build(deps): bump the gradle-all group across 1 directory with 7 updates

[dependabot]

Bumps the gradle-all group with 7 updates in the / directory:

Package	From	To
com.gradleup.shadow	9.3.1	9.4.1
com.hypixel.hytale:Server	2026.02.19-1a311a592	2026.04.23-937872667
com.google.code.gson:gson	2.13.2	2.14.0
org.mongodb:mongodb-driver-sync	5.6.2	5.6.5
org.jetbrains:annotations	26.0.2-1	26.1.0
org.junit.jupiter:junit-jupiter	6.0.2	6.0.3
gradle-wrapper	9.2.0	9.4.1

Updates com.gradleup.shadow from 9.3.1 to 9.4.1

Release notes

Sourced from com.gradleup.shadow's releases.

9.4.1

Changed

• Update Kotlin to 2.3.20. (#1978)

9.4.0

Added

• Support Isolated Projects. (#1139)

Changed

• Allow opting out of adding shadowJar into assemble lifecycle. (#1939)

  shadow {
    // Disable making `assemble` task depend on `shadowJar`. This is enabled by default.
    addShadowJarToAssembleLifecycle = false
  }

• Stop catching ZipException when writing entries. (#1970)

Fixed

• Fix interaction with Gradle artifact transforms. (#1345)
• Fix skipStringConstants per-relocator behavior in mapName. (#1968)
• Fix failing for non-existent class directories. (#1976)

9.3.2

Changed

• Stop moving gradleApi dependency from api to compileOnly for Gradle 9.4+. (#1919)
• Log warnings for duplicates in the final JAR. (#1931)

Fixed

• Fix relocation patterns not included in task fingerprint. (#1933)

Commits

• f98d8f2 Prepare version 9.4.1
• 7cf1ac5 Note #1978 in changelog
• 539d532 Update plugin jetbrains-dokka to v2.2.0 (#1994)
• 0fb99ca Update actions/deploy-pages action to v5 (#1993)
• 38ec3e2 Update Develocity to v4.4.0 (#1992)
• e519072 Update gradle/actions action to v6 (#1990)
• ca0dd71 Update pluginPublish to v2.1.1 (#1989)
• 5a1ab58 Update Gradle to v9.4.1 (#1988)
• 69dfdfc Improve file type check for AAR (#1987)
• 1395087 Document excluding non-JAR transitive dependencies (#1986)
• Additional commits viewable in compare view

Updates com.hypixel.hytale:Server from 2026.02.19-1a311a592 to 2026.04.23-937872667

Updates com.google.code.gson:gson from 2.13.2 to 2.14.0

Release notes

Sourced from com.google.code.gson:gson's releases.

Gson 2.14.0

What's Changed

• Add type adapters for java.time classes by @​eamonnmcmanus in google/gson#2948

  When the java.time API is available, Gson automatically can read and write instances of classes like Instant and Duration. The format it uses essentially freezes the JSON representation that ReflectiveTypeAdapterFactory established by default, based on the private fields of java.time classes. That's not a great representation, but it is understandable. Changing it to anything else would break compatibility with systems that are expecting the current format.

  With this change, Gson no longer tries to access private fields of these classes using reflection. So it is no longer necessary to run with --add-opens for these classes on recent JDKs.

• Remove com.google.gson.graph by @​eamonnmcmanus in google/gson#2990.

  This package was not part of any released artifact and depended on Gson internals in potentially problematic ways.

• Validate that strings being parsed as integers consist of ASCII characters by @​eamonnmcmanus in google/gson#2995

  Previously, strings could contain non-ASCII Unicode digits and still be parsed as integers. That's inconsistent with how JSON numbers are treated.

• Fix duplicate key detection when first value is null by @​andrewstellman in google/gson#3006

  This could potentially break code that was relying on the incorrect behaviour. For example, this JSON string was previously accepted but will no longer be: {"foo": null, "foo": bar}.

• Remove Serializable from internal Type implementation classes. by @​eamonnmcmanus in google/gson#3011

  The nested classes ParameterizedTypeImpl, GenericArrayTypeImpl, and WildcardTypeImpl in GsonTypes are implementations of the corresponding types (without Impl) in java.lang.reflect. For some reason, they were serializable, even though the java.lang.reflect implementations are not. Having unnecessarily serializable classes could conceivably have been a security problem if they were part of a larger exploit using serialization. (We do not consider this a likely scenario and do not suggest that you need to update Gson just to get this change.)

• Add LegacyProtoTypeAdapterFactory. by @​eamonnmcmanus in google/gson#3014

  This is not part of any released artifact, but may be of use when trying to fix code that is currently accessing the internals of protobuf classes via reflection.

• Make AppendableWriter do flush and close if delegation object supports by @​MukjepScarlet in google/gson#2925

Other less visible changes

• Add default capacity to EnumTypeAdapter maps by @​MukjepScarlet in google/gson#2959
• refactor: move derived adapters from Gson to TypeAdapters by @​MukjepScarlet in google/gson#2951
• Optimize new Gson() by @​MukjepScarlet in google/gson#2864

New Contributors

• @​ThirdGoddess made their first contribution in google/gson#2944
• @​lmj798 made their first contribution in google/gson#2988
• @​Eng-YasminKotb made their first contribution in google/gson#3005
• @​andrewstellman made their first contribution in google/gson#3006

Full Changelog: google/gson@gson-parent-2.13.2...gson-parent-2.14.0

Commits

• 3ff35d6 [maven-release-plugin] prepare release gson-parent-2.14.0
• a3024fd Bump the maven group with 13 updates (#3002)
• 5689ffe Bump the github-actions group across 1 directory with 3 updates (#3018)
• 48db33c Add LegacyProtoTypeAdapterFactory. (#3014)
• 53d703e Update outdated comment regarding serializable types (#3012)
• 0189b72 Remove Serializable from internal Type implementation classes. (#3011)
• f4d371d Fix duplicate key detection when first value is null (#3006)
• 27d9ba1 Fix typo in README (JPMS dependencies section) (#3005)
• 1fa9b7a Validate that strings being parsed as integers consist of ASCII characters (#...
• b7d5954 Add iterator fail-fast tests for LinkedTreeMap.clear() (#2992)
• Additional commits viewable in compare view

Updates org.mongodb:mongodb-driver-sync from 5.6.2 to 5.6.5

Release notes

Sourced from org.mongodb:mongodb-driver-sync's releases.

Java Driver 5.6.5 (April 09, 2026)

What's Changed

🛠 Fixes

• AsyncCommandCursor.getMoreLoop() held a pool connection across empty getMore responses on tailable cursors, exhausting the connection pool when idle change streams reached maxPoolSize and causing MongoTimeoutException for all other operations. The retry loop has been moved out of getMoreLoop() and into next().

Verifying artifact signatures

Please refer to https://www.mongodb.com/docs/drivers/java/sync/v5.4/security/validate-signatures/ for the full procedure.

To download and import the public key for verifying signatures, execute

gpg --keyserver hkps://keyserver.ubuntu.com --recv-keys 1a75005e142192223d6a7c3b76e0008d166740a8

Full Changelog: mongodb/mongo-java-driver@r5.6.4...r5.6.5

Java Driver 5.6.4 (February 23, 2026)

What's Changed

• Fixed a recent change in how we use Netty buffers that could cause memory to be released too early under certain allocator configurations, leading to unexpected runtime errors. This update restores the correct shared reference-count behavior in Netty (by @​vbabanin in mongodb/mongo-java-driver#1897 JAVA-6107)

Verifying artifact signatures

Please refer to https://www.mongodb.com/docs/drivers/java/sync/v5.4/security/validate-signatures/ for the full procedure.

To download and import the public key for verifying signatures, execute

gpg --keyserver hkps://keyserver.ubuntu.com --recv-keys 1a75005e142192223d6a7c3b76e0008d166740a8

Full Changelog: mongodb/mongo-java-driver@r5.6.3...r5.6.4

Java Driver 5.6.3 (February 03, 2026)

What's Changed

• Revert NettyByteBuf.asReadOnly change (#1871) by @​rozza in mongodb/mongo-java-driver#1878 Note: Command Logging with Netty will be fixed in 5.7.0

Full Changelog: mongodb/mongo-java-driver@r5.6.2...r5.6.3

Commits

• fb25e35 Version: bump 5.6.5
• 9a315a0 Release connection between empty getMore responses (#1928)
• 0be7f11 Version: bump 5.6.5-SNAPSHOT
• 4ce9e39 Version: bump 5.6.4
• 973b9e1 Make NettyByteBuf share parent reference count (#1897)
• 5604c04 Version: bump 5.6.4-SNAPSHOT
• 9d16849 Version: bump 5.6.3
• 415e8fe Revert NettyByteBuf.asReadOnly change (#1871) (#1878)
• 9a09dac Version: bump 5.6.3-SNAPSHOT
• See full diff in compare view

Updates org.jetbrains:annotations from 26.0.2-1 to 26.1.0

Release notes

Sourced from org.jetbrains:annotations's releases.

26.1.0

• @NotNullByDefault is not experimental anymore.

Changelog

Sourced from org.jetbrains:annotations's changelog.

Version 26.1.0

• @NotNullByDefault is not experimental anymore.

Commits

• 6f588d4 Merge pull request #137 from BartvHelvert/notNullByDefaultExperimental
• 21be50c Version 26.1.0
• 92a187b Remove experimental status from @​NotNullByDefault
• da40a75 Merge pull request #135 from coder-xiaomo/patch-1
• 18554b9 Update Contributor License Agreement link
• 2f91ecd Merge pull request #132 from DmPanov/dmpanov/allworknoplay
• f64f40f Version 26.0.2-1
• See full diff in compare view

Updates org.junit.jupiter:junit-jupiter from 6.0.2 to 6.0.3

Release notes

Sourced from org.junit.jupiter:junit-jupiter's releases.

JUnit 6.0.3 = Platform 6.0.3 + Jupiter 6.0.3 + Vintage 6.0.3

See Release Notes.

Full Changelog: junit-team/junit-framework@r6.0.2...r6.0.3

Commits

• 36e3253 Release 6.0.3
• 295561f Finalize 6.0.3 release notes
• ea18076 Fix deadlock in NamespacedHierarchicalStore.computeIfAbsent() (#5348)
• 869e232 Add 5.14.3 release notes
• d4b34c4 Fix links to User Guide
• 5c8fb0f Reliably support JRE.OTHER with @⁠EnabledOnJre and @⁠DisabledOnJre
• febb13f Check out entire repo so switching to main branch works in last step
• 71fba90 Install poppler-utils for pdfinfo
• 740e9e0 Update API baseline
• 2ba535f Use release branch of examples repo
• Additional commits viewable in compare view

Updates gradle-wrapper from 9.2.0 to 9.4.1

Release notes

Sourced from gradle-wrapper's releases.

9.4.1

The Gradle team is excited to announce Gradle 9.4.1.

Here are the highlights of this release:

• Java 26 support
• Non-class-based JVM tests
• Enhanced console progress bar

Read the Release Notes

We would like to thank the following community members for their contributions to this release of Gradle: akankshaa-00, Attila Kelemen, Björn Kautler, dblood, Dennis Rieks, duvvuvenkataramana, John Burns, Julian, kevinstembridge, Niels Doucet, Philip Wedemann, ploober, Richard Hernandez, Roberto Perez Alcolea, Sebastian Lövdahl, stephan2405, Stephane Landelle, Ujwal Suresh Vanjare, Victor Merkulov, Vincent Potuček, Vladimir Sitnikov.

Upgrade instructions

Switch your build to use Gradle 9.4.1 by updating your wrapper:

./gradlew wrapper --gradle-version=9.4.1 && ./gradlew wrapper

See the Gradle 9.x upgrade guide to learn about deprecations, breaking changes and other considerations when upgrading.

For Java, Groovy, Kotlin and Android compatibility, see the full compatibility notes.

Reporting problems

If you find a problem with this release, please file a bug on GitHub Issues adhering to our issue guidelines. If you're not sure you're encountering a bug, please use the forum.

We hope you will build happiness with Gradle, and we look forward to your feedback via Twitter or on GitHub.

... (truncated)

Commits

• 2d63270 Ignore test (#37180)
• 4c15906 Ignore test
• 9759ac1 Make console/SIGINT test deterministic (#37178)
• aaf6ed4 Make console/SIGINT test deterministic
• 47cb783 Fix OSC 9;4 progress bar not cleared on SIGINT (#37038)
• ef03f1d Fix order-dependent assertion in CrossBuildScriptCachingIntegrationSpec
• fd26fd3 Fix OSC 9;4 taskbar progress bar not cleared on build end or SIGINT
• 0a84d67 Release notes for 9.4.1 (#37148)
• e569c31 cleanup
• 9f227de cleanup
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions