Skip to content

chore(deps): bump ksp from 2.2.20-2.0.2 to 2.2.20-2.0.3 #2

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Sep 20, 2025
Merged

chore(deps): bump ksp from 2.2.20-2.0.2 to 2.2.20-2.0.3 #2

merged 1 commit into from
Sep 20, 2025

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 19, 2025

Bumps ksp from 2.2.20-2.0.2 to 2.2.20-2.0.3.
Updates com.google.devtools.ksp:symbol-processing-gradle-plugin from 2.2.20-2.0.2 to 2.2.20-2.0.3

Release notes

Sourced from com.google.devtools.ksp:symbol-processing-gradle-plugin's releases.

2.2.20-2.0.3

What's Changed

  • Removed usages of deprecated KGP ApiVersion - #2400
  • Android integration for KSP has moved on to the new Variant API - #2250
  • Runtime warning was added for projects that opt out of KSP2 - #2538
  • AGP version against which KSP is compiled has been upgraded - #2552

Contributors

Thanks to everyone who reported bugs and participated in discussions!

Full Changelog: google/ksp@2.1.21-2.0.2...2.2.20-2.0.3

Commits
  • ce9849f UPDATE_KOTLIN_VERSION: 2.2.20
  • 783f41f Update shadow-validate-baselin.txt
  • 4b38d15 UPDATE_AA_VERSION: 2.3.0-dev-7225
  • c7b1dbb UPDATE_AA_VERSION: 2.3.0-dev-1330
  • c968f23 UPDATE_AA_VERSION: 2.3.0-dev-704
  • c9e170a UPDATE_AA_VERSION: 2.2.20-dev-7701
  • c920aa5 Do not minimize embeddable jars
  • 5a0035a Bump BUILD Kotlin and KSP to 2.2.10-2.0.2
  • d7883e7 Do not manually wire ksp task for android target
  • 7729eaf Rename to jvm parameters
  • Additional commits viewable in compare view

Updates com.google.devtools.ksp from 2.2.20-2.0.2 to 2.2.20-2.0.3

Release notes

Sourced from com.google.devtools.ksp's releases.

2.2.20-2.0.3

What's Changed

  • Removed usages of deprecated KGP ApiVersion - #2400
  • Android integration for KSP has moved on to the new Variant API - #2250
  • Runtime warning was added for projects that opt out of KSP2 - #2538
  • AGP version against which KSP is compiled has been upgraded - #2552

Contributors

Thanks to everyone who reported bugs and participated in discussions!

Full Changelog: google/ksp@2.1.21-2.0.2...2.2.20-2.0.3

Commits
  • ce9849f UPDATE_KOTLIN_VERSION: 2.2.20
  • 783f41f Update shadow-validate-baselin.txt
  • 4b38d15 UPDATE_AA_VERSION: 2.3.0-dev-7225
  • c7b1dbb UPDATE_AA_VERSION: 2.3.0-dev-1330
  • c968f23 UPDATE_AA_VERSION: 2.3.0-dev-704
  • c9e170a UPDATE_AA_VERSION: 2.2.20-dev-7701
  • c920aa5 Do not minimize embeddable jars
  • 5a0035a Bump BUILD Kotlin and KSP to 2.2.10-2.0.2
  • d7883e7 Do not manually wire ksp task for android target
  • 7729eaf Rename to jvm parameters
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps): bump ksp from 2.2.20-2.0.2 to 2.2.20-2.0.3
60ea452 
Bumps `ksp` from 2.2.20-2.0.2 to 2.2.20-2.0.3.

Updates `com.google.devtools.ksp:symbol-processing-gradle-plugin` from 2.2.20-2.0.2 to 2.2.20-2.0.3
- [Release notes](https://github.com/google/ksp/releases)
- [Commits](google/ksp@2.2.20-2.0.2...2.2.20-2.0.3)

Updates `com.google.devtools.ksp` from 2.2.20-2.0.2 to 2.2.20-2.0.3
- [Release notes](https://github.com/google/ksp/releases)
- [Commits](google/ksp@2.2.20-2.0.2...2.2.20-2.0.3)

---
updated-dependencies:
- dependency-name: com.google.devtools.ksp:symbol-processing-gradle-plugin
  dependency-version: 2.2.20-2.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: com.google.devtools.ksp
  dependency-version: 2.2.20-2.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Sep 19, 2025
@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Sep 19, 2025
kcw-grunt
kcw-grunt approved these changes Sep 19, 2025
View reviewed changes
Copy link
Collaborator

@kcw-grunt kcw-grunt left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

josikie
josikie approved these changes Sep 19, 2025
View reviewed changes
Copy link
Collaborator

@josikie josikie left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Amazing! We have dependabots

@JosephSanjaya
Copy link
Collaborator

ohh right this update request will trigger 1 time only per month @kcw-grunt, and max of 5 PR.

we can change this setting later. for now its havent been used by main repo only build logic repo only so it will not affecting production.

cc @josikie

@kcw-grunt
Copy link
Collaborator

kcw-grunt commented Sep 19, 2025
edited
Loading

ohh right this update request will trigger 1 time only per month @kcw-grunt, and max of 5 PR.

we can change this setting later. for now its havent been used by main repo only build logic repo only so it will not affecting production.

cc @josikie

Is this a duplicate workflow from CirclCI @JosephSanjaya ? I need to wrap my head around the whole release workflow process to reduce costs and complexity

@JosephSanjaya
Copy link
Collaborator

ohh right this update request will trigger 1 time only per month @kcw-grunt, and max of 5 PR.
we can change this setting later. for now its havent been used by main repo only build logic repo only so it will not affecting production.
cc @josikie

Is this a duplicate workflow from CirclCI @JosephSanjaya ? I need to wrap my head around the whole release workflow process to reduce costs and complexity

Dependabot is actually native to GitHub, so this workflow doesn’t add CircleCI costs or complexity. The config lives in .github/dependabot.yml (link to file
), and GitHub handles everything automatically.

If we were to wire this through CircleCI, we’d need to build custom jobs to check for outdated deps, open PRs, and handle scheduling which is way more overhead. Using GitHub’s built-in Dependabot keeps things simple and free.

@kcw-grunt

@kcw-grunt
Copy link
Collaborator

ohh right this update request will trigger 1 time only per month @kcw-grunt, and max of 5 PR.
we can change this setting later. for now its havent been used by main repo only build logic repo only so it will not affecting production.
cc @josikie

Is this a duplicate workflow from CirclCI @JosephSanjaya ? I need to wrap my head around the whole release workflow process to reduce costs and complexity

Dependabot is actually native to GitHub, so this workflow doesn’t add CircleCI costs or complexity. The config lives in .github/dependabot.yml (link to file ), and GitHub handles everything automatically.

If we were to wire this through CircleCI, we’d need to build custom jobs to check for outdated deps, open PRs, and handle scheduling which is way more overhead. Using GitHub’s built-in Dependabot keeps things simple and free.

@kcw-grunt

Ok thanks.

@JosephSanjaya JosephSanjaya merged commit 0008a68 into main Sep 20, 2025
@dependabot dependabot bot deleted the dependabot/gradle/ksp-2.2.20-2.0.3 branch September 20, 2025 10:19
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@kcw-grunt kcw-grunt kcw-grunt approved these changes

@josikie josikie josikie approved these changes

@JosephSanjaya JosephSanjaya Awaiting requested review from JosephSanjaya JosephSanjaya is a code owner

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file java Pull requests that update java code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@JosephSanjaya @kcw-grunt @josikie