fix(deps): update httpclient5 to v5.6.1

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
org.apache.httpcomponents.client5:httpclient5 (source)	5.2 → 5.6.1

---

Release Notes

apache/httpcomponents-client (org.apache.httpcomponents.client5:httpclient5)

v5.6

This is the first ALPHA release in the 5.6 release series. It adds several features
such as transport content decompression and content compression for the async transport,
support for Unix sockets, experimental support for SCRAM-SHA-256 authentication scheme,
and Micrometer/OTel observations & metrics.

Commons Compress, Brotli codec, and ZStd codec are optional dependencies and get
wired into the execution pipeline only if present on the classpath.

Notable changes and features included in the 5.6 series:

• Unix domain socket support.

• Support for pluggable content codecs via Commons-Compress in the classic transport.
  (optional).

• Support for transparent content decompression and content compression with deflate,
  gzip, zstd (optional), and brotli (optional) codecs in the async transport.

• Micrometer/OTel observations & metrics (optinal).

• Off-lock connection disposal by the classic pooling connection manager. Experimental.

• SCRAM-SHA-256 authentication scheme (RFC 7804). Experimental.

• Request Priority support (RFC 9218). Experimental.

Compatibility notes:

• As of this version, HttpClient uses BUILTIN HostnameVerificationPolicy by default, delegating
  host verification to JSSE security manager. One must explicitly configure the TLS strategy
  to continue using the hostname verifier shipped with HttpClient.

• Five-second TCP keep-alive is now enabled by default.

v5.5

This is the first GA release in the 5.5 release series. This release finalizes the 5.5
APIs and adds several experimental features and improvements, such as request multiplexing
over a shared HTTP/2 connection and the Classic API facade acting as a compatibility
bridge between classic I/O client services and the asynchronous message transport used
internally.

Notable changes and features included in the 5.5 series:

• Improved conformance to RFC 7616 (HTTP Digest Access Authentication).

• The connection pool implementation acts as a caching facade in front of a standard
  managed connection pool and shares already leased connections to multiplex message
  exchanges over active HTTP/2 connections. Experimental.

• Extended Auth API and improved authentication protocol logic to support mutual
  authentication.

• The Classic API facade now acts as a compatibility bridge between the classic I/O client
  services (based on the standard InputStream / OutputStream model) and the asynchronous
  message transport used internally. This is experimental.

• HTTP/2 support for the Fluent Facade (via Classic API facade). This is experimental.

Compatibility notes:

• As of this release, HttpClient does not automatically execute redirects if the original
  request manually added headers that are considered sensitive.

v5.4

This is the first GA release in the 5.4 release series. This release finalizes the 5.4 APIs,
upgrades HttpCore to version 5.3 and improves the Public Suffix matching algorithm implementation.

IMPORTANT! The new cache entry serialization format is incompatible with earlier
versions of HttpClient Cache. Persistent caches (file system based, Memcached, EhCAche
with object serialization) created with any earlier version MUST be flushed and re-populated
or the cache backend MUST be configured to use the old, deprecated cache entry serializer.

Notable changes and features included in the 5.4 series:

• Improved conformance to RFC 9110 (HTTP Semantics), RFC 7616 (HTTP Digest Access
  Authentication), RFC 2617 (’Basic’ HTTP Authentication Scheme).

• UTF-8 encoding is used by default for text where appropriate.

• Compatibility with Java Virtual Threads and Java 21 Runtime.

• Redesign and rewrite of the HTTP caching protocol layer for better efficiency
  and improved conformance to RFC 9111 (HTTP Caching).

• Cache control and context APIs.

• ETag APIs.

• TLS SNI and endpoint identification improvements.

• Support for RFC 2817 (Upgrading to TLS Within HTTP/1.1).

• Auth cache no longer makes use of Java serialization.

• Deprecation of ConnectionSocketFactory and LayeredConnectionSocketFactory.

• HttpContext optimization and performance improvement.

• Async cache is no longer considered experimental.

v5.3

This is the first GA release in the 5.3 release series. This release finalizes the 5.3 APIs
and also includes all bug fixes from the 5.2 release branch.

The 5.3 release series introduces support for the Bearer authentication scheme (RFC 6750) and
deprecates NTLM and GSS-based experimental authentication schemes in favor of Basic / Bearer
authentication with TLS.

Notable changes and features included in the 5.3 series:

• Introduction of the Bearer authentication scheme.

• Deprecation of the NTLM authentication scheme.

• Deprecation of the GSS-based experimental authentication schemes.

• Support for load distribution across multiple proxies.

v5.2.1

This is a maintenance release that fixes several regressions found in release 5.2.

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • At any time (no schedule defined)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.