Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the java-production-dependencies group across 1 directory with 6 updates #224

Closed
wants to merge 1 commit into from
Closed

Bump the java-production-dependencies group across 1 directory with 6 updates #224

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github May 20, 2024
edited
Loading

Bumps the java-production-dependencies group with 6 updates in the / directory:

Package From To
org.cryptomator:cryptolib 2.1.2 2.2.0
com.google.dagger:dagger 2.49 2.51.1
com.google.dagger:dagger-compiler 2.49 2.51.1
com.google.guava:guava 32.1.3-jre 33.2.0-jre
org.slf4j:slf4j-api 2.0.12 2.0.13
org.slf4j:slf4j-simple 2.0.12 2.0.13

Updates org.cryptomator:cryptolib from 2.1.2 to 2.2.0

Release notes

Sourced from org.cryptomator:cryptolib's releases.

2.2.0

What's Changed

New Contributors

Full Changelog: cryptomator/cryptolib@2.1.2...2.2.0

Commits
  • cc946dd Merge branch 'release/2.2.0'
  • 29e4630 prepare 2.2.0
  • 83a9097 secure workflow
  • 42625ff Merge pull request #63 from cryptomator/feature/jdk22
  • 50c34ad enforce jdk22 for building
  • 10ddab6 build project with JDK 22 (but keep multi release jar)
  • 4db325b Bump the java-production-dependencies group with 3 updates (#61)
  • 92c2c31 Bump the maven-build-plugins group with 5 updates (#60)
  • b538d03 Feature: Update libs (#59)
  • 9ae2f62 update IDE JDK to 21
  • Additional commits viewable in compare view

Updates com.google.dagger:dagger from 2.49 to 2.51.1

Release notes

Sourced from com.google.dagger:dagger's releases.

Dagger 2.51.1

New Dagger Features

  • Added BindingGraphPlugin#onProcessingRoundBegin for pre-processing initialization. (2a6a0b461)

Dagger bug fixes

Fixed #4181: Associate Dagger Android output with the generated Component, so that incremental builds with Ksp won’t fail. Fixed #4254: Support using scoped @LazyClassKey map bindings. Fixed #4262: Support referencing an array of annotations in a map key annotation.

Dagger 2.51

New Dagger Features

  • Added a @LazyClassKey annotation that supports using class names as a map key. Unlike the existing @ClassKey, the map generated by @LazyClassKey won’t eagerly load all of the classes for the keys. This can be useful in situations or environments where classloading can be expensive, such as on Android. For more information, see https://dagger.dev/dev-guide/multibindings

Potential breaking changes

  • Protected fields using @Inject are now banned in Kotlin classes. This is because Kotlin protected fields are not accessible by code in the same package, unlike Java. This has been working up to this point because Dagger generates Java code, but that is unintentional and would break if Dagger switched to generate Kotlin code.(408431a3b)

New Hilt Features

  • Fixed #3197: Used the new @LazyClassKey Dagger feature to remove the keep rule for @HiltViewModel class names. This allows obfuscation of @HiltViewModel annotated ViewModel class names with R8. (0786d0af5)
  • Added @SkipTestInjection which can be used for skipping test injection in Hilt Android tests, which may be useful if building separate custom test infrastructure to inject the test class from another Hilt component. (c40811e71)

Dagger bug fixes

  • Improve Dagger MissingBinding error messages to give more information and be more consistent. (c8722386a)
  • Fixed #4201: Suppress warning for casting in Dagger generated code. (813ffced8)
  • Fixed #4203: Removes @Deprecated annotation causing warnings (3cbc94ad3)
  • Fixed #4199: Support member injections from type aliased superclass (662d82359)
  • Complete Ksp support for Dagger Android: Added a Ksp Processor for Dagger Android ProguardProcessor that was previously missed. The ProguardProcessor is a Dagger Android implementation detail that makes sure the AndroidInjector works correctly when shrinking tools obfuscate @ContributesAndroidInjector annotated injector class names. (e71de27a1)

Dagger 2.50

Dagger

Potential breaking changes

  • Introduced a new dagger.internal.Provider to facilitate future support for jakarta.inject.Provider types. There should be no visible changes at this time, though with such a large change there is a risk of unanticipated version compatibility issues across libraries built with different Dagger versions. (75d3cbcf9)
  • Flip the default for -Adagger.explicitBindingConflictsWithInject to enabled. This flag fixes a bug where an explicit binding like an @Provides should conflict with @Inject bindings if the @Inject is actually used in a parent component. (8372c6308)

Bug fixes

  • Fixed the error message for an @Binds @IntoSet implementation with duplicate bindings. (8d0122322)
Commits
  • 394cf25 2.51.1 release
  • 8689679 Update xprocessing.jar for Dagger.
  • 2a6a0b4 Reset processingEnv for BindingGraphPlugins for each round.
  • fc2363d Associate Dagger Android output with generated Component.
  • 29d9a8e Make LazyClassKeyMap accept both MapFactory and MapProviderFactory
  • c213e36 Fix bug in AnnotationExpression.
  • e6c2ac8 Delete obsolete documentation
  • e8e1ce6 Fix diagnostic kind in InjectValidator.
  • 3fa9a8a Migrate from soon-to-be-deprecated propagateIfPossible to equivalent `throw...
  • 922ff50 reduce number of times resolving parameter types in an extreme case.
  • Additional commits viewable in compare view

Updates com.google.dagger:dagger-compiler from 2.49 to 2.51.1

Release notes

Sourced from com.google.dagger:dagger-compiler's releases.

Dagger 2.51.1

New Dagger Features

  • Added BindingGraphPlugin#onProcessingRoundBegin for pre-processing initialization. (2a6a0b461)

Dagger bug fixes

Fixed #4181: Associate Dagger Android output with the generated Component, so that incremental builds with Ksp won’t fail. Fixed #4254: Support using scoped @LazyClassKey map bindings. Fixed #4262: Support referencing an array of annotations in a map key annotation.

Dagger 2.51

New Dagger Features

  • Added a @LazyClassKey annotation that supports using class names as a map key. Unlike the existing @ClassKey, the map generated by @LazyClassKey won’t eagerly load all of the classes for the keys. This can be useful in situations or environments where classloading can be expensive, such as on Android. For more information, see https://dagger.dev/dev-guide/multibindings

Potential breaking changes

  • Protected fields using @Inject are now banned in Kotlin classes. This is because Kotlin protected fields are not accessible by code in the same package, unlike Java. This has been working up to this point because Dagger generates Java code, but that is unintentional and would break if Dagger switched to generate Kotlin code.(408431a3b)

New Hilt Features

  • Fixed #3197: Used the new @LazyClassKey Dagger feature to remove the keep rule for @HiltViewModel class names. This allows obfuscation of @HiltViewModel annotated ViewModel class names with R8. (0786d0af5)
  • Added @SkipTestInjection which can be used for skipping test injection in Hilt Android tests, which may be useful if building separate custom test infrastructure to inject the test class from another Hilt component. (c40811e71)

Dagger bug fixes

  • Improve Dagger MissingBinding error messages to give more information and be more consistent. (c8722386a)
  • Fixed #4201: Suppress warning for casting in Dagger generated code. (813ffced8)
  • Fixed #4203: Removes @Deprecated annotation causing warnings (3cbc94ad3)
  • Fixed #4199: Support member injections from type aliased superclass (662d82359)
  • Complete Ksp support for Dagger Android: Added a Ksp Processor for Dagger Android ProguardProcessor that was previously missed. The ProguardProcessor is a Dagger Android implementation detail that makes sure the AndroidInjector works correctly when shrinking tools obfuscate @ContributesAndroidInjector annotated injector class names. (e71de27a1)

Dagger 2.50

Dagger

Potential breaking changes

  • Introduced a new dagger.internal.Provider to facilitate future support for jakarta.inject.Provider types. There should be no visible changes at this time, though with such a large change there is a risk of unanticipated version compatibility issues across libraries built with different Dagger versions. (75d3cbcf9)
  • Flip the default for -Adagger.explicitBindingConflictsWithInject to enabled. This flag fixes a bug where an explicit binding like an @Provides should conflict with @Inject bindings if the @Inject is actually used in a parent component. (8372c6308)

Bug fixes

  • Fixed the error message for an @Binds @IntoSet implementation with duplicate bindings. (8d0122322)
Commits
  • 394cf25 2.51.1 release
  • 8689679 Update xprocessing.jar for Dagger.
  • 2a6a0b4 Reset processingEnv for BindingGraphPlugins for each round.
  • fc2363d Associate Dagger Android output with generated Component.
  • 29d9a8e Make LazyClassKeyMap accept both MapFactory and MapProviderFactory
  • c213e36 Fix bug in AnnotationExpression.
  • e6c2ac8 Delete obsolete documentation
  • e8e1ce6 Fix diagnostic kind in InjectValidator.
  • 3fa9a8a Migrate from soon-to-be-deprecated propagateIfPossible to equivalent `throw...
  • 922ff50 reduce number of times resolving parameter types in an extreme case.
  • Additional commits viewable in compare view

Updates com.google.guava:guava from 32.1.3-jre to 33.2.0-jre

Release notes

Sourced from com.google.guava:guava's releases.

33.2.0

Android users: Please test recent Guava versions

If you know of Guava Android users who have not yet upgraded to at least release 33.0.0, please encourage them to upgrade, preferably to today's release, 33.2.0. These releases have begun adding Java 8+ APIs to guava-android. While we don't anticipate problems, we do anticipate that any unexpected problems could force a disruptive rollback. To minimize any disruption, we'd like to catch any such problems early.

Please let us know of any problems you encounter.

Maven

<dependency>
  <groupId>com.google.guava</groupId>
  <artifactId>guava</artifactId>
  <version>33.2.0-jre</version>
  <!-- or, for Android: -->
  <version>33.2.0-android</version>
</dependency>

Jar files

Guava requires one runtime dependency, which you can download here:

Javadoc

JDiff

Changelog

  • Dropped testing for Android versions before Lollipop (API Level 21). Guava may stop working under older versions in the future, or it may have done so already.
  • Fixed a GWT compilation breakage under Gradle. (858caf425c)
  • collect: Made our Collector APIs (e.g., ImmutableList.toImmutableList()) available in guava-android. More Java 8 APIs will follow in future releases. (96fca0b747)
    • As always, streams are available to Android code only when that code enables library desugaring or targets a new enough API Level (24 (Nougat) for many stream APIs). (But note that we test only with library desugaring, so we don't currently know if API Level 24 is high enough to use our Collector APIs unless you have also enabled library desugaring.) Guava users who avoid the Collector APIs do not need to meet this requirement.
  • collect: Fixed a potential NullPointerException in ImmutableMap.Builder on a rare code path. (70a98115d8)
  • net: Added HttpHeaders constants Ad-Auction-Allowed, Permissions-Policy-Report-Only, and Sec-GPC. (7dc01ed27b, 41d0d9a833, 38c8017bd44b7919b112f1c99f3d8ce4b058ae5d)

33.1.0

Request for Android users

... (truncated)

Commits

Updates org.slf4j:slf4j-api from 2.0.12 to 2.0.13

Updates org.slf4j:slf4j-simple from 2.0.12 to 2.0.13

Updates org.slf4j:slf4j-simple from 2.0.12 to 2.0.13

Updates com.google.dagger:dagger-compiler from 2.49 to 2.51.1

Release notes

Sourced from com.google.dagger:dagger-compiler's releases.

Dagger 2.51.1

New Dagger Features

  • Added BindingGraphPlugin#onProcessingRoundBegin for pre-processing initialization. (2a6a0b461)

Dagger bug fixes

Fixed #4181: Associate Dagger Android output with the generated Component, so that incremental builds with Ksp won’t fail. Fixed #4254: Support using scoped @LazyClassKey map bindings. Fixed #4262: Support referencing an array of annotations in a map key annotation.

Dagger 2.51

New Dagger Features

  • Added a @LazyClassKey annotation that supports using class names as a map key. Unlike the existing @ClassKey, the map generated by @LazyClassKey won’t eagerly load all of the classes for the keys. This can be useful in situations or environments where classloading can be expensive, such as on Android. For more information, see https://dagger.dev/dev-guide/multibindings

Potential breaking changes

  • Protected fields using @Inject are now banned in Kotlin classes. This is because Kotlin protected fields are not accessible by code in the same package, unlike Java. This has been working up to this point because Dagger generates Java code, but that is unintentional and would break if Dagger switched to generate Kotlin code.(408431a3b)

New Hilt Features

  • Fixed #3197: Used the new @LazyClassKey Dagger feature to remove the keep rule for @HiltViewModel class names. This allows obfuscation of @HiltViewModel annotated ViewModel class names with R8. (0786d0af5)
  • Added @SkipTestInjection which can be used for skipping test injection in Hilt Android tests, which may be useful if building separate custom test infrastructure to inject the test class from another Hilt component. (c40811e71)

Dagger bug fixes

  • Improve Dagger MissingBinding error messages to give more information and be more consistent. (c8722386a)
  • Fixed #4201: Suppress warning for casting in Dagger generated code. (813ffced8)
  • Fixed #4203: Removes @Deprecated annotation causing warnings (3cbc94ad3)
  • Fixed #4199: Support member injections from type aliased superclass (662d82359)
  • Complete Ksp support for Dagger Android: Added a Ksp Processor for Dagger Android ProguardProcessor that was previously missed. The ProguardProcessor is a Dagger Android implementation detail that makes sure the AndroidInjector works correctly when shrinking tools obfuscate @ContributesAndroidInjector annotated injector class names. (e71de27a1)

Dagger 2.50

Dagger

Potential breaking changes

  • Introduced a new dagger.internal.Provider to facilitate future support for jakarta.inject.Provider types. There should be no visible changes at this time, though with such a large change there is a risk of unanticipated version compatibility issues across libraries built with different Dagger versions. (75d3cbcf9)
  • Flip the default for -Adagger.explicitBindingConflictsWithInject to enabled. This flag fixes a bug where an explicit binding like an @Provides should conflict with @Inject bindings if the @Inject is actually used in a parent component. (8372c6308)

Bug fixes

  • Fixed the error message for an @Binds @IntoSet implementation with duplicate bindings. (8d0122322)
Commits
  • 394cf25 2.51.1 release
  • 8689679 Update xprocessing.jar for Dagger.
  • 2a6a0b4 Reset processingEnv for BindingGraphPlugins for each round.
  • fc2363d Associate Dagger Android output with generated Component.
  • 29d9a8e Make LazyClassKeyMap accept both MapFactory and MapProviderFactory
  • c213e36 Fix bug in AnnotationExpression.
  • e6c2ac8 Delete obsolete documentation
  • e8e1ce6 Fix diagnostic kind in InjectValidator.
  • 3fa9a8a Migrate from soon-to-be-deprecated propagateIfPossible to equivalent `throw...
  • 922ff50 reduce number of times resolving parameter types in an extreme case.
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the java-production-dependencies group across 1 directory with 6…
fd08bbe 
… updates

Bumps the java-production-dependencies group with 6 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [org.cryptomator:cryptolib](https://github.com/cryptomator/cryptolib) | `2.1.2` | `2.2.0` |
| [com.google.dagger:dagger](https://github.com/google/dagger) | `2.49` | `2.51.1` |
| [com.google.dagger:dagger-compiler](https://github.com/google/dagger) | `2.49` | `2.51.1` |
| [com.google.guava:guava](https://github.com/google/guava) | `32.1.3-jre` | `33.2.0-jre` |
| org.slf4j:slf4j-api | `2.0.12` | `2.0.13` |
| org.slf4j:slf4j-simple | `2.0.12` | `2.0.13` |



Updates `org.cryptomator:cryptolib` from 2.1.2 to 2.2.0
- [Release notes](https://github.com/cryptomator/cryptolib/releases)
- [Commits](cryptomator/cryptolib@2.1.2...2.2.0)

Updates `com.google.dagger:dagger` from 2.49 to 2.51.1
- [Release notes](https://github.com/google/dagger/releases)
- [Changelog](https://github.com/google/dagger/blob/master/CHANGELOG.md)
- [Commits](google/dagger@dagger-2.49...dagger-2.51.1)

Updates `com.google.dagger:dagger-compiler` from 2.49 to 2.51.1
- [Release notes](https://github.com/google/dagger/releases)
- [Changelog](https://github.com/google/dagger/blob/master/CHANGELOG.md)
- [Commits](google/dagger@dagger-2.49...dagger-2.51.1)

Updates `com.google.guava:guava` from 32.1.3-jre to 33.2.0-jre
- [Release notes](https://github.com/google/guava/releases)
- [Commits](https://github.com/google/guava/commits)

Updates `org.slf4j:slf4j-api` from 2.0.12 to 2.0.13

Updates `org.slf4j:slf4j-simple` from 2.0.12 to 2.0.13

Updates `org.slf4j:slf4j-simple` from 2.0.12 to 2.0.13

Updates `com.google.dagger:dagger-compiler` from 2.49 to 2.51.1
- [Release notes](https://github.com/google/dagger/releases)
- [Changelog](https://github.com/google/dagger/blob/master/CHANGELOG.md)
- [Commits](google/dagger@dagger-2.49...dagger-2.51.1)

---
updated-dependencies:
- dependency-name: org.cryptomator:cryptolib
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: java-production-dependencies
- dependency-name: com.google.dagger:dagger
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: java-production-dependencies
- dependency-name: com.google.dagger:dagger-compiler
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: java-production-dependencies
- dependency-name: com.google.guava:guava
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: java-production-dependencies
- dependency-name: org.slf4j:slf4j-api
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: java-production-dependencies
- dependency-name: org.slf4j:slf4j-simple
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: java-production-dependencies
- dependency-name: org.slf4j:slf4j-simple
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: java-production-dependencies
- dependency-name: com.google.dagger:dagger-compiler
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: java-production-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels May 20, 2024
@coderabbitai coderabbitai
Copy link

coderabbitai bot commented May 20, 2024

Important

Auto Review Skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

Share
Tips

Chat

There are 3 ways to chat with CodeRabbit:

  • Review comments: Directly reply to a review comment made by CodeRabbit. Example:
    • I pushed a fix in commit <commit_id>.
    • Generate unit testing code for this file.
    • Open a follow-up GitHub issue for this discussion.
  • Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
    • @coderabbitai generate unit testing code for this file.
    • @coderabbitai modularize this function.
  • PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
    • @coderabbitai generate interesting stats about this repository and render them as a table.
    • @coderabbitai show all the console.log statements in this repository.
    • @coderabbitai read src/utils.ts and generate unit testing code.
    • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (invoked as PR comments)

  • @coderabbitai pause to pause the reviews on a PR.
  • @coderabbitai resume to resume the paused reviews.
  • @coderabbitai review to trigger a review. This is useful when automatic reviews are disabled for the repository.
  • @coderabbitai resolve resolve all the CodeRabbit review comments.
  • @coderabbitai help to get help.

Additionally, you can add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.

CodeRabbit Configration File (.coderabbit.yaml)

  • You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
  • Please see the configuration documentation for more information.
  • If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

  • Visit our Documentation for detailed information on how to use CodeRabbit.
  • Join our Discord Community to get help, request features, and share feedback.
  • Follow us on X/Twitter for updates and announcements.

@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Jun 3, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Jun 3, 2024
@dependabot dependabot bot deleted the dependabot/maven/java-production-dependencies-9cc53434f6 branch June 3, 2024 06:41
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file java Pull requests that update Java code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
0 participants