Bump com.nimbusds:nimbus-jose-jwt from 9.41.1 to 10.0.2 in /plugins/repository-azure

[dependabot]

Bumps com.nimbusds:nimbus-jose-jwt from 9.41.1 to 10.0.2.

Changelog

Sourced from com.nimbusds:nimbus-jose-jwt's changelog.

9.41.1 (2024-09-12) * Fixes JSONObjectUtils.parse((String)null) regression, must throw ParseException, not NullPointerException. Regression introduced in 9.24 after dependency switch from JSON Smart to Gson (iss #557). * Fixes JWKSet.parse((String)null) regression, must throw ParseException, not NullPointerException (iss #557). * The ParseException thrown by X509CertChainUtils.parse(List) must include the message from the underlying java.security.cert.CertificateException (iss #565).

9.41.2 (2024-10-01) * JWEHeader must support the special case of an "aud" header value of type string (iss #569).

9.42 (2024-10-28) * Promotes getCompatibleAlgorithms from MACSigner to MACProvider. * Promotes getMinRequiredSecretLength from MACSigner to MACProvider. * Removes the Set argument from the protected MACProvider constructors, the compatible HSxxx algorithms are now determined within the constructor. * MACVerifier must enforce a minimum secret key length of 384 bits for HS384 and of 512 bits for HS512 (iss #563). * OctetSequenceKeyGenerator must support "exp", "nbf" and "iat" (iss #575). * Updates to com.google.crypto.tink:tink:1.15.0

9.43 (2024-10-31) * Adds JWK.toRevokedJWK(KeyRevocation) method.

9.44 (2024-11-01) * JWKMatcher receives a capability to match non-revoked and revoked keys only, with JWKMatcher.Builder.nonRevokedOnly and revokedOnly. * Adds JWKMatcher.Builder.withKeyUseOnly, deprecating hasKeyUse. * Adds JWKMatcher.Builder.withKeyIDOnly, deprecating hasKeyID. * Adds JWKMatcher.Builder.withX509CertChainOnly, deprecating hasX509CertChain.

9.45 (2024-11-01) * New JWKMatcher.Builder(JWKMatcher) constructor.

9.46 (2024-11-08) * Adds JWKParameterNames.PUBLIC constant Set with the standard public JWK parameter names.

9.47 (2024-11-14) * Adds static JSONArrayUtils.parse(String). * Adds static JSONArrayUtils.toJSONString(List). * JSONObjectUtils.toJSONString must throw NPE on null String (iss #577). * Fixes regression: Invalid JSON was accepted in versions 9.24+ (iss #574).

9.48 (2024-12-20)

... (truncated)

Commits

• 418595b [maven-release-plugin] prepare for next development iteration
• 1923b4f Adds JWKParameterNames.PUBLIC constant
• ec090bd [maven-release-plugin] prepare release 9.46
• 5ae1614 [maven-release-plugin] prepare for next development iteration
• 10b13c9 Replaces unreachable else in AESEncrypter with assertion
• 72275bc Adds static JSONArrayUtils.parse(String), JSONArrayUtils.toJSONString(List<?>)
• 55e7dc4 JSONObjectUtils.toJSONString must throw NPE on null String (iss #577)
• ed73642 Fixes regression: Invalid JSON was accepted in versions 9.24+ (iss #574)
• 8eb6fbd [maven-release-plugin] prepare release 9.47
• 6020cd1 [maven-release-plugin] prepare for next development iteration
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

❌ Gradle check result for 8a73280: FAILURE

Please examine the workflow log, locate, and copy-paste the failure(s) below, then iterate to green. Is the failure a flaky test unrelated to your change?

[github-actions]

❌ Gradle check result for 59d0293: FAILURE

Please examine the workflow log, locate, and copy-paste the failure(s) below, then iterate to green. Is the failure a flaky test unrelated to your change?

[github-actions]

❕ Gradle check result for 59d0293: UNSTABLE

• TEST FAILURES:

      1 org.opensearch.snapshots.DedicatedClusterSnapshotRestoreIT.testSnapshotWithStuckNode

Please review all flaky tests that succeeded after retry and create an issue if one does not already exist to track the flaky failure.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 72.46%. Comparing base (47d3655) to head (d3de60a).
Report is 8 commits behind head on main.

Additional details and impacted files

@@             Coverage Diff              @@
##               main   #17607      +/-   ##
============================================
- Coverage     72.53%   72.46%   -0.08%     
+ Complexity    65826    65813      -13     
============================================
  Files          5311     5311              
  Lines        305073   305073              
  Branches      44243    44243              
============================================
- Hits         221293   221078     -215     
- Misses        65688    65923     +235     
+ Partials      18092    18072      -20     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[andrross]

@dependabot rebase

[dependabot]

Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry!

If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

[github-actions]

✅ Gradle check result for a72c87c: SUCCESS

[github-actions]

✅ Gradle check result for d3de60a: SUCCESS

[opensearch-trigger-bot]

The backport to 2.x failed:

The process '/usr/bin/git' failed with exit code 128

To backport manually, run these commands in your terminal:

# Navigate to the root of your repository
cd $(git rev-parse --show-toplevel)
# Fetch latest updates from GitHub
git fetch
# Create a new working tree
git worktree add ../.worktrees/OpenSearch/backport-2.x 2.x
# Navigate to the new working tree
pushd ../.worktrees/OpenSearch/backport-2.x
# Create a new branch
git switch --create backport/backport-17607-to-2.x
# Cherry-pick the merged commit of this pull request and resolve the conflicts
git cherry-pick -x --mainline 1 77a4c22e9b908162cb968e510a230227ca6de677
# Push it to GitHub
git push --set-upstream origin backport/backport-17607-to-2.x
# Go back to the original working tree
popd
# Delete the working tree
git worktree remove ../.worktrees/OpenSearch/backport-2.x

Then, create a pull request where the base branch is 2.x and the compare/head branch is backport/backport-17607-to-2.x.