diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index 816436b6f..61e3a48b5 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -13,11 +13,7 @@ updates:
- dependency-name: "com.puppycrawl.tools:checkstyle"
# Newer versions have issues, see #1909 and #2050
- dependency-name: "jline:jline"
- # Later versions of these Maven dependencies are incompatible and require careful management
- - dependency-name: "org.apache.maven.resolver:maven-resolver-connector-basic"
- - dependency-name: "org.apache.maven.resolver:maven-resolver-transport-http"
- - dependency-name: "org.apache.maven:maven-resolver-provider"
- # Used with above maven-resolver dependencies
+ # Used with maven-resolver dependencies; 2.0 update breaks other providers
- dependency-name: "org.slf4j:slf4j-api"
update-types: ["version-update:semver-major"]
# 2.0 update is substantively breaking
diff --git a/api/pom.xml b/api/pom.xml
index 81179f0f7..52e81e042 100644
--- a/api/pom.xml
+++ b/api/pom.xml
@@ -51,21 +51,21 @@
org.apache.maven
maven-resolver-provider
- 3.8.5
+ 3.9.1
provided
org.apache.maven.resolver
maven-resolver-connector-basic
- 1.7.3
+ 1.9.7
provided
org.apache.maven.resolver
maven-resolver-transport-http
- 1.7.3
+ 1.9.7
provided
diff --git a/proxy/pom.xml b/proxy/pom.xml
index 3a8aaa354..ed070b34b 100644
--- a/proxy/pom.xml
+++ b/proxy/pom.xml
@@ -103,19 +103,19 @@
org.apache.maven
maven-resolver-provider
- 3.8.5
+ 3.9.1
runtime
org.apache.maven.resolver
maven-resolver-connector-basic
- 1.7.3
+ 1.9.7
runtime
org.apache.maven.resolver
maven-resolver-transport-http
- 1.7.3
+ 1.9.7
runtime