Skip to content

Bump the dev-dependencies group with 6 updates#75

Merged
github-actions[bot] merged 1 commit into
mainfrom
dependabot/gradle/dev-dependencies-519dd9950c
May 19, 2026
Merged

Bump the dev-dependencies group with 6 updates#75
github-actions[bot] merged 1 commit into
mainfrom
dependabot/gradle/dev-dependencies-519dd9950c

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 19, 2026

Bumps the dev-dependencies group with 6 updates:

Package From To
gradle-wrapper 9.5.0 9.5.1
software.amazon.awssdk:bom 2.44.4 2.44.8
org.immutables:value-annotations 2.12.1 2.12.2
org.immutables:value 2.12.1 2.12.2
org.liquibase:liquibase-core 5.0.2 5.0.3
org.slf4j:slf4j-api 2.0.17 2.0.18

Updates gradle-wrapper from 9.5.0 to 9.5.1

Release notes

Sourced from gradle-wrapper's releases.

9.5.1

The Gradle team is excited to announce Gradle 9.5.1.

Here are the highlights of this release:

  • Task provenance in reports and failure messages
  • Type-safe accessors for precompiled Kotlin Settings plugins

Read the Release Notes

We would like to thank the following community members for their contributions to this release of Gradle: atm1020, mataha, Adam, Attila Kelemen, Benedikt Ritter, Björn Kautler, Caro Silva Rode, CHANHAN, Dmitry Nezavitin, Eng Zer Jun, KugelLibelle, Madalin Valceleanu, Markus Gaisbauer, Oliver Kopp, Philip Wedemann, ploober, Roberto Perez Alcolea, Rohit Anand, Suvrat Acharya, Ujwal Suresh Vanjare, Victor Merkulov

Upgrade instructions

Switch your build to use Gradle 9.5.1 by updating your wrapper:

./gradlew wrapper --gradle-version=9.5.1 && ./gradlew wrapper

See the Gradle 9.x upgrade guide to learn about deprecations, breaking changes and other considerations when upgrading.

For Java, Groovy, Kotlin and Android compatibility, see the full compatibility notes.

Reporting problems

If you find a problem with this release, please file a bug on GitHub Issues adhering to our issue guidelines. If you're not sure you're encountering a bug, please use the forum.

We hope you will build happiness with Gradle, and we look forward to your feedback via Twitter or on GitHub.

Commits
  • fd78213 Update Documentation Infrastructure: Fix scrolling issue in user manual (#37861)
  • 7758437 fix scroll
  • 2fd605f Only try to run as worker thread in DefaultBuildOperationQueue (#37845)
  • af69849 Release notes for Gradle 9.5.1 (#37853)
  • f4d9d03 Release notes for Gradle 9.5.1
  • 01eda3a Address review feedback on worker-lease retry changes
  • 7024e15 Revert enrich file visitor with size info on release branch (#37848)
  • d51476f Fix tryRunAsWorkerThread null-return test to match contract
  • 090ebab Revert "Add getLength() to FilePropertyVisitor.VisitState"
  • bceab24 Revert "Fix annotation"
  • Additional commits viewable in compare view

Updates software.amazon.awssdk:bom from 2.44.4 to 2.44.8

Updates org.immutables:value-annotations from 2.12.1 to 2.12.2

Release notes

Sourced from org.immutables:value-annotations's releases.

2.12.2

Maintenance release

What's Changed

New Contributors

Full Changelog: immutables/immutables@2.12.1...2.12.2

Commits

Updates org.immutables:value from 2.12.1 to 2.12.2

Release notes

Sourced from org.immutables:value's releases.

2.12.2

Maintenance release

What's Changed

New Contributors

Full Changelog: immutables/immutables@2.12.1...2.12.2

Commits

Updates org.immutables:value from 2.12.1 to 2.12.2

Release notes

Sourced from org.immutables:value's releases.

2.12.2

Maintenance release

What's Changed

New Contributors

Full Changelog: immutables/immutables@2.12.1...2.12.2

Commits

Updates org.liquibase:liquibase-core from 5.0.2 to 5.0.3

Release notes

Sourced from org.liquibase:liquibase-core's releases.

Liquibase v5.0.3

Liquibase Community 5.0.3 Release Notes

Liquibase Community v5.0.3 is a focused release: two security fixes, a handful of database-specific bug fixes across Oracle, PostgreSQL, and MSSQL, and a thread safety improvement for teams running Liquibase in multitenant environments. Thanks to the ten community contributors who made it happen!

Latest release: v5.0.3, May 15, 2026: https://www.liquibase.com/download-community
Nightly builds: Updated automatically after each successful test run on main: https://github.com/liquibase/liquibase/releases/tag/nightly
Next planned release: August 20, 2026
Roadmap: Liquibase Community (view)

Thank you to every contributor who filed an issue, reviewed code, or submitted a fix. Your work makes each Liquibase Community release stronger than the last.

What's in this release

Security

(#7689) by @​abrackxInput sanitization for generate-changelog: Closes two reported vulnerabilities.

Thanks to @​FORIMOC, @​Yuremin, and @​invoke1442 for the reports.

Notable improvements

(#7647) by @​harsh-kaushal PostgreSQL: Sequence discovery is more accurate: The sequence metadata query now uses a LEFT JOIN instead of NOT IN, improving handling of SERIAL and IDENTITY columns in complex ownership scenarios. Note: columns decoupled from their sequence after creation may still appear as autoIncrement="true" in generated changelogs. A follow-up fix is tracked separately.

(#1944) by @​MatrixDai MSSQL: systranschemas excluded from diff output: This system view was being flagged as a missing or unexpected table during diff. It's now correctly treated as a system object and filtered out.

(#7674) by @​andrewcedgar perf: cache ranChangeSets lookup in SqlChangeLogParser.generateId: Performance improvements in SqlChangeLogParser by building the lookup once per Database as a Map<changeLog, interimId> and reuse it for every subsequent file. Total work becomes O(M+N) and the per-file cost returns to ~O(1).

(#7674) by @​andrewcedgar Fixed a performance regression that caused SQL changelog parsing to slow significantly on large projects

SQL changelog parsing became significantly slower starting in 4.32.0. On projects with thousands of SQL changelog files and a large DATABASECHANGELOG history, parse time could increase from roughly 3 minutes to over 15 minutes compared to 4.31.1. This is a performance-only fix, your changelogs will parse and execute exactly as before, just faster.

Users with large SQL changelog sets should see parse times return to pre-4.32.0 levels after upgrading.

New parameter: --diff-column-default-value-constraint-name: Set to false to ignore auto-generated constraint names on column defaults during diff. Prevents false diffs in SQL Server environments where default value constraints are named differently across databases. Default: true.

Fixes

(#7660) by @​sayaliM0412 Default branch is now main: Development snapshots are now published as main-SNAPSHOT; contributors should target main for new pull requests.

(#1964, #7680) by @​MatrixDai and @​wwillard7800 Improved handling of MSSQL view definitions across two fixes: false positive diffs from inconsistent SQL Server version formatting are resolved, and schema qualifiers are now correctly preserved in generated changelogs.

  • (#1964) In Microsoft SQL Server, Liquibase incorrectly reported views as changed when comparing two databases, even when the view definitions were identical. This occurred because different SQL Server versions format view definitions differently (with or without schema prefixes and brackets). Liquibase now normalizes view definitions before comparing them, eliminating false positives in diff output.
  • (#7680) Continued improvement from the initial #1964: generate-changelog now correctly preserves schema qualifiers in MSSQL view definitions. View definitions are now normalized only during comparison, so diffs remain accurate and generated changelogs retain the original [schema].[view] qualifier.

(#7603) by @​filipelautert DATABASECHANGELOGLOCK hanging on multithreaded services: A failed cleanup left recycled threads in pooled environments in an incorrect locked state, causing unexpected errors during subsequent operations. Liquibase now correctly cleans up lock state after a command finishes, even if an error occurs during cleanup. This prevents unexpected lock errors on subsequent operations in environments that reuse threads, such as connection pools.

(#7488) by @​MalloD12 PostgreSQL with PgBouncer: fixed leaks in transaction pooling mode:

... (truncated)

Changelog

Sourced from org.liquibase:liquibase-core's changelog.

Liquibase Community 5.0.3 is a minor patch release

See the Liquibase Community 5.0.3 Release Notes for the complete set of release information.

New Features

Bug Fixes

Security, Driver and Other Updates

... (truncated)

Commits
  • 4d815ea Guard SqlChangeLogParser.generateId against null DB connection (#7719)
  • 8d0930a Update changelog.txt for 5.0.3 (#7720)
  • 1873538 fix(ci): skip release-docker on dry-run (#7716)
  • b15d1bc fix(docker-scan): wrap downloaded artifact in expected subdir [TECHOPS-408]
  • ed1f6d7 feat(docker-scan): persist main HEAD scan to scan-results branch [TECHOPS-408...
  • 4467344 TECHOPS-432: add docker/.trivyignore to suppress SNAPSHOT-version false posit...
  • 99b99cf TECHOPS-431: add build-qa-docker.yml for community + alpine QA images (#7713)
  • 02e9e1b TECHOPS-427: bump LPM_VERSION 0.3.3 → 0.3.4 to clear 5 Go stdlib HIGH CVEs (#...
  • dda3db6 fix(DAT-22091): retarget docker-release.yml checkout from master to main (#7710)
  • ff5c1e9 fix(TECHOPS-417): propagate contents: write to nested docker workflows (#7709)
  • Additional commits viewable in compare view

Updates org.slf4j:slf4j-api from 2.0.17 to 2.0.18

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the dev-dependencies group with 6 updates
16bdd18 
Bumps the dev-dependencies group with 6 updates:

| Package | From | To |
| --- | --- | --- |
| [gradle-wrapper](https://github.com/gradle/gradle) | `9.5.0` | `9.5.1` |
| software.amazon.awssdk:bom | `2.44.4` | `2.44.8` |
| [org.immutables:value-annotations](https://github.com/immutables/immutables) | `2.12.1` | `2.12.2` |
| [org.immutables:value](https://github.com/immutables/immutables) | `2.12.1` | `2.12.2` |
| [org.liquibase:liquibase-core](https://github.com/liquibase/liquibase) | `5.0.2` | `5.0.3` |
| org.slf4j:slf4j-api | `2.0.17` | `2.0.18` |


Updates `gradle-wrapper` from 9.5.0 to 9.5.1
- [Release notes](https://github.com/gradle/gradle/releases)
- [Commits](gradle/gradle@v9.5.0...v9.5.1)

Updates `software.amazon.awssdk:bom` from 2.44.4 to 2.44.8

Updates `org.immutables:value-annotations` from 2.12.1 to 2.12.2
- [Release notes](https://github.com/immutables/immutables/releases)
- [Commits](immutables/immutables@2.12.1...2.12.2)

Updates `org.immutables:value` from 2.12.1 to 2.12.2
- [Release notes](https://github.com/immutables/immutables/releases)
- [Commits](immutables/immutables@2.12.1...2.12.2)

Updates `org.immutables:value` from 2.12.1 to 2.12.2
- [Release notes](https://github.com/immutables/immutables/releases)
- [Commits](immutables/immutables@2.12.1...2.12.2)

Updates `org.liquibase:liquibase-core` from 5.0.2 to 5.0.3
- [Release notes](https://github.com/liquibase/liquibase/releases)
- [Changelog](https://github.com/liquibase/liquibase/blob/main/changelog.txt)
- [Commits](liquibase/liquibase@v5.0.2...v5.0.3)

Updates `org.slf4j:slf4j-api` from 2.0.17 to 2.0.18

---
updated-dependencies:
- dependency-name: gradle-wrapper
  dependency-version: 9.5.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dev-dependencies
- dependency-name: software.amazon.awssdk:bom
  dependency-version: 2.44.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dev-dependencies
- dependency-name: org.immutables:value-annotations
  dependency-version: 2.12.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dev-dependencies
- dependency-name: org.immutables:value
  dependency-version: 2.12.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dev-dependencies
- dependency-name: org.immutables:value
  dependency-version: 2.12.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dev-dependencies
- dependency-name: org.liquibase:liquibase-core
  dependency-version: 5.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dev-dependencies
- dependency-name: org.slf4j:slf4j-api
  dependency-version: 2.0.18
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dev-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels May 19, 2026
@github-actions github-actions Bot merged commit 1d28f03 into main May 19, 2026
4 checks passed
@dependabot dependabot Bot deleted the dependabot/gradle/dev-dependencies-519dd9950c branch May 19, 2026 02:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file java Pull requests that update java code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants