woocommerce-android Bump squareup-okhttp3 from 5.2.3 to 5.3.0

Bumps squareup-okhttp3 from 5.2.3 to 5.3.0. Updates com.squareup.okhttp3:okhttp from 5.2.3 to 5.3.0

Changelog

Sourced from com.squareup.okhttp3:okhttp's changelog.

Version 5.3.0

2025-10-30
New: Add tags to Call, including computable tags. Use this to attach application-specific metadata to a Call in an EventListener or Interceptor. The tag can be read in any other EventListener or Interceptor.
  override fun intercept(chain: Interceptor.Chain): Response {
    chain.call().tag(MyAnalyticsTag::class) {
      MyAnalyticsTag(...)
    }
return chain.proceed(chain.request())

}
New: Support request bodies on HTTP/1.1 connection upgrades.

New: EventListener.plus() makes it easier to observe events in multiple listeners.

Fix: Don't spam logs with ‘Method isLoggable in android.util.Log not mocked.’ when using OkHttp in Robolectric and Paparazzi tests.

Upgrade: [Kotlin 2.2.21][kotlin_2_2_21].

Upgrade: [Okio 3.16.2][okio_3_16_2].

Upgrade: [ZSTD-KMP 0.4.0][zstd_kmp_0_4_0]. This update fixes a bug that caused APKs to fail [16 KB ELF alignment checks][elf_alignment].

Commits

0960b47 Prepare for release 5.3.0.
bfb24eb Support Request Bodies on HTTP1.1 Connection Upgrades (#9159)
cf4a864 Update Gradle to v9.2.0 (#9171)
4e7dbec Update dependency com.puppycrawl.tools:checkstyle to v12.1.1 (#9169)
0470853 Add tags to calls, including computable tags (#9168)
2b70b39 Catch UnsatisfiedLinkError in AndroidLog (#9137)
3573555 Update dependency com.github.jnr:jnr-unixsocket to v0.38.24 (#9166)
af8cf30 Update actions/upload-artifact action to v5 (#9167)
478e99c Build an computeIfAbsent() mechanism for tags (#9165)
d393c86 Use Tags in okhttp3.Request (#9164)
Additional commits viewable in compare view

Updates com.squareup.okhttp3:okhttp-tls from 5.2.3 to 5.3.0

Changelog

Sourced from com.squareup.okhttp3:okhttp-tls's changelog.

Version 5.3.0

2025-10-30
New: Add tags to Call, including computable tags. Use this to attach application-specific metadata to a Call in an EventListener or Interceptor. The tag can be read in any other EventListener or Interceptor.
  override fun intercept(chain: Interceptor.Chain): Response {
    chain.call().tag(MyAnalyticsTag::class) {
      MyAnalyticsTag(...)
    }
return chain.proceed(chain.request())

}
New: Support request bodies on HTTP/1.1 connection upgrades.

New: EventListener.plus() makes it easier to observe events in multiple listeners.

Fix: Don't spam logs with ‘Method isLoggable in android.util.Log not mocked.’ when using OkHttp in Robolectric and Paparazzi tests.

Upgrade: [Kotlin 2.2.21][kotlin_2_2_21].

Upgrade: [Okio 3.16.2][okio_3_16_2].

Upgrade: [ZSTD-KMP 0.4.0][zstd_kmp_0_4_0]. This update fixes a bug that caused APKs to fail [16 KB ELF alignment checks][elf_alignment].

Commits

0960b47 Prepare for release 5.3.0.
bfb24eb Support Request Bodies on HTTP1.1 Connection Upgrades (#9159)
cf4a864 Update Gradle to v9.2.0 (#9171)
4e7dbec Update dependency com.puppycrawl.tools:checkstyle to v12.1.1 (#9169)
0470853 Add tags to calls, including computable tags (#9168)
2b70b39 Catch UnsatisfiedLinkError in AndroidLog (#9137)
3573555 Update dependency com.github.jnr:jnr-unixsocket to v0.38.24 (#9166)
af8cf30 Update actions/upload-artifact action to v5 (#9167)
478e99c Build an computeIfAbsent() mechanism for tags (#9165)
d393c86 Use Tags in okhttp3.Request (#9164)
Additional commits viewable in compare view

Updates com.squareup.okhttp3:okhttp-urlconnection from 5.2.3 to 5.3.0

Changelog

Sourced from com.squareup.okhttp3:okhttp-urlconnection's changelog.

Version 5.3.0

2025-10-30
New: Add tags to Call, including computable tags. Use this to attach application-specific metadata to a Call in an EventListener or Interceptor. The tag can be read in any other EventListener or Interceptor.
  override fun intercept(chain: Interceptor.Chain): Response {
    chain.call().tag(MyAnalyticsTag::class) {
      MyAnalyticsTag(...)
    }
return chain.proceed(chain.request())

}
New: Support request bodies on HTTP/1.1 connection upgrades.

