Bump org.junit.jupiter:junit-jupiter from 5.7.2 to 6.1.1#46
Bump org.junit.jupiter:junit-jupiter from 5.7.2 to 6.1.1#46dependabot[bot] wants to merge 2 commits into
Conversation
Bumps [org.junit.jupiter:junit-jupiter](https://github.com/junit-team/junit-framework) from 5.7.2 to 6.1.1. - [Release notes](https://github.com/junit-team/junit-framework/releases) - [Commits](junit-team/junit-framework@r5.7.2...r6.1.1) --- updated-dependencies: - dependency-name: org.junit.jupiter:junit-jupiter dependency-version: 6.1.1 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
JUnit 6 requires Java 17+ at runtime, which conflicts with this
project's Java 8 sourceCompatibility/targetCompatibility and with
Gradle's variant-aware dependency resolution (it refuses to resolve
junit-jupiter:6.1.1 against a testCompileClasspath targeting JVM 8).
Scope the test source set's compile target to 17 independently of the
shipped library's Java 8 target, which is unaffected since test
classes aren't published.
Also add an explicit junit-platform-launcher:6.1.1 testRuntimeOnly
dependency, since Gradle 8.14's bundled launcher is incompatible with
junit-platform-engine 6.1.1 ("OutputDirectoryCreator not available").
Regenerate lib/gradle.lockfile, which dependabot did not update -
without this the build fails immediately since junit-jupiter is
locked to 5.7.2.
Co-Authored-By: Claude Sonnet 5 <noreply@anthropic.com>
Claude-Session: https://claude.ai/code/session_01UNVF4uDsN8UroVU635P69h
|
Review the following changes in direct dependencies. Learn more about Socket for GitHub.
|
|
Warning Review the following alerts detected in dependencies. According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.
|
Review summaryI reviewed this bump, tested the build locally, and pushed fixes to this branch (2 files, Usage across the codebase
Changelog (5.7.2 → 6.1.1)The only breaking change relevant here is JUnit 6.0 raised the baseline to Java 17 at runtime ("JUnit requires Java 17 or higher at runtime" per the official user guide) — Platform, Jupiter, and Vintage were also consolidated to one version number. Everything else in the 6.0/6.1 notes (removal of What I actually found breaks the buildThis is the important part — the PR as submitted does not build at all, for two independent reasons, verified by running
What I changed
With these changes: full Is this safe to merge? — Not without also touching CIThe code changes above are correct and sufficient to make the project build and test successfully on JDK 17 and 21. However, That leaves two real options for a maintainer to choose (not something I felt was mine to decide unilaterally in a dependency-bump PR):
I did not modify the CI workflow myself. Recommend holding this PR until one of the two options above is chosen. Generated by Claude Code |
Bumps org.junit.jupiter:junit-jupiter from 5.7.2 to 6.1.1.
Release notes
Sourced from org.junit.jupiter:junit-jupiter's releases.
... (truncated)
Commits
0d85889Release 6.1.10363eeeFinalize 6.1.1 release notesa6d540aMove entry to 6.1.1 release notes69339d5Only pass timeout when publishing to avoid failure in nmcp plugindec2eb9Allow excluding engines from memory cleanup mode (#5786)a5f4270Publish sha256/sha512 checksums again but filter out signature ones (#5796)8213012Update plugin nmcp-settings to v1.6.0 (#5787)d1bf847Generate Javadoc for aggregator modulesd721de5Pass--no-fontstojavadocconventiond289ec6Restore original SetSystemProperty values in a ParameterizedTest (#5720)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)