Bump org.opensearch:opensearch-core from current to 2.10.0 in /buildSrc/src/testKit/thirdPartyAudit

[dependabot]

Bumps org.opensearch:opensearch-core from current to 2.10.0.

Release notes

Sourced from org.opensearch:opensearch-core's releases.

2.10.0

2023-09-08 Version 2.10.0 Release Notes

[2.10]

Added

• Add server version as REST response header #6583
• Start replication checkpointTimers on primary before segments upload to remote store. (#8221opensearch-project/OpenSearch#8221)
• Introduce new static cluster setting to control slice computation for concurrent segment search. (#8847)
• Add configuration for file cache size to max remote data ratio to prevent oversubscription of file cache (#8606)
• Disallow compression level to be set for default and best_compression index codecs (#8737opensearch-project/OpenSearch#8737)
• [distribution/archives] [Linux] [x64] Provide the variant of the distributions bundled with JRE (#8195opensearch-project/OpenSearch#8195)
• Prioritize replica shard movement during shard relocation (#8875)
• Introducing Default and Best Compression codecs as their algorithm name (#9123)
• Make SearchTemplateRequest implement IndicesRequest.Replaceable (#9122)
• [BWC and API enforcement] Define the initial set of annotations, their meaning and relations between them (#9223)
• [Remote Store] Add Segment download stats to remotestore stats API (#8718)
• [Remote Store] Add remote segment transfer stats on NodesStats API (#9168 #9393 #9454)
• [Segment Replication] Support realtime reads for GET requests (#9212)
• Allow test clusters to run with TLS (#8900)
• Add jdk.incubator.vector module support for JDK 20+ (#8601)
• [Feature] Expose term frequency in Painless script score context (#9081)
• Add support for reading partial files to HDFS repository (#9513)
• [Remote Store] Rate limiter integration for remote store uploads and downloads(#9448)
• [BWC and API enforcement] Decorate the existing APIs with proper annotations (part 1) (#9520)
• Add support for extensions to search responses using SearchExtBuilder (#9379)
• [Remote State] Create service to publish cluster state to remote store (#9160)
• Core crypto library to perform encryption and decryption of source content (#8466)
• Expose DelimitedTermFrequencyTokenFilter to allow providing term frequencies along with terms (#9479)
• APIs for performing async blob reads and async downloads from the repository using multiple streams (#9592)
• Add concurrent segment search related metrics to node and index stats (#9622)
• Add average concurrency metric for concurrent segment search (#9670)
• Introduce cluster default remote translog buffer interval setting (#9584)
• Added encryption-sdk lib to provide encryption and decryption capabilities (#8466 #9289)
• [Segment Replication] Adding segment replication statistics rolled up at index, node and cluster level (#9709)
• Added crypto-kms plugin to provide AWS KMS based key providers for encryption/decryption. (#8465)
• [Remote state] Integrate remote cluster state in publish/commit flow (#9665)
• [Remote Store] Changes to introduce repository registration during bootstrap via node attributes. (#9105)
• [Remote state] Auto restore index metadata from last known cluster state (#9831)

Dependencies

• Bump org.apache.logging.log4j:log4j-core from 2.17.1 to 2.20.0 (#8307)
• Bump io.grpc:grpc-context from 1.46.0 to 1.57.1 (#8726, #9145)
• Bump com.netflix.nebula:gradle-info-plugin from 12.1.5 to 12.1.6 (#8724)
• Bump commons-codec:commons-codec from 1.15 to 1.16.0 (#8725)
• Bump org.apache.zookeeper:zookeeper from 3.8.1 to 3.9.0 (#8844, #9146)
• Bump org.gradle.test-retry from 1.5.3 to 1.5.4 (#8842)
• Bump com.netflix.nebula.ospackage-base from 11.3.0 to 11.4.0 (#8838)
• Bump com.google.http-client:google-http-client-gson from 1.43.2 to 1.43.3 (#8840)
• OpenJDK Update (July 2023 Patch releases) (#8869)

... (truncated)

Changelog

Sourced from org.opensearch:opensearch-core's changelog.

CHANGELOG

All notable changes to this project are documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning. See the CONTRIBUTING guide for instructions on how to add changelog entries.

[Unreleased 3.0]

Added

• Support for HTTP/2 (server-side) (#3847)
• Add getter for path field in NestedQueryBuilder (#4636)
• Allow mmap to use new JDK-19 preview APIs in Apache Lucene 9.4+ (#5151)
• Add events correlation engine plugin (#6854)
• Introduce new dynamic cluster setting to control slice computation for concurrent segment search (#9107)
• Implement on behalf of token passing for extensions (#8679)
• Implement Visitor Design pattern in QueryBuilder to enable the capability to traverse through the complex QueryBuilder tree. (#10110)
• Provide service accounts tokens to extensions (#9618)

Dependencies

• Bump log4j-core from 2.18.0 to 2.19.0
• Bump forbiddenapis from 3.3 to 3.4
• Bump avro from 1.11.1 to 1.11.2
• Bump woodstox-core from 6.3.0 to 6.3.1
• Bump xmlbeans from 5.1.0 to 5.1.1 (#4354)
• Bump reactor-netty-core from 1.0.19 to 1.0.22 (#4447)
• Bump reactive-streams from 1.0.3 to 1.0.4 (#4488)
• Bump jempbox from 1.8.16 to 1.8.17 (#4550)
• Update to Gradle 7.6 and JDK-19 (#4973)
• Update Apache Lucene to 9.5.0-snapshot-d5cef1c (#5570)
• Bump maven-model from 3.6.2 to 3.8.6 (#5599)
• Bump maxmind-db from 2.1.0 to 3.0.0 (#5601)
• Bump wiremock-jre8-standalone from 2.33.2 to 2.35.0
• Bump gson from 2.10 to 2.10.1
• Bump com.google.code.gson:gson from 2.10 to 2.10.1
• Bump com.maxmind.geoip2:geoip2 from 4.0.0 to 4.0.1
• Bump com.avast.gradle:gradle-docker-compose-plugin from 0.16.11 to 0.16.12
• Bump org.apache.commons:commons-compress from 1.22 to 1.23.0
• Bump org.apache.commons:commons-configuration2 from 2.8.0 to 2.9.0
• Bump com.netflix.nebula:nebula-publishing-plugin from 19.2.0 to 20.3.0
• Bump io.opencensus:opencensus-api from 0.18.0 to 0.31.1 (#7291)
• OpenJDK Update (April 2023 Patch releases) (#7344
• Bump com.google.http-client:google-http-client:1.43.2 from 1.42.0 to 1.43.2 (7928))
• Add Opentelemetry dependencies (#7543)
• Bump org.bouncycastle:bcprov-jdk15on to org.bouncycastle:bcprov-jdk15to18 version 1.75 (#8247)
• Bump org.bouncycastle:bcmail-jdk15on to org.bouncycastle:bcmail-jdk15to18 version 1.75 (#8247)
• Bump org.bouncycastle:bcpkix-jdk15on to org.bouncycastle:bcpkix-jdk15to18 version 1.75 (#8247)
• Bump JNA version from 5.5 to 5.13 (#9963)
• Bumps jetty version to 9.4.52.v20230823 to fix GMS-2023-1857 (#9822)
• Bump org.eclipse.jgit from 6.5.0 to 6.7.0 (#10147)

Changed

• [CCR] Add getHistoryOperationsFromTranslog method to fetch the history snapshot from translogs (#3948)

... (truncated)

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

The following labels could not be found: dependabot.

[dependabot]

Superseded by #257.