Update dependencies

[alexandru]

This PR contains the following updates:

Package	Type	Update	Change	Pending
actions/checkout	action	major	v6 → v7
gradle (source)		minor	9.5.1 → 9.6.0	9.6.1
org.scalameta:munit	Test	patch	1.3.2 → 1.3.3
org.typelevel:sbt-tpolecat	plugin	patch	0.5.6 → 0.5.7
org.wartremover:sbt-wartremover	plugin	minor	3.5.8 → 3.6.0
renovatebot/github-action	action	patch	v46.1.15 → v46.1.16	v46.1.17
sbt/sbt		major	1.12.11 → 2.0.0	2.0.1
org.mariadb.jdbc:mariadb-java-client (source)	dependencies	patch	3.5.8 → 3.5.9
com.zaxxer:HikariCP	dependencies	minor	7.0.2 → 7.1.0
com.vanniktech:gradle-maven-publish-plugin	dependencies	minor	0.36.0 → 0.37.0

---

Release Notes

actions/checkout (actions/checkout)

v7.0.0

Compare Source

• Block checking out fork PR for pull_request_target and workflow_run by @​aiqiaoy in #​2454
• Bump actions/publish-immutable-action from 0.0.3 to 0.0.4 in the minor-actions-dependencies group across 1 directory by @​dependabot[bot] in #​2458
• Bump flatted from 3.3.1 to 3.4.2 by @​dependabot[bot] in #​2460
• Bump js-yaml from 4.1.0 to 4.2.0 by @​dependabot[bot] in #​2461
• Bump @​actions/core and @​actions/tool-cache and Remove uuid by @​dependabot[bot] in #​2459
• upgrade module to esm and update dependencies by @​aiqiaoy in #​2463
• Bump the minor-npm-dependencies group across 1 directory with 3 updates by @​dependabot[bot] in #​2462

v7

Compare Source

• Block checking out fork PR for pull_request_target and workflow_run by @​aiqiaoy in #​2454
• Bump actions/publish-immutable-action from 0.0.3 to 0.0.4 in the minor-actions-dependencies group across 1 directory by @​dependabot[bot] in #​2458
• Bump flatted from 3.3.1 to 3.4.2 by @​dependabot[bot] in #​2460
• Bump js-yaml from 4.1.0 to 4.2.0 by @​dependabot[bot] in #​2461
• Bump @​actions/core and @​actions/tool-cache and Remove uuid by @​dependabot[bot] in #​2459
• upgrade module to esm and update dependencies by @​aiqiaoy in #​2463
• Bump the minor-npm-dependencies group across 1 directory with 3 updates by @​dependabot[bot] in #​2462

gradle/gradle (gradle)

v9.6.0: 9.6.0

Compare Source

The Gradle team is excited to announce Gradle 9.6.0.

Here are the highlights of this release:

• Improved Configuration Cache hit rates
• Additional CLI rendering options
• Important project hierarchy lookup deprecations

Read the Release Notes

We would like to thank the following community members for their contributions to this release of Gradle:
Aharnish Solanki,
Benedikt Johannes,
Devendra Reddy Pennabadi,
Dmytro Rodionov,
Dreeam,
Elías Hernández Rodríguez,
Eng Zer Jun,
FinlayRJW,
Kamal Kansal,
Marcono1234,
Nelson Osacky,
Philip Wedemann,
Ravi,
Roberto Perez Alcolea,
Ryan Schmitt,
Sebastian Schuberth,
seunghun.ham,
sk-reddy17,
Suvrat Acharya,
Vedant Madane.

Upgrade instructions

Switch your build to use Gradle 9.6.0 by updating your wrapper:

./gradlew :wrapper --gradle-version=9.6.0 && ./gradlew :wrapper

See the Gradle 9.x upgrade guide to learn about deprecations, breaking changes and other considerations when upgrading.

For Java, Groovy, Kotlin and Android compatibility, see the full compatibility notes.

Reporting problems

If you find a problem with this release, please file a bug on GitHub Issues adhering to our issue guidelines.
If you're not sure you're encountering a bug, please use the forum.

We hope you will build happiness with Gradle, and we look forward to your feedback via Twitter or on GitHub.

scalameta/munit (org.scalameta:munit)

v1.3.3

Compare Source

Pull Requests

• Fix test discovery for Scala 2 with Scala Native (#​1104) @​Gedochao
• Update google-cloud-storage to 2.64.1 (#​1095) @​scala-steward
• Update scala3-library to 3.8.4 (#​1097) @​scala-steward
• Update auxlib, clib, javalib, nativelib, ... to 0.5.12 (#​1098) @​scala-steward
• Update sbt, scripted-plugin to 1.12.11 (#​1099) @​scala-steward
• Update mdoc, sbt-mdoc to 2.9.0 (#​1100) @​scala-steward
• Update munit-scalacheck to 1.3.0 (#​1101) @​scala-steward
• Update sbt-scalafmt to 2.6.1 (#​1102) @​scala-steward
• Update scalafmt-core to 3.11.1 (#​1103) @​scala-steward

typelevel/sbt-tpolecat (org.typelevel:sbt-tpolecat)

v0.5.7

Compare Source

What's Changed

• Update sbt 2.0.0 by @​lenguyenthanh in #​318

Dependencies

• Update sbt-updates to 0.7.0 by @​typelevel-steward[bot] in #​316
• Update sbt, scripted-plugin to 1.12.12 by @​typelevel-steward[bot] in #​315
  Full Changelog: typelevel/sbt-tpolecat@v0.5.6...v0.5.7

wartremover/wartremover (org.wartremover:sbt-wartremover)

v3.6.0

Compare Source

renovatebot/github-action (renovatebot/github-action)

v46.1.16

Compare Source

Documentation

• update references to renovatebot/github-action to v46.1.15 (0013591)

Miscellaneous Chores

• deps: update dependency @​types/node to v24.13.0 (358d0a4)
• deps: update dependency @​types/node to v24.13.1 (783fe90)
• deps: update dependency @​types/node to v24.13.2 (74b1acf)
• deps: update dependency @​types/node to v24.13.2 (#​1049) (23dcba0)
• deps: update dependency esbuild to v0.28.1 [security] (#​1041) (54012bd)
• deps: update dependency lint-staged to v17 (#​1051) (6a9f6dc)
• deps: update dependency npm-run-all2 to v9 (#​1052) (8757a4e)
• deps: update dependency npm-run-all2 to v9.0.2 (2c2c4e5)
• deps: update linters to v8.60.1 (d40e1b7)
• deps: update linters to v8.61.0 (#​1043) (1e06192)
• deps: update node.js to v24.17.0 (#​1050) (2cf33bc)
• deps: update pnpm to v10.34.2 (#​1048) (63ebb9d)
• deps: update pnpm to v10.34.3 (#​1054) (cd3436d)
• deps: update pnpm/action-setup action to v6 (#​1053) (77e5805)
• deps: update prettier packages to v3.8.4 (#​1045) (d688888)
• deps: update semantic-release monorepo to v25.0.4 (#​1046) (d2dacc8)
• deps: update semantic-release monorepo to v25.0.5 (#​1047) (d91f80c)

Build System

• deps: lock file maintenance (26f827f)

Continuous Integration

• deps: update ghcr.io/renovatebot/renovate docker tag to v43.214.6 (f3fd163)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.216.1 (8cf15ee)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.216.2 (29c9f31)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.216.4 (400f75c)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.217.0 (2aea29e)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.217.1 (268f254)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.218.0 (ebcc800)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.219.0 (a61593e)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.220.0 (#​1037) (0d198c1)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.222.0 (46f2bd6)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.222.1 (90deabf)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.224.0 (22d7b5c)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.224.1 (39a2ba1)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.225.0 (c2f08ab)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.226.1 (75a5340)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.227.0 (da1079a)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.227.1 (26a0ce7)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.228.0 (9dd450f)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.228.1 (066bf0a)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.229.0 (edd7e4f)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.229.1 (64e44a4)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.229.2 (dce4d1b)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.230.0 (30fd043)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.230.1 (425d313)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.231.0 (ae939aa)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.231.1 (cac502d)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.231.2 (242a56f)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.231.3 (3b66329)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.232.0 (c0502ab)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.232.1 (d46a7eb)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.233.1 (b476f30)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.233.2 (bc50ad1)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.233.3 (908f92d)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.233.4 (a48bc32)
• deps: update ghcr.io/renovatebot/renovate docker tag to v43.234.0 (c929092)
• deps: update ghcr.io/zizmorcore/zizmor docker tag to v1.26.1 (#​1055) (c878bfb)
• deps: update zizmorcore/zizmor-action action to v0.5.7 (996e7bc)

sbt/sbt (sbt/sbt)

v2.0.0: 2.0.0

Compare Source

See sbt 2.0 change summary.

Full Changelog: sbt/sbt@v1.12.12...v2.0.0

v1.12.13: 1.12.13

Compare Source

🐛 bug fixes

• fix: Fixes file permissions by @​eed3si9n + @​xuwei-k in sbt/io#527 / #​9350
• fix: Fixes ArrayIndexOutOfBoundsException error when Unix domain socket is closed by @​merlinorg in sbt/ipcsocket#77

Full Changelog: sbt/sbt@v1.12.12...v1.12.13

v1.12.12: 1.12.12

Compare Source

bug fixes

• fix: Fixes console that references Java module classes on JDK 9+ by @​BrianHotopp in #​9327
• fix: Fixes sbt --version to now show JDK warnings on JDK 25 by @​bitloi in #​8822
• fix: Fixes stdout/stderr not displaying on sbtn by @​BrianHotopp in #​9265
• fix: Ensure resources are copied atomically by @​anatoliykmetyuk in #​9196

behind the scenes

• Update sbtn to 2.0.0-f0d2fae4 by @​eed3si9n in #​9334
• test: Make custom-scala-org scripted test hermetic by @​BrianHotopp in #​9260
• ci: Skip 2.13 modules from graph submission by @​eed3si9n in #​9328

Full Changelog: sbt/sbt@v1.12.11...v1.12.12

mariadb-corporation/mariadb-connector-j (org.mariadb.jdbc:mariadb-java-client)

v3.5.9

Compare Source

Full Changelog

Key Enhancements

• CONJ-1223 - cache TLS trust/key managers across connections to reduce SSL connection cost
• CONJ-1314 - add SPI for interactive dialog (PAM) authentication callback
• CONJ-1311 - add dedicated option useIpForKillQuery for query cancellation
• CONJ-1310 - Add full native image support and CI coverage

Issues Resolved

• CONJ-1320 - PAM (dialog) authentication must require a secure connection (report by fg0x0)
• CONJ-1319 - Use constant-time comparison when validating the server certificate fingerprint (report by jmestwa-coder)
• CONJ-1318 - enforce allowLocalInfile=false on the server's local-infile request, so a malicious server cannot read a client file despite the option being disabled
• CONJ-1322 - match local infile filename case-sensitively (thanks to jmestwa-coder)
• CONJ-1323 - LOAD LOCAL INFILE validation rejects statements preceded by line comments (thanks to sebdomdev)
• CONJ-1315 - cap BigDecimal/BigInteger string parsing length to prevent CPU exhaustion if MitM (report by tonghuaroot)
• CONJ-1317 - ensure non-UTF8 charset cannot be used for protocol exchanges (report by fg0x0)
• CONJ-1304 - CallableStatement parameter metadata read from mysql.proc, with MySQL info_schema fallback
• CONJ-1299 - keep VALUES literals after the last placeholder when rewriting batches
• CONJ-1313 - race condition in HaMode#getAvailableHostInOrder can cause NPE
• CONJ-1311 - Connection.cancelCurrentQuery fails with SslMode.VERIFY_FULL when client socket IP is set
• CONJ-1264 - handle LocalDateTime as a zoneless wall-clock value
• CONJ-1316 - pin Locale.ROOT on locale-sensitive call sites and date/time/Duration text formatting (fixes
  locale-dependent parsing/formatting, e.g. under tr_TR) (thanks to jmestwa-coder)
• CONJ-1324 - fix SQL parser to correctly handle '--' in expressions and reset lastChar after block comments
• CONJ-1323 - LOAD LOCAL INFILE validation rejects statements preceded by line comments (thanks to sebdomdev)
• CONJ-1318 - allowLocalInfile=false does not block LOAD DATA LOCAL INFILE against a malicious server (thanks to tharavel)

vanniktech/gradle-maven-publish-plugin (com.vanniktech:gradle-maven-publish-plugin)

v0.37.0

Compare Source

• When publishing to Maven Central, redundant checksum files are now excluded by default: checksums of .asc
  signature files (gradle/gradle#20232) and the sha256/sha512
  checksums, which are never read by Gradle or Maven Central. The published checksums can be configured through
  checksums(...) in the DSL or the mavenCentralChecksums Gradle property (default md5,sha1). Signature checksum
  exclusion can be controlled through excludeSignatureChecksums() or the mavenCentralExcludeSignatureChecksums
  Gradle property.
• Maven Central deployment id is being logged after upload.

Minimum supported versions

• JDK 17
• Gradle 9.0.0
• Android Gradle Plugin 8.13.0
• Kotlin Gradle Plugin 2.2.0

Compatibility tested up to

• JDK 26
• Gradle 9.6.0
• Gradle 9.7.0-milestone-1
• Android Gradle Plugin 9.2.1
• Android Gradle Plugin 9.3.0-rc01
• Android Gradle Plugin 9.4.0-alpha01
• Kotlin Gradle Plugin 2.4.0

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • At any time (no schedule defined)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate.

[github-actions]

Summary

What I checked: All 11 files changed by Renovate across the Gradle (Kotlin/JVM) and sbt (Scala) builds.

What I fixed: Reverted sbt from 2.0.0 → 1.12.11 in project/build.properties. The sbt 2.0.0 upgrade is incompatible with sbt-sonatype 3.12.2, which was only published for the sbt 2.0.0-M2 milestone (_sbt2.0.0-M2_3 artifact suffix), not the stable sbt 2.0.0 release (_sbt2_3). All other Renovate updates are left intact.

make check-all result: Passes. Gradle check (26 tasks), sbt ci-test (93 Scala 2.13 tests, 93 Scala 3 tests, scalafmt check) all green.

opencode session  |  github run