Bump com.nimbusds:nimbus-jose-jwt from 10.0.2 to 10.2 in /plugins/repository-azure

[dependabot]

Bumps com.nimbusds:nimbus-jose-jwt from 10.0.2 to 10.2.

Changelog

Sourced from com.nimbusds:nimbus-jose-jwt's changelog.

10.0.2 (2025-02-25) * Updates JSONObjectUtils.parse and JSONArrayUtils.parse to reject JSON strings with object and array nesting deeper than 255. This is intended to prevent StackOverflowError's in Gson when a parsed JSON string with excessive nesting is serialised, for example to log the claims of a parsed JWT. Note that in Gson the JSON reader is not susceptible to StackOverflowError's, only the serialisation. The nesting limit of depth 255 is introduced in Gson 2.12.0 (iss #583). * Updates GSon to 2.12.1.

10.1 (2025-04-03) * Restores module-info.java. * Adds ExpiredJWTException extends BadJWTException to enable easy programmatic detection whether a JWT has expired (iss #585). * Adds URLBasedJWKSetSource getJWKSetURL and getResourceRetriever methods to ease class extension.

10.2 (2025-04-07) * Gson is made a direct instead of a shaded dependency to address module issues introduced in 10.1 (iss #550).

Commits

• bcfaf09 [maven-release-plugin] prepare for next development iteration
• 05e8b9a Change log 10.0.2 updates
• 729f58b re-add module-info.java
• b688e46 Edits X509CertChainUtilsTest.testParse_includeUnderlyingCertificateException ...
• a6a0865 Merge branch 'master' into module-info
• a655497 Merged in module-info (pull request #125)
• 9fd3662 Edits CHANGELOG.txt
• 40a33d2 Adds ExpiredJWTException extends BadJWTException to enable easy programmatic ...
• 5b5530f Adds URLBasedJWKSetSource getJWKSetURL and getResourceRetriever methods
• 5586970 Release version 10.1
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

❌ Gradle check result for ece49c8: FAILURE

Please examine the workflow log, locate, and copy-paste the failure(s) below, then iterate to green. Is the failure a flaky test unrelated to your change?

[dbwiddis]

Missing classes:

> Task :plugins:repository-azure:thirdPartyAudit FAILED
  * com.google.gson.Gson
  * com.google.gson.GsonBuilder
  * com.google.gson.Strictness
  * com.google.gson.ToNumberPolicy
  * com.google.gson.reflect.TypeToken

[cwperks]

Pushed a commit to resolve the thirdPartyAudit errors.

[github-actions]

✅ Gradle check result for 43fbb78: SUCCESS

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 72.60%. Comparing base (560ac10) to head (43fbb78).
⚠️ Report is 566 commits behind head on main.

Additional details and impacted files

@@             Coverage Diff              @@
##               main   #18104      +/-   ##
============================================
+ Coverage     72.56%   72.60%   +0.03%     
- Complexity    67261    67263       +2     
============================================
  Files          5476     5476              
  Lines        310478   310478              
  Branches      45133    45133              
============================================
+ Hits         225313   225427     +114     
+ Misses        66840    66717     -123     
- Partials      18325    18334       +9     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[opensearch-trigger-bot]

The backport to 2.19 failed:

The process '/usr/bin/git' failed with exit code 128

To backport manually, run these commands in your terminal:

# Navigate to the root of your repository
cd $(git rev-parse --show-toplevel)
# Fetch latest updates from GitHub
git fetch
# Create a new working tree
git worktree add ../.worktrees/OpenSearch/backport-2.19 2.19
# Navigate to the new working tree
pushd ../.worktrees/OpenSearch/backport-2.19
# Create a new branch
git switch --create backport/backport-18104-to-2.19
# Cherry-pick the merged commit of this pull request and resolve the conflicts
git cherry-pick -x --mainline 1 f2cc655c94d53d0c43e88cd93e4da3994184e294
# Push it to GitHub
git push --set-upstream origin backport/backport-18104-to-2.19
# Go back to the original working tree
popd
# Delete the working tree
git worktree remove ../.worktrees/OpenSearch/backport-2.19

Then, create a pull request where the base branch is 2.19 and the compare/head branch is backport/backport-18104-to-2.19.