Skip to content

build(deps): bump the production group with 7 updates#68

Merged
softwaremill-ci merged 1 commit into
mainfrom
dependabot/gradle/production-b4cd911c74
Jun 24, 2026
Merged

build(deps): bump the production group with 7 updates#68
softwaremill-ci merged 1 commit into
mainfrom
dependabot/gradle/production-b4cd911c74

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 24, 2026

Copy link
Copy Markdown
Contributor

Bumps the production group with 7 updates:

Package From To
gradle-wrapper 9.5.1 9.6.0
com.vanniktech:gradle-maven-publish-plugin 0.36.0 0.37.0
io.kotest:kotest-runner-junit5 6.2.0 6.2.1
io.kotest:kotest-assertions-core 6.2.0 6.2.1
org.apache.kafka:kafka-clients 4.3.0 4.3.1
org.hibernate.orm:hibernate-core 7.4.1.Final 7.4.2.Final
ch.qos.logback:logback-classic 1.5.34 1.5.35

Updates gradle-wrapper from 9.5.1 to 9.6.0

Release notes

Sourced from gradle-wrapper's releases.

9.6.0

The Gradle team is excited to announce Gradle 9.6.0.

Here are the highlights of this release:

  • Improved Configuration Cache hit rates
  • Additional CLI rendering options
  • Important project hierarchy lookup deprecations

Read the Release Notes

We would like to thank the following community members for their contributions to this release of Gradle: Aharnish Solanki, Benedikt Johannes, Devendra Reddy Pennabadi, Dmytro Rodionov, Dreeam, Elías Hernández Rodríguez, Eng Zer Jun, FinlayRJW, Kamal Kansal, Marcono1234, Nelson Osacky, Philip Wedemann, Ravi, Roberto Perez Alcolea, Ryan Schmitt, Sebastian Schuberth, seunghun.ham, sk-reddy17, Suvrat Acharya, Vedant Madane.

Upgrade instructions

Switch your build to use Gradle 9.6.0 by updating your wrapper:

./gradlew :wrapper --gradle-version=9.6.0 && ./gradlew :wrapper

See the Gradle 9.x upgrade guide to learn about deprecations, breaking changes and other considerations when upgrading.

For Java, Groovy, Kotlin and Android compatibility, see the full compatibility notes.

Reporting problems

If you find a problem with this release, please file a bug on GitHub Issues adhering to our issue guidelines. If you're not sure you're encountering a bug, please use the forum.

We hope you will build happiness with Gradle, and we look forward to your feedback via Twitter or on GitHub.

9.6.0 RC3

... (truncated)

Commits
  • 3f750f0 Update distro size for Gradle 9.6.0 release (#38243)
  • ae93cfa update distro size
  • f7e22b5 Update Gradle wrapper to version 9.6.0-rc-3 (#38227)
  • 71a8eb9 Update Gradle wrapper to version 9.6.0-rc-3
  • 70a8745 Prepare release notes for Gradle 9.6.0RC3 (#38220)
  • 9706522 some final polishing for release notes
  • af308eb Restore GradleInternal.getRootProject overload for binary compatibility (#38214)
  • 239361b Restore GradleInternal.getRootProject overload for binary compatibility
  • 896dc44 Update Gradle wrapper to version 9.6.0-rc-2 (#38187)
  • 2d4ec25 Update Gradle wrapper to version 9.6.0-rc-2
  • Additional commits viewable in compare view

Updates com.vanniktech:gradle-maven-publish-plugin from 0.36.0 to 0.37.0

Release notes

Sourced from com.vanniktech:gradle-maven-publish-plugin's releases.

0.37.0

  • When publishing to Maven Central, redundant checksum files are now excluded by default: checksums of .asc signature files (gradle/gradle#20232) and the sha256/sha512 checksums, which are never read by Gradle or Maven Central. The published checksums can be configured through checksums(...) in the DSL or the mavenCentralChecksums Gradle property (default md5,sha1). Signature checksum exclusion can be controlled through excludeSignatureChecksums() or the mavenCentralExcludeSignatureChecksums Gradle property.
  • Maven Central deployment id is being logged after upload.

Minimum supported versions

  • JDK 17
  • Gradle 9.0.0
  • Android Gradle Plugin 8.13.0
  • Kotlin Gradle Plugin 2.2.0

Compatibility tested up to

  • JDK 26
  • Gradle 9.6.0
  • Gradle 9.7.0-milestone-1
  • Android Gradle Plugin 9.2.1
  • Android Gradle Plugin 9.3.0-rc01
  • Android Gradle Plugin 9.4.0-alpha01
  • Kotlin Gradle Plugin 2.4.0

0.37.0-rc1

  • When publishing to Maven Central, redundant checksum files are now excluded by default: checksums of .asc signature files (gradle/gradle#20232) and the sha256/sha512 checksums, which are never read by Gradle or Maven Central. The published checksums can be configured through checksums(...) in the DSL or the mavenCentralChecksums Gradle property (default md5,sha1). Signature checksum exclusion can be controlled through excludeSignatureChecksums() or the mavenCentralExcludeSignatureChecksums Gradle property.
  • Maven Central deployment id is being logged after upload.

Minimum supported versions

  • JDK 17
  • Gradle 9.0.0
  • Android Gradle Plugin 8.13.0
  • Kotlin Gradle Plugin 2.2.0

Compatibility tested up to

  • JDK 26
  • Gradle 9.6.0
  • Gradle 9.7.0-milestone-1
  • Android Gradle Plugin 9.2.1
  • Android Gradle Plugin 9.3.0-rc01
  • Android Gradle Plugin 9.4.0-alpha01
  • Kotlin Gradle Plugin 2.4.0
Changelog

Sourced from com.vanniktech:gradle-maven-publish-plugin's changelog.

0.37.0 (2026-06-21)

  • When publishing to Maven Central, redundant checksum files are now excluded by default: checksums of .asc signature files (gradle/gradle#20232) and the sha256/sha512 checksums, which are never read by Gradle or Maven Central. The published checksums can be configured through checksums(...) in the DSL or the mavenCentralChecksums Gradle property (default md5,sha1). Signature checksum exclusion can be controlled through excludeSignatureChecksums() or the mavenCentralExcludeSignatureChecksums Gradle property.
  • Maven Central deployment id is being logged after upload.

Minimum supported versions

  • JDK 17
  • Gradle 9.0.0
  • Android Gradle Plugin 8.13.0
  • Kotlin Gradle Plugin 2.2.0

Compatibility tested up to

  • JDK 26
  • Gradle 9.6.0
  • Gradle 9.7.0-milestone-1
  • Android Gradle Plugin 9.2.1
  • Android Gradle Plugin 9.3.0-rc01
  • Android Gradle Plugin 9.4.0-alpha01
  • Kotlin Gradle Plugin 2.4.0
Commits

Updates io.kotest:kotest-runner-junit5 from 6.2.0 to 6.2.1

Release notes

Sourced from io.kotest:kotest-runner-junit5's releases.

v6.2.1

What's Changed

Full Changelog: kotest/kotest@v6.2.0...v6.2.1

Commits
  • 9ae8a1d Make flaky "throws FileNotFoundException for some time" eventually test deter...
  • a16146f Fix data objects being considered equal in DataClassEq (#6144) (#6145)
  • 47fe8d4 remove KotestInternal in TestFactory (#6146)
  • b39700c fix docs (#6147)
  • 8006dbd Remove usages of K1's KtUltraLightClass from kotest plugin sources (#6143)
  • 07b21d7 Add support for deprecated Kotlin targets in Android and Native conve… (#6141)
  • 96f71e0 docs: add KDoc to ArrayEq (#6140)
  • 7f2b14a Cut docs for 6.2
  • ead01c0 Override additional Kotlin version properties for IC-261 in release workflow
  • See full diff in compare view

Updates io.kotest:kotest-assertions-core from 6.2.0 to 6.2.1

Release notes

Sourced from io.kotest:kotest-assertions-core's releases.

v6.2.1

What's Changed

Full Changelog: kotest/kotest@v6.2.0...v6.2.1

Commits
  • 9ae8a1d Make flaky "throws FileNotFoundException for some time" eventually test deter...
  • a16146f Fix data objects being considered equal in DataClassEq (#6144) (#6145)
  • 47fe8d4 remove KotestInternal in TestFactory (#6146)
  • b39700c fix docs (#6147)
  • 8006dbd Remove usages of K1's KtUltraLightClass from kotest plugin sources (#6143)
  • 07b21d7 Add support for deprecated Kotlin targets in Android and Native conve… (#6141)
  • 96f71e0 docs: add KDoc to ArrayEq (#6140)
  • 7f2b14a Cut docs for 6.2
  • ead01c0 Override additional Kotlin version properties for IC-261 in release workflow
  • See full diff in compare view

Updates io.kotest:kotest-assertions-core from 6.2.0 to 6.2.1

Release notes

Sourced from io.kotest:kotest-assertions-core's releases.

