Bump com.gradleup.shadow from 9.0.0 to 9.3.0

[dependabot]

Bumps com.gradleup.shadow from 9.0.0 to 9.3.0.

Release notes

Sourced from com.gradleup.shadow's releases.

9.3.0

Added

• Add PatternFilterableResourceTransformer to simplify pattern based ResourceTransformers. (#1849)
• Expose patternSet of ServiceFileTransformer as public. (#1849)
• Expose patternSet of ApacheLicenseResourceTransformer as public. (#1850)
• Expose patternSet of ApacheNoticeResourceTransformer as public. (#1850)
• Expose patternSet of PreserveFirstFoundResourceTransformer as public. (#1855)
• Support overriding output path of ApacheNoticeResourceTransformer. (#1851)
• Add new merge strategy Fail to PropertiesFileTransformer. (#1856)
• Add FindResourceInClasspath task to help with debugging issues with merged duplicate resources. (#1860)
• Add MergeLicenseResourceTransformer. (#1858)
• Add DeduplicatingResourceTransformer to deduplicate on path and content. (#1859)
• Support disabling Kotlin module metadata remapping. (#1875)

  tasks.shadowJar {
    // Disable remapping of Kotlin module metadata (`.kotlin_module`) files. This is enabled by default.
    enableKotlinModuleRemapping = false
  }

Changed

• Change the group of startShadowScripts from application to other. (#1797)
• Update ASM and jdependency to support Java 26. (#1799)
• Bump min Gradle requirement to 9.0.0. (#1801)
• Deprecate PreserveFirstFoundResourceTransformer.resources. (#1855)
• Make the output of PropertiesFileTransformer reproducible. (#1861)
• Deprecate ShadowCopyAction. (#1876)
  It should not be used as a public API. Will be made internal in a future release.

Fixed

• Fix Develocity integration when Isolated Projects enabled. (#1836)

9.2.2

Fixed

• Fix the regression of registering ShadowJar tasks without ShadowPlugin applied. (#1787)

9.2.1

Added

• Support relocating Groovy extensions in Module descriptors. (#1705)
• Add extensions for Iterable<Relocator>. (#1710)
• Support relocating list of types in RelocatorRemapper. (#1714)
• Add mainClass property into ShadowJar. (#1722)

  tasks.shadowJar {
    // This property will be used as a fallback if there is no explicit `Main-Class` attribute set.

... (truncated)

Commits

• bfc351e Prepare version 9.3.0
• ba40578 Fix changelog links
• d2227b2 Remove reproducible-builds link
• 47a1e7b Enhance docs about reproducible builds (#1882)
• 99e3991 Add DeduplicatingResourceTransformer to deduplicate on path and content (#1859)
• b6f1f59 Update kotlin monorepo to v2.3.0-RC2 (#1881)
• b3fbe09 Add edit buttons to doc pages (#1880)
• 30f314c Update ffurrer2/extract-release-notes action to v3 (#1878)
• 1994b96 Use checkNotNull
• 0e1538b Read optional properties from ExtraPropertiesExtension (#1877)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[maxlambrecht]

@dependabot close

[dependabot]

Beginning January 27, 2026, Dependabot will no longer support the @dependabot close command. Please use GitHub's native pull request controls instead. Please see the changelog announcement for additional details.

[dependabot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.