chore: bump the gradle-updates group with 7 updates

[dependabot]

Bumps the gradle-updates group with 7 updates:

Package	From	To
gradle-wrapper	8.13	8.14.4
com.google.guava:guava	33.4.8-jre	33.5.0-jre
com.github.seancfoley:ipaddress	5.5.1	5.6.1
com.jayway.jsonpath:json-path	2.9.0	2.10.0
io.github.oshai:kotlin-logging-jvm	7.0.13	7.0.14
com.vanniktech.maven.publish	0.34.0	0.36.0
com.ncorti.ktfmt.gradle	0.23.0	0.25.0

Updates gradle-wrapper from 8.13 to 8.14.4

Updates com.google.guava:guava from 33.4.8-jre to 33.5.0-jre

Release notes

Sourced from com.google.guava:guava's releases.

33.5.0

Maven

<dependency>
  <groupId>com.google.guava</groupId>
  <artifactId>guava</artifactId>
  <version>33.5.0-jre</version>
  <!-- or, for Android: -->
  <version>33.5.0-android</version>
</dependency>

Jar files

• 33.5.0-jre.jar
• 33.5.0-android.jar

Guava requires one runtime dependency, which you can download here:

• failureaccess-1.0.3.jar

Javadoc

• 33.5.0-jre
• 33.5.0-android

JDiff

• 33.5.0-jre vs. 33.4.8-jre
• 33.5.0-android vs. 33.4.8-android
• 33.5.0-android vs. 33.5.0-jre

Changelog

• Restored the Automatic-Module-Name to guava-android. (It, unlike, guava-jre, is not a proper module.) (7a04a8a955)
• For users of guava-gwt: Google has moved off GWT internally. We plan to continue to release guava-gwt for users of GWT and J2CL, but the artifact is no longer tested for GWT-specific issues, and we have limited resources to fix any unexpected issues that might arise. While we do not anticipate any specific problems, we can't guarantee how long support will continue.
• Increased our Android minSdkVersion to 23 (Marshmallow). This follows the minimum of Google's foundational Android libraries, and we expect it to have no practical impact on users. (5c23347cc1)
• Listed the JSpecify annotations as an optional dependency in our OSGi metadata. (2dfd572981)
• cache: Improved the handling of exceptions from compute functions in Cache.asMap(). (We do still recommend using Caffeine rather than com.google.common.cache.) (087f2c4a80)
• collect: Improved Iterators.mergeSorted() to preserve stability for equal elements. (4dc93be9a8)
• math: Added saturatedAbs methods to IntMath and LongMath. (ed0e518f20)
• net: Added image/avif to MediaType. (53344caba6)
• testing: Made CollectorTester available to Android users. (294c251079)
• util.concurrent: Added Striped.custom. (1586eb271d)

Commits

• See full diff in compare view

Updates com.github.seancfoley:ipaddress from 5.5.1 to 5.6.1

Release notes

Sourced from com.github.seancfoley:ipaddress's releases.

Version 5.6.1

Adjusts prefix lengths in containment tries for all individual addresses

Version 5.6.0

This version introduces new types for efficient IP address collections and set operations, along with a few other enhancements

• added IPAddressSeqRangeList, a collection type backed by IP address ranges, offering binary search, an alternative to tries with potentially better CPU cache coherence when searching
• IPAddressSeqRangeList enables the arithmetic set operations add/join, intersect, remove, and complement
• added the corresponding version-specific types IPv4AddressSeqRangeList and IPv6AddressSeqRangeList
• added IPAddressContainmentTrie, an alternative collection option backed by CIDR prefix blocks in a trie, expanding on the existing trie functionality.
• added the corresponding version-specific types IPv4AddressContainmentTrie and IPv6AddressContainmentTrie
• added the IPAddressCollection interface representing collections of individual addresses, implemented by all range list and containment trie types
• added the IPAddressAggregation interface representing all types which can represent a multitude of IP addresses, whether collections, ranges, or subnets
• added new and optimized increment(), decrement() and incrementBoundary() methods to the address types, more efficient than increment(1), increment(-1), incrementBoundary(1)
• extended increment(BigInteger) to the address/subnet types IPAddress and IPv4Address, and not just IPV6Address, for easier polymorphism
• added a complement method to IPAddress returning blocks, and a complement method to IPAddressSeqRange returning ranges, in addition to the complement method included with IPAddressSeqRangeList
• added methods to IPAddressSeqRange to integrate with IPAddressSeqRangeList to create lists efficiently: subtractIntoList, joinIntoList, complementIntoList
• added intoSequentialRangeList methods to IP address and sequential range classes for polymorphic and efficient IPAddressSeqRangeList creation
• added intoContainmentTrie methods to IP address and range classes for polymorphic IPAddressContainmentTrie creation
• added new trie types IPAddressTrie and IPAddressAssociativeTrie, similar to existing types, but version-polymorphic, they can become either IPv4 or IPv6 tries, but not both at the same time
• fixed an issue with merging addresses with prefixes into sequential blocks

Commits

• 7a7ee07 Update latest Maven version to 5.6.1
• 4d23e9d new distribution jar
• 6cb9451 containment trie prefix adjustment
• 927c45e changes for new Maven central uploading
• 2ff4246 updated release notes
• 7b400d2 Merge branch 'v5' of https://github.com/seancfoley/IPAddress.git into v5
• bd38247 additional comments
• 1ec8af9 Update latest Maven version to 5.6.0
• 73a4ec8 distribution jar
• 6e61ca7 javadoc corrections
• Additional commits viewable in compare view

Updates com.jayway.jsonpath:json-path from 2.9.0 to 2.10.0

Release notes

Sourced from com.jayway.jsonpath:json-path's releases.

json-path-2.10.0

What's Changed

• Bumps dependency versions by @​kallestenflo in json-path/JsonPath#1057
  • net.minidev:json-smart:2.6.0
  • org.slf4j:slf4j-api:2.0.17
  • com.google.code.gson:gson:2.13.2
  • org.hamcrest:hamcrest:3.0
  • com.fasterxml.jackson.core:jackson-databind:2.19.2
  • org.json:json:20250517
  • org.apache.tapestry:tapestry-json:5.9.0
  • jakarta.json:jakarta.json-api:2.1.3
  • jakarta.json.bind:jakarta.json.bind-api:2.0.0

Full Changelog: json-path/JsonPath@json-path-2.9.0...json-path-2.10.0

Commits

• a427387 Release 2.10.0 (#1058)
• 8e3b92f Bumps dependency versions (#1057)
• 45333e0 [CI] Remove Java 18 from build matrix (#1005)
• 3732a85 Upgrade net.minidev:json-smart from 2.5.0 to 2.5.1 (#1004)
• 2d4cc06 Upgrade to gradle 8.5 and add java 21 build (#995)
• 83ced52 Remove web-test project (#994)
• af031cd Upgrade to junit-jupiter (#993)
• 0ed52b4 Prepare next version
• See full diff in compare view

Updates io.github.oshai:kotlin-logging-jvm from 7.0.13 to 7.0.14

Release notes

Sourced from io.github.oshai:kotlin-logging-jvm's releases.

7.0.14

What's Changed

• Bump actions/upload-pages-artifact from 3 to 4 by @​dependabot[bot] in oshai/kotlin-logging#559
• Bump actions/setup-java from 4 to 5 by @​dependabot[bot] in oshai/kotlin-logging#560
• Upgrade Gradle wrapper to 8.14.3 by @​Copilot in oshai/kotlin-logging#563
• Bump com.android.library from 8.12.0 to 8.12.1 by @​dependabot[bot] in oshai/kotlin-logging#561
• Bump jackson from 2.19.2 to 2.20.0 by @​dependabot[bot] in oshai/kotlin-logging#565
• Bump com.android.library from 8.12.2 to 8.13.0 by @​dependabot[bot] in oshai/kotlin-logging#564
• Bump org.graalvm.sdk:nativeimage from 24.2.2 to 25.0.0 by @​dependabot[bot] in oshai/kotlin-logging#568
• Bump org.mockito:mockito-core from 5.19.0 to 5.20.0 by @​dependabot[bot] in oshai/kotlin-logging#567
• Bump log4j from 2.25.1 to 2.25.2 by @​dependabot[bot] in oshai/kotlin-logging#572
• Bump actions/cache from 4.2.4 to 4.3.0 by @​dependabot[bot] in oshai/kotlin-logging#571
• Bump com.diffplug.spotless from 7.2.1 to 8.0.0 by @​dependabot[bot] in oshai/kotlin-logging#570
• Bump gradle/actions from 4 to 5 by @​dependabot[bot] in oshai/kotlin-logging#574
• Bump ch.qos.logback:logback-classic from 1.5.18 to 1.5.19 by @​dependabot[bot] in oshai/kotlin-logging#573
• Change LogbackLogEvent to implement ILoggingEvent by @​oshai in oshai/kotlin-logging#583

New Contributors

• @​Copilot made their first contribution in oshai/kotlin-logging#563

Full Changelog: oshai/kotlin-logging@7.0.13...7.0.14

Commits

• e887dd0 bump version to 7.0.15
• a1a8277 Change LogbackLogEvent to implement ILoggingEvent (#583)
• 18d3337 Update README with new badges and contributor note
• 8ed0b38 Bump ch.qos.logback:logback-classic from 1.5.18 to 1.5.19
• d104a3e Bump gradle/actions from 4 to 5
• 56a7383 Bump com.diffplug.spotless from 7.2.1 to 8.0.0
• 22f8266 Bump actions/cache from 4.2.4 to 4.3.0
• 88292cc Bump log4j from 2.25.1 to 2.25.2
• 7ba3ab8 Bump org.mockito:mockito-core from 5.19.0 to 5.20.0
• be06b6a Bump org.graalvm.sdk:nativeimage from 24.2.2 to 25.0.0
• Additional commits viewable in compare view

Updates com.vanniktech.maven.publish from 0.34.0 to 0.36.0

Release notes

Sourced from com.vanniktech.maven.publish's releases.

