build(deps): bump the maven-dependencies group with 8 updates

[dependabot]

Bumps the maven-dependencies group with 8 updates:

Package	From	To
gradle-wrapper	9.3.1	9.5.0
androidx.annotation:annotation	1.9.1	1.10.0
io.github.kyuubiran.ezxhelper:core	3.1.1-rc1	3.2.0-preview1
io.github.libxposed:api	101.0.0	101.0.1
com.google.code.gson:gson	2.13.2	2.14.0
com.github.HChenX:SuperLyricApi	3.3	3.4
com.android.application	9.1.0	9.2.1
com.android.library	9.1.0	9.2.1

Updates gradle-wrapper from 9.3.1 to 9.5.0

Release notes

Sourced from gradle-wrapper's releases.

9.5.0

The Gradle team is excited to announce Gradle 9.5.0.

Here are the highlights of this release:

• Task provenance in reports and failure messages
• Type-safe accessors for precompiled Kotlin Settings plugins

Read the Release Notes

We would like to thank the following community members for their contributions to this release of Gradle: atm1020, mataha, Adam, Attila Kelemen, Benedikt Ritter, Björn Kautler, Caro Silva Rode, CHANHAN, Dmitry Nezavitin, Eng Zer Jun, KugelLibelle, Madalin Valceleanu, Markus Gaisbauer, Oliver Kopp, Philip Wedemann, ploober, Roberto Perez Alcolea, Rohit Anand, Suvrat Acharya, Ujwal Suresh Vanjare, Victor Merkulov

Upgrade instructions

Switch your build to use Gradle 9.5.0 by updating your wrapper:

./gradlew wrapper --gradle-version=9.5.0 && ./gradlew wrapper

See the Gradle 9.x upgrade guide to learn about deprecations, breaking changes and other considerations when upgrading.

For Java, Groovy, Kotlin and Android compatibility, see the full compatibility notes.

Reporting problems

If you find a problem with this release, please file a bug on GitHub Issues adhering to our issue guidelines. If you're not sure you're encountering a bug, please use the forum.

We hope you will build happiness with Gradle, and we look forward to your feedback via Twitter or on GitHub.

9.5.0 RC4

... (truncated)

Commits

• 3fe117d Update jdks.yaml (#37703)
• 33d145a Update jdks.yaml
• f7a05d1 Update Gradle wrapper to version 9.5.0-rc-4 (#37654)
• 266facd Update Gradle wrapper to version 9.5.0-rc-4
• 0ad6dd8 Suppress OSC taskbar reset on plain/piped stdout (#37646)
• 966025d Suppress OSC taskbar reset on plain/piped stdout
• e745573 Polish IP docs (#37642)
• d5cfd07 Ensure BuildOperationQueue will progress without extra leases (#37629)
• acdf0c3 Ensure BuildOperationQueue will progress without extra leases
• f7d0e4f Rename anchor
• Additional commits viewable in compare view

Updates androidx.annotation:annotation from 1.9.1 to 1.10.0

Updates io.github.kyuubiran.ezxhelper:core from 3.1.1-rc1 to 3.2.0-preview1

Commits

• See full diff in compare view

Updates io.github.libxposed:api from 101.0.0 to 101.0.1

Release notes

Sourced from io.github.libxposed:api's releases.

101.0.1

Update API specification and documents Remove kotlin-std dependency introduced by AGP

Commits

• edeb837 Bump to 101.0.1
• 532fa3b Add module scope doc
• 07bd715 Add more doc
• 7e5cae3 Add XposedInterface.API_101
• a8a8f9a Fix proguard rules
• b06aa86 Update javadoc for clarity on package loading callbacks
• eb63ec2 Disable built-in kotlin (#56)
• c2d7009 Integrate OSSRH upload command in deploy workflow
• 8a569f8 Fix secret variable names for OSSRH credentials
• c50fd8a Use standard javadoc
• Additional commits viewable in compare view

Updates com.google.code.gson:gson from 2.13.2 to 2.14.0

Release notes

Sourced from com.google.code.gson:gson's releases.

Gson 2.14.0

What's Changed

• Add type adapters for java.time classes by @​eamonnmcmanus in google/gson#2948

  When the java.time API is available, Gson automatically can read and write instances of classes like Instant and Duration. The format it uses essentially freezes the JSON representation that ReflectiveTypeAdapterFactory established by default, based on the private fields of java.time classes. That's not a great representation, but it is understandable. Changing it to anything else would break compatibility with systems that are expecting the current format.

  With this change, Gson no longer tries to access private fields of these classes using reflection. So it is no longer necessary to run with --add-opens for these classes on recent JDKs.

• Remove com.google.gson.graph by @​eamonnmcmanus in google/gson#2990.

  This package was not part of any released artifact and depended on Gson internals in potentially problematic ways.

