Use spotbugs plugin 4.8.2.0 with new exclusions (jenkinsci#1085)

Preparing for future upgrade of the plugin parent pom

Author: MarkEWaite

pom.xml

@@ -67,6 +67,7 @@
     <jenkins.version>2.401.3</jenkins.version>
     <jgit.version>6.8.0.202311291450-r</jgit.version>
     <spotbugs.effort>Max</spotbugs.effort>
+    <spotbugs-maven-plugin.version>4.8.2.0</spotbugs-maven-plugin.version>
     <spotbugs.threshold>Low</spotbugs.threshold>
     <spotless.check.skip>false</spotless.check.skip>
   </properties>

src/spotbugs/excludesFilter.xml

@@ -4,6 +4,24 @@
     Exclusions in this section have been triaged and determined to be
     false positives.
   -->
+  <Match>
+    <!-- Jenkins plugins generally not vulnerable to Finalizer attacks -->
+    <Bug pattern="CT_CONSTRUCTOR_THROW" />
+    <Or>
+      <Class name="hudson.plugins.git.GitAPI" />
+      <Class name="org.jenkinsci.plugins.gitclient.JGitAPIImpl$FileRepositoryImpl" />
+      <Class name="org.jenkinsci.plugins.gitclient.trilead.TrileadSession$ProcessImpl" />
+    </Or>
+  </Match>
+  <Match>
+    <!-- These primitive attributes need to be public to preserve the API -->
+    <Bug pattern="PA_PUBLIC_PRIMITIVE_ATTRIBUTE" />
+    <Class name="hudson.plugins.git.Tag" />
+    <Or>
+      <Field name="commitMessage" />
+      <Field name="commitSHA1" />
+    </Or>
+  </Match>
   <Match>
     <!-- intentional and accepted that it is not restored -->
     <Bug pattern="SE_TRANSIENT_FIELD_NOT_RESTORED" />