ci: workflows update (#214)

Aaron-Ritter · dependabot[bot] · mrudatsprint · web-flow · commit d5c68ee98638 · 2026-03-23T13:51:18.000-06:00
* build(deps): bump the prod-github-actions group with 2 updates Bumps the prod-github-actions group with 2 updates: [github/codeql-action](https://github.com/github/codeql-action) and [gradle/actions](https://github.com/gradle/actions). Updates `github/codeql-action` from 3.28.17 to 3.28.18 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@v3.28.17...v3.28.18) Updates `gradle/actions` from 4.3.1 to 4.4.0 - [Release notes](https://github.com/gradle/actions/releases) - [Commits](gradle/actions@06832c7...8379f6a) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 3.28.18 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: prod-github-actions - dependency-name: gradle/actions dependency-version: 4.4.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: prod-github-actions ... Signed-off-by: dependabot[bot] <support@github.com> * ci: add push-main-trigger to advanced security workflows - the github advanced security template suggests the push main branch trigger * ci: remove gradle-home-cache-cleanup - Solves #210 - If you are using gradle-home-cache-cleanup: true in your workflow, you can remove this option as this is now enabled by default. https://github.com/gradle/actions/blob/main/docs/deprecation-upgrade-guide.md#the-gradle-home-cache-cleanup-input-parameter-has-been-replaced-by-cache-cleanup * refactor: reformat workflow * Update libraries. * Datekt Scan that failed in datekt.yml github workflow. * fix syntax error. * Android Lint detected unused file. * manually test a new release-please-action token. * Revert back. * version updates. --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Mike Rudat <mike.rudat@fusionauth.io>
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
@@ -12,6 +12,8 @@
 name: Vulnerability Scan with CodeQL
 
 on:
+  push:
+    branches: [ "main" ]
   pull_request:
     branches: [ "main" ]
   schedule:
diff --git a/.github/workflows/detekt.yml b/.github/workflows/detekt.yml
@@ -18,6 +18,8 @@
 name: Vulnerability Scan with Detekt
 
 on:
+  push:
+    branches: [ "main" ]
   pull_request:
     branches: [ "main" ]
   schedule:
diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml
@@ -14,6 +14,8 @@
 name: Check Code Quality with Android Lint
 
 on:
+  push:
+    branches: [ "main" ]
   pull_request:
     branches: [ "main" ]
   # Allows you to run this workflow manually from the Actions tab
diff --git a/.github/workflows/mobsf.yml b/.github/workflows/mobsf.yml
@@ -6,6 +6,8 @@
 name: Vulnerability Scan with MobSF
 
 on:
+  push:
+    branches: [ "main" ]
   pull_request:
     branches: [ "main" ]
   schedule:
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -3,8 +3,7 @@ name: Release
 on:
   # Triggers the workflow on push events but only for default and protected branches
   push:
-    branches:
-      - main
+    branches: [ "main" ]
 
 # The different jobs of this workflow need the following permissions
 permissions:
diff --git a/app/build.gradle.kts b/app/build.gradle.kts
@@ -56,8 +56,8 @@ dependencies {
     implementation("com.google.android.material:material:1.13.0")
     implementation(project(":library"))
     implementation("androidx.constraintlayout:constraintlayout:2.2.1")
-    implementation("androidx.navigation:navigation-fragment-ktx:2.9.6")
-    implementation("androidx.navigation:navigation-ui-ktx:2.9.6")
+    implementation("androidx.navigation:navigation-fragment-ktx:2.9.7")
+    implementation("androidx.navigation:navigation-ui-ktx:2.9.7")
     implementation("org.jetbrains.kotlinx:kotlinx-coroutines-core:1.10.2")
     implementation("org.jetbrains.kotlinx:kotlinx-coroutines-android:1.10.2")
     implementation("androidx.browser:browser:1.9.0")
diff --git a/app/src/main/res/raw/fusionauth_config_reset_configuration.json b/app/src/main/res/raw/fusionauth_config_reset_configuration.json
diff --git a/library/build.gradle.kts b/library/build.gradle.kts
@@ -151,19 +151,19 @@ signing {
 
 dependencies {
 
-    implementation("androidx.core:core-ktx:1.17.0")
+    implementation("androidx.core:core-ktx:1.18.0")
     implementation("androidx.appcompat:appcompat:1.7.1")
     implementation("com.google.androidbrowserhelper:androidbrowserhelper:2.6.2")
-    implementation("org.jetbrains.kotlinx:kotlinx-serialization-cbor:1.9.0")
-    implementation("org.jetbrains.kotlinx:kotlinx-serialization-json:1.9.0")
+    implementation("org.jetbrains.kotlinx:kotlinx-serialization-cbor:1.10.0")
+    implementation("org.jetbrains.kotlinx:kotlinx-serialization-json:1.10.0")
     implementation("net.openid:appauth:0.11.1")
     implementation("androidx.security:security-crypto-ktx:1.1.0")
     implementation("org.jetbrains.kotlinx:kotlinx-coroutines-core:1.10.2")
     implementation("org.jetbrains.kotlinx:kotlinx-coroutines-android:1.10.2")
-    implementation("androidx.datastore:datastore-preferences:1.2.0")
+    implementation("androidx.datastore:datastore-preferences:1.2.1")
     testImplementation("junit:junit:4.13.2")
-    testImplementation("org.mockito:mockito-core:5.21.0")
-    testImplementation("org.mockito.kotlin:mockito-kotlin:6.1.0")
+    testImplementation("org.mockito:mockito-core:5.23.0")
+    testImplementation("org.mockito.kotlin:mockito-kotlin:6.2.3")
     testImplementation("org.jetbrains.kotlinx:kotlinx-coroutines-test:1.10.2")
     androidTestImplementation("androidx.test.ext:junit:1.3.0")
     androidTestImplementation("androidx.test.espresso:espresso-core:3.7.0")
diff --git a/library/src/main/java/io/fusionauth/mobilesdk/oauth/OAuthAuthorizationService.kt b/library/src/main/java/io/fusionauth/mobilesdk/oauth/OAuthAuthorizationService.kt
@@ -39,6 +39,7 @@ import kotlin.coroutines.resume
 import kotlin.coroutines.resumeWithException
 import kotlin.coroutines.suspendCoroutine
 import androidx.core.net.toUri
+import kotlinx.coroutines.suspendCancellableCoroutine
 
 /**
  * OAuthAuthorizationService class is responsible for handling OAuth authorization and authorization process.
@@ -346,7 +347,7 @@ class OAuthAuthorizationService internal constructor(
         response: AuthorizationResponse,
         ex: net.openid.appauth.AuthorizationException?
     ): TokenResponse {
-        return suspendCoroutine { continuation ->
+        return suspendCancellableCoroutine { continuation ->
             val authService = getAuthorizationService()
 
             appAuthState.update(response, ex)
@@ -413,7 +414,7 @@ class OAuthAuthorizationService internal constructor(
         uriBuilder.appendPath(AuthorizationServiceConfiguration.WELL_KNOWN_PATH)
             .appendPath(AuthorizationServiceConfiguration.OPENID_CONFIGURATION_RESOURCE)
 
-        return suspendCoroutine { continuation ->
+        return suspendCancellableCoroutine { continuation ->
             AuthorizationServiceConfiguration.fetchFromUrl(
                 uriBuilder.build(),
                 { configuration, ex ->
