chore: bump the gradle-updates group across 1 directory with 8 updates

[dependabot]

Bumps the gradle-updates group with 7 updates in the / directory:

Package	From	To
org.junit:junit-bom	5.13.4	5.14.0
org.ow2.asm:asm-bom	9.8	9.9
com.google.guava:guava	33.4.8-jre	33.5.0-jre
software.amazon.awscdk:aws-cdk-lib	2.208.0	2.219.0
com.github.javaparser:javaparser-core	3.27.0	3.27.1
com.fasterxml.jackson:jackson-bom	2.19.2	2.20.0
com.ncorti.ktfmt.gradle	0.23.0	0.24.0

Updates org.junit:junit-bom from 5.13.4 to 5.14.0

Release notes

Sourced from org.junit:junit-bom's releases.

JUnit 5.14.0 = Platform 1.14.0 + Jupiter 5.14.0 + Vintage 5.14.0

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.13.4...r5.14.0

JUnit 5.14.0-RC1 = Platform 1.14.0-RC1 + Jupiter 5.14.0-RC1 + Vintage 5.14.0-RC1

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.13.4...r5.14.0-RC1

Commits

• 8545c93 Release 5.14.0
• 1d405a0 Polish release notes for 5.14 GA
• c1f78f6 Prepare 5.14.0 release notes and link to migration guide
• a6f666c Allow new classes to be added
• f728dfa Disable compatibility checks for all aggregator projects
• 72b34aa Validate list of accepted breaking changes
• bc62d27 Only track module-specific lines in accepted-breaking-changes.txt
• 1d95a3c Clear custom initialize-at-build-time lists
• 513be32 Update plugin org.graalvm.buildtools.native to v0.11.1
• 174d8de Back to snapshots for further development
• Additional commits viewable in compare view

Updates org.ow2.asm:asm-bom from 9.8 to 9.9

Updates com.google.guava:guava from 33.4.8-jre to 33.5.0-jre

Release notes

Sourced from com.google.guava:guava's releases.

33.5.0

Maven

<dependency>
  <groupId>com.google.guava</groupId>
  <artifactId>guava</artifactId>
  <version>33.5.0-jre</version>
  <!-- or, for Android: -->
  <version>33.5.0-android</version>
</dependency>

Jar files

• 33.5.0-jre.jar
• 33.5.0-android.jar

Guava requires one runtime dependency, which you can download here:

• failureaccess-1.0.3.jar

Javadoc

• 33.5.0-jre
• 33.5.0-android

JDiff

• 33.5.0-jre vs. 33.4.8-jre
• 33.5.0-android vs. 33.4.8-android
• 33.5.0-android vs. 33.5.0-jre

Changelog

• Restored the Automatic-Module-Name to guava-android. (It, unlike, guava-jre, is not a proper module.) (7a04a8a955)
• For users of guava-gwt: Google has moved off GWT internally. We plan to continue to release guava-gwt for users of GWT and J2CL, but the artifact is no longer tested for GWT-specific issues, and we have limited resources to fix any unexpected issues that might arise. While we do not anticipate any specific problems, we can't guarantee how long support will continue.
• Increased our Android minSdkVersion to 23 (Marshmallow). This follows the minimum of Google's foundational Android libraries, and we expect it to have no practical impact on users. (5c23347cc1)
• Listed the JSpecify annotations as an optional dependency in our OSGi metadata. (2dfd572981)
• cache: Improved the handling of exceptions from compute functions in Cache.asMap(). (We do still recommend using Caffeine rather than com.google.common.cache.) (087f2c4a80)
• collect: Improved Iterators.mergeSorted() to preserve stability for equal elements. (4dc93be9a8)
• math: Added saturatedAbs methods to IntMath and LongMath. (ed0e518f20)
• net: Added image/avif to MediaType. (53344caba6)
• testing: Made CollectorTester available to Android users. (294c251079)
• util.concurrent: Added Striped.custom. (1586eb271d)

Commits

• See full diff in compare view

Updates software.amazon.awscdk:aws-cdk-lib from 2.208.0 to 2.219.0

Release notes

Sourced from software.amazon.awscdk:aws-cdk-lib's releases.

v2.219.0

⚠ BREAKING CHANGES

• ** L1 resources are automatically generated from public CloudFormation Resource Schemas. They are built to closely reflect the real state of CloudFormation. Sometimes these updates can contain changes that are incompatible with previous types, but more accurately reflect reality. In this release we have changed:

aws-servicecatalog: AWS::ServiceCatalog::PortfolioPrincipalAssociation: PortfolioId property is now required. aws-servicecatalog: AWS::ServiceCatalog::PortfolioPrincipalAssociation: PrincipalARN property is now required. aws-servicecatalog: AWS::ServiceCatalog::PortfolioProductAssociation: Id attribute removed.

