From bb152663263c060e360f49adabbaf3d92cd03723 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 2 Jul 2026 13:35:04 +0000 Subject: [PATCH] build: bump the gradle-dependencies group across 1 directory with 11 updates Bumps the gradle-dependencies group with 11 updates in the / directory: | Package | From | To | | --- | --- | --- | | [gradle-wrapper](https://github.com/gradle/gradle) | `9.5.1` | `9.6.1` | | [org.junit:junit-bom](https://github.com/junit-team/junit-framework) | `6.1.0` | `6.1.1` | | [com.google.errorprone:error_prone_core](https://github.com/google/error-prone) | `2.49.0` | `2.50.0` | | [com.uber.nullaway:nullaway](https://github.com/uber/NullAway) | `0.13.6` | `0.13.7` | | [org.openrewrite.recipe:rewrite-recipe-bom](https://github.com/openrewrite/rewrite-recipe-bom) | `3.32.0` | `3.34.0` | | [org.openrewrite.recipe:rewrite-java-security](https://github.com/moderneinc/rewrite-java-security) | `3.32.0` | `3.34.2` | | com.diffplug.spotless | `8.6.0` | `8.8.0` | | com.github.spotbugs | `6.5.5` | `6.5.8` | | [com.gradleup.shadow](https://github.com/GradleUp/shadow) | `9.4.2` | `9.4.3` | | [org.springframework.boot](https://github.com/spring-projects/spring-boot) | `4.0.6` | `4.1.0` | | org.openrewrite.rewrite | `7.34.0` | `7.36.0` | Updates `gradle-wrapper` from 9.5.1 to 9.6.1 - [Release notes](https://github.com/gradle/gradle/releases) - [Commits](https://github.com/gradle/gradle/compare/v9.5.1...v9.6.1) Updates `org.junit:junit-bom` from 6.1.0 to 6.1.1 - [Release notes](https://github.com/junit-team/junit-framework/releases) - [Commits](https://github.com/junit-team/junit-framework/compare/r6.1.0...r6.1.1) Updates `com.google.errorprone:error_prone_core` from 2.49.0 to 2.50.0 - [Release notes](https://github.com/google/error-prone/releases) - [Commits](https://github.com/google/error-prone/compare/v2.49.0...v2.50.0) Updates `com.uber.nullaway:nullaway` from 0.13.6 to 0.13.7 - [Release notes](https://github.com/uber/NullAway/releases) - [Changelog](https://github.com/uber/NullAway/blob/master/CHANGELOG.md) - [Commits](https://github.com/uber/NullAway/compare/v0.13.6...v0.13.7) Updates `org.openrewrite.recipe:rewrite-recipe-bom` from 3.32.0 to 3.34.0 - [Release notes](https://github.com/openrewrite/rewrite-recipe-bom/releases) - [Commits](https://github.com/openrewrite/rewrite-recipe-bom/compare/v3.32.0...v3.34.0) Updates `org.openrewrite.recipe:rewrite-java-security` from 3.32.0 to 3.34.2 - [Commits](https://github.com/moderneinc/rewrite-java-security/commits) Updates `com.diffplug.spotless` from 8.6.0 to 8.8.0 Updates `com.github.spotbugs` from 6.5.5 to 6.5.8 Updates `com.gradleup.shadow` from 9.4.2 to 9.4.3 - [Release notes](https://github.com/GradleUp/shadow/releases) - [Commits](https://github.com/GradleUp/shadow/compare/9.4.2...9.4.3) Updates `org.springframework.boot` from 4.0.6 to 4.1.0 - [Release notes](https://github.com/spring-projects/spring-boot/releases) - [Commits](https://github.com/spring-projects/spring-boot/compare/v4.0.6...v4.1.0) Updates `org.openrewrite.rewrite` from 7.34.0 to 7.36.0 --- updated-dependencies: - dependency-name: gradle-wrapper dependency-version: 9.6.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gradle-dependencies - dependency-name: org.junit:junit-bom dependency-version: 6.1.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: gradle-dependencies - dependency-name: com.google.errorprone:error_prone_core dependency-version: 2.50.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gradle-dependencies - dependency-name: com.uber.nullaway:nullaway dependency-version: 0.13.7 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: gradle-dependencies - dependency-name: org.openrewrite.recipe:rewrite-recipe-bom dependency-version: 3.34.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gradle-dependencies - dependency-name: org.openrewrite.recipe:rewrite-java-security dependency-version: 3.34.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gradle-dependencies - dependency-name: com.diffplug.spotless dependency-version: 8.8.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gradle-dependencies - dependency-name: com.github.spotbugs dependency-version: 6.5.8 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: gradle-dependencies - dependency-name: com.gradleup.shadow dependency-version: 9.4.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: gradle-dependencies - dependency-name: org.springframework.boot dependency-version: 4.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gradle-dependencies - dependency-name: org.openrewrite.rewrite dependency-version: 7.36.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gradle-dependencies ... Signed-off-by: dependabot[bot] --- gradle/libs.versions.toml | 20 ++++++++++---------- gradle/wrapper/gradle-wrapper.properties | 4 ++-- gradlew | 4 ++-- gradlew.bat | 4 ++-- 4 files changed, 16 insertions(+), 16 deletions(-) diff --git a/gradle/libs.versions.toml b/gradle/libs.versions.toml index acb420b..00d42a6 100644 --- a/gradle/libs.versions.toml +++ b/gradle/libs.versions.toml @@ -12,9 +12,9 @@ commons-cli = "1.11.0" pdfbox = "3.0.7" slf4j = "2.0.18" -junit = "6.1.0" -errorprone = "2.49.0" -nullaway = "0.13.6" +junit = "6.1.1" +errorprone = "2.50.0" +nullaway = "0.13.7" jspecify = "1.0.0" archunit = "1.4.2" # google-java-format: was inlined in despeckle's quality script and pinned in register's catalog; @@ -31,28 +31,28 @@ system-stubs = "2.1.8" awaitility = "4.3.0" # --- Plugin marker versions (read by build-logic/build.gradle.kts and by `version.ref` below) --- -spotless = "8.6.0" +spotless = "8.8.0" errorprone-plugin = "5.1.0" -spotbugs-plugin = "6.5.5" +spotbugs-plugin = "6.5.8" # SpotBugs analysis-engine version (distinct from the Gradle plugin marker above); was inlined in # tate-yoko-pdf's quality script. The unified quality convention sets spotbugs.toolVersion from here. spotbugs-tool = "4.9.6" # Fat-jar plugin: shades the runtime classpath into -all.jar, the single jar jpackage bundles # into the app-image. Applied per-app via `alias(libs.plugins.shadow)`. -shadow = "9.4.2" +shadow = "9.4.3" # Spring Boot Gradle plugin (bootRun/bootJar) for the :webapp:app web front end. Boot 4.0 (Spring # Framework 7) baselines Java 17 with first-class Java 25 support. Applied only in :webapp:app via # `alias(libs.plugins.springBoot)`; it imports its own dependency BOM for spring-boot-starter-*. -spring-boot = "4.0.6" +spring-boot = "4.1.0" # springdoc-openapi (Swagger UI + /v3/api-docs) for the :webapp:app REST API. The 3.0.x line targets # Spring Boot 4 / Jackson 3 (2.8.x is the Boot 3 line). App-only dep; not BOM-managed by Spring Boot. springdoc = "3.0.3" -rewrite-plugin = "7.34.0" -rewrite-recipe-bom = "3.32.0" +rewrite-plugin = "7.36.0" +rewrite-recipe-bom = "3.34.0" # rewrite-java-security is the one recipe module not managed by the recipe BOM, so its version is # pinned here. Compatibility comes from it depending on the same rewrite-bom (rewrite-core) line as # the recipe BOM — verify that shared line on each bump; the matching 3.31.0 numbers are incidental. -rewrite-java-security = "3.32.0" +rewrite-java-security = "3.34.2" # PIT mutation testing. ADOPTED FROM DESPECKLE (camelCase leaves, NOT dashed). `pitest` is the PIT # analysis tool version; `pitestJunit5Plugin` is the JUnit 5 bridge. Both are single camelCase diff --git a/gradle/wrapper/gradle-wrapper.properties b/gradle/wrapper/gradle-wrapper.properties index bd82f36..dbe66e1 100644 --- a/gradle/wrapper/gradle-wrapper.properties +++ b/gradle/wrapper/gradle-wrapper.properties @@ -1,7 +1,7 @@ distributionBase=GRADLE_USER_HOME distributionPath=wrapper/dists -distributionSha256Sum=bafc141b619ad6350fd975fc903156dd5c151998cc8b058e8c1044ab5f7b031f -distributionUrl=https\://services.gradle.org/distributions/gradle-9.5.1-bin.zip +distributionSha256Sum=9c0f7faeeb306cb14e4279a3e084ca6b596894089a0638e68a07c945a32c9e14 +distributionUrl=https\://services.gradle.org/distributions/gradle-9.6.1-bin.zip networkTimeout=10000 retries=0 retryBackOffMs=500 diff --git a/gradlew b/gradlew index b9bb139..249efbb 100755 --- a/gradlew +++ b/gradlew @@ -20,7 +20,7 @@ ############################################################################## # -# Gradle start up script for POSIX generated by Gradle. +# gradlew start up script for POSIX generated by Gradle. # # Important for running: # @@ -29,7 +29,7 @@ # bash, then to run this script, type that shell name before the whole # command line, like: # -# ksh Gradle +# ksh gradlew # # Busybox and similar reduced shells will NOT work, because this script # requires all of these POSIX shell features: diff --git a/gradlew.bat b/gradlew.bat index aa5f10b..8508ef6 100644 --- a/gradlew.bat +++ b/gradlew.bat @@ -19,7 +19,7 @@ @if "%DEBUG%"=="" @echo off @rem ########################################################################## @rem -@rem Gradle startup script for Windows +@rem gradlew startup script for Windows @rem @rem ########################################################################## @@ -72,7 +72,7 @@ echo location of your Java installation. 1>&2 -@rem Execute Gradle +@rem Execute gradlew @rem endlocal doesn't take effect until after the line is parsed and variables are expanded @rem which allows us to clear the local environment before executing the java command endlocal & "%JAVA_EXE%" %DEFAULT_JVM_OPTS% %JAVA_OPTS% %GRADLE_OPTS% "-Dorg.gradle.appname=%APP_BASE_NAME%" -jar "%APP_HOME%\gradle\wrapper\gradle-wrapper.jar" %* & call :exitWithErrorLevel