Skip to content

Bump com.gradleup.shadow from 9.2.2 to 9.4.3 in /twilio-keycloak-provider#116

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/gradle/twilio-keycloak-provider/com.gradleup.shadow-9.4.3
Closed

Bump com.gradleup.shadow from 9.2.2 to 9.4.3 in /twilio-keycloak-provider#116
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/gradle/twilio-keycloak-provider/com.gradleup.shadow-9.4.3

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 26, 2026

Copy link
Copy Markdown
Contributor

Bumps com.gradleup.shadow from 9.2.2 to 9.4.3.

Release notes

Sourced from com.gradleup.shadow's releases.

9.4.3

Changed

  • Update dependencies for resolving CVEs. (#2069)

9.4.2

Changed

  • Update jdependency to support Java 27. (#2033)

9.4.1

Changed

  • Update Kotlin to 2.3.20. (#1978)

9.4.0

Added

  • Support Isolated Projects. (#1139)

Changed

  • Allow opting out of adding shadowJar into assemble lifecycle. (#1939)
    shadow {
      // Disable making `assemble` task depend on `shadowJar`. This is enabled by default.
      addShadowJarToAssembleLifecycle = false
    }
  • Stop catching ZipException when writing entries. (#1970)

Fixed

  • Fix interaction with Gradle artifact transforms. (#1345)
  • Fix skipStringConstants per-relocator behavior in mapName. (#1968)
  • Fix failing for non-existent class directories. (#1976)

9.3.2

Changed

  • Stop moving gradleApi dependency from api to compileOnly for Gradle 9.4+. (#1919)
  • Log warnings for duplicates in the final JAR. (#1931)

Fixed

  • Fix relocation patterns not included in task fingerprint. (#1933)

9.3.1

Fixed

... (truncated)

Commits

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Jun 26, 2026
@dependabot
dependabot Bot force-pushed the dependabot/gradle/twilio-keycloak-provider/com.gradleup.shadow-9.4.3 branch from 14757bb to 3953ea5 Compare June 30, 2026 17:34
@bickelj

bickelj commented Jun 30, 2026

Copy link
Copy Markdown
Contributor

I hesitate to merge until I can test locally because the shadow jar needs careful examination and comparison with the jars that Keycloak ships.

Bumps [com.gradleup.shadow](https://github.com/GradleUp/shadow) from 9.2.2 to 9.4.3.
- [Release notes](https://github.com/GradleUp/shadow/releases)
- [Commits](GradleUp/shadow@9.2.2...9.4.3)

---
updated-dependencies:
- dependency-name: com.gradleup.shadow
  dependency-version: 9.4.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
dependabot Bot force-pushed the dependabot/gradle/twilio-keycloak-provider/com.gradleup.shadow-9.4.3 branch from 3953ea5 to 248e0f8 Compare June 30, 2026 17:47
@dependabot @github

dependabot Bot commented on behalf of github Jul 6, 2026

Copy link
Copy Markdown
Contributor Author

Superseded by #119.

@dependabot dependabot Bot closed this Jul 6, 2026
@dependabot
dependabot Bot deleted the dependabot/gradle/twilio-keycloak-provider/com.gradleup.shadow-9.4.3 branch July 6, 2026 17:04
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file java Pull requests that update java code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant