Bump metrics-core from 4.1.12.1 to 4.1.21

[dependabot]

Bumps metrics-core from 4.1.12.1 to 4.1.21.

Release notes

Sourced from metrics-core's releases.

4.1.21

• Allows URIs served by the AdminServlet to be individually enabled/disabled dropwizard/metrics#1891

v4.1.20

Improvements

• HealthCheckServlet configurable object mapper and status indicator (#1871)

Dependency updates

• Bump amqp-client from 5.11.0 to 5.12.0 (#1852)
• Bump ehcache from 3.9.2 to 3.9.3 (#1878)
• Bump jetty9.version from 9.4.39.v20210325 to 9.4.40.v20210413 (#1875)
• Update dependency org.glassfish.jaxb:jaxb-runtime to v2.3.4 (release/4.1.x) (#1864)
• Bump jcstress-core from 0.8 to 0.9 (#1879)
• Bump mockito-core from 3.8.0 to 3.9.0 (#1847)
• Bump actions/cache from v2.1.4 to v2.1.5 (#1862)
• Bump actions/setup-java from v1 to v2 (#1845)

v4.1.19

⚠️ Security fixes

• Bump jetty9.version from 9.4.37.v20210219 to 9.4.39.v20210325 (#1767, #1835)
  • This is addressing various security issues (Jetty 9.4.39.v20210325 release notes).
  • GHSA-j6qj-j888-vvgq
  • GHSA-26vr-8j45-3r4w
  • GHSA-v7ff-8wcx-gmc5

Improvements

• Make metrics-caffeine compatible with Caffeine 2.x and 3.x (#1765)

Dependency updates

• Bump ehcache from 3.9.1 to 3.9.2 (#1766)
• Update dependency com.google.errorprone:error_prone_core to v2.6.0 (#1769, #1840)
• Update log4j2.version to v2.14.1 (#1804)
• Bump jdbi3-core from 3.18.0 to 3.18.1 (#1829)
• Bump jcstress-core from 0.7 to 0.8 (#1825)
• Bump jmh.version from 1.27 to 1.29 (#1774, #1824)
• Bump maven-bundle-plugin from 5.1.1 to 5.1.2 (#1833)
• Bump Maven to version 3.8.1
• Bump actions/stale from v3.0.17 to v3.0.18 (#1785)

Assorted

• Configure Renovate (#1747)

v4.1.18

Dependency updates

... (truncated)

Commits

• e7d4d79 [maven-release-plugin] prepare release v4.1.21
• 32b6e3f Add per-path configurability (#1891)
• 7fd7269 Bump ehcache from 2.10.6 to 2.10.9.2 (#1889)
• 62d6c0b [maven-release-plugin] prepare for next development iteration
• 2211303 [maven-release-plugin] prepare release v4.1.20
• a34c26c Bump jcstress-core from 0.8 to 0.9 (#1879)
• 4007a7f Bump ehcache from 3.9.2 to 3.9.3 (#1878)
• 1036033 HealthCheckServlet object mapper and status indicator (#1871)
• f4a2c58 Bump jetty9.version from 9.4.39.v20210325 to 9.4.40.v20210413 (#1875)
• e4f36bb Update dependency org.glassfish.jaxb:jaxb-runtime to v2.3.4 (release/4.1.x) (...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

[dependabot]

Superseded by #102.