Bump org.opensearch:opensearch-core from current to 2.11.0 in /buildSrc/src/testKit/thirdPartyAudit

[dependabot]

Bumps org.opensearch:opensearch-core from current to 2.11.0.

Release notes

Sourced from org.opensearch:opensearch-core's releases.

2.11.0

2023-10-12 Version 2.11.0 Release Notes

[2.11]

Added

• Add coordinator level stats for search latency (#8386)
• Add metrics for thread_pool task wait time (#9681)
• Async blob read support for S3 plugin (#9694)
• [Telemetry-Otel] Added support for OtlpGrpcSpanExporter exporter (#9666)
• Async blob read support for encrypted containers (#10131)
• Implement Visitor Design pattern in QueryBuilder to enable the capability to traverse through the complex QueryBuilder tree. (#10110)
• Add capability to restrict async durability mode for remote indexes (#10189)
• Add Doc Status Counter for Indexing Engine (#4562)
• Add unreferenced file cleanup count to merge stats (#10204)
• Configurable merge policy for index with an option to choose from LogByteSize and Tiered merge policy (#9992)
• [Remote Store] Add support to restrict creation & deletion if system repository and mutation of immutable settings of system repository (#9839)
• Improve compressed request handling (#10261)

Dependencies

• Bump JNA version from 5.5 to 5.13 (#9963)
• Bump peter-evans/create-or-update-comment from 2 to 3 (#9575)
• Bump actions/checkout from 2 to 4 (#9968)
• Bump OpenTelemetry from 1.26.0 to 1.30.1 (#9950)
• Bump org.apache.commons:commons-compress from 1.23.0 to 1.24.0 ([Bump org.apache.commons:commons-compress from 1.23.0 to 1.24.0 opensearch-project/OpenSearch#9973, #9972](opensearch-project/OpenSearch#9973, opensearch-project/OpenSearch#9972))
• Bump com.google.cloud:google-cloud-core-http from 2.21.1 to 2.23.0 (#9971)
• Bump mockito from 5.4.0 to 5.5.0 (#10022)
• Bump bytebuddy from 1.14.3 to 1.14.7 (#10022)
• Bump com.zaxxer:SparseBitSet from 1.2 to 1.3 (#10098)
• Bump tibdex/github-app-token from 1.5.0 to 2.1.0 (#10125)
• Bump org.wiremock:wiremock-standalone from 2.35.0 to 3.1.0 (#9752)
• Bump org.eclipse.jgit from 6.5.0 to 6.7.0 (#10147)
• Bump codecov/codecov-action from 2 to 3 (#10209)
• Bump com.google.http-client:google-http-client-jackson2 from 1.43.2 to 1.43.3 (#10126)
• Bump org.xerial.snappy:snappy-java from 1.1.10.3 to 1.1.10.5 (#10206, #10299)
• Bump org.bouncycastle:bcpkix-jdk15to18 from 1.75 to 1.76 (10219)`
• Bump org.bouncycastle:bcprov-jdk15to18 from 1.75 to 1.76 (10219)`
• Bump org.bouncycastle:bcmail-jdk15to18 from 1.75 to 1.76 (10219)`
• Bump asm from 9.5 to 9.6 (#10302)
• Bump netty from 4.1.97.Final to 4.1.99.Final (#10303)
• Bump peter-evans/create-pull-request from 3 to 5 (#10301)
• Bump org.apache.avro:avro from 1.11.2 to 1.11.3 (#10210)
• Bump netty from 4.1.99.Final to 4.1.100.Final (#10564)

Changed

• Add instrumentation in rest and network layer. (#9415)
• Allow parameterization of tests with OpenSearchIntegTestCase.SuiteScopeTestCase annotation (#9916)
• Add instrumentation in transport service. (#10042)
• [Tracing Framework] Add support for SpanKind. (#10122)
• Pass parent filter to inner query in nested query (#10246)

... (truncated)

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

The following labels could not be found: dependabot.

[dependabot]

Superseded by #217.