build(deps): bump org.codehaus.mojo:license-maven-plugin from 2.1.0 to 2.4.0

[dependabot]

Bumps org.codehaus.mojo:license-maven-plugin from 2.1.0 to 2.4.0.

Release notes

Sourced from org.codehaus.mojo:license-maven-plugin's releases.

2.4.0

🚀 New features and improvements

• Require Maven 3.6.3 as minimum (#543) @​slawekjaranowski
• Get rid usage of MavenSession#lookup (#541) @​slawekjaranowski
• Deploy snapshot version to oss.sonatype.org (#539) @​slawekjaranowski
• Write Excel files with extensive License Information (inc. infos from the JARs) (#527) @​Master-Code-Programmer

🐛 Bug Fixes

• update xsd to match generated xmls (#528) @​amanica

📦 Dependency updates

• Bump org.codehaus.mojo:mojo-parent from 77 to 78 (#542) @​dependabot
• Bump org.apache.poi:poi-ooxml from 5.2.4 to 5.2.5 (#537) @​dependabot
• Bump commons-io:commons-io from 2.13.0 to 2.15.1 (#535) @​dependabot
• Bump commons-logging:commons-logging from 1.2 to 1.3.0 (#532) @​dependabot
• Bump org.apache.commons:commons-lang3 from 3.13.0 to 3.14.0 (#530) @​dependabot
• Bump commons-io:commons-io from 2.15.0 to 2.15.1 (#531) @​dependabot
• Bump commons-io:commons-io from 2.14.0 to 2.15.0 (#526) @​dependabot

👻 Maintenance

• Execute download-licenses-proxy test at the end (#545) @​slawekjaranowski
• Added extended-info and spreadsheet-report author to the contributor list (#534) @​Master-Code-Programmer

🔧 Build

• Use Shared ASF Action from Release Drafter (#544) @​slawekjaranowski

2.3.0

🚀 New features and improvements

• #519 minor updates to reduce verbosity of standard execution (#520) @​d-ryan-ashcraft
• #517: optionally support copyright values that only contain inception year rather than year range (#518) @​d-ryan-ashcraft

🐛 Bug Fixes

• Fix #508 - Avoid NPE in AggregatorAddThirdPartyMojo (#512) @​slawekjaranowski

📦 Dependency updates

• Downgrade plexus-xml to version 3.0.0 (#523) @​slawekjaranowski
• Bump org.codehaus.mojo:mojo-parent from 76 to 77 (#516) @​dependabot
• Bump commons-io:commons-io from 2.13.0 to 2.14.0 (#515) @​dependabot
• Bump org.apache.commons:commons-lang3 from 3.12.0 to 3.13.0 (#514) @​dependabot
• Bump plexus-xml from 4.0.1 to 4.0.2 (#510) @​dependabot

... (truncated)

Commits

• d45692d [maven-release-plugin] prepare release 2.4.0
• e54da35 Require Maven 3.6.3 as minimum
• 527582a Use Shared ASF Action from Release Drafter
• add09c0 Execute download-licenses-proxy test at the end
• 698180e Bump org.codehaus.mojo:mojo-parent from 77 to 78
• 1a8446b Get rid usage of MavenSession#lookup
• ec65730 Deploy snapshot version to oss.sonatype.org
• cdbd7e9 Bump org.apache.poi:poi-ooxml from 5.2.4 to 5.2.5
• 16d47a5 Bump commons-io:commons-io from 2.13.0 to 2.15.1
• 7a7248c Added extended-info and spreadsheet-report author to the contributor list (#534)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud