities including CVE-2024-38820 - see dependabot #12")
             }
-            implementation("org.apache.tomcat.embed:tomcat-embed-core:10.1.42") {
+            implementation("org.apache.tomcat.embed:tomcat-embed-core:11.0.9") {
                 because("versions below 10.1.42 have security vulnerabilities including CVE-2024-56337 - see dependabot #13")
             }
             implementation("org.apache.commons:commons-lang3:3.18.0") {

Original file line number	Diff line number	Diff line change
`@@ -72,7 +72,7 @@ subprojects {`
`72`	`72`	`implementation("org.springframework:spring-web:6.2.8") {`
`73`	`73`	`because("versions below 6.2.8 have security vulnerabilities including CVE-2024-38820 - see dependabot #12")`
`74`	`74`	`}`
`75`		`- implementation("org.apache.tomcat.embed:tomcat-embed-core:10.1.42") {`
	`75`	`+ implementation("org.apache.tomcat.embed:tomcat-embed-core:11.0.9") {`
`76`	`76`	`because("versions below 10.1.42 have security vulnerabilities including CVE-2024-56337 - see dependabot #13")`
`77`	`77`	`}`
`78`	`78`	`implementation("org.apache.commons:commons-lang3:3.18.0") {`