New: EventListener.plus() makes it easier to observe events in multiple listeners.

Fix: Don't spam logs with ‘Method isLoggable in android.util.Log not mocked.’ when using OkHttp in Robolectric and Paparazzi tests.

Upgrade: [Kotlin 2.2.21][kotlin_2_2_21].

Upgrade: [Okio 3.16.2][okio_3_16_2].

Upgrade: [ZSTD-KMP 0.4.0][zstd_kmp_0_4_0]. This update fixes a bug that caused APKs to fail [16 KB ELF alignment checks][elf_alignment].

Commits

0960b47 Prepare for release 5.3.0.
bfb24eb Support Request Bodies on HTTP1.1 Connection Upgrades (#9159)
cf4a864 Update Gradle to v9.2.0 (#9171)
4e7dbec Update dependency com.puppycrawl.tools:checkstyle to v12.1.1 (#9169)
0470853 Add tags to calls, including computable tags (#9168)
2b70b39 Catch UnsatisfiedLinkError in AndroidLog (#9137)
3573555 Update dependency com.github.jnr:jnr-unixsocket to v0.38.24 (#9166)
af8cf30 Update actions/upload-artifact action to v5 (#9167)
478e99c Build an computeIfAbsent() mechanism for tags (#9165)
d393c86 Use Tags in okhttp3.Request (#9164)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Dec 10 '25 18:12 dependabot[bot]

1 Error

:no_entry_sign: PR is not assigned to a milestone.

	1 Error
:no_entry_sign:	PR is not assigned to a milestone.

Generated by :no_entry_sign: Danger

Dec 10 '25 18:12 dangermattic

Project dependencies changes

list

! Upgraded Dependencies
com.squareup.okhttp3:okhttp:5.3.0, (changed from 5.2.3)
com.squareup.okhttp3:okhttp-android:5.3.0, (changed from 5.2.3)
com.squareup.okhttp3:okhttp-java-net-cookiejar:5.3.0, (changed from 5.2.3)
com.squareup.okhttp3:okhttp-tls:5.3.0, (changed from 5.2.3)
com.squareup.okhttp3:okhttp-urlconnection:5.3.0, (changed from 5.2.3)
com.squareup.okio:okio:3.16.2, (changed from 3.16.4)
com.squareup.okio:okio-jvm:3.16.2, (changed from 3.16.4)

tree

 +--- com.google.firebase:firebase-messaging -> 25.0.1
 |    \--- com.google.firebase:firebase-common:22.0.1
 |         \--- androidx.datastore:datastore-preferences:1.1.7 -> 1.2.0
 |              \--- androidx.datastore:datastore-preferences-android:1.2.0
 |                   +--- androidx.datastore:datastore:1.2.0
 |                   |    \--- androidx.datastore:datastore-android:1.2.0
 |                   |         +--- androidx.datastore:datastore-core-okio:1.2.0
 |                   |         |    \--- androidx.datastore:datastore-core-okio-jvm:1.2.0
-|                   |         |         \--- com.squareup.okio:okio:3.9.1 -> 3.16.4
-|                   |         |              \--- com.squareup.okio:okio-jvm:3.16.4
-|                   |         |                   \--- org.jetbrains.kotlin:kotlin-stdlib:2.2.20 -> 2.2.21 (*)
+|                   |         |         \--- com.squareup.okio:okio:3.9.1 -> 3.16.2
+|                   |         |              \--- com.squareup.okio:okio-jvm:3.16.2
+|                   |         |                   \--- org.jetbrains.kotlin:kotlin-stdlib:2.2.20 -> 2.2.21 (*)
-|                   |         \--- com.squareup.okio:okio:3.9.1 -> 3.16.4 (*)
+|                   |         \--- com.squareup.okio:okio:3.9.1 -> 3.16.2 (*)
 |                   \--- androidx.datastore:datastore-preferences-core:1.2.0
 |                        \--- androidx.datastore:datastore-preferences-core-android:1.2.0
-|                             \--- com.squareup.okio:okio:3.9.1 -> 3.16.4 (*)
+|                             \--- com.squareup.okio:okio:3.9.1 -> 3.16.2 (*)
 +--- com.automattic.tracks:experimentation:6.0.6
-|    +--- com.squareup.okhttp3:okhttp:4.12.0 -> 5.2.3
-|    |    \--- com.squareup.okhttp3:okhttp-android:5.2.3
-|    |         +--- androidx.annotation:annotation:1.9.1 (*)
-|    |         +--- androidx.startup:startup-runtime:1.2.0 (*)
-|    |         +--- com.squareup.okio:okio:3.16.4 (*)
-|    |         \--- org.jetbrains.kotlin:kotlin-stdlib:2.2.20 -> 2.2.21 (*)
+|    +--- com.squareup.okhttp3:okhttp:4.12.0 -> 5.3.0
+|    |    \--- com.squareup.okhttp3:okhttp-android:5.3.0
+|    |         +--- androidx.annotation:annotation:1.9.1 (*)
+|    |         +--- androidx.startup:startup-runtime:1.2.0 (*)
+|    |         +--- com.squareup.okio:okio:3.16.2 (*)
+|    |         \--- org.jetbrains.kotlin:kotlin-stdlib:2.2.21 (*)
 |    \--- com.squareup.moshi:moshi:1.15.1 -> 1.15.2
-|         \--- com.squareup.okio:okio:3.7.0 -> 3.16.4 (*)
+|         \--- com.squareup.okio:okio:3.7.0 -> 3.16.2 (*)
 +--- com.automattic.tracks:crashlogging:6.0.6
-|    \--- com.squareup.okhttp3:okhttp:4.9.0 -> 5.2.3 (*)
+|    \--- com.squareup.okhttp3:okhttp:4.9.0 -> 5.3.0 (*)
 +--- project :libs:fluxc
-|    +--- com.squareup.okhttp3:okhttp:5.2.3 (*)
+|    +--- com.squareup.okhttp3:okhttp:5.3.0 (*)
-|    +--- com.squareup.okhttp3:okhttp-urlconnection:5.2.3
-|    |    +--- com.squareup.okhttp3:okhttp:5.2.3 (*)
-|    |    +--- com.squareup.okhttp3:okhttp-java-net-cookiejar:5.2.3
-|    |    |    +--- com.squareup.okhttp3:okhttp:5.2.3 (*)
-|    |    |    \--- org.jetbrains.kotlin:kotlin-stdlib:2.2.20 -> 2.2.21 (*)
-|    |    \--- org.jetbrains.kotlin:kotlin-stdlib:2.2.20 -> 2.2.21 (*)
+|    +--- com.squareup.okhttp3:okhttp-urlconnection:5.3.0
+|    |    +--- com.squareup.okhttp3:okhttp:5.3.0 (*)
+|    |    +--- com.squareup.okhttp3:okhttp-java-net-cookiejar:5.3.0
+|    |    |    +--- com.squareup.okhttp3:okhttp:5.3.0 (*)
+|    |    |    \--- org.jetbrains.kotlin:kotlin-stdlib:2.2.21 (*)
+|    |    \--- org.jetbrains.kotlin:kotlin-stdlib:2.2.21 (*)
-|    \--- com.squareup.okhttp3:okhttp-tls:5.2.3
-|         +--- com.squareup.okhttp3:okhttp:5.2.3 (*)
-|         +--- com.squareup.okio:okio:3.16.4 (*)
-|         \--- org.jetbrains.kotlin:kotlin-stdlib:2.2.20 -> 2.2.21 (*)
+|    \--- com.squareup.okhttp3:okhttp-tls:5.3.0
+|         +--- com.squareup.okhttp3:okhttp:5.3.0 (*)
+|         +--- com.squareup.okio:okio:3.16.2 (*)
+|         \--- org.jetbrains.kotlin:kotlin-stdlib:2.2.21 (*)
 +--- project :libs:login
 |    \--- com.gravatar:gravatar:0.2.0
-|         +--- com.squareup.okhttp3:okhttp:4.12.0 -> 5.2.3 (*)
+|         +--- com.squareup.okhttp3:okhttp:4.12.0 -> 5.3.0 (*)
 |         \--- com.squareup.retrofit2:retrofit:2.9.0 -> 2.11.0
-|              \--- com.squareup.okhttp3:okhttp:3.14.9 -> 5.2.3 (*)
+|              \--- com.squareup.okhttp3:okhttp:3.14.9 -> 5.3.0 (*)
 +--- project :libs:cardreader
 |    +--- com.stripe:stripeterminal-core:4.7.5
 |    |    \--- com.stripe:stripeterminal-internal-common:4.7.5
 |    |         +--- io.ktor:ktor-client-okhttp:2.3.13
 |    |         |    \--- io.ktor:ktor-client-okhttp-jvm:2.3.13
-|    |         |         +--- com.squareup.okhttp3:okhttp:4.12.0 -> 5.2.3 (*)
+|    |         |         +--- com.squareup.okhttp3:okhttp:4.12.0 -> 5.3.0 (*)
-|    |         |         \--- com.squareup.okio:okio:3.7.0 -> 3.16.4 (*)
+|    |         |         \--- com.squareup.okio:okio:3.7.0 -> 3.16.2 (*)
-|    |         +--- com.squareup.okhttp3:okhttp:4.12.0 -> 5.2.3 (*)
+|    |         +--- com.squareup.okhttp3:okhttp:4.12.0 -> 5.3.0 (*)
-|    |         +--- com.squareup.okhttp3:okhttp-tls:4.12.0 -> 5.2.3 (*)
+|    |         +--- com.squareup.okhttp3:okhttp-tls:4.12.0 -> 5.3.0 (*)
 |    |         \--- com.squareup.wire:wire-moshi-adapter:4.9.11
 |    |              \--- com.squareup.wire:wire-runtime:4.9.11
 |    |                   \--- com.squareup.wire:wire-runtime-jvm:4.9.11
-|    |                        \--- com.squareup.okio:okio:3.7.0 -> 3.16.4 (*)
+|    |                        \--- com.squareup.okio:okio:3.7.0 -> 3.16.2 (*)
 |    \--- com.stripe:stripeterminal-taptopay:4.7.5
-|         +--- com.squareup.okhttp3:okhttp:4.12.0 -> 5.2.3 (*)
+|         +--- com.squareup.okhttp3:okhttp:4.12.0 -> 5.3.0 (*)
-|         \--- com.squareup.okhttp3:okhttp-tls:4.12.0 -> 5.2.3 (*)
+|         \--- com.squareup.okhttp3:okhttp-tls:4.12.0 -> 5.3.0 (*)
 +--- com.zendesk:support:5.5.1
 |    +--- com.squareup.picasso:picasso:2.8
-|    |    \--- com.squareup.okhttp3:okhttp:3.10.0 -> 5.2.3 (*)
+|    |    \--- com.squareup.okhttp3:okhttp:3.10.0 -> 5.3.0 (*)
 |    \--- com.zendesk:guide:1.5.1
-|         +--- com.squareup.okhttp3:okhttp:4.12.0 -> 5.2.3 (*)
+|         +--- com.squareup.okhttp3:okhttp:4.12.0 -> 5.3.0 (*)
 |         \--- com.zendesk:guide-providers:1.3.1
 |              \--- com.zendesk:core:4.2.1
-|                   +--- com.squareup.okhttp3:okhttp:4.12.0 -> 5.2.3 (*)
+|                   +--- com.squareup.okhttp3:okhttp:4.12.0 -> 5.3.0 (*)
 |                   \--- com.squareup.okhttp3:logging-interceptor:4.12.0
-|                        \--- com.squareup.okhttp3:okhttp:4.12.0 -> 5.2.3 (*)
+|                        \--- com.squareup.okhttp3:okhttp:4.12.0 -> 5.3.0 (*)
 +--- io.coil-kt:coil-compose:2.7.0
 |    \--- io.coil-kt:coil-compose-base:2.7.0
 |         \--- io.coil-kt:coil-base:2.7.0
-|              +--- com.squareup.okhttp3:okhttp:4.12.0 -> 5.2.3 (*)
+|              +--- com.squareup.okhttp3:okhttp:4.12.0 -> 5.3.0 (*)
-|              \--- com.squareup.okio:okio:3.9.0 -> 3.16.4 (*)
+|              \--- com.squareup.okio:okio:3.9.0 -> 3.16.2 (*)
 \--- com.airbnb.android:lottie-compose:6.6.10
      \--- com.airbnb.android:lottie:6.6.10
-          \--- com.squareup.okio:okio:{require 1.17.6; reject _} -> 3.16.4 (*)
+          \--- com.squareup.okio:okio:{require 1.17.6; reject _} -> 3.16.2 (*)

Dec 10 '25 18:12 wpmobilebot

📲 You can test the changes from this Pull Request in WooCommerce-Wear Android by scanning the QR code below to install the corresponding build.

	App Name	WooCommerce-Wear Android
	Platform	⌚️ Wear OS
	Flavor	Jalapeno
	Build Type	Debug
	Commit	6146568fda0ccef23313f9581c404cfc6384aec3
	Direct Download	`woocommerce-wear-prototype-build-pr15082-6146568.apk`

Dec 10 '25 18:12 wpmobilebot

📲 You can test the changes from this Pull Request in WooCommerce Android by scanning the QR code below to install the corresponding build.

	App Name	WooCommerce Android
	Platform	📱 Mobile
	Flavor	Jalapeno
	Build Type	Debug
	Commit	6146568fda0ccef23313f9581c404cfc6384aec3
	Direct Download	`woocommerce-prototype-build-pr15082-6146568.apk`

Dec 10 '25 18:12 wpmobilebot

🤖 Build Failure Analysis

This build has failures. Claude has analyzed them - check the build annotations for details.

Dec 10 '25 18:12 wpmobilebot

@dependabot close

Dec 11 '25 13:12 irfano

Beginning January 27, 2026, Dependabot will no longer support the @dependabot close command. Please use GitHub's native pull request controls instead. Please see the changelog announcement for additional details.

Dec 11 '25 13:12 dependabot[bot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

Dec 11 '25 13:12 dependabot[bot]