build(deps): bump quarkus.version from 3.9.4 to 3.10.0

[dependabot]

Bumps quarkus.version from 3.9.4 to 3.10.0.
Updates io.quarkus:quarkus-bom from 3.9.4 to 3.10.0

Release notes

Sourced from io.quarkus:quarkus-bom's releases.

3.10.0.CR1

Major changes

• #36504 - Allow authentication mechanism selection for a REST endpoint with annotation
• #37816 - Optional support for the OIDC session cookie dir encryption
• #39295 - Move package config to an interface
• #39415 - Extension for the Hibernate Search Standalone Pojo Mapper with Elasticsearch
• #39793 - Support for verifying OIDC JWT claims with custom Jose4j Validator
• #39812 - Support resolving of static OIDC tenants based on token issuers
• #40056 - Add OIDC TokenCertificateValidator

Complete changelog

• #10267 - LDAP Security - Don't re-authenticate on every request
• #14851 - Quarkus keycloak authorization usability improvements.
• #26182 - Hibernate Search Standalone Pojo Mapper: Hibernate Search without Hibernate ORM / datasource
• #34664 - Provide a way to specify HttpAuthenticationMechanism per JAX-RS resource
• #35952 - Get management interface resolved port when quarkus.management.test-port set to 0
• #36504 - Allow authentication mechanism selection for a REST endpoint with annotation
• #37676 - Bump com.microsoft.azure.functions:azure-functions-java-library from 2.2.0 to 3.1.0
• #37700 - Bump com.amazonaws:aws-lambda-java-events from 3.11.3 to 3.11.4
• #37785 - Consider using direct JWE encryption of the OIDC session cookie
• #37816 - Optional support for the OIDC session cookie dir encryption
• #37875 - Restart and other hotkey in devui
• #38026 - Missing security requirement on operation level, declared @RolesAllowed in implementing class derived from a generated openapi java interface
• #38373 - Webauthn improvements : docs, customisable cookies, virtual thread support
• #38535 - OIDC Tenant Resolution for web-app applications does not explain that the session cookie has a tenant id recorded
• #38696 - OIDC Multitinancy by actual answer from teenant
• #38940 - Offer a way to block inside custom SecurityContext.isUserInRole with resteasy-reactive
• #39011 - quarkus-redis-client tracing
• #39015 - Bump org.wiremock:wiremock-standalone from 3.4.1 to 3.4.2
• #39061 - RunOnVirtualThread should avoid using Netty FastThreadLocals
• #39104 - Use followOutput for lra-coordinator container
• #39156 - Add the ability to ask for devservices to use the shared network
• #39170 - Bump actions/upload-artifact and download-artifact to v4
• #39182 - WebSockets Next: detect incorrect path parameter usage
• #39269 - Simplify configuration based mapping of token roles to deployment-specific SecurityIdentity
• #39295 - Move package config to an interface
• #39322 - [Mandrel 23.0] hibernate-orm-panache-kotlin native integration tests fail with 23.0 build and 23.1.2 sdk.
• #39339 - Simplify configuration based mapping of token roles to deployment-specific SecurityIdentity
• #39348 - Remove message to avoid using testNative until proven it works
• #39391 - AuthenticationSuccessEvent event is not created on successful authorization using FormAuthenticationMechanism
• #39395 - Invalid warnings about SQL Server version "0.0.0" on startup
• #39406 - Improve documentation for AMQP client options about setting a heartbeat
• #39407 - Fix update-version.sh script
• #39414 - Deploy relocations for snapshots
• #39415 - Extension for the Hibernate Search Standalone Pojo Mapper with Elasticsearch
• #39417 - OIDC TenantConfigResolver and TenantResolver are called even if the tenant id is already resolved
• #39424 - Bump org.asciidoctor:asciidoctorj from 2.5.11 to 2.5.12
• #39425 - Support for verifying OIDC JWT claims with custom Jose4j Validator

... (truncated)

Commits

• ecc0681 [RELEASE] - Bump version to 3.10.0
• aa799f8 Merge pull request #40206 from gsmet/3.10.0-backports-1
• bbc9b9a Fix rest-client-jackson add extension name
• 0ba3461 Bump io.smallrye.beanbag:smallrye-beanbag-maven from 1.4.0 to 1.4.1
• 46fca01 Add documentation to NativeImageResourceBuildItem's constructors
• d02685b Fix resource registration for native compilation
• cfe59bb Fix a compilation problem in the SmallRye GraphQL guide
• 911ac6e Bump BouncyCastle version to 1.78.1
• 17517c5 WebSockets Next: produce ExecutionModelAnnotationsAllowedBuildItem
• 44026ec Qute: use the relative resource path for NativeImageResourceBuildItem
• Additional commits viewable in compare view

Updates io.quarkus:quarkus-security from 3.9.4 to 3.10.0

Updates io.quarkus:quarkus-core from 3.9.4 to 3.10.0

Updates io.quarkus:quarkus-elytron-security-properties-file from 3.9.4 to 3.10.0

Updates io.quarkus:quarkus-resteasy-reactive from 3.9.4 to 3.10.0

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)