Bump hibernate-core from 5.4.0.Final to 5.5.4.Final

[dependabot-preview]

Bumps hibernate-core from 5.4.0.Final to 5.5.4.Final.

Changelog

Sourced from hibernate-core's changelog.

Changes in 5.5.4.Final (July 19, 2021)

https://hibernate.atlassian.net/projects/HHH/versions/31959

** Bug * [HHH-14730] - Failure during lazy loading of bytecode-enhancement proxy triggered by the loading of a collection with eager references to that proxy * [HHH-14722] - InformationExtractorJdbcDatabaseMetaDataImpl#getCurrentSchema() method returns currentCatalog if schema == null * [HHH-14720] - Aliases generated for mixed-case column names that end in a number are not all lower-case * [HHH-14719] - Hibernate has a dependency on apache-derby:10.11.1.1 that is vulnerable to CVE-2015-1832 with a CVSS of 9.1 and CVE-2018-1313 with a CVSS of 5.3 * [HHH-14715] - Hibernate has a dependency to maven-core:3.0.5 that is vulnerable to CVE-2021-26291 with a CVSS of 9.1 * [HHH-14608] - Merge causes StackOverflow when JPA proxy compliance is enabled

** Improvement * [HHH-14734] - No good reason tu use TypeCache(s) with WithInlineExpunction in ByteBuddy proxy generation * [HHH-14733] - Not useful to clear the bycodeprovider caches on sessionFactoryClosing * [HHH-14732] - ProxyDefinitionHelpers are immutable and can be declared static * [HHH-14731] - Simplify SPI ProxyFactoryFactory#buildBasicProxyFactory to accept a single class or interface only * [HHH-14728] - Include CamelCaseToUnderscoresNamingStrategy from Spring Boot * [HHH-14727] - Minor code cleanup in StandardSQLExceptionConverter * [HHH-14706] - Improve error message on incompatible types due to mismatched classloader * [HHH-14688] - Get IdentifierGenerator from BeanContainer if not registered

** Task * [HHH-14709] - Upgrade to Gradle 6.7.1 and move to Gradle's built-in way of testing Java modules * [HHH-14707] - Upgrade to Byte Buddy 1.11.8

Changes in 5.5.3.Final (June 22, 2021)

https://hibernate.atlassian.net/projects/HHH/versions/31957

** Bug * [HHH-14654] - geolatte-geom Geometry types no longer works with geography column types * [HHH-14597] - Regression bug: could not resolve property: null of: * [HHH-13788] - Schema update try to recreate existing tables * [HHH-4808] - SessionImpl.initializeCollection() does not release JDBC connection (if outside of a transaction)

** Improvement * [HHH-14691] - Small optimisation for updating Query Cache Statistics * [HHH-14690] - Avoid fully resetting StatisticsImpl just after its constructor

** New Feature * [HHH-11817] - Allow schema-export commands written to file to truncate in addition to current appending

Changes in 5.5.2.Final (June 14, 2021)

... (truncated)

Commits

• fb36fe2 5.5.4.Final
• c0041ba HHH-14772 InformationExtractorJdbcDatabaseMetaDataImpl#getCurrentSchema() met...
• f60d8bc HHH-14734 No good reason tu use TypeCache(s) with WithInlineExpunction
• e782ddf HHH-14733 Not useful to clear the bycodeprovider caches on sessionFactoryClosing
• 6608d03 HHH-14732 ProxyDefinitionHelpers are immutable and can be declared static
• 0768663 HHH-14731 Simplify SPI ProxyFactoryFactory#buildBasicProxyFactory to accept a...
• 5616284 HHH-14727 Minor code cleanup in StandardSQLExceptionConverter
• e4199de HHH-14707 Upgrade to Byte Buddy 1.11.8
• 0a16e34 HHH-14730 Avoid loading the same entity proxy twice for the same result set
• 4a2d19a HHH-14730 Test lazy loading of bytecode-enhancement proxy triggered by loadin...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)