From 2ceb75206454c016243d06f9b8d2d89823a5e369 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 13 Jan 2025 09:14:12 +0000
Subject: [PATCH 1/2] Bump org.owasp.dependencycheck from 11.1.1 to 12.0.0

Bumps org.owasp.dependencycheck from 11.1.1 to 12.0.0.

---
updated-dependencies:
- dependency-name: org.owasp.dependencycheck
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 java-client/build.gradle.kts  | 2 +-
 java-codegen/build.gradle.kts | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/java-client/build.gradle.kts b/java-client/build.gradle.kts
index ea98a85c0..3f95a9a9e 100644
--- a/java-client/build.gradle.kts
+++ b/java-client/build.gradle.kts
@@ -52,7 +52,7 @@ plugins {
     `java-library`
     `maven-publish`
     id("com.github.jk1.dependency-license-report") version "2.9"
-    id("org.owasp.dependencycheck") version "11.1.1"
+    id("org.owasp.dependencycheck") version "12.0.0"
 
     id("opensearch-java.spotless-conventions")
 }
diff --git a/java-codegen/build.gradle.kts b/java-codegen/build.gradle.kts
index 1cbb20c12..4800b391c 100644
--- a/java-codegen/build.gradle.kts
+++ b/java-codegen/build.gradle.kts
@@ -31,7 +31,7 @@ buildscript {
 plugins {
     application
     id("com.github.jk1.dependency-license-report") version "2.9"
-    id("org.owasp.dependencycheck") version "11.1.1"
+    id("org.owasp.dependencycheck") version "12.0.0"
     id("de.undercouch.download") version "5.6.0"
 
     id("opensearch-java.spotless-conventions")

From c925066e5c303b684299b552b5e02a25e1220824 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 13 Jan 2025 09:15:12 +0000
Subject: [PATCH 2/2] Update changelog

Signed-off-by: dependabot[bot] <support@github.com>
---
 CHANGELOG.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 58ee1129c..9d0cf81ce 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -9,6 +9,7 @@ Inspired from [Keep a Changelog](https://keepachangelog.com/en/1.0.0/)
 - Bumps `org.apache.httpcomponents.client5:httpclient5` from 5.4 to 5.4.1
 - Bumps `org.apache.httpcomponents.core5:httpcore5` from 5.3 to 5.3.1
 - Bump `org.junit:junit-bom` from 5.11.3 to 5.11.4 ([#1367](https://github.com/opensearch-project/opensearch-java/pull/1367))
+- Bump `org.owasp.dependencycheck` from 11.1.1 to 12.0.0 ([#1381](https://github.com/opensearch-project/opensearch-java/pull/1381))
 
 This section is for maintaining a changelog for all breaking changes for the client that cannot be released in the 2.x line. All other non-breaking changes should be added to [Unreleased 2.x] section.