Bump spotbugs-maven-plugin from 4.0.0 to 4.0.4

[dependabot-preview]

Bumps spotbugs-maven-plugin from 4.0.0 to 4.0.4.

Release notes

Sourced from spotbugs-maven-plugin's releases.

Spotbugs-maven-plugin 4.0.4

• Introduce failThreshold
• Alignment with spotbugs 4.0.4
• Remove old left over maven 2.2.1 classloader logic
• library cleanup with groovy
• Various library updates

Commits

• 0842114 [maven-release-plugin] prepare release spotbugs-maven-plugin-4.0.4
• ff24cee [pom] Bump spotbugs tag to 4.0.4 / version to 4.0.4 snapshot
• 4c91322 Merge pull request #226 from spotbugs/dependabot/maven/com.github.spotbugs-sp...
• 6cdd684 Bump spotbugs from 4.0.3 to 4.0.4
• 46b84f1 Merge pull request #222 from famod/issue-219-failThreshold
• d60412c Merge pull request #225 from hazendaz/spotbugs
• 045bdf1 [pom] Exclude groovy testng as we do not use it
• 95642af Merge pull request #224 from spotbugs/dependabot/maven/org.apache.maven.plugi...
• f409ca2 Bump maven-project-info-reports-plugin from 3.0.0 to 3.1.0
• 07e4abb Merge pull request #223 from spotbugs/dependabot/maven/commons-io-commons-io-2.7
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

• Update frequency
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

[codecov-commenter]

Codecov Report

Merging #176 into master will not change coverage.
The diff coverage is n/a.

@@            Coverage Diff            @@
##             master     #176   +/-   ##
=========================================
  Coverage     88.08%   88.08%           
  Complexity       78       78           
=========================================
  Files             8        8           
  Lines           319      319           
  Branches         47       47           
=========================================
  Hits            281      281           
  Misses           30       30           
  Partials          8        8           

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 799db85...fc33ae1. Read the comment docs.