8000 Bump com.gradleup.shadow from 9.3.1 to 9.3.2 by dependabot[bot] · Pull Request #2281 · atlanhq/atlan-java · GitHub
[go: up one dir, main page]
Skip to content

Bump com.gradleup.shadow from 9.3.1 to 9.3.2#2281

Closed
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/gradle/com.gradleup.shadow-9.3.2
Closed

Bump com.gradleup.shadow from 9.3.1 to 9.3.2#2281
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/gradle/com.gradleup.shadow-9.3.2

Conversation

@dependabot
Copy link
Contributor
@dependabot dependabot bot commented on behalf of github Mar 2, 2026
edited
Loading

Bumps com.gradleup.shadow from 9.3.1 to 9.3.2.

Release notes

Sourced from com.gradleup.shadow's releases.

9.3.2

Changed

  • Log warnings for duplicates in the final JAR. (#1931)

Fixed

  • Fix relocation patterns not included in task fingerprint. (#1933)
Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump com.gradleup.shadow from 9.3.1 to 9.3.2
cc04e7d 
Bumps [com.gradleup.shadow](https://github.com/GradleUp/shadow) from 9.3.1 to 9.3.2.
- [Release notes](https://github.com/GradleUp/shadow/releases)
- [Commits](GradleUp/shadow@9.3.1...9.3.2)

---
updated-dependencies:
- dependency-name: com.gradleup.shadow
  dependency-version: 9.3.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Mar 2, 2026
@dependabot dependabot bot requested a review from cmgrote as a code owner March 2, 2026 04:54
@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Mar 2, 2026
@greptile-apps
Copy link
greptile-apps bot commented Mar 2, 2026

Greptile Summary

Automated dependency update from Dependabot that upgrades the Gradle Shadow plugin from 9.3.1 to 9.3.2. This is a patch release containing two beneficial changes:

  • Added logging for duplicate files in the final JAR, improving visibility into potential conflicts
  • Fixed a bug where relocation patterns were not included in task fingerprinting, which could cause incorrect incremental build behavior

The Shadow plugin is used throughout this project to create fat JARs with bundled dependencies. Both changes are backwards-compatible improvements with no breaking changes.

Confidence Score: 5/5

  • This PR is safe to merge with minimal risk
  • This is a minor patch version bump (9.3.1 to 9.3.2) of the Shadow plugin that only contains bug fixes and logging improvements. No breaking changes or new features are introduced. The changes improve build correctness and observability.
  • No files require special attention

Important Files Changed
Filename Overview
gradle/libs.versions.toml Shadow plugin version bumped from 9.3.1 to 9.3.2 - includes bug fixes for task fingerprinting and duplicate logging

Last reviewed commit: cc04e7d

cmgrote added a commit that referenced this pull request Mar 9, 2026
@cmgrote @claude
chore(deps): consolidate dependency updates
9c65b9f 
Consolidates updates from the following dependency PRs:
- #2296: Bump de.siegmar:fastcsv from 4.1.0 to 4.1.1
- #2294: Bump awssdk from 2.41.32 to 2.42.8
- #2293: Bump docker/build-push-action from 6.19.2 to 7.0.0
- #2292: Bump docker/setup-buildx-action from 3.12.0 to 4.0.0
- #2289: Bump com.google.cloud:libraries-bom from 26.76.0 to 26.77.0
- #2288: Bump jetty from 12.1.6 to 12.1.7
- #2286: Bump docker/login-action from 3.7.0 to 4.0.0
- #2284: Bump com.diffplug.spotless:spotless-plugin-gradle from 8.2.1 to 8.3.0
- #2281: Bump com.gradleup.shadow from 9.3.1 to 9.3.2
- #2280: Bump actions/download-artifact from 7.0.0 to 8.0.0
- #2278: Bump co.elastic.clients:elasticsearch-java from 9.3.1 to 9.3.2
- #2277: Bump actions/upload-artifact from 6.0.0 to 7.0.0
- #2276: Bump pkl from 0.30.2 to 0.31.0
- #2275: Bump org.pkl-lang:org.pkl-lang.gradle.plugin from 0.30.2 to 0.31.0
- #2269: Bump io.openlineage:openlineage-java from 1.44.0 to 1.44.1
- #2268: Bump com.jayway.jsonpath:json-path from 2.10.0 to 3.0.0
- #2266: Bump jackson from 2.21.0 to 2.21.1
- #2265: Bump com.nimbusds:nimbus-jose-jwt from 10.7 to 10.8

Also removes the claude.yml workflow (VPN step incompatible with public repo).

Co-Authored-By: Claude <noreply@anthropic.com>
Signed-off-by: Chris (He/Him) <cgrote@gmail.com>
8000 @cmgrote cmgrote mentioned this pull request Mar 9, 2026
Merged
cmgrote added a commit that referenced this pull request Mar 9, 2026
@cmgrote @claude
chore(deps): consolidate dependency updates (#2297)
fd7149e 
Consolidates updates from the following dependency PRs:
- #2296: Bump de.siegmar:fastcsv from 4.1.0 to 4.1.1
- #2294: Bump awssdk from 2.41.32 to 2.42.8
- #2293: Bump docker/build-push-action from 6.19.2 to 7.0.0
- #2292: Bump docker/setup-buildx-action from 3.12.0 to 4.0.0
- #2289: Bump com.google.cloud:libraries-bom from 26.76.0 to 26.77.0
- #2288: Bump jetty from 12.1.6 to 12.1.7
- #2286: Bump docker/login-action from 3.7.0 to 4.0.0
- #2284: Bump com.diffplug.spotless:spotless-plugin-gradle from 8.2.1 to 8.3.0
- #2281: Bump com.gradleup.shadow from 9.3.1 to 9.3.2
- #2280: Bump actions/download-artifact from 7.0.0 to 8.0.0
- #2278: Bump co.elastic.clients:elasticsearch-java from 9.3.1 to 9.3.2
- #2277: Bump actions/upload-artifact from 6.0.0 to 7.0.0
- #2276: Bump pkl from 0.30.2 to 0.31.0
- #2275: Bump org.pkl-lang:org.pkl-lang.gradle.plugin from 0.30.2 to 0.31.0
- #2269: Bump io.openlineage:openlineage-java from 1.44.0 to 1.44.1
- #2268: Bump com.jayway.jsonpath:json-path from 2.10.0 to 3.0.0
- #2266: Bump jackson from 2.21.0 to 2.21.1
- #2265: Bump com.nimbusds:nimbus-jose-jwt from 10.7 to 10.8

Also removes the claude.yml workflow (VPN step incompatible with public repo).

Signed-off-by: Chris (He/Him) <cgrote@gmail.com>
Co-authored-by: Claude <noreply@anthropic.com>
@dependabot @github
Copy link
Contributor Author
dependabot bot commented on behalf of github Mar 9, 2026

Looks like com.gradleup.shadow is up-to-date now, so this is no longer needed.

@dependabot dependabot bot closed this Mar 9, 2026
@dependabot dependabot bot deleted the dependabot/gradle/com.gradleup.shadow-9.3.2 branch March 9, 2026 11:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cmgrote cmgrote Awaiting requested review from cmgrote cmgrote is a code owner

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file java Pull requests that update Java code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants

0