Co-authored-by: aws-cdk-automation [email protected]

Features

• ecs: new L2 construct for ManagedInstances CapacityProvider (#35648) (c72a09b)
• update L1 CloudFormation resource definitions (#35646) (860ce0d)
• codebuild: add custom instance type and VPC to Fleets (#34572) (5c2781b)
• codebuild: support overflow behavior of fleet (#35480) (e4113b0)
• update L1 CloudFormation resource definitions (#35614) (fb0a114)

Bug Fixes

• cloudfront: edgefunction does not propagate stack tags correctly (#35518) (63088e8)

---

Alpha modules (2.219.0-alpha.0)

v2.218.0

Features

• cloudfront-origins: ip address type for http origin (#35445) (196c7ae), closes #35427
• docdb: support for serverless clusters (#35574) (89bfef7), closes #35199
• pipelines: CodeBuildFactory support Docker server (#35584) (c62d996)
• spec2cdk: generate from<Resource>Arn and from<Resource><Prop> in every L1 (#35470) (c588061)

---

Alpha modules (2.218.0-alpha.0)

• elasticache-alpha: implement Serverless ElastiCache L2 Construct (#35424) (0e08c8c)

v2.217.0

Features

• update L1 CloudFormation resource definitions (#35491) (d095f68)
• update L1 CloudFormation resource definitions (#35567) (b0ccf81)

Bug Fixes

• cloudfront: Function ARN reference changed from GetAtt to Ref (#35547) (8a26869), closes #35531
• core: negated gitignore patterns inside subdirectories are not including matched files (#35511) (44781ef), closes #9146 #22002
• kms: Alias reference incorrectly resolves to underlying Key (#35545) (43ffcff), closes #35543
• lambda: function.latestVersion points to wrong ARN (#35546) (761dde2), closes #35545

... (truncated)

Changelog

Sourced from software.amazon.awscdk:aws-cdk-lib's changelog.

Changelog

All notable changes to this project will be documented in this file. See standard-version for commit guidelines.

2.219.0-alpha.0 (2025-10-01)

2.218.0-alpha.0 (2025-09-29)

• elasticache-alpha: implement Serverless ElastiCache L2 Construct (#35424) (0e08c8c)

2.217.0-alpha.0 (2025-09-25)

2.216.0-alpha.0 (2025-09-22)

2.215.0-alpha.0 (2025-09-15)

Bug Fixes

• bedrock-alpha: added missing validation when prompt uses default variant (#35366) (cbd271e)

2.214.0-alpha.0 (2025-09-02)

Features

• bedrock-alpha: add guardrails l2 construct (#34765) (b4fdb2b)
• eks-v2-alpha: support eks with k8s 1.33 (#34713) (c24565e), closes #34520 #34911
• s3tables-alpha: add TablePolicy support to L2 construct library (#35223) (2741dfb), closes #33054

2.213.0-alpha.0 (2025-08-27)

Features

• s3tables-alpha: add TablePolicy support to L2 construct library (#35223) (a4aad78), closes #33054

2.212.0-alpha.0 (2025-08-20)

2.211.0-alpha.0 (2025-08-12)

2.210.0-alpha.0 (2025-08-06)

Features

• glue-alpha: add optional metrics control for cost optimization (#35154) (6e24133), closes #35149

2.209.1-alpha.0 (2025-08-06)

... (truncated)

Commits

• 731eb40 chore(release): 2.219.0 (#35650)
• ff49d50 chore(release): 2.218.0 (#35613)
• 4aa3438 chore: update CHANGELOG.v2.md and CHANGELOG.v2.alpha.md
• 6c38897 chore: update analytics metadata blueprints
• 61c9324 chore(release): 2.218.0
• 1d7076e chore(applicationsignals-alpha): remove B3 from default propagators (#35510)
• 0e08c8c feat(elasticache): implement Serverless ElastiCache L2 Construct (#35424)
• 7379a4b chore(eks): add AL2023_ARM_64_NVIDIA AMI type for managed node groups (#35578)
• 89bfef7 feat(docdb): support for serverless clusters (#35574)
• 2c22a6d chore(rds): mysql version 5.7.44-RDS.20250818 (#35581)
• Additional commits viewable in compare view

Updates com.github.javaparser:javaparser-core from 3.27.0 to 3.27.1

Release notes

Sourced from com.github.javaparser:javaparser-core's releases.

javaparser-parent-3.27.1

Changed

• fix: switch expression improvement (PR #4823 by @​seokjun7410)

Fixed

• Fix: Adjusts the range limits of lambda expression parameters to ignore brackets. (PR #4860 by @​jlerbsc)
• Fix issue 4846 (PR #4855 by @​PiTheGuy)
• Revert checkstyle plugin upgrade (PR #4836 by @​jlerbsc)
• Fix: issue 4832 Resolving type of fully qualified varargs invocation throws IndexOutOfBoundsException (PR #4835 by @​jlerbsc)
• Fix: Issue 4829 Infinite loop in DifferenceElementCalculator when calling setPermittedTypes (PR #4834 by @​jlerbsc)
• XmlPrinter: fix duplicate attribute name in generated xml (PR #4806 by @​sgqy)
• Use lambda parameter counts and block bodies for improved resolution (PR #4796 by @​johannescoetzee)
• Fix issue #4791 (PR #4792 by @​bannmann)

Developer Changes

• fix(deps): update dependency org.checkerframework:checker-qual to v3.51.1 (PR #4862 by @​renovate[bot])
• chore(deps): update dependency org.apache.maven.plugins:maven-javadoc-plugin to v3.12.0 (PR #4843 by @​renovate[bot])
• fix(deps): update dependency com.google.guava:guava to v33.5.0-jre (PR #4839 by @​renovate[bot])
• chore(deps): update codecov/codecov-action action to v5.5.1 (PR #4827 by @​renovate[bot])
• fix(deps): update dependency org.checkerframework:checker-qual to v3.50.0 (PR #4825 by @​renovate[bot])
• chore(deps): update actions/setup-java action to v5 (PR #4822 by @​renovate[bot])
• chore(deps): update actions/checkout action to v5 (PR #4811 by @​renovate[bot])
• chore(deps): update dependency com.puppycrawl.tools:checkstyle to v11 (PR #4808 by @​renovate[bot])
• chore(deps): update dependency org.apache.maven.plugins:maven-surefire-plugin to v3.5.4 (PR #4701 by @​renovate[bot])

Uncategorised

• Improves documentation on LexicalPreservingPrinter (PR #4820 by @​jlerbsc)
• Improves documentation on the raw langage level (PR #4819 by @​jlerbsc)
• Fix javadoc of Name class (PR #4789 by @​bannmann)
• Fix NormalAnnotationExpr Javadoc (PR #4784 by @​bannmann)

❤️ Contributors

Thank You to all contributors who worked on this release!

• @​seokjun7410
• @​bannmann
• @​sgqy
• @​johannescoetzee
• @​PiTheGuy
• @​jlerbsc

Changelog

Sourced from com.github.javaparser:javaparser-core's changelog.

Version 3.27.1

issues resolved

Changed

• fix: switch expression improvement (PR #4823 by @​seokjun7410)

Fixed

• Fix: Adjusts the range limits of lambda expression parameters to ignore brackets. (PR #4860 by @​jlerbsc)
• Fix issue 4846 (PR #4855 by @​PiTheGuy)
• Revert checkstyle plugin upgrade (PR #4836 by @​jlerbsc)
• Fix: issue 4832 Resolving type of fully qualified varargs invocation throws IndexOutOfBoundsException (PR #4835 by @​jlerbsc)
• Fix: Issue 4829 Infinite loop in DifferenceElementCalculator when calling setPermittedTypes (PR #4834 by @​jlerbsc)
• XmlPrinter: fix duplicate attribute name in generated xml (PR #4806 by @​sgqy)
• Use lambda parameter counts and block bodies for improved resolution (PR #4796 by @​johannescoetzee)
• Fix issue #4791 (PR #4792 by @​bannmann)

Developer Changes

• fix(deps): update dependency org.checkerframework:checker-qual to v3.51.1 (PR #4862 by @​renovate[bot])
• chore(deps): update dependency org.apache.maven.plugins:maven-javadoc-plugin to v3.12.0 (PR #4843 by @​renovate[bot])
• fix(deps): update dependency com.google.guava:guava to v33.5.0-jre (PR #4839 by @​renovate[bot])
• chore(deps): update codecov/codecov-action action to v5.5.1 (PR #4827 by @​renovate[bot])
• fix(deps): update dependency org.checkerframework:checker-qual to v3.50.0 (PR #4825 by @​renovate[bot])
• chore(deps): update actions/setup-java action to v5 (PR #4822 by @​renovate[bot])
• chore(deps): update actions/checkout action to v5 (PR #4811 by @​renovate[bot])
• chore(deps): update dependency com.puppycrawl.tools:checkstyle to v11 (PR #4808 by @​renovate[bot])
• chore(deps): update dependency org.apache.maven.plugins:maven-surefire-plugin to v3.5.4 (PR #4701 by @​renovate[bot])

Uncategorised

• Improves documentation on LexicalPreservingPrinter (PR #4820 by @​jlerbsc)
• Improves documentation on the raw langage level (PR #4819 by @​jlerbsc)
• Fix javadoc of Name class (PR #4789 by @​bannmann)
• Fix NormalAnnotationExpr Javadoc (PR #4784 by @​bannmann)

❤️ Contributors

Thank You to all contributors who worked on this release!

• @​seokjun7410
• @​bannmann
• @​sgqy
• @​johannescoetzee
• @​PiTheGuy
• @​jlerbsc

Commits

• b87bb5d Migration to Central Publisher Portal 3 - Adding required properties
• 9897582 Migration to Central Publisher Portal 3 - Plugin declaration issue
• 0ab2944 Migration to Central Publisher Portal 3 - Artifact exclusion issues (try anot...
• f83857f Migration to Central Publisher Portal 3 - Artifact exclusion issues
• 92b44d3 Migration to Central Publisher Portal 3 - Configuration issues
• 532ac86 Migration to Central Publisher Portal 3 - excludes artifacts and resolves mav...
• 26f063a Migration to Central Publisher Portal 2
• 60c8cd4 Migration to Central Publisher Portal
• 0bcf677 [maven-release-plugin] prepare release javaparser-parent-3.27.1
• 387ad84 update readme
• Additional commits viewable in compare view

Updates com.fasterxml.jackson:jackson-bom from 2.19.2 to 2.20.0

Commits

• 54f854b [maven-release-plugin] prepare release jackson-bom-2.20.0
• 9cc68d4 Prep for 2.20.0
• cbef800 Version sync for 2.20.0 release (in near future)
• 79bc4ed Back to snapshot deps
• 94947a0 [maven-release-plugin] prepare for next development iteration
• 369dffe [maven-release-plugin] prepare release jackson-bom-2.20.0-rc1
• c5caaf2 Prep for 2.20.0-rc1
• 8ad6e0a Move to 2.20.0-rc1-SNAPSHOT
• 500ef4d Merge branch '2.19' into 2.x
• 274f228 Back to snapshot deps
• Additional commits viewable in compare view

Updates com.fasterxml.jackson.module:jackson-module-kotlin from 2.19.2 to 2.20.0

Commits

• 5684fc2 [maven-release-plugin] prepare release jackson-module-kotlin-2.20.0
• 4d53d9a Prep for 2.20.0
• df3d719 Drop rc2 from version
• 03159dd Post-release version bump
• 3982156 [maven-release-plugin] prepare for next development iteration
• 295e60c [maven-release-plugin] prepare release jackson-module-kotlin-2.20.0-rc1
• ddc1e5c Prep for 2.20.0-rc1
• 80b8371 Merge pull request #1025 from k163377/ex
• 50f5527 Update release notes wrt #1025
• 4ab4308 Fix to test that KotlinInvalidNullException is thrown
• Additional commits viewable in compare view

Updates com.ncorti.ktfmt.gradle from 0.23.0 to 0.24.0

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions