Skip to content

build(deps): Bump the dev-dependencies group with 5 updates#111

Merged
github-actions[bot] merged 1 commit into
mainfrom
dependabot/gradle/dev-dependencies-ad4822d44d
Jul 2, 2026
Merged

build(deps): Bump the dev-dependencies group with 5 updates#111
github-actions[bot] merged 1 commit into
mainfrom
dependabot/gradle/dev-dependencies-ad4822d44d

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 2, 2026

Copy link
Copy Markdown
Contributor

Bumps the dev-dependencies group with 5 updates:

Package From To
com.gradleup.nmcp.settings 1.6.0 1.6.1
com.webauthn4j:webauthn4j-core 0.31.7.RELEASE 0.31.8.RELEASE
org.jdbi:jdbi3-core 3.53.0 3.54.0
software.amazon.awssdk:dynamodb 2.46.19 2.46.20
software.amazon.awssdk:dynamodb-enhanced 2.46.19 2.46.20

Updates com.gradleup.nmcp.settings from 1.6.0 to 1.6.1

Release notes

Sourced from com.gradleup.nmcp.settings's releases.

v1.6.1

v 1.6.1 restores some checksums:

All in all, nmcp now publishes .md5, .sha1, .sha512 for all files except for signature files (.asc) where no checksums are required.

Long term, I'd love to drop the .md5 and .sha1 checksums. That would require both maven and Sonatype to stop requesting them.

Many thanks to @​marcphilipp and @​leonard84 for helping me navigate this issue 💙

On a separate note, this version also deprecates publishAllPublicationsToMavenCentral in favor of using either the aggregation or the settings plugin.

Changelog

Sourced from com.gradleup.nmcp.settings's changelog.

Version 1.6.1

2026-07-01

Restores some checksums:

  • maven-metadata.md5, maven-metadata.sha1 (because maven outputs a scary warning without them)
  • All the .sha512 checksums (because Gradle uses them to validate caches contents)

All in all, nmcp now publishes .md5, .sha1, .sha512 for all files except for signature files (.asc) where no checksums are required.

Long term, I'd love to drop the .md5 and .sha1 checksums. That would require both maven and Sonatype to stop requesting them.

Many thanks to @​marcphilipp and @​leonard84 for helping me navigate this issue 💙

Commits

Updates com.webauthn4j:webauthn4j-core from 0.31.7.RELEASE to 0.31.8.RELEASE

Release notes

Sourced from com.webauthn4j:webauthn4j-core's releases.

0.31.8.RELEASE

What's Changed

⭐ Enhancements

🛠️ Build/Test

Full Changelog: webauthn4j/webauthn4j@0.31.7.RELEASE...0.31.8.RELEASE

Build Configuration

Item Value
JDK Eclipse Temurin 25.0.3+9
Gradle 9.6.1
Commits
  • 41756c8 Release 0.31.8
  • 0d438c3 Merge pull request #1405 from webauthn4j/dependabot/gradle/org.junit.jupiter-...
  • 3c11458 Merge pull request #1406 from webauthn4j/dependabot/gradle/com.microsoft.play...
  • aae3f9f Bump com.microsoft.playwright:playwright from 1.60.0 to 1.61.0
  • f58e640 Merge pull request #1404 from webauthn4j/dependabot/gradle/gradle-wrapper-9.6.1
  • 9e321c4 Bump org.junit.jupiter:junit-jupiter from 6.1.0 to 6.1.1
  • 8862de5 Bump gradle-wrapper from 9.6.0 to 9.6.1
  • 05c9ce7 Merge pull request #1403 from webauthn4j/dependabot/github_actions/actions/se...
  • 2047ce1 Bump actions/setup-java from 5.3.0 to 5.4.0
  • 2305ad3 Merge pull request #1402 from webauthn4j/dependabot/gradle/quarkus-3.37.0
  • Additional commits viewable in compare view

Updates org.jdbi:jdbi3-core from 3.53.0 to 3.54.0

Release notes

Sourced from org.jdbi:jdbi3-core's releases.

3.54.0

  • fix deadlock in configuration caching (#2980)
  • fix prepared batch first-time-null binding (#2975)
  • Add @SqlPreflight (Alpha) for SQL Object methods. The annotation runs a literal SQL statement on the same Handle, immediately before the method's main statement, binding the method's arguments. This is useful for setting scoped/session variables before a query (e.g. a Postgres trigram threshold). It is repeatable and may be placed on a method or a SQL Object type. See issue #2979.
  • update postgres driver due to CVE-2026-42198
Changelog

Sourced from org.jdbi:jdbi3-core's changelog.

3.54.0

  • fix deadlock in configuration caching (#2980)
  • fix prepared batch first-time-null binding (#2975)
  • Add @SqlPreflight (Alpha) for SQL Object methods. The annotation runs a literal SQL statement on the same Handle, immediately before the method's main statement, binding the method's arguments. This is useful for setting scoped/session variables before a query (e.g. a Postgres trigram threshold). It is repeatable and may be placed on a method or a SQL Object type. See issue #2979.
  • update postgres driver due to CVE-2026-42198
Commits

Updates software.amazon.awssdk:dynamodb from 2.46.19 to 2.46.20

Updates software.amazon.awssdk:dynamodb-enhanced from 2.46.19 to 2.46.20

Updates software.amazon.awssdk:dynamodb-enhanced from 2.46.19 to 2.46.20

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the dev-dependencies group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [com.gradleup.nmcp.settings](https://github.com/gradleup/nmcp) | `1.6.0` | `1.6.1` |
| [com.webauthn4j:webauthn4j-core](https://github.com/webauthn4j/webauthn4j) | `0.31.7.RELEASE` | `0.31.8.RELEASE` |
| [org.jdbi:jdbi3-core](https://github.com/jdbi/jdbi) | `3.53.0` | `3.54.0` |
| software.amazon.awssdk:dynamodb | `2.46.19` | `2.46.20` |
| software.amazon.awssdk:dynamodb-enhanced | `2.46.19` | `2.46.20` |


Updates `com.gradleup.nmcp.settings` from 1.6.0 to 1.6.1
- [Release notes](https://github.com/gradleup/nmcp/releases)
- [Changelog](https://github.com/GradleUp/nmcp/blob/main/CHANGELOG.md)
- [Commits](GradleUp/nmcp@v1.6.0...v1.6.1)

Updates `com.webauthn4j:webauthn4j-core` from 0.31.7.RELEASE to 0.31.8.RELEASE
- [Release notes](https://github.com/webauthn4j/webauthn4j/releases)
- [Commits](webauthn4j/webauthn4j@0.31.7.RELEASE...0.31.8.RELEASE)

Updates `org.jdbi:jdbi3-core` from 3.53.0 to 3.54.0
- [Release notes](https://github.com/jdbi/jdbi/releases)
- [Changelog](https://github.com/jdbi/jdbi/blob/master/RELEASE_NOTES.md)
- [Commits](jdbi/jdbi@v3.53.0...v3.54.0)

Updates `software.amazon.awssdk:dynamodb` from 2.46.19 to 2.46.20

Updates `software.amazon.awssdk:dynamodb-enhanced` from 2.46.19 to 2.46.20

Updates `software.amazon.awssdk:dynamodb-enhanced` from 2.46.19 to 2.46.20

---
updated-dependencies:
- dependency-name: com.gradleup.nmcp.settings
  dependency-version: 1.6.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dev-dependencies
- dependency-name: com.webauthn4j:webauthn4j-core
  dependency-version: 0.31.8.RELEASE
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dev-dependencies
- dependency-name: org.jdbi:jdbi3-core
  dependency-version: 3.54.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dev-dependencies
- dependency-name: software.amazon.awssdk:dynamodb
  dependency-version: 2.46.20
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dev-dependencies
- dependency-name: software.amazon.awssdk:dynamodb-enhanced
  dependency-version: 2.46.20
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dev-dependencies
- dependency-name: software.amazon.awssdk:dynamodb-enhanced
  dependency-version: 2.46.20
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dev-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Jul 2, 2026
@github-actions
github-actions Bot enabled auto-merge (squash) July 2, 2026 04:54
@github-actions
github-actions Bot merged commit 056304e into main Jul 2, 2026
7 checks passed
@dependabot
dependabot Bot deleted the dependabot/gradle/dev-dependencies-ad4822d44d branch July 2, 2026 04:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file java Pull requests that update java code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants