Bump org.opensearch:opensearch-core from current to 3.5.0 in /buildSrc/src/testKit/thirdPartyAudit

[dependabot]

Bumps org.opensearch:opensearch-core from current to 3.5.0.

Release notes

Sourced from org.opensearch:opensearch-core's releases.

3.5.0

Version 3.5.0 Release Notes

Compatible with OpenSearch and OpenSearch Dashboards version 3.5.0

Added

• Add support for fields containing dots in their name as literals (#19958)
• Add support for forward translog reading (#20163)
• Added public getter method in SourceFieldMapper to return excluded field (#20205)
• Add integ test for simulating node join left event when data node cluster state publication lag because the cluster applier thread being busy (#19907).
• Relax jar hell check when extended plugins share transitive dependencies (#20103)
• Added public getter method in SourceFieldMapper to return included field (#20290)
• Support for HTTP/3 (server side) (#20017)
• Add circuit breaker support for gRPC transport to prevent out-of-memory errors (#20203)
• Add index-level-encryption support for snapshots and remote-store (#20095)
• Adding BackWardCompatibility test for remote publication enabled cluster (#20221)
• Support for hll field mapper to support cardinality rollups (#20129)
• Add tracing support for StreamingRestChannel (#20361)
• Introduce new libs/netty4 module to share common implementation between netty-based plugins and modules (transport-netty4, transport-reactor-netty4) (#20447)
• Add validation to make crypto store settings immutable (#20123)
• Introduce concurrent translog recovery to accelerate segment replication primary promotion (#20251)
• Update to almalinux:10 (#20482)
• Add X-Request-Id to uniquely identify a search request (#19798)
• Added TopN selection logic for streaming terms aggregations (#20481)
• Added support for Intra Segment Search (#19704)
• Introduce AdditionalCodecs and EnginePlugin::getAdditionalCodecs hook to allow additional Codec registration (#20411)

Changed

• Handle custom metadata files in subdirectory-store (#20157)
• Add support for missing proto fields in GRPC FunctionScore and Highlight (#20169)
• Ensure all modules are included in INTEG_TEST testcluster distribution (#20241)
• Cleanup HttpServerTransport.Dispatcher in Netty tests (#20160)
• Use compact object headers with JDK25+ (#20392)
• Add cluster.initial_cluster_manager_nodes to testClusters OVERRIDABLE_SETTINGS (#20348)
• Add BigInteger support for unsigned_long fields in gRPC transport (#20346)
• Install demo security information when running ./gradlew run -PinstalledPlugins="['opensearch-security']" (#20372)
• Add Alt-Svc header support to advertise HTTP/3 availability (#20434)
• Refactor streaming agg query phase planning (#20471)

Fixed

• Fix Snapshot rename replacement unbounded length rename (#20464)
• Fix segment replication failure during rolling restart (#19234)
• Fix bug of warm index: FullFileCachedIndexInput was closed error (#20055)
• Fix flaky test ClusterMaxMergesAtOnceIT.testClusterLevelDefaultUpdatesMergePolicy (#18056)
• Fix bug in Assertion framework(Yaml Rest test): numeric comparison fails when comparing Integer vs Long (or Float vs Double) (#19376)
• Fix Netty deprecation warnings in transport-netty4 module (#20233)
• Fix snapshot restore when an index sort is present (#20284)
• Fix SearchPhaseExecutionException to properly initCause (#20320)
• [repository-s3] remove endpointOverride and let AWS SDK V2 S3 determine the s3 url based on bucket name or arn provided (#20345)
• Fix cluster.remote.<cluster_alias>.server_name setting no populating SNI (#20321)

... (truncated)

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Labels

The following labels could not be found: dependabot. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.