Bump com.microsoft.azure:applicationinsights-runtime-attach from 3.6.2 to 3.7.0

[dependabot]

Bumps com.microsoft.azure:applicationinsights-runtime-attach from 3.6.2 to 3.7.0.

Release notes

Sourced from com.microsoft.azure:applicationinsights-runtime-attach's releases.

Application Insights Java 3.7.0 (GA)

Enhancements

• Support for Live Metrics Filtering (#43040, #43184, #43289, #43323, #43506, #43744)
• Update to OpenTelemetry Java Instrumentation 2.12.0 (#4034)
• Remove user sensitive data from self-diagnostics (#3976)
• Exclude META-INF/maven/** from agent jar to avoid CVE false positives (#4040)
• Don't log Log Records (when debug logging enabled) if they are sampled out (#3936)
• Include NICE, IRQ, SOFTIRQ, and STEAL in \\Processor(_Total)\\% Processor Time metric (#3987)
• Add note to applicationinsights.log to make sure that private information is removed from the log (#4011)
• Support finding applicationinsights.json in current dir when using runtime attach (#3990)
• Add a warning message if the applicationinsights-agent jar is in the classpath in Java 11+ (#4039)

Changelog

Sourced from com.microsoft.azure:applicationinsights-runtime-attach's changelog.

Version 3.7.0 GA (01/22/2025)

Enhancements

• Support for Live Metrics Filtering (#43040, #43184, #43289, #43323, #43506, #43744)
• Update to OpenTelemetry Java Instrumentation 2.12.0 (#4034)
• Remove user sensitive data from self-diagnostics (#3976)
• Exclude META-INF/maven/** from agent jar to avoid CVE false positives (#4040)
• Don't log Log Records (when debug logging enabled) if they are sampled out (#3936)
• Include NICE, IRQ, SOFTIRQ, and STEAL in \\Processor(_Total)\\% Processor Time metric (#3987)
• Add note to applicationinsights.log to make sure that private information is removed from the log (#4011)
• Support finding applicationinsights.json in current dir when using runtime attach (#3990)
• Add a warning message if the applicationinsights-agent jar is in the classpath in Java 11+ (#4039)

Commits

• fc09cc5 Bump com.github.ben-manes.versions from 0.51.0 to 0.52.0 (#4044)
• ea752e4 Bump com.github.spotbugs.snom:spotbugs-gradle-plugin from 6.1.2 to 6.1.3 (#4046)
• 9080324 Bump version to 3.7.0 (#4042)
• 7a207f2 Update changelog for 3.7.0 release (#4041)
• a874c5e Exclude META-INF/maven from shaded libraries (#4040)
• 42b6730 Java agent class path warning printed from Java 11 (#4039)
• 94ce828 Bump org.assertj:assertj-core from 3.27.2 to 3.27.3 (#4036)
• c79a6c1 Bump org.owasp:dependency-check-gradle from 12.0.0 to 12.0.1 (#4035)
• a99e37b Update to autoconfigure module (#4037)
• 4b8c4fb Bump com.github.spotbugs:spotbugs-annotations from 4.8.6 to 4.9.0 (#4028)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)