cf-java-client icon indicating copy to clipboard operation
cf-java-client copied to clipboard

Published 20 hours ago verified publisher icon cloudfoundry

Bump com.squareup.wire:wire-runtime from 3.7.1 to 5.2.0

Open dependabot[bot] opened this issue 8 months ago • 3 comments
trafficstars

Bumps com.squareup.wire:wire-runtime from 3.7.1 to 5.2.0.

Changelog

Sourced from com.squareup.wire:wire-runtime's changelog.

Version 5.2.0

2025-01-06

Common

  • Enforce recursion limit when parsing nested groups. (#3119)

CLI wire-compiler

  • It is now possible to set multiple targets. (#3106 & #3107)
  • The option opaque_types introduced in 4.9.2 for the Wire Gradle plugin is now available on CLI. (#3147)

JVM generation

  • KotlinPoet has been updated to 2.0.0 which dramatically changes how generated Kotlin files are wrapped. This is neither a source nor a binary breaking changes.
  • A new @WireEnclosingType annotation is now applied to generated types so R8 doesn't prune too much. (#3123)
  • Split the redact method into chunks when a type has more than 100 fields to avoid compilation error. (#3214 by [Damian Wieczorek][damianw])
  • Add support for mutable messages in Wire's Kotlin Generator. (#3217 by [Rahul Ravikumar][tikurahul])
    • You can opt-in by adding mutableTypes = true on your Kotlin target. This is unsafe and we do not recommend that you use it unless you have a sound use-case for it.
  • Wire is now using Palantir's JavaPoet instead of Square's JavaPoet.

Swift

  • Fix buffer overflow and data corruption when a type has more than 5 layers of nesting (#3203 by [Eric Amorde][amorde])

Version 4.9.11

2024-10-09

Common

  • Fix Gradle project isolation issue when reading a property (#3078 by [Aurimas][liutikas])

Version 5.1.0

2024-09-11

Common

  • Support for Kotlin 2.0.20. (#3093)
  • srcDir(String) has been undeprecated. (#3039)
  • Some loggings now happen at the debug level, instead of info. (#3041)
  • Remove some unactionable warnings on Kotlin/JS (#3047)
  • Propagate the deprecated flag on EnumType after pruning by wire-gradle-plugin (#3076 by [Aaron Edwards][aaron-edwards])
  • Introduce ProtoReader32, a specialization for Kotlin/JS (#3077) This is an alternative to ProtoReader, which uses Long as a cursor. It originates as an optimization for Kotlin/JS, where Long cursors are prohibitively expensive.

... (truncated)

Commits
  • 8166872 Prepare for release 5.2.0.
  • d043e77 Update dependency org.assertj:assertj-core to v3.27.2 (#3231)
  • a43ed15 Update dependency org.assertj:assertj-core to v3.27.1 (#3228)
  • f385400 Update dependency org.checkerframework:checker-qual to v3.48.4 (#3230)
  • 54e032b Add support for mutable messages in Wire's Kotlin Generator. (#3217)
  • 658d608 Update dependency gradle to v8.12 (#3224)
  • 3c7493f Update dependency com.charleskorn.kaml:kaml to v0.67.0 (#3223)
  • 2d97119 Update dependency org.assertj:assertj-core to v3.27.0 (#3220)
  • e34fe0d Update dependency org.jetbrains.kotlinx.binary-compatibility-validator:org.je...
  • 3e50155 Merge pull request #3218 from square/renovate/com.google.protobuf-protoc-4.x
  • Additional commits viewable in compare view

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the Security Alerts page.

Note Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

dependabot[bot] avatar Mar 18 '25 21:03 dependabot[bot]