Skip to content

Bump com.uber.nullaway:nullaway from 0.12.15 to 0.13.0 #1721

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
dependabot wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Bump com.uber.nullaway:nullaway from 0.12.15 to 0.13.0 #1721

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 20, 2026

Bumps com.uber.nullaway:nullaway from 0.12.15 to 0.13.0.

Release notes

Sourced from com.uber.nullaway:nullaway's releases.

NullAway 0.13.0

NullAway now requires a minimum of JDK 17 and Error Prone 2.36.0 to run; we bump the version to 0.13.0 to reflect these updated requirements. There are also many improvements to JSpecify mode support, and several nice changes and improvements from first-time contributors.

  • Support added for JUnit's @​TempDir by @​romainmoreau (#1387)
  • Use OptimizedLibraryModels for method type variable upper bounds (#1388)
  • Add @​InjectWireMock as known excluded field annotation (#1391)
  • Require JDK 17 to run NullAway (#1394)
  • Support adding nested nullability annotations in library models (#1407)
  • Add library model for AtomicReferenceFieldUpdater (#1409)
  • Correctly get parameter types for a lambda whose type was inferred (#1348)
  • Add Mockito annotations to default excluded field annotations by @​murdos (#1418)
  • Properly identify annotations directly on the array element type of a Symbol (#1419)
  • Update to Checker Framework 3.53.0 (#1429)
  • JSpecify: Apply annotations on type variables to lambdas in more cases (#1428)
  • Migrate AutoValue to Records by @​rishikraj990 (#1415)
  • Bump minimum Error Prone version to 2.36.0, and add detection of nullable dereference by switch expressions (#1427)
  • JSpecify: Improve handling of method references (#1430)
  • Allow suppressing nullaway on individual parameters by @​jackwickham (#1436)
  • Update jdk-javac-plugin to contain nested annotations by @​haewiful (#1432)
  • Maintenance
    • Delete code to generate library models from source (#1385)
    • Refactor: Migration to Version Catalog completed by @​vitinh0z (#1386)
    • Bump Gradle to 9.2.1 (#1392)
    • Update to Error Prone 2.45.0 (#1401)
    • Stop matching switch expression kind using strings (#1404)
    • Refactoring: clarify docs and naming for RestoreNullnessAnnotationsVisitor (#1406)
    • Refactoring: rename method and field (#1405)
    • Run NullAway on jdk-javac-plugin code (#1408)
    • Clarify comment in test (#1411)
    • Enable PatternMatchingInstanceOf check and fix all warnings (#1412)
    • Enable StatementSwitchToExpressionSwitch check and fix all warnings (#1413)
    • bump and remove some dependencies (#1414)
    • Update minimum supported Error Prone version to 2.25.0 (#1421)
    • Update CI to run builds on JDK 25 (#1422)
    • Various cleanups suggested by IntelliJ (#1423)
    • Convert test data in main NullAway tests to use text blocks (#1424)
    • Refactor CoreTests and UnannotatedTests to use addSourceLines and inline test data by @​cobayo (#1426)
    • Refactor ContractsTests to use Java text blocks by @​cobayo (#1435)
    • Update Error Prone and errorprone-plugin versions (