fix(sec): upgrade org.apache.commons:commons-dbcp2 to 2.9.0

[cubxxw]

What happened？

There are 1 security vulnerabilities found in org.apache.commons:commons-dbcp2 2.7.0

• MPS-2022-12024

What did I do？

Upgrade org.apache.commons:commons-dbcp2 from 2.7.0 to 2.9.0 for vulnerability fix

What did you expect to happen？

Ideally, no insecure libs should be used.

How can we automate the detection of these types of issues?

By using the GitHub Actions configurations provided by murphysec, we can conduct automatic code security checks in our CI pipeline.

[linghengqian]

• https://github.com/apache/shardingsphere-elasticjob/blob/master/elasticjob-distribution/elasticjob-cloud-scheduler-distribution/src/main/release-docs/LICENSE needs to be updated.

[codecov-commenter]

Codecov Report

Merging #2255 (c57548a) into master (3ef82d3) will decrease coverage by 0.13%.
The diff coverage is n/a.

@@             Coverage Diff              @@
##             master    #2255      +/-   ##
============================================
- Coverage     84.57%   84.44%   -0.13%     
+ Complexity     1930     1928       -2     
============================================
  Files           287      287              
  Lines          6340     6340              
  Branches        704      704              
============================================
- Hits           5362     5354       -8     
- Misses          654      659       +5     
- Partials        324      327       +3     

see 3 files with indirect coverage changes

📣 We’re building smart automated test selection to slash your CI/CD build times. Learn more

[linghengqian]

• Looks Good To Me.