Bump org.mockito:mockito-core from 3.12.4 to 5.23.0#43
Conversation
Bumps [org.mockito:mockito-core](https://github.com/mockito/mockito) from 3.12.4 to 5.23.0. - [Release notes](https://github.com/mockito/mockito/releases) - [Commits](mockito/mockito@v3.12.4...v5.23.0) --- updated-dependencies: - dependency-name: org.mockito:mockito-core dependency-version: 5.23.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
The version bump in build.gradle wasn't reflected in the locked testCompileClasspath/testRuntimeClasspath configurations, so the build failed with dependency-locking violations. Regenerated lib/gradle.lockfile via `gradle dependencies --write-locks`, which also pulls in the byte-buddy 1.17.7 and objenesis 3.3 versions mockito-core 5.23.0 actually requires.
|
Review the following changes in direct dependencies. Learn more about Socket for GitHub.
|
Review summary: safe to merge (with a fix applied)Mockito is test-scope only ( Usage auditMockito is used in 10 test files, all through the same small, stable subset of the API: Changelog review (3.12.4 → 5.23.0)
Issue found and fixedThe bump alone didn't actually build: this repo uses Gradle dependency locking ( Pushed a follow-up commit that regenerates VerificationRan the full test suite before and after: both Recommendation: safe to merge once CI (which does have network/credentials) confirms green, particularly the JDK 8 leg in the test matrix — Mockito 5 needs JDK 11+ to run, but that's about the JVM executing the test task, not the library's own Generated by Claude Code |
|
Warning Review the following alerts detected in dependencies. According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.
|
Bumps org.mockito:mockito-core from 3.12.4 to 5.23.0.
Release notes
Sourced from org.mockito:mockito-core's releases.
... (truncated)
Commits
a231205Fix StackOverflowError with AbstractList after using mockSingleton (#3790)f6a91a6Replace mockito-android mock maker implementation with dexmaker-mockito-inlin...aa2298afix: make spotless happya6729d6chore: update BDDMockito with jspecify annotationbb83c92chore: move jspecify as a compile only dependency47a4695chore: add jspecify with minimal change. Fixes #350325f1395Add core API to enable Kotlin singleton mocking (#3762)ef9ee55Avoids mocking private static methods, as well as package-private static meth...d16fcfcBump graalvm/setup-graalvm from 1.4.4 to 1.4.5 (#3780)27eb8a3ClarifyRETURNS_MOCKSbehavior with sealed abstract enums (Java 15+) (#3773)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)