• Validate that strings being parsed as integers consist of ASCII characters by @​eamonnmcmanus in google/gson#2995

  Previously, strings could contain non-ASCII Unicode digits and still be parsed as integers. That's inconsistent with how JSON numbers are treated.

• Fix duplicate key detection when first value is null by @​andrewstellman in google/gson#3006

  This could potentially break code that was relying on the incorrect behaviour. For example, this JSON string was previously accepted but will no longer be: {"foo": null, "foo": bar}.

• Remove Serializable from internal Type implementation classes. by @​eamonnmcmanus in google/gson#3011

  The nested classes ParameterizedTypeImpl, GenericArrayTypeImpl, and WildcardTypeImpl in GsonTypes are implementations of the corresponding types (without Impl) in java.lang.reflect. For some reason, they were serializable, even though the java.lang.reflect implementations are not. Having unnecessarily serializable classes could conceivably have been a security problem if they were part of a larger exploit using serialization. (We do not consider this a likely scenario and do not suggest that you need to update Gson just to get this change.)

• Add LegacyProtoTypeAdapterFactory. by @​eamonnmcmanus in google/gson#3014

  This is not part of any released artifact, but may be of use when trying to fix code that is currently accessing the internals of protobuf classes via reflection.

• Make AppendableWriter do flush and close if delegation object supports by @​MukjepScarlet in google/gson#2925

Other less visible changes

• Add default capacity to EnumTypeAdapter maps by @​MukjepScarlet in google/gson#2959
• refactor: move derived adapters from Gson to TypeAdapters by @​MukjepScarlet in google/gson#2951
• Optimize new Gson() by @​MukjepScarlet in google/gson#2864

New Contributors

• @​ThirdGoddess made their first contribution in google/gson#2944
• @​lmj798 made their first contribution in google/gson#2988
• @​Eng-YasminKotb made their first contribution in google/gson#3005
• @​andrewstellman made their first contribution in google/gson#3006

Full Changelog: google/gson@gson-parent-2.13.2...gson-parent-2.14.0

Commits

• 3ff35d6 [maven-release-plugin] prepare release gson-parent-2.14.0
• a3024fd Bump the maven group with 13 updates (#3002)
• 5689ffe Bump the github-actions group across 1 directory with 3 updates (#3018)
• 48db33c Add LegacyProtoTypeAdapterFactory. (#3014)
• 53d703e Update outdated comment regarding serializable types (#3012)
• 0189b72 Remove Serializable from internal Type implementation classes. (#3011)
• f4d371d Fix duplicate key detection when first value is null (#3006)
• 27d9ba1 Fix typo in README (JPMS dependencies section) (#3005)
• 1fa9b7a Validate that strings being parsed as integers consist of ASCII characters (#...
• b7d5954 Add iterator fail-fast tests for LinkedTreeMap.clear() (#2992)
• Additional commits viewable in compare view

Updates com.github.HChenX:SuperLyricApi from 3.3 to 3.4

Release notes

Sourced from com.github.HChenX:SuperLyricApi's releases.

3.4

请勿继续使用 API 传递 MediaMetadata 和 PlaybackState 数据。此版本更新保持与 3.3 的兼容，不属于破坏性更新，但推荐您升级至此版本。

Release v3.4: Deprecate MediaMetadata and PlaybackState in SuperLyricData

• Deprecated mediaMetadata and playbackState fields in SuperLyricData to improve API stability and avoid Binder transaction size limits.
• Removed setMediaMetadata, setPlaybackState, and their corresponding getter and hasXxx methods from SuperLyricData.
• Removed removeMediaMetadataBitmap helper and associated reflection logic from SuperLyricHelper.
• Updated SuperLyricData's toString, equals, and hashCode methods to reflect the removal of metadata and playback state fields.
• Updated ISuperLyricManager.aidl and ISuperLyricReceiver.aidl with refined documentation for sendLyric, sendStop, and onStop.
• Updated README.md, README-en.md, and SuperLyricDemo.java to reflect the API changes and removal of deprecated field usage.
• Incremented API versionName to '3.4' and versionCode to 34 in api/build.gradle.

Commits

• c0c0354 Release v3.4: Deprecate MediaMetadata and PlaybackState in SuperLyricData
• See full diff in compare view

Updates com.android.application from 9.1.0 to 9.2.1

Updates com.android.library from 9.1.0 to 9.2.1

Updates com.android.library from 9.1.0 to 9.2.1

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[codacy-production]

Up to standards ✅

🟢 Issues 0 issues

Results:
0 new issues

View in Codacy

_{NEW Get contextual insights on your PRs based on Codacy's metrics, along with PR and Jira context, without leaving GitHub. Enable AI reviewer
TIP This summary will be updated as you push new changes.}

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.