v6.2.1

What's Changed

Full Changelog: kotest/kotest@v6.2.0...v6.2.1

Commits
  • 9ae8a1d Make flaky "throws FileNotFoundException for some time" eventually test deter...
  • a16146f Fix data objects being considered equal in DataClassEq (#6144) (#6145)
  • 47fe8d4 remove KotestInternal in TestFactory (#6146)
  • b39700c fix docs (#6147)
  • 8006dbd Remove usages of K1's KtUltraLightClass from kotest plugin sources (#6143)
  • 07b21d7 Add support for deprecated Kotlin targets in Android and Native conve… (#6141)
  • 96f71e0 docs: add KDoc to ArrayEq (#6140)
  • 7f2b14a Cut docs for 6.2
  • ead01c0 Override additional Kotlin version properties for IC-261 in release workflow
  • See full diff in compare view

Updates org.apache.kafka:kafka-clients from 4.3.0 to 4.3.1

Updates org.hibernate.orm:hibernate-core from 7.4.1.Final to 7.4.2.Final

Release notes

Sourced from org.hibernate.orm:hibernate-core's releases.

Release 7.4.2

Hibernate ORM 7.4.2.Final released

Today, we published a new release of Hibernate ORM 7.4: 7.4.2.Final.

You can find the full list of 7.4.2.Final changes here.

What's new

  • See the website for requirements and compatibilities.
  • See the What's New guide for details about new features and capabilities.
  • See the Migration Guide for details about migration.

Conclusion

For additional details, see:

See also the following resources related to supported APIs:

Visit the website for details on getting in touch with us.

Changelog

Sourced from org.hibernate.orm:hibernate-core's changelog.

Changes in 7.4.2.Final (June 21, 2026)

https://hibernate.atlassian.net/projects/HHH/versions/39622

** Bug * HHH-20587 Log "Attempt to stop an already-stopped RegionFactory" is a warning but should just be debug * HHH-20561 NullPointerException in Query.setCacheRetrieveMode() and Query.setCacheStoreMode() * HHH-20425 Identifier not detected while @Id is placed in @MappedSuperClass and combined with @Access

Commits
  • 3c999f3 [Jenkins release job] Preparing release 7.4.2.Final
  • 01439c1 [Jenkins release job] changelog.txt updated by release build 7.4.2.Final
  • 641a4eb HHH-20561 fix NPE Query.setCacheRetrieveMode/setCacheStoreMode
  • 849ea4c HHH-20587 Downgrade "already-stopped RegionFactory" log from WARN to DEBUG
  • 0b819b1 HHH-20425 Handle misplaced @​Access on identifier members
  • 4f90944 [Jenkins release job] Preparing next development iteration
  • See full diff in compare view

Updates ch.qos.logback:logback-classic from 1.5.34 to 1.5.35

Release notes

Sourced from ch.qos.logback:logback-classic's releases.

Logback 1.5.35

026-06-23 Release of logback version 1.5.35

• The 'condition' attribute in <if> elements now rejects unicode escape sequences (\u and \U). This closes a bypass of the existing prohibition on the new operator in Janino-evaluated conditions. This issue was reported by IcySun (icysun@qq.com) and registered as CVE-2026-13006.

• Added ConfiguratorRank.AUTHENTICATING (rank 100), the highest configurator rank, for certified/authenticating configurators discovered via the ServiceLoader mechanism. ContextInitializer now requires that at most one such configurator exist on the classpath; if more than one is found, initialization aborts with an error.

ConsoleCharsetPropertyDefiner is no longer shipped. The Java 21 multi-release compilation of logback-core has been disabled, which removes this class from the published artifact. Configurations that referenced ch.qos.logback.core.property.ConsoleCharsetPropertyDefiner will need an alternative approach for console charset detection.

• The logback-examples module is now included in artifacts published to Maven Central.

JoranConfigurator.makeAnotherInstance() and DefaultJoranConfigurator.performMultiStepConfigurationFileSearch() are now protected, allowing derived configurators to override these methods.

• A bitwise identical binary of this version can be reproduced by building from source code at commit 08bd1598d565d83444f72983935e7da4746783b7 associated with the tag v_1.5.35. Release built using Java "21" 2023-10-17 LTS build 21.0.1.+12-LTS-29 under Linux Debian 11.6.

Commits
  • 08bd159 preapre release 1.5.35
  • 37d256b indentation changes only
  • d3d7307 minor comment
  • fa0411a radomize file location
  • 834fdba disable consoleCharset test
  • 42eabc3 fix messages in IfModelHandler
  • 347efc8 add unicode escape prevention
  • 1b6ba73 allow derived classes to override makeAnotherInstance
  • 340e8be check for unicode escape codes in Janino conditions
  • 4468f5e adding support for certifying configurators
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): bump the production group with 7 updates
864bb1b 
Bumps the production group with 7 updates:

| Package | From | To |
| --- | --- | --- |
| [gradle-wrapper](https://github.com/gradle/gradle) | `9.5.1` | `9.6.0` |
| [com.vanniktech:gradle-maven-publish-plugin](https://github.com/vanniktech/gradle-maven-publish-plugin) | `0.36.0` | `0.37.0` |
| [io.kotest:kotest-runner-junit5](https://github.com/kotest/kotest) | `6.2.0` | `6.2.1` |
| [io.kotest:kotest-assertions-core](https://github.com/kotest/kotest) | `6.2.0` | `6.2.1` |
| org.apache.kafka:kafka-clients | `4.3.0` | `4.3.1` |
| [org.hibernate.orm:hibernate-core](https://github.com/hibernate/hibernate-orm) | `7.4.1.Final` | `7.4.2.Final` |
| [ch.qos.logback:logback-classic](https://github.com/qos-ch/logback) | `1.5.34` | `1.5.35` |


Updates `gradle-wrapper` from 9.5.1 to 9.6.0
- [Release notes](https://github.com/gradle/gradle/releases)
- [Commits](gradle/gradle@v9.5.1...v9.6.0)

Updates `com.vanniktech:gradle-maven-publish-plugin` from 0.36.0 to 0.37.0
- [Release notes](https://github.com/vanniktech/gradle-maven-publish-plugin/releases)
- [Changelog](https://github.com/vanniktech/gradle-maven-publish-plugin/blob/main/CHANGELOG.md)
- [Commits](vanniktech/gradle-maven-publish-plugin@0.36.0...0.37.0)

Updates `io.kotest:kotest-runner-junit5` from 6.2.0 to 6.2.1
- [Release notes](https://github.com/kotest/kotest/releases)
- [Commits](kotest/kotest@6.2.0...6.2.1)

Updates `io.kotest:kotest-assertions-core` from 6.2.0 to 6.2.1
- [Release notes](https://github.com/kotest/kotest/releases)
- [Commits](kotest/kotest@6.2.0...6.2.1)

Updates `io.kotest:kotest-assertions-core` from 6.2.0 to 6.2.1
- [Release notes](https://github.com/kotest/kotest/releases)
- [Commits](kotest/kotest@6.2.0...6.2.1)

Updates `org.apache.kafka:kafka-clients` from 4.3.0 to 4.3.1

Updates `org.hibernate.orm:hibernate-core` from 7.4.1.Final to 7.4.2.Final
- [Release notes](https://github.com/hibernate/hibernate-orm/releases)
- [Changelog](https://github.com/hibernate/hibernate-orm/blob/7.4.2/changelog.txt)
- [Commits](hibernate/hibernate-orm@7.4.1...7.4.2)

Updates `ch.qos.logback:logback-classic` from 1.5.34 to 1.5.35
- [Release notes](https://github.com/qos-ch/logback/releases)
- [Commits](qos-ch/logback@v_1.5.34...v_1.5.35)

---
updated-dependencies:
- dependency-name: gradle-wrapper
  dependency-version: 9.6.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production
- dependency-name: com.vanniktech:gradle-maven-publish-plugin
  dependency-version: 0.37.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production
- dependency-name: io.kotest:kotest-runner-junit5
  dependency-version: 6.2.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production
- dependency-name: io.kotest:kotest-assertions-core
  dependency-version: 6.2.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production
- dependency-name: io.kotest:kotest-assertions-core
  dependency-version: 6.2.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production
- dependency-name: org.apache.kafka:kafka-clients
  dependency-version: 4.3.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production
- dependency-name: org.hibernate.orm:hibernate-core
  dependency-version: 7.4.2.Final
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production
- dependency-name: ch.qos.logback:logback-classic
  dependency-version: 1.5.35
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added the automerge Auto-merge after CI passes label Jun 24, 2026
@softwaremill-ci softwaremill-ci merged commit c200069 into main Jun 24, 2026
7 checks passed
@softwaremill-ci softwaremill-ci deleted the dependabot/gradle/production-b4cd911c74 branch June 24, 2026 10:29
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

automerge Auto-merge after CI passes

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@softwaremill-ci