Bump org.sonarsource.analyzer-commons:sonar-analyzer-commons from 2.18.0.3393 to 2.21.0.4626

[dependabot]

Bumps org.sonarsource.analyzer-commons:sonar-analyzer-commons from 2.18.0.3393 to 2.21.0.4626.

Release notes

Sourced from org.sonarsource.analyzer-commons:sonar-analyzer-commons's releases.

2.21.0.4626

Rotations of binary signing keys

2.20.0.4607

Release notes - Sonar Analyzer Commons - 2.20

Task

ACOMMONS-36 Prepare next development iteration

Improvement

ACOMMONS-40 Improve internal xml parser to support long attributes

2.19.0.3575

What's Changed

• Prepare next development iteration by @​Godin in SonarSource/sonar-analyzer-commons#369
• BUILD-8875: Migrate to standardized GitHub runner names by @​SonarTech in SonarSource/sonar-analyzer-commons#368
• ACOMMONS-34 Expose Standards OWASP LLM Top 10 2025, OWASP Top 10 2025, ASVS 5.0, STIG ASD_V6, MASVS 2 metadata by @​nicolas-gauthier-sonarsource in SonarSource/sonar-analyzer-commons#370
• ACOMMONS-35 Remove commons-lang dependency by @​nicolas-gauthier-sonarsource in SonarSource/sonar-analyzer-commons#371

New Contributors

• @​SonarTech made their first contribution in SonarSource/sonar-analyzer-commons#368
• @​nicolas-gauthier-sonarsource made their first contribution in SonarSource/sonar-analyzer-commons#370

Full Changelog: SonarSource/sonar-analyzer-commons@2.18.0.3393...2.19.0.3575

Commits

• 4ca97ff Update pom.xml (#380)
• b78d807 ACOMMONS-43 Prepare next iteration (#379)
• 7d10d3f Update build-maven version (#378)
• e139177 ACOMMONS-41 Update License Header (#377)
• 330d9cd SONARXML-168 Configure XML parser to handle large attributes (#376)
• 95d60a2 ACOMMONS-38 Add GitHub Actions build workflow and remove Cirrus pipeline (#373)
• 8b20cef Prepare next development iteration
• 2f8afc0 ACOMMONS-35 Remove commons-lang dependency
• ddf4a1b ACOMMONS-34 Expose Standards OWASP LLM Top 10 2025, OWASP Top 10 2025, ASVS 5...
• 1d9d05b BUILD-8875 Update GitHub Actions runners to new naming convention
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.