Bump the gradle group with 7 updates #936

dependabot · 2025-11-19T05:05:08Z

Bumps the gradle group with 7 updates:

Package	From	To
software.amazon.awssdk:retries-spi	`2.38.4`	`2.38.9`
software.amazon.awssdk:retries	`2.38.4`	`2.38.9`
software.amazon.awssdk:sdk-core	`2.38.4`	`2.38.9`
software.amazon.awssdk:auth	`2.38.4`	`2.38.9`
com.code-intelligence:jazzer-junit	`0.26.0`	`0.27.0`
com.code-intelligence:jazzer-api	`0.26.0`	`0.27.0`
com.diffplug.spotless:spotless-plugin-gradle	`8.0.0`	`8.1.0`

Updates software.amazon.awssdk:retries-spi from 2.38.4 to 2.38.9

Updates software.amazon.awssdk:retries from 2.38.4 to 2.38.9

Updates software.amazon.awssdk:sdk-core from 2.38.4 to 2.38.9

Updates software.amazon.awssdk:auth from 2.38.4 to 2.38.9

Updates software.amazon.awssdk:retries from 2.38.4 to 2.38.9

Updates software.amazon.awssdk:sdk-core from 2.38.4 to 2.38.9

Updates software.amazon.awssdk:auth from 2.38.4 to 2.38.9

Updates com.code-intelligence:jazzer-junit from 0.26.0 to 0.27.0

Release notes

Sourced from com.code-intelligence:jazzer-junit's releases.

v0.27.0

What's Changed

chore: update bazel dependencies by @simonresch in CodeIntelligenceTesting/jazzer#987

fix: guard against malformed corpus entries in protobuf mutator by @simonresch in CodeIntelligenceTesting/jazzer#989

chore: update maven dependencies by @simonresch in CodeIntelligenceTesting/jazzer#988

fix: fixes for sanitizer handling in honeypot class by @simonresch in CodeIntelligenceTesting/jazzer#991

feat: add guidance hook for SpEL injection by @simonresch in CodeIntelligenceTesting/jazzer#990

feat: add big decimal sanitizer by @florianGla in CodeIntelligenceTesting/jazzer#992

BREAKING: remove Spring API fuzz test helpers by @florianGla in CodeIntelligenceTesting/jazzer#993

chore(deps): update github workflows by @simonresch in CodeIntelligenceTesting/jazzer#997

chore: update bazel dependencies by @simonresch in CodeIntelligenceTesting/jazzer#998

fix: fuzz test invocation with referring protobufs by @simonresch in CodeIntelligenceTesting/jazzer#995

chore: exclude potentially dangerous tests by default by @simonresch in CodeIntelligenceTesting/jazzer#996

fix: assertion failure when fuzzing proto strings by @simonresch in CodeIntelligenceTesting/jazzer#1002

feat: add hooks for additional EL evaluation methods by @florianGla in CodeIntelligenceTesting/jazzer#994

chore: upgrade to bazel 8 by @simonresch in CodeIntelligenceTesting/jazzer#1001

feat: add support for proto maps with enum values by @simonresch in CodeIntelligenceTesting/jazzer#1006

dependency updates by @simonresch in CodeIntelligenceTesting/jazzer#1000

feat: add jexl expression guidance hook by @florianGla in CodeIntelligenceTesting/jazzer#1003

feat: MVEL guidance hook by @simonresch in CodeIntelligenceTesting/jazzer#1005

feat: add ognl expression guidance hook by @florianGla in CodeIntelligenceTesting/jazzer#1004

feat: add xml parser guidance hook by @simonresch in CodeIntelligenceTesting/jazzer#999

feat: set mutator by @oetr in CodeIntelligenceTesting/jazzer#955

Mention Set in WithSize Javadoc & slightly improve test by @Marcono1234 in CodeIntelligenceTesting/jazzer#1010

refactor: improve readability of util function by @simonresch in CodeIntelligenceTesting/jazzer#1011

feat: add freemarker template injection guidance hook by @florianGla in CodeIntelligenceTesting/jazzer#1007

fix: properly instrument nested records by @oetr in CodeIntelligenceTesting/jazzer#1009

docs: document seed input sources for @FuzzTest by @simonresch in CodeIntelligenceTesting/jazzer#1012

chore(deps): update maven deps by @simonresch in CodeIntelligenceTesting/jazzer#1014

Full Changelog: CodeIntelligenceTesting/jazzer@v0.26.0...v0.27.0

Commits

2d78a82 chore: update the release instructions
118fbef chore: automatically deploy to Maven Central and create a GH release
8ad3c12 chore: making local bundle doesn't need Sonatype usename or password
068587e chore(deps): update maven deps
85ae9d1 docs: document seed input sources for @FuzzTest
94ea994 fix: instrumention of nested records, and records with annotated fields
761cc11 feat: add freemarker template injection guidance hook
196391d chore: suppress unused params in XmlParserSsrfGuidance
57628a7 refactor: improve readability of util function
65f0722 chore: improve ArgumentsMutatorFuzzTest
Additional commits viewable in compare view

Updates com.code-intelligence:jazzer-api from 0.26.0 to 0.27.0

Release notes

Sourced from com.code-intelligence:jazzer-api's releases.

v0.27.0

What's Changed

chore: update bazel dependencies by @simonresch in CodeIntelligenceTesting/jazzer#987

fix: guard against malformed corpus entries in protobuf mutator by @simonresch in CodeIntelligenceTesting/jazzer#989

chore: update maven dependencies by @simonresch in CodeIntelligenceTesting/jazzer#988

fix: fixes for sanitizer handling in honeypot class by @simonresch in CodeIntelligenceTesting/jazzer#991

feat: add guidance hook for SpEL injection by @simonresch in CodeIntelligenceTesting/jazzer#990

feat: add big decimal sanitizer by @florianGla in CodeIntelligenceTesting/jazzer#992

BREAKING: remove Spring API fuzz test helpers by @florianGla in CodeIntelligenceTesting/jazzer#993

chore(deps): update github workflows by @simonresch in CodeIntelligenceTesting/jazzer#997

chore: update bazel dependencies by @simonresch in CodeIntelligenceTesting/jazzer#998

fix: fuzz test invocation with referring protobufs by @simonresch in CodeIntelligenceTesting/jazzer#995

chore: exclude potentially dangerous tests by default by @simonresch in CodeIntelligenceTesting/jazzer#996

fix: assertion failure when fuzzing proto strings by @simonresch in CodeIntelligenceTesting/jazzer#1002

feat: add hooks for additional EL evaluation methods by @florianGla in CodeIntelligenceTesting/jazzer#994

chore: upgrade to bazel 8 by @simonresch in CodeIntelligenceTesting/jazzer#1001

feat: add support for proto maps with enum values by @simonresch in CodeIntelligenceTesting/jazzer#1006

dependency updates by @simonresch in CodeIntelligenceTesting/jazzer#1000

feat: add jexl expression guidance hook by @florianGla in CodeIntelligenceTesting/jazzer#1003

feat: MVEL guidance hook by @simonresch in CodeIntelligenceTesting/jazzer#1005

feat: add ognl expression guidance hook by @florianGla in CodeIntelligenceTesting/jazzer#1004

feat: add xml parser guidance hook by @simonresch in CodeIntelligenceTesting/jazzer#999

feat: set mutator by @oetr in CodeIntelligenceTesting/jazzer#955

Mention Set in WithSize Javadoc & slightly improve test by @Marcono1234 in CodeIntelligenceTesting/jazzer#1010

refactor: improve readability of util function by @simonresch in CodeIntelligenceTesting/jazzer#1011

feat: add freemarker template injection guidance hook by @florianGla in CodeIntelligenceTesting/jazzer#1007

fix: properly instrument nested records by @oetr in CodeIntelligenceTesting/jazzer#1009

docs: document seed input sources for @FuzzTest by @simonresch in CodeIntelligenceTesting/jazzer#1012

chore(deps): update maven deps by @simonresch in CodeIntelligenceTesting/jazzer#1014

Full Changelog: CodeIntelligenceTesting/jazzer@v0.26.0...v0.27.0

Commits

2d78a82 chore: update the release instructions
118fbef chore: automatically deploy to Maven Central and create a GH release
8ad3c12 chore: making local bundle doesn't need Sonatype usename or password
068587e chore(deps): update maven deps
85ae9d1 docs: document seed input sources for @FuzzTest
94ea994 fix: instrumention of nested records, and records with annotated fields
761cc11 feat: add freemarker template injection guidance hook
196391d chore: suppress unused params in XmlParserSsrfGuidance
57628a7 refactor: improve readability of util function
65f0722 chore: improve ArgumentsMutatorFuzzTest
Additional commits viewable in compare view

Updates com.code-intelligence:jazzer-api from 0.26.0 to 0.27.0

Release notes

Sourced from com.code-intelligence:jazzer-api's releases.

v0.27.0

What's Changed

chore: update bazel dependencies by @simonresch in CodeIntelligenceTesting/jazzer#987

fix: guard against malformed corpus entries in protobuf mutator by @simonresch in CodeIntelligenceTesting/jazzer#989

chore: update maven dependencies by @simonresch in CodeIntelligenceTesting/jazzer#988

fix: fixes for sanitizer handling in honeypot class by @simonresch in CodeIntelligenceTesting/jazzer#991

feat: add guidance hook for SpEL injection by @simonresch in CodeIntelligenceTesting/jazzer#990

feat: add big decimal sanitizer by @florianGla in CodeIntelligenceTesting/jazzer#992

