Upgrade: [dependabot] - bump com.google.code.gson:gson from 2.12.1 to 2.13.0 (#278)

dependabot[bot] · web-flow · commit a44640106618 · 2025-04-16T12:51:28.000Z
Bumps [com.google.code.gson:gson](https://github.com/google/gson) from 2.12.1 to 2.13.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/google/gson/releases">com.google.code.gson:gson's releases</a>.</em></p> <blockquote> <h2>Gson 2.13.0</h2> <h2>What's Changed</h2> <ul> <li> <p>A bug in deserializing collections has been fixed. Previously, if you did something like this:</p> <pre><code>gson.fromJson(jsonString, new TypeToken&lt;ImmutableList&lt;String&gt;&gt;() {}) </code></pre> <p>then the inferred type would be <code>ImmutableList&lt;String&gt;</code>, but Gson actually gave you an <code>ArrayList&lt;String&gt;</code>. Usually that would lead to an immediate <code>ClassCastException</code>, but in some circumstances the code might sometimes succeed despite the wrong type. Now you will see an exception like this:</p> <pre><code>com.google.gson.JsonIOException: Abstract classes can't be instantiated! Adjust the R8 configuration or register an InstanceCreator or a TypeAdapter for this type. Class name: com.google.common.collect.ImmutableList </code></pre> <p>because Gson now really is trying to create an <code>ImmutableList</code> through its constructor, but that isn't possible. Either change the requested type (in the <code>TypeToken</code>) to <code>List&lt;String&gt;</code>, or register a <code>TypeAdapter</code> or <code>JsonDeserializer</code> for <code>ImmutableList</code>.</p> </li> <li> <p>The internal classes <code>$Gson$Types</code> and <code>$Gson$Preconditions</code> have been renamed to remove the <code>$</code> characters. Since these are internal classes (as signaled not only by the package name but by the <code>$</code> characters), client code should not be affected. If your code <em>was</em> depending on these classes then we suggest making a copy of the class (subject to the <a href="https://www.apache.org/licenses/LICENSE-2.0">license</a>) rather than depending on the new names.</p> </li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/google/gson/compare/gson-parent-2.12.1...gson-parent-2.13.0">https://github.com/google/gson/compare/gson-parent-2.12.1...gson-parent-2.13.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/google/gson/commit/bfe0fd58e3efc9f54938a87b955bbfc42dfd45e1"><code>bfe0fd5</code></a> [maven-release-plugin] prepare release gson-parent-2.13.0</li> <li><a href="https://github.com/google/gson/commit/6ed64ca3a8990c60b758d838e16713b2a1e0f461"><code>6ed64ca</code></a> add multi-catch support to the code base (<a href="https://redirect.github.com/google/gson/issues/2841">#2841</a>)</li> <li><a href="https://github.com/google/gson/commit/0074376f7e605700f218ff7362dd45a690926074"><code>0074376</code></a> Bump the maven group with 3 updates (<a href="https://redirect.github.com/google/gson/issues/2840">#2840</a>)</li> <li><a href="https://github.com/google/gson/commit/45e5e141b1a39926e6b43c6eacd3dc0280321f71"><code>45e5e14</code></a> Rename <code>$Gson$Preconditions</code> and <code>$Gson$Types</code>. (<a href="https://redirect.github.com/google/gson/issues/2838">#2838</a>)</li> <li><a href="https://github.com/google/gson/commit/c6d44259b53a9b2756b5767b843d15e8acacaa31"><code>c6d4425</code></a> Remove obsolete comment in pom.xml (<a href="https://redirect.github.com/google/gson/issues/2835">#2835</a>)</li> <li><a href="https://github.com/google/gson/commit/9afd6f8e6c2d71ba0b3b7e77d56198793b9f3bcc"><code>9afd6f8</code></a> Bump the maven group with 10 updates (<a href="https://redirect.github.com/google/gson/issues/2831">#2831</a>)</li> <li><a href="https://github.com/google/gson/commit/ad5371eaa4af3555a6277c85a8ba27c09804b712"><code>ad5371e</code></a> Fix findings that are new with the latest Error Prone. (<a href="https://redirect.github.com/google/gson/issues/2834">#2834</a>)</li> <li><a href="https://github.com/google/gson/commit/de190d7ef5feb4950d5daca819a625b39f3fd2f5"><code>de190d7</code></a> Restructure code to avoid assignment expression warning. (<a href="https://redirect.github.com/google/gson/issues/2833">#2833</a>)</li> <li><a href="https://github.com/google/gson/commit/3d6684741e1086e589783e78a356293c6ea9f8d6"><code>3d66847</code></a> Bump the github-actions group with 3 updates (<a href="https://redirect.github.com/google/gson/issues/2832">#2832</a>)</li> <li><a href="https://github.com/google/gson/commit/2549ba93fc48f4c29f1a5c82553ce666712f183a"><code>2549ba9</code></a> Fix ConstructorConstructor creating mismatching Collection and Map instances ...</li> <li>Additional commits viewable in <a href="https://github.com/google/gson/compare/gson-parent-2.12.1...gson-parent-2.13.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.google.code.gson:gson&package-manager=maven&previous-version=2.12.1&new-version=2.13.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) You can trigger a rebase of this PR by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
diff --git a/pom.xml b/pom.xml
@@ -94,7 +94,7 @@
         <dependency>
             <groupId>com.google.code.gson</groupId>
             <artifactId>gson</artifactId>
-            <version>2.12.1</version>
+            <version>2.13.0</version>
         </dependency>
         <dependency>
             <groupId>org.apache.logging.log4j</groupId>
