Skip to content

chore: bump the gradle-updates group across 1 directory with 7 updates #88

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Aug 5, 2025
Merged

chore: bump the gradle-updates group across 1 directory with 7 updates #88

merged 1 commit into from
Aug 5, 2025

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Apr 14, 2025
edited
Loading

Bumps the gradle-updates group with 7 updates in the / directory:

Package From To
org.gradle.toolchains.foojay-resolver-convention 0.9.0 0.10.0
com.gradle.develocity 3.19.1 3.19.2
com.google.guava:guava 33.4.0-jre 33.4.7-jre
org.slf4j:slf4j-simple 2.0.16 2.0.17
io.github.oshai:kotlin-logging-jvm 7.0.3 7.0.6
com.vanniktech.maven.publish 0.30.0 0.31.0
com.ncorti.ktfmt.gradle 0.21.0 0.22.0

Updates org.gradle.toolchains.foojay-resolver-convention from 0.9.0 to 0.10.0

Updates com.gradle.develocity from 3.19.1 to 3.19.2

Updates com.google.guava:guava from 33.4.0-jre to 33.4.7-jre

Release notes

Sourced from com.google.guava:guava's releases.

33.4.7

Known issue: This release breaks the build of Android apps with a minSdkVersion below 26. We will publish a fixed version soon. Sorry again for the continuing trouble.

Guava 33.4.7, like 33.4.6, fixes two problems that we introduced while modularizing Guava and migrating off Unsafe in 33.4.5.

Even if you're not upgrading from Guava 33.4.0 or earlier, still read the release notes for Guava 33.4.1. Those release notes contain information about the effects of Guava 33.4.5 and higher on the module system.

Maven

<dependency>
  <groupId>com.google.guava</groupId>
  <artifactId>guava</artifactId>
  <version>33.4.7-jre</version>
  <!-- or, for Android: -->
  <version>33.4.7-android</version>
</dependency>

Jar files

Guava requires one runtime dependency, which you can download here:

Javadoc

JDiff

Changelog

  • Modified the guava module's dependency on failureaccess to be transitive. Also, modified the guava-testlib module to make its dependency on guava transitive, to remove its dependency on failureaccess, and to add a dependency (transitive) on junit. (63ecdf2239)
  • util.concurrent: Modified our fast paths to ensure that they continue to work when run through optimizers, such as those commonly used by Android apps. This fixes problems that some users may have seen since Guava 33.4.5. (b8dcaede09bcf1c3bd5fc037690498f6ac560c54, f9eff73b8d)
  • util.concurrent: Changed the guava-android copy of AbstractFuture to try VarHandle before Unsafe, eliminating a warning under newer JDKs. (7336af1831)

33.4.6

Prefer to upgrade straight to 33.4.7: While Guava 33.4.6 fixes two problems that we introduced while modularizing Guava in 33.4.5, it still contains some small problems with the module system, and it may still cause trouble for optimizers. These problems have been fixed in 33.4.7.

Even if you're not upgrading from Guava 33.4.0 or earlier, still read the release notes for Guava 33.4.1. Those release notes contain information about Guava 33.4.5 and 33.4.6's effect on the module system.

... (truncated)

Commits

Updates org.slf4j:slf4j-simple from 2.0.16 to 2.0.17

Updates io.github.oshai:kotlin-logging-jvm from 7.0.3 to 7.0.6

Release notes

Sourced from io.github.oshai:kotlin-logging-jvm's releases.

7.0.6

What's Changed

New Contributors

Full Changelog: oshai/kotlin-logging@7.0.5...7.0.6

7.0.5

What's Changed

Full Changelog: oshai/kotlin-logging@7.0.4...7.0.5

7.0.4

What's Changed

Full Changelog: oshai/kotlin-logging@7.0.3...7.0.4

Commits
  • 1b81239 bump version to 7.0.7
  • 06f6e71 Fix native image compilation when Logback is not on the classpath (#491)
  • 730e279 Bump actions/cache from 4.2.2 to 4.2.3
  • fe2f82a Bump com.android.library from 8.8.2 to 8.9.0
  • 681dfa5 bump version to 7.0.6
  • 9f1d8e0 Bump com.diffplug.spotless from 7.0.1 to 7.0.2
  • 22fe57f Bump actions/cache from 4.2.1 to 4.2.2
  • 54c4e8c Bump com.android.library from 8.8.0 to 8.8.2
  • 77ca539 Fix Logback integration -- use SLF4J API to get access to Logback logger cont...
  • c8ec888 Bump actions/cache from 4.2.0 to 4.2.1
  • Additional commits viewable in compare view

Updates com.vanniktech.maven.publish from 0.30.0 to 0.31.0

Release notes

Sourced from com.vanniktech.maven.publish's releases.

0.31.0

  • Add support for publishing snapshots to Central Portal.
    • Make sure to enable snapshots for your namespace on central.sonatype.com.
    • Thanks to @​solrudev for the contribution.
  • Add support for multiple matching staging profiles by taking the one with the longest matching prefix.

Minimum supported versions

  • JDK 11
  • Gradle 8.5
  • Android Gradle Plugin 8.0.0
  • Kotlin Gradle Plugin 1.9.20

Compatibility tested up to

  • JDK 23
  • Gradle 8.13
  • Android Gradle Plugin 8.9.0
  • Android Gradle Plugin 8.10.0-alpha07
  • Kotlin Gradle Plugin 2.1.10
  • Kotlin Gradle Plugin 2.1.20-RC

Configuration cache status

Configuration cache is generally supported, except for:

  • Publishing releases to Maven Central (snapshots are fine), blocked by [Gradle issue #22779](gradle/gradle#22779).
  • When using Dokka 1.x or Dokka 2.x without V2Enabled
Changelog

Sourced from com.vanniktech.maven.publish's changelog.

0.31.0 UNRELEASED

  • Add support for publishing snapshots to Central Portal.
  • Add support for multiple matching staging profiles by taking the one with the longest matching prefix.

Minimum supported versions

  • JDK 11
  • Gradle 8.5
  • Android Gradle Plugin 8.0.0
  • Kotlin Gradle Plugin 1.9.20

Compatibility tested up to

  • JDK 23
  • Gradle 8.13
  • Android Gradle Plugin 8.9.0
  • Android Gradle Plugin 8.10.0-alpha07
  • Kotlin Gradle Plugin 2.1.10
  • Kotlin Gradle Plugin 2.1.20-RC

Configuration cache status

Configuration cache is generally supported, except for:

  • Publishing releases to Maven Central (snapshots are fine), blocked by [Gradle issue #22779](gradle/gradle#22779).
  • When using Dokka 1.x or Dokka 2.x without V2Enabled
Commits
  • a8e0897 update to rc and prepare changelog
  • cb58c2d fix(deps): update dependency com.android.tools.build:gradle to v8.9.0 (#909)
  • 254e16f fix 401 error when publishing snapshots to central portal if sonatype host an...
  • 0e97b08 update tested versions (#908)
  • 37691f3 fix(deps): update dependency com.android.tools.build:gradle to v8.8.2 (#899)
  • dd1788e chore(deps): update plugin com.gradle.develocity to v3.19.2 (#901)
  • cc8e30b Check the Gradle distribution checksum (#903)
  • 55cb8b1 chore(deps): update dependency gradle to v8.13 (#904)
  • e1738a4 fix(deps): update ktlint to v12.2.0 (#907)
  • 12ef609 Recommend using the ASCII-armored key in its entirety (#906)
  • Additional commits viewable in compare view

Updates com.ncorti.ktfmt.gradle from 0.21.0 to 0.22.0

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot requested a review from cloudshiftchris April 14, 2025 13:09
@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Apr 14, 2025
@dependabot dependabot bot force-pushed the dependabot/gradle/gradle-updates-08230fefe5 branch from 7ebbbd4 to a33eff5 Compare April 21, 2025 14:13
@dependabot
chore: bump the gradle-updates group across 1 directory with 7 updates
1de1709 
Bumps the gradle-updates group with 7 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| org.gradle.toolchains.foojay-resolver-convention | `0.9.0` | `0.10.0` |
| com.gradle.develocity | `3.19.1` | `3.19.2` |
| [com.google.guava:guava](https://github.com/google/guava) | `33.4.0-jre` | `33.4.7-jre` |
| org.slf4j:slf4j-simple | `2.0.16` | `2.0.17` |
| [io.github.oshai:kotlin-logging-jvm](https://github.com/oshai/kotlin-logging) | `7.0.3` | `7.0.6` |
| [com.vanniktech.maven.publish](https://github.com/vanniktech/gradle-maven-publish-plugin) | `0.30.0` | `0.31.0` |
| com.ncorti.ktfmt.gradle | `0.21.0` | `0.22.0` |



Updates `org.gradle.toolchains.foojay-resolver-convention` from 0.9.0 to 0.10.0

Updates `com.gradle.develocity` from 3.19.1 to 3.19.2

Updates `com.google.guava:guava` from 33.4.0-jre to 33.4.7-jre
- [Release notes](https://github.com/google/guava/releases)
- [Commits](https://github.com/google/guava/commits)

Updates `org.slf4j:slf4j-simple` from 2.0.16 to 2.0.17

Updates `io.github.oshai:kotlin-logging-jvm` from 7.0.3 to 7.0.6
- [Release notes](https://github.com/oshai/kotlin-logging/releases)
- [Changelog](https://github.com/oshai/kotlin-logging/blob/master/ChangeLog-old.md)
- [Commits](oshai/kotlin-logging@7.0.3...7.0.6)

Updates `com.vanniktech.maven.publish` from 0.30.0 to 0.31.0
- [Release notes](https://github.com/vanniktech/gradle-maven-publish-plugin/releases)
- [Changelog](https://github.com/vanniktech/gradle-maven-publish-plugin/blob/main/CHANGELOG.md)
- [Commits](vanniktech/gradle-maven-publish-plugin@0.30.0...0.31.0)

Updates `com.ncorti.ktfmt.gradle` from 0.21.0 to 0.22.0

---
updated-dependencies:
- dependency-name: org.gradle.toolchains.foojay-resolver-convention
  dependency-version: 0.10.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gradle-updates
- dependency-name: com.gradle.develocity
  dependency-version: 3.19.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: gradle-updates
- dependency-name: com.google.guava:guava
  dependency-version: 33.4.7-jre
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: gradle-updates
- dependency-name: org.slf4j:slf4j-simple
  dependency-version: 2.0.17
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: gradle-updates
- dependency-name: io.github.oshai:kotlin-logging-jvm
  dependency-version: 7.0.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: gradle-updates
- dependency-name: com.vanniktech.maven.publish
  dependency-version: 0.31.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gradle-updates
- dependency-name: com.ncorti.ktfmt.gradle
  dependency-version: 0.22.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gradle-updates
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/gradle/gradle-updates-08230fefe5 branch from a33eff5 to 1de1709 Compare May 5, 2025 14:23
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Jul 7, 2025

Dependabot encountered an unknown error. Because of this, Dependabot cannot update this pull request.

@cloudshiftchris cloudshiftchris merged commit 8d3dae3 into main Aug 5, 2025
1 of 2 checks passed
@dependabot dependabot bot deleted the dependabot/gradle/gradle-updates-08230fefe5 branch August 5, 2025 20:27
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cloudshiftchris cloudshiftchris Awaiting requested review from cloudshiftchris

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file java Pull requests that update Java code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@cloudshiftchris