BREAKING: remove Spring API fuzz test helpers by @florianGla in CodeIntelligenceTesting/jazzer#993

chore(deps): update github workflows by @simonresch in CodeIntelligenceTesting/jazzer#997

chore: update bazel dependencies by @simonresch in CodeIntelligenceTesting/jazzer#998

fix: fuzz test invocation with referring protobufs by @simonresch in CodeIntelligenceTesting/jazzer#995

chore: exclude potentially dangerous tests by default by @simonresch in CodeIntelligenceTesting/jazzer#996

fix: assertion failure when fuzzing proto strings by @simonresch in CodeIntelligenceTesting/jazzer#1002

feat: add hooks for additional EL evaluation methods by @florianGla in CodeIntelligenceTesting/jazzer#994

chore: upgrade to bazel 8 by @simonresch in CodeIntelligenceTesting/jazzer#1001

feat: add support for proto maps with enum values by @simonresch in CodeIntelligenceTesting/jazzer#1006

dependency updates by @simonresch in CodeIntelligenceTesting/jazzer#1000

feat: add jexl expression guidance hook by @florianGla in CodeIntelligenceTesting/jazzer#1003

feat: MVEL guidance hook by @simonresch in CodeIntelligenceTesting/jazzer#1005

feat: add ognl expression guidance hook by @florianGla in CodeIntelligenceTesting/jazzer#1004

feat: add xml parser guidance hook by @simonresch in CodeIntelligenceTesting/jazzer#999

feat: set mutator by @oetr in CodeIntelligenceTesting/jazzer#955

Mention Set in WithSize Javadoc & slightly improve test by @Marcono1234 in CodeIntelligenceTesting/jazzer#1010

refactor: improve readability of util function by @simonresch in CodeIntelligenceTesting/jazzer#1011

feat: add freemarker template injection guidance hook by @florianGla in CodeIntelligenceTesting/jazzer#1007

fix: properly instrument nested records by @oetr in CodeIntelligenceTesting/jazzer#1009

docs: document seed input sources for @FuzzTest by @simonresch in CodeIntelligenceTesting/jazzer#1012

chore(deps): update maven deps by @simonresch in CodeIntelligenceTesting/jazzer#1014

Full Changelog: CodeIntelligenceTesting/jazzer@v0.26.0...v0.27.0

Commits

2d78a82 chore: update the release instructions
118fbef chore: automatically deploy to Maven Central and create a GH release
8ad3c12 chore: making local bundle doesn't need Sonatype usename or password
068587e chore(deps): update maven deps
85ae9d1 docs: document seed input sources for @FuzzTest
94ea994 fix: instrumention of nested records, and records with annotated fields
761cc11 feat: add freemarker template injection guidance hook
196391d chore: suppress unused params in XmlParserSsrfGuidance
57628a7 refactor: improve readability of util function
65f0722 chore: improve ArgumentsMutatorFuzzTest
Additional commits viewable in compare view

Updates com.diffplug.spotless:spotless-plugin-gradle from 8.0.0 to 8.1.0

Release notes

Sourced from com.diffplug.spotless:spotless-plugin-gradle's releases.

Gradle Plugin v8.1.0

Changes

Bump default ktfmt version to latest 0.58 -> 0.59. (#2681

Bump default jackson version to latest 2.20.0 -> 2.20.1. (#2730)

Bump default cleanthat version to latest 2.23 -> 2.24. (#2620)

POTENTIALLY BREAKING Removed support for ktlint versions below 1.0. (#2711)

Fixed

Tasks were being eagerly instantiated, now avoided using TaskProviders. #2719

POTENTIALLY BREAKING Bump minimum supported Gradle version from 7.3 to 8.1. #2719

Use absolute path in the git pre push hook.

palantirJavaFormat is no longer arbitrarily set to outdated versions on Java 17, latest available version is always used (#2686 fixes #2685)

Added

forbidModuleImports() API for java (#2679)

new options to customize Flexmark, e.g. to allow YAML front matter (#2616)

Commits

aee19c8 Published gradle/8.1.0
bf212ec Published lib/4.1.0
399bf33 Remove the claude.yml, it wasn't working with the team permissions we had hop...
856c4ef Improve changelogs for end-users.
4761969 Switch from * to - for bullets, less confusion with bold/italic.
57eb3d5 Add step to forbid module imports (#2690 closes #2679)
baaa5f2 Merge branch 'main' into forbidModuleImports
d9e837a Hotfix rewriteRun of #2713 which merged prematurely due to bug in #2725
e686bbf Add more configuration options for flexmark (#2713)
20e61e2 Fixx spotbugs warning.
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the gradle group with 7 updates: | Package | From | To | | --- | --- | --- | | software.amazon.awssdk:retries-spi | `2.38.4` | `2.38.9` | | software.amazon.awssdk:retries | `2.38.4` | `2.38.9` | | software.amazon.awssdk:sdk-core | `2.38.4` | `2.38.9` | | software.amazon.awssdk:auth | `2.38.4` | `2.38.9` | | [com.code-intelligence:jazzer-junit](https://github.com/CodeIntelligenceTesting/jazzer) | `0.26.0` | `0.27.0` | | [com.code-intelligence:jazzer-api](https://github.com/CodeIntelligenceTesting/jazzer) | `0.26.0` | `0.27.0` | | [com.diffplug.spotless:spotless-plugin-gradle](https://github.com/diffplug/spotless) | `8.0.0` | `8.1.0` | Updates `software.amazon.awssdk:retries-spi` from 2.38.4 to 2.38.9 Updates `software.amazon.awssdk:retries` from 2.38.4 to 2.38.9 Updates `software.amazon.awssdk:sdk-core` from 2.38.4 to 2.38.9 Updates `software.amazon.awssdk:auth` from 2.38.4 to 2.38.9 Updates `software.amazon.awssdk:retries` from 2.38.4 to 2.38.9 Updates `software.amazon.awssdk:sdk-core` from 2.38.4 to 2.38.9 Updates `software.amazon.awssdk:auth` from 2.38.4 to 2.38.9 Updates `com.code-intelligence:jazzer-junit` from 0.26.0 to 0.27.0 - [Release notes](https://github.com/CodeIntelligenceTesting/jazzer/releases) - [Commits](CodeIntelligenceTesting/jazzer@v0.26.0...v0.27.0) Updates `com.code-intelligence:jazzer-api` from 0.26.0 to 0.27.0 - [Release notes](https://github.com/CodeIntelligenceTesting/jazzer/releases) - [Commits](CodeIntelligenceTesting/jazzer@v0.26.0...v0.27.0) Updates `com.code-intelligence:jazzer-api` from 0.26.0 to 0.27.0 - [Release notes](https://github.com/CodeIntelligenceTesting/jazzer/releases) - [Commits](CodeIntelligenceTesting/jazzer@v0.26.0...v0.27.0) Updates `com.diffplug.spotless:spotless-plugin-gradle` from 8.0.0 to 8.1.0 - [Release notes](https://github.com/diffplug/spotless/releases) - [Changelog](https://github.com/diffplug/spotless/blob/main/CHANGES.md) - [Commits](diffplug/spotless@gradle/8.0.0...gradle/8.1.0) --- updated-dependencies: - dependency-name: software.amazon.awssdk:retries-spi dependency-version: 2.38.9 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: gradle - dependency-name: software.amazon.awssdk:retries dependency-version: 2.38.9 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: gradle - dependency-name: software.amazon.awssdk:sdk-core dependency-version: 2.38.9 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: gradle - dependency-name: software.amazon.awssdk:auth dependency-version: 2.38.9 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: gradle - dependency-name: software.amazon.awssdk:retries dependency-version: 2.38.9 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: gradle - dependency-name: software.amazon.awssdk:sdk-core dependency-version: 2.38.9 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: gradle - dependency-name: software.amazon.awssdk:auth dependency-version: 2.38.9 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: gradle - dependency-name: com.code-intelligence:jazzer-junit dependency-version: 0.27.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gradle - dependency-name: com.code-intelligence:jazzer-api dependency-version: 0.27.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gradle - dependency-name: com.code-intelligence:jazzer-api dependency-version: 0.27.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gradle - dependency-name: com.diffplug.spotless:spotless-plugin-gradle dependency-version: 8.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gradle ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Nov 19, 2025

adwsingh enabled auto-merge (rebase) November 19, 2025 08:24

adwsingh approved these changes Nov 19, 2025

View reviewed changes

adwsingh merged commit c1b4459 into main Nov 19, 2025
3 checks passed

adwsingh deleted the dependabot/gradle/gradle-ae07cd5068 branch November 19, 2025 08:24

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump the gradle group with 7 updates #936

Bump the gradle group with 7 updates #936

Uh oh!

dependabot bot commented on behalf of github Nov 19, 2025

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Bump the gradle group with 7 updates #936

Bump the gradle group with 7 updates #936

Uh oh!

Conversation

dependabot bot commented on behalf of github Nov 19, 2025

v0.27.0

What's Changed

v0.27.0

What's Changed

v0.27.0

What's Changed

Gradle Plugin v8.1.0

Changes

Fixed

Added

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant