Skip to content

chore(deps): bump com.autonomousapps.dependency-analysis from 3.4.1 to 3.10.0#905

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/gradle/com.autonomousapps.dependency-analysis-3.10.0
Open

chore(deps): bump com.autonomousapps.dependency-analysis from 3.4.1 to 3.10.0#905
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/gradle/com.autonomousapps.dependency-analysis-3.10.0

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 4, 2026

Bumps com.autonomousapps.dependency-analysis from 3.4.1 to 3.10.0.

Changelog

Sourced from com.autonomousapps.dependency-analysis's changelog.

Version 3.10.0

  • [feat]: Gradle plugin markers are the preferred way to depend on a plugin.
  • [feat]: Gradle plugin markers are part of an implicit bundle.
  • [fix]: handle dependencies blocks that have a single line.
  • [docs]: add 'partial analysis' section to readme.

Version 3.9.0

  • (Reverted) Compiled against Kotlin 2.3.20. Compiling against Kotlin 2.2.21 again, with language level 2.2.

Version 3.8.0

  • [feat]: record lambda in binaryClassAccesses.
  • [feat]: support analysis of a Gradle version catalog dependency.
  • [feat]: remove unused 'file' property.
  • Compiled against Kotlin 2.3.20.

Version 3.7.0

  • [feat]: Expose useParenthesesForGroovy configuration for Groovy DSL syntax control.
  • [fix]: fix regex for excluding all *Generated annotations.
  • [fix]: don't attempt to suggest upgrading an undeclared 'parent' dependency of a KMP dependency.
  • [fix]: the 'androidMain' source set is special.
  • [chore]: Compiled against Kotlin 2.2 and Gradle 9.4.1.
  • [chore]: add Code of Conduct.

Version 3.6.1

  • [Fix]: use compilation.disambiguatedName for crafting the task suffix.

Version 3.6.0

  • [Breaking]: min version of Android Gradle Plugin (AGP) is now 8.10.0.
  • [Feat]: support KMP projects with JVM targets.
  • [Feat]: support KMP projects with Android targets.
  • [Feat]: update console report to be more idiomatic for KMP.
  • [Feat]: implement ABI inclusions filter.
  • [Feat]: add lifecycle resolveExternalDependencies task.
  • [Fix]: improve Class.forName handling.
  • [Fix]: remove dependency to javax.inject.
  • [Fix]: potential resource leak in JarExploder.
  • [Fix]: duplicate class detection for annotations.
  • [Fix]: use latest-kotlin editor.
  • [Refactor]: move two public types to an internal package to exclude from published api, and exclude the com.autonomousapps.model.internal package from the published api.
  • [Refactor]: moved a lot of task-registration code into AbstractDependencyAnalyzer.
  • [Docs]: add link to maven-hijack blog post.

Version 3.5.1

  • [Fix]: don't try to process a non-match as a binary incompatibility.
  • [Fix]: use version catalog when applying the build-health plugin.
  • [Fix]: bundleTraces is a sortedSet and BundleTrace is Comparable.

Version 3.5.0

  • [Feat]: check binary compatibility between consumer and producer code.

... (truncated)

Commits
  • 00a6859 chore: prepare for release 3.10.0.
  • 76d9b5a fix: handle dependencies blocks that have a single line.
  • 9a6c1a7 refactor: move nested test class down.
  • 1bbf984 chore: delete commented-out code.
  • 46cb8f9 feat: gradle plugin markers are the preferred way to depend on a plugin.
  • b6dd315 feat: gradle plugin markers are part of an implicit bundle.
  • 5306882 docs: add 'partial analysis' section to readme.
  • efad1cd chore: cleanup build script.
  • 795fdd8 chore: prepare next development version.
  • 99197e2 chore: prepare for release 3.9.0.
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps): bump com.autonomousapps.dependency-analysis
fb12b6d 
Bumps [com.autonomousapps.dependency-analysis](https://github.com/autonomousapps/dependency-analysis-android-gradle-plugin) from 3.4.1 to 3.10.0.
- [Changelog](https://github.com/autonomousapps/dependency-analysis-gradle-plugin/blob/main/CHANGELOG.md)
- [Commits](autonomousapps/dependency-analysis-gradle-plugin@v3.4.1...v3.10.0)

---
updated-dependencies:
- dependency-name: com.autonomousapps.dependency-analysis
  dependency-version: 3.10.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels May 4, 2026
@dependabot dependabot Bot mentioned this pull request May 4, 2026
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@dkhawk dkhawk

Labels

dependencies Pull requests that update a dependency file java Pull requests that update Java code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@dkhawk