build(deps): Bump com.autonomousapps.dependency-analysis from 2.13.3 to 2.15.0

[dependabot]

Bumps com.autonomousapps.dependency-analysis from 2.13.3 to 2.15.0.

Changelog

Sourced from com.autonomousapps.dependency-analysis's changelog.

Version 2.15.0

• [Feat]: superclass analysis is now opt-in. This is a breaking change since 2.7.0, when that feature was introduced.

dependencyAnalysis {
  usage {
    analysis {
      checkSuperClasses(true) // false by default 
    }
  }
}

Version 2.14.0

• [Feat]: add temporary flag to test opting-out of superclass analysis.
• [Fix]: @InputFiles is redundant next to @Classpath.

Commits

• 17ec7d9 chore: prepare for release 2.15.0.
• c6247ed feat: superclass analysis is now opt-in. This is a breaking change since 2.7.0.
• 28d4e15 refactor: rearrange some source code alphabetically. Add some docs.
• e7d40d3 chore: prepare next development version.
• e4ae59f chore: prepare for release 2.14.0.
• b26a1b7 feat: add temporary flag to test opting out of superclass analysis.
• 797d3c3 fix: @​InputFiles is redundant next to @​Classpath.
• 1033bad test: add failing test for distributionManagement.relocation.
• daaddac chore: prepare next development version.
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dangermattic]

	1 Warning
⚠️	PR is not assigned to a milestone.

Generated by 🚫 Danger

[wpmobilebot]

Build environment changes

list

! Upgraded Dependencies
com.autonomousapps.dependency-analysis:com.autonomousapps.dependency-analysis.gradle.plugin:2.15.0, (changed from 2.13.3)
com.autonomousapps:dependency-analysis-gradle-plugin:2.15.0, (changed from 2.13.3)

tree

-\--- com.autonomousapps.dependency-analysis:com.autonomousapps.dependency-analysis.gradle.plugin:2.13.3
-     \--- com.autonomousapps:dependency-analysis-gradle-plugin:2.13.3
-          +--- org.jetbrains.kotlin:kotlin-bom:2.0.21
-          |    +--- org.jetbrains.kotlin:kotlin-stdlib:2.0.21 (c)
-          |    +--- org.jetbrains.kotlin:kotlin-stdlib-jdk7:2.0.21 (c)
-          |    +--- org.jetbrains.kotlin:kotlin-stdlib-jdk8:2.0.21 (c)
-          |    +--- org.jetbrains.kotlin:kotlin-reflect:2.0.21 (c)
-          |    +--- org.jetbrains.kotlin:kotlin-compiler-embeddable:2.0.21 (c)
-          |    +--- org.jetbrains.kotlin:kotlin-daemon-client:2.0.21 (c)
-          |    \--- org.jetbrains.kotlin:kotlin-stdlib-common:2.0.21 (c)
-          +--- com.squareup.okio:okio-bom:3.9.0
-          |    +--- com.squareup.okio:okio:3.9.0 (c)
-          |    \--- com.squareup.okio:okio-jvm:3.9.0 (c)
-          +--- com.autonomousapps:graph-support:0.5
-          |    +--- com.google.guava:guava:33.3.1-jre
-          |    |    +--- com.google.guava:failureaccess:1.0.2
-          |    |    +--- com.google.guava:listenablefuture:9999.0-empty-to-avoid-conflict-with-guava
-          |    |    +--- com.google.code.findbugs:jsr305:3.0.2
-          |    |    +--- org.checkerframework:checker-qual:3.43.0
-          |    |    +--- com.google.errorprone:error_prone_annotations:2.28.0
-          |    |    \--- com.google.j2objc:j2objc-annotations:3.0.0
-          |    \--- org.jetbrains.kotlin:kotlin-stdlib:2.0.20 -> 2.0.21 (*)
-          +--- com.google.guava:guava:33.3.1-jre (*)
-          +--- org.jetbrains.kotlin:kotlin-stdlib-jdk8:2.0.21 (*)
-          +--- com.autonomousapps:kotlin-editor-relocated:0.18.0
-          +--- com.squareup.moshi:moshi-kotlin:1.15.1
-          |    +--- com.squareup.moshi:moshi:1.15.1
-          |    |    +--- com.squareup.okio:okio:3.7.0 -> 3.9.0
-          |    |    |    \--- com.squareup.okio:okio-jvm:3.9.0
-          |    |    |         \--- org.jetbrains.kotlin:kotlin-stdlib:1.9.21 -> 2.0.21 (*)
-          |    |    \--- org.jetbrains.kotlin:kotlin-stdlib-jdk8:1.8.21 -> 2.0.21 (*)
-          |    +--- org.jetbrains.kotlin:kotlin-reflect:1.8.21 -> 2.0.21
-          |    |    \--- org.jetbrains.kotlin:kotlin-stdlib:2.0.21 (*)
-          |    \--- org.jetbrains.kotlin:kotlin-stdlib-jdk8:1.8.21 -> 2.0.21 (*)
-          +--- dev.zacsweers.moshix:moshi-sealed-reflect:0.25.1
-          |    +--- dev.zacsweers.moshix:moshi-sealed-runtime:0.25.1
-          |    |    +--- com.squareup.moshi:moshi-adapters:1.15.0
-          |    |    |    +--- com.squareup.moshi:moshi:1.15.0 -> 1.15.1 (*)
-          |    |    |    \--- org.jetbrains.kotlin:kotlin-stdlib-jdk8:1.8.21 -> 2.0.21 (*)
-          |    |    +--- com.squareup.moshi:moshi:1.15.0 -> 1.15.1 (*)
-          |    |    \--- org.jetbrains.kotlin:kotlin-stdlib:1.9.21 -> 2.0.21 (*)
-          |    +--- com.squareup:kotlinpoet:1.15.1
-          |    |    \--- com.squareup:kotlinpoet-jvm:1.15.1
-          |    |         +--- org.jetbrains.kotlin:kotlin-stdlib:1.9.20 -> 2.0.21 (*)
-          |    |         \--- org.jetbrains.kotlin:kotlin-reflect:1.9.20 -> 2.0.21 (*)
-          |    +--- org.jetbrains.kotlin:kotlin-reflect:1.9.21 -> 2.0.21 (*)
-          |    +--- com.squareup.moshi:moshi:1.15.0 -> 1.15.1 (*)
-          |    +--- com.squareup.moshi:moshi-adapters:1.15.0 (*)
-          |    \--- org.jetbrains.kotlin:kotlin-stdlib:1.9.21 -> 2.0.21 (*)
-          +--- com.squareup.okio:okio:3.9.0 (*)
-          +--- org.jetbrains.kotlin:kotlin-metadata-jvm:2.0.21
-          +--- com.github.ben-manes.caffeine:caffeine:3.1.8
-          |    +--- org.checkerframework:checker-qual:3.37.0 -> 3.43.0
-          |    \--- com.google.errorprone:error_prone_annotations:2.21.1 -> 2.28.0
-          +--- com.autonomousapps:antlr:4.13.2.0
-          +--- com.autonomousapps:asm-relocated:9.7.1.0
-          +--- javax.inject:javax.inject:1
-          +--- com.squareup.moshi:moshi:1.15.1 (*)
-          +--- dev.zacsweers.moshix:moshi-sealed-runtime:0.25.1 (*)
-          \--- org.jetbrains.kotlin:kotlin-reflect:2.0.21 (*)
+\--- com.autonomousapps.dependency-analysis:com.autonomousapps.dependency-analysis.gradle.plugin:2.15.0
+     \--- com.autonomousapps:dependency-analysis-gradle-plugin:2.15.0
+          +--- org.jetbrains.kotlin:kotlin-bom:2.0.21
+          |    +--- org.jetbrains.kotlin:kotlin-stdlib:2.0.21 (c)
+          |    +--- org.jetbrains.kotlin:kotlin-stdlib-jdk7:2.0.21 (c)
+          |    +--- org.jetbrains.kotlin:kotlin-stdlib-jdk8:2.0.21 (c)
+          |    +--- org.jetbrains.kotlin:kotlin-reflect:2.0.21 (c)
+          |    +--- org.jetbrains.kotlin:kotlin-compiler-embeddable:2.0.21 (c)
+          |    +--- org.jetbrains.kotlin:kotlin-daemon-client:2.0.21 (c)
+          |    \--- org.jetbrains.kotlin:kotlin-stdlib-common:2.0.21 (c)
+          +--- com.squareup.okio:okio-bom:3.9.0
+          |    +--- com.squareup.okio:okio:3.9.0 (c)
+          |    \--- com.squareup.okio:okio-jvm:3.9.0 (c)
+          +--- com.autonomousapps:graph-support:0.5
+          |    +--- com.google.guava:guava:33.3.1-jre
+          |    |    +--- com.google.guava:failureaccess:1.0.2
+          |    |    +--- com.google.guava:listenablefuture:9999.0-empty-to-avoid-conflict-with-guava
+          |    |    +--- com.google.code.findbugs:jsr305:3.0.2
+          |    |    +--- org.checkerframework:checker-qual:3.43.0
+          |    |    +--- com.google.errorprone:error_prone_annotations:2.28.0
+          |    |    \--- com.google.j2objc:j2objc-annotations:3.0.0
+          |    \--- org.jetbrains.kotlin:kotlin-stdlib:2.0.20 -> 2.0.21 (*)
+          +--- com.google.guava:guava:33.3.1-jre (*)
+          +--- org.jetbrains.kotlin:kotlin-stdlib-jdk8:2.0.21 (*)
+          +--- com.autonomousapps:kotlin-editor-relocated:0.18.0
+          +--- com.squareup.moshi:moshi-kotlin:1.15.1
+          |    +--- com.squareup.moshi:moshi:1.15.1
+          |    |    +--- com.squareup.okio:okio:3.7.0 -> 3.9.0
+          |    |    |    \--- com.squareup.okio:okio-jvm:3.9.0
+          |    |    |         \--- org.jetbrains.kotlin:kotlin-stdlib:1.9.21 -> 2.0.21 (*)
+          |    |    \--- org.jetbrains.kotlin:kotlin-stdlib-jdk8:1.8.21 -> 2.0.21 (*)
+          |    +--- org.jetbrains.kotlin:kotlin-reflect:1.8.21 -> 2.0.21
+          |    |    \--- org.jetbrains.kotlin:kotlin-stdlib:2.0.21 (*)
+          |    \--- org.jetbrains.kotlin:kotlin-stdlib-jdk8:1.8.21 -> 2.0.21 (*)
+          +--- dev.zacsweers.moshix:moshi-sealed-reflect:0.25.1
+          |    +--- dev.zacsweers.moshix:moshi-sealed-runtime:0.25.1
+          |    |    +--- com.squareup.moshi:moshi-adapters:1.15.0
+          |    |    |    +--- com.squareup.moshi:moshi:1.15.0 -> 1.15.1 (*)
+          |    |    |    \--- org.jetbrains.kotlin:kotlin-stdlib-jdk8:1.8.21 -> 2.0.21 (*)
+          |    |    +--- com.squareup.moshi:moshi:1.15.0 -> 1.15.1 (*)
+          |    |    \--- org.jetbrains.kotlin:kotlin-stdlib:1.9.21 -> 2.0.21 (*)
+          |    +--- com.squareup:kotlinpoet:1.15.1
+          |    |    \--- com.squareup:kotlinpoet-jvm:1.15.1
+          |    |         +--- org.jetbrains.kotlin:kotlin-stdlib:1.9.20 -> 2.0.21 (*)
+          |    |         \--- org.jetbrains.kotlin:kotlin-reflect:1.9.20 -> 2.0.21 (*)
+          |    +--- org.jetbrains.kotlin:kotlin-reflect:1.9.21 -> 2.0.21 (*)
+          |    +--- com.squareup.moshi:moshi:1.15.0 -> 1.15.1 (*)
+          |    +--- com.squareup.moshi:moshi-adapters:1.15.0 (*)
+          |    \--- org.jetbrains.kotlin:kotlin-stdlib:1.9.21 -> 2.0.21 (*)
+          +--- com.squareup.okio:okio:3.9.0 (*)
+          +--- org.jetbrains.kotlin:kotlin-metadata-jvm:2.0.21
+          +--- com.github.ben-manes.caffeine:caffeine:3.1.8
+          |    +--- org.checkerframework:checker-qual:3.37.0 -> 3.43.0
+          |    \--- com.google.errorprone:error_prone_annotations:2.21.1 -> 2.28.0
+          +--- com.autonomousapps:antlr:4.13.2.0
+          +--- com.autonomousapps:asm-relocated:9.7.1.0
+          +--- javax.inject:javax.inject:1
+          +--- com.squareup.moshi:moshi:1.15.1 (*)
+          +--- dev.zacsweers.moshix:moshi-sealed-runtime:0.25.1 (*)
+          \--- org.jetbrains.kotlin:kotlin-reflect:2.0.21 (*)

[wpmobilebot]

📲 You can test the changes from this Pull Request in WordPress by scanning the QR code below to install the corresponding build.

	App Name	WordPress
	Flavor	Jalapeno
	Build Type	Debug
	Version	pr21789-2724056
	Commit	2724056
	Direct Download	wordpress-prototype-build-pr21789-2724056.apk

Note: Google Login is not supported on these builds.

[wpmobilebot]

📲 You can test the changes from this Pull Request in Jetpack by scanning the QR code below to install the corresponding build.

	App Name	Jetpack
	Flavor	Jalapeno
	Build Type	Debug
	Version	pr21789-2724056
	Commit	2724056
	Direct Download	jetpack-prototype-build-pr21789-2724056.apk

Note: Google Login is not supported on these builds.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 39.32%. Comparing base (68e1b6b) to head (2724056).
Report is 1 commits behind head on trunk.

Additional details and impacted files

@@            Coverage Diff             @@
##            trunk   #21789      +/-   ##
==========================================
+ Coverage   39.29%   39.32%   +0.03%     
==========================================
  Files        2125     2125              
  Lines       99862    99871       +9     
  Branches    15386    15385       -1     
==========================================
+ Hits        39240    39277      +37     
+ Misses      57144    57114      -30     
- Partials     3478     3480       +2     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[nbradbury]

@ParaskP7 @wzieba This PR passes CI but I'm unsure about this section of the release notes:

[Feat]: superclass analysis is now opt-in. This is a breaking change since 2.7.0, when that feature was introduced.

dependencyAnalysis {
  usage {
    analysis {
      checkSuperClasses(true) // false by default 
    }
  }
}

If I add that usage section the app fails to build, but it builds fine without it. Do we need to be concerned with checkSuperClasses?

[ParaskP7]

👋 @nbradbury and thanks for this heads-up!

If I add that usage section the app fails to build, but it builds fine without it. Do we need to be concerned with checkSuperClasses?

I think we're okay if we ignore that for now and let it default to false. 😊

FYI: I would personally like us to use this tool as close to default as possible.

[nbradbury]

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud