deps: bump redis.clients:jedis from 7.2.1 to 7.3.0

[dependabot]

Bumps redis.clients:jedis from 7.2.1 to 7.3.0.

Release notes

Sourced from redis.clients:jedis's releases.

7.3.0

Changes

Jedis 7.3.0 introduces support for Redis 8.6, including new commands and features for streams idempotent production, and HOTKEYS.

🚀 New Features

• [streams] Preserve field insertion order in stream entries (CAE-2341) (#4419)
• [automatic failover] Add support for initialization policy for multidb connection (#4427)
• feat: Add support for FT.HYBRID command (#4342) (#4405)
• feat: Add support for HOTKEYS command (#4421) (#4417)(#4426)
• feat: [TS] Add support for NaN values and new aggregations (#4415)
• Add support for XADD idempotency (at-most-once guarantee) with new IDMPAUTO and IDMP arguments. (#4422) (#4413)
• Add DELEX and DIGEST commands to pipeline interfaces (#4414)
• Add configurable retry delay for Sentinel reconnection (#2864) (#4379)

🐛 Bug Fixes

• RedisClient builder does not use credentials from JedisClientConfig (#4424)
• Calculate maxTotalRetriesDuration from socketTimeout * maxAttempts if not set (#4396)

🧰 Maintenance

• Bump org.junit:junit-bom from 5.14.2 to 5.14.3 (#4433)
• Refactor TLS tests (#4431)
• Bump org.apache.httpcomponents.client5:httpclient5-fluent from 5.5.1 to 5.6 (#4380)
• Bump org.apache.maven.plugins:maven-compiler-plugin from 3.14.1 to 3.15.0 (#4418)
• Add 8.6 pre to test matrix (#4410)
• Bump jackson.version from 2.20.1 to 2.21.0 (#4408)
• Add missing command deprecations (#4397)
• Fix flaky cluster tests by accepting either retry limit error (maxAttempts or maxTotalRetriesDuration) (#4399)
• Use endpoint instead of env variable in module tests (#4398)
• Fix flaky AccessControlListCommandsTest (#4394)
• Bump org.sonatype.central:central-publishing-maven-plugin from 0.9.0 to 0.10.0 (#4390)
• Bump org.json:json from 20250517 to 20251224 (#4391)
• Bump org.junit:junit-bom from 5.13.4 to 5.14.2 (#4392)
• Remove hard-coded endpoints from the tests and rely solely on endpoints.json (#4385)
• Fix ClusterTopologyRefreshIT (#4389)
• Bump org.apache.maven.plugins:maven-jar-plugin from 3.4.2 to 3.5.0 (#4383)
• Bump org.apache.maven.plugins:maven-release-plugin from 3.3.0 to 3.3.1 (#4381)

Contributors

We'd like to thank all the contributors who worked on this release!

@​Dgramada, @​Peter-Sh, @​a-TODO-rov, @​atakavci, @​dependabot, @​dependabot[bot], @​ggivo, @​uglide and @​viktoriya-kutsarova

Commits

• c80601e run release drafter manually (#4434)
• 295f770 Bump org.junit:junit-bom from 5.14.2 to 5.14.3 (#4433)
• f6b4175 Remove cluster-stack endpoint (#4432)
• cc42541 Refactor TLS tests (#4431)
• 2ab42df ci: add reusable run-tests action and support custom test image/tag (#4425)
• d7f046a [streams] Preserve field insertion order in stream entries (CAE-2341) (#4419)
• 6aabfcf [automatic failover] Add support for initialization policy for multidb connec...
• 0af1fb8 Add hybrid search (#4405)
• 3582046 HOTKEYS - Fix slots parsing (#4426)
• a7897b3 RedisClient builder does not use credentials from JedisClientConfig (#4424)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

Dependency Review

The following issues were found:

• ✅ 0 vulnerable package(s)
• ✅ 0 package(s) with incompatible licenses
• ✅ 0 package(s) with invalid SPDX license definitions
• ⚠️ 1 package(s) with unknown licenses.

See the Details below.

License Issues

pom.xml

Package	Version	License	Issue Type
redis.clients:jedis	7.3.0	Null	Unknown License

OpenSSF Scorecard

Package	Version	Score	Details
maven/redis.clients:jedis	7.3.0	🟢 6.2	Details Check Score Reason Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Code-Review 🟢 9 Found 20/21 approved changesets -- score normalized to 9 Maintained 🟢 10 30 commit(s) and 13 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 10 no binaries found in the repo Security-Policy ⚠️ 0 security policy file not detected License 🟢 10 license file detected Fuzzing 🟢 10 project is fuzzed Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Signed-Releases ⚠️ -1 no releases found Packaging 🟢 10 packaging workflow detected SAST 🟢 10 SAST tool is run on all commits Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Vulnerabilities ⚠️ 0 11 existing vulnerabilities detected

Scanned Files

• pom.xml