Bump whelk-io/maven-settings-xml-action from 9 to 21

[dependabot]

Bumps whelk-io/maven-settings-xml-action from 9 to 21.

Release notes

Sourced from whelk-io/maven-settings-xml-action's releases.

Node and dependency upgrade

• Upgrade action to use Node 16
• Bump dependencies to latest versions

Support for proxies

• Add support for proxies
• Upgrade actions/setup-java from 1.4.3 to 2.2.0

Add option for custom filepath for settings.xml

• Add option for custom filepath for settings.xml, fixes #111

• Add basic maven application for testing build, fixes #114

• Add CodeQL analysis automated workflow

Default repository and activeProfile configuration

Maven Central is now an optional repository. Override this default configuration at repository.

- name: maven-settings-xml-action
  uses: whelk-io/maven-settings-xml-action@v17
  with:
    repositories: |
      [
        {
          "id": "some-repository",
          "name": "some-repository-name",
          "url": "http://some.repository.url",
          "releases": {
            "enabled": "true"
          },
          "snapshots": {
            "enabled": "false"
          }
        }
      ]

When repository is not configured, the following default is applied to settings.xml:

<profiles>
  <profile>
    <id>github</id>
    <repositories>
      <repository>
        <id>central</id>
        <name>Maven Central</name>
        <url>https://repo1.maven.org/maven2</url>
        <releases>
</tr></table> 

... (truncated)

Commits

• 7c60eb9 Release dependency updates (#151)
• 554f3ca Upgrade dependencies to latest versions, clear vulnerabilities (#144)
• ca5d4e9 Bump @​xmldom/xmldom from 0.7.5 to 0.8.3 (#149)
• cee7c2f Upgrade dependencies to latest versions, clear vulnerabilities (#143)
• 2128753 Merge pull request #129 from whelk-io/develop
• b139582 Update README.md
• d8dda26 Update version numbers in readme
• 98d6a3a add unit test for updatePolicy
• 8a613be Merge pull request #128 from whelk-io/develop
• 70088ab Add support for proxies (#127)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)