0.36.0

BREAKING

• Updated minimum supported JDK, Gradle, Android Gradle Plugin and Kotlin versions.
• Removed support for Dokka v1, it's now required to use Dokka in v2 mode.
• Mark DirectorySignatureType internal.

Behavior changes

• validateDeployment now has the DeploymentValidation enum as type instead of being a boolean. The default is now to just wait for the VALIDATED state. The previous behavior can be achieved by setting it to PUBLISHED. NONE can be used for disabling the validation completely.
• When calling configure(...) manually to configure what to publish and not passing javadocJar explicity, the plugin now defaults to publishing an empty javadoc jar.

Features

• Android projects now support using Dokka for javadoc creation, this will happen automatically when using the default options and the Dokka plugin is applied to the project.
• Added consistent JavadocJar and SourcesJar options to configureBasedOnAppliedPlugins and to all applicable project types that can be passed to configure. The previous Boolean based versions have been deprecated.
• When enabling Maven Central publishing through the DSL, the mavenCentralDeploymentValidation and mavenCentralAutomaticPublishing are used for the default values of the 2 parameters when they are not passed explicitly. This allows to more easily override them in certain environments.
• When isolated projects is enabled the module/project specific gradle.properties files are now considered in the same way they are when isolated projects is disabled.

Improvements

• Better error message when Maven Central credentials are missing.

Minimum supported versions

• JDK 17
• Gradle 9.0.0
• Android Gradle Plugin 8.13.0
• Kotlin Gradle Plugin 2.2.0

Compatibility tested up to

• JDK 25
• Gradle 9.3.0
• Gradle 9.4.0-milestone-4
• Android Gradle Plugin 8.13.2
• Android Gradle Plugin 9.0.0
• Android Gradle Plugin 9.1.0-alpha05
• Kotlin Gradle Plugin 2.3.0
• Kotlin Gradle Plugin 2.3.20-Beta1

0.36.0-rc2

BREAKING

• Updated minimum supported JDK, Gradle, Android Gradle Plugin and Kotlin versions.
• Removed support for Dokka v1, it's now required to use Dokka in v2 mode.
• Mark DirectorySignatureType internal.

... (truncated)

Changelog

Sourced from com.vanniktech.maven.publish's changelog.

0.36.0 (2026-01-13)

BREAKING

• Updated minimum supported JDK, Gradle, Android Gradle Plugin and Kotlin versions.
• Removed support for Dokka v1, it's now required to use Dokka in v2 mode.
• Mark DirectorySignatureType internal.

Behavior changes

• validateDeployment now has the DeploymentValidation enum as type instead of being a boolean. The default is now to just wait for the VALIDATED state. The previous behavior can be achieved by setting it to PUBLISHED. NONE can be used for disabling the validation completely.
• When calling configure(...) manually to configure what to publish and not passing javadocJar explicity, the plugin now defaults to publishing an empty javadoc jar.

Features

• Android projects now support using Dokka for javadoc creation, this will happen automatically when using the default options and the Dokka plugin is applied to the project.
• Added consistent JavadocJar and SourcesJar options to configureBasedOnAppliedPlugins and to all applicable project types that can be passed to configure. The previous Boolean based versions have been deprecated.
• When enabling Maven Central publishing through the DSL, the mavenCentralDeploymentValidation and mavenCentralAutomaticPublishing are used for the default values of the 2 parameters when they are not passed explicitly. This allows to more easily override them in certain environments.
• When isolated projects is enabled the module/project specific gradle.properties files are now considered in the same way they are when isolated projects is disabled.

Improvements

• Better error message when Maven Central credentials are missing.

Minimum supported versions

• JDK 17
• Gradle 9.0.0
• Android Gradle Plugin 8.13.0
• Kotlin Gradle Plugin 2.2.0

Compatibility tested up to

• JDK 25
• Gradle 9.3.0
• Gradle 9.4.0-milestone-4
• Android Gradle Plugin 8.13.2
• Android Gradle Plugin 9.0.0
• Android Gradle Plugin 9.1.0-alpha05
• Kotlin Gradle Plugin 2.3.0
• Kotlin Gradle Plugin 2.3.20-Beta1

0.35.0 (2025-11-11)

• Add support for publishing Kotlin Multiplatform libraries that use com.android.kotlin.multiplatform.library.
• Add support for validating deployments to Central Portal

... (truncated)

Commits

• 0a5fa58 rc2 and wait for published
• 695e18a rc1
• f92dc3a Changelog for 0.36.0
• bddd1e6 Update dependency org.jetbrains.kotlin.jvm to v2.3.20-Beta1 (#1289)
• 22f90b2 Update Gradle to v9.3.0 (#1301)
• d7d5f34 Update android.gradle to v9 (major) (#1298)
• 3d262a6 Update dependency com.android.library to v9.1.0-alpha05 (#1300)
• a8573ed Update plugin com.gradle.develocity to v4.3.1 (#1299)
• ee0f2e3 Fix typo in default DeploymentValidation and correct documentation (#1296)
• 783599f Update dependency com.android.library to v9.0.0 (#1297)
• Additional commits viewable in compare view

Updates com.ncorti.ktfmt.gradle from 0.23.0 to 0.25.0

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions