Skip to content

Add dependabot ignore rule for JUnit 6+ (requires Java 17) #4504

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Oct 16, 2025
Merged

Add dependabot ignore rule for JUnit 6+ (requires Java 17) #4504

merged 2 commits into from
Oct 16, 2025

Conversation

Copy link
Contributor

Copilot AI commented Oct 15, 2025
edited
Loading

Summary

This PR adds a rule to .github/dependabot.yml to prevent Dependabot from proposing updates to JUnit 6 or later versions.

Context

The project currently:

  • Uses JUnit 5.13.4 (defined in dependencyManagement/build.gradle.kts)
  • Compiles with Java 17 toolchain but targets Java 8 (release.set(8) in ai.java-conventions.gradle.kts)

JUnit 6, when released, is expected to require Java 17+ as a minimum runtime version, which would be incompatible with this project's Java 8 target.

Changes

Added an ignore rule for org.junit:junit-bom to block versions [6,):

- dependency-name: "org.junit:junit-bom"
  # junit 6 requires Java 17
  versions: [ "[6,)" ]

This follows the same pattern already established in the file for other dependencies with Java version requirements:

  • logback 1.4+ requires Java 11+
  • mockito 5 requires Java 11
  • spring-boot 3 requires Java 17

Impact

Dependabot will continue to propose updates to JUnit 5.x versions but will not create PRs for JUnit 6 or later, preventing accidental updates that would break Java 8 compatibility.

Original prompt

add a rule to dependabot.yml to prevent updating to JUnit 6 because it requires Java 17+

💬 Share your feedback on Copilot coding agent for the chance to win a $200 gift card! Click here to start the survey.

Copilot AI changed the title [WIP] Add rule to prevent updating to JUnit 6 in dependabot.yml Add dependabot ignore rule for JUnit 6+ (requires Java 17) Oct 15, 2025
Copilot AI requested a review from trask October 15, 2025 21:56
Copilot finished work on behalf of trask October 15, 2025 21:56
@trask trask marked this pull request as ready for review October 15, 2025 21:57
@trask trask mentioned this pull request Oct 15, 2025
Merged
@trask trask enabled auto-merge (squash) October 15, 2025 22:21
@trask trask merged commit 8741844 into main Oct 16, 2025
143 of 161 checks passed
@trask trask deleted the copilot/add-dependabot-rule-junit branch October 16, 2025 04:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@xiang17 xiang17 xiang17 approved these changes

@rajkumar-rangaraj rajkumar-rangaraj rajkumar-rangaraj approved these changes

@harsimar harsimar Awaiting requested review from harsimar harsimar is a code owner

@jeanbisutti jeanbisutti Awaiting requested review from jeanbisutti jeanbisutti is a code owner

@ramthi ramthi Awaiting requested review from ramthi ramthi is a code owner

+1 more reviewer

@trask trask trask approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@trask trask

Copilot code review Copilot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@trask @xiang17 @rajkumar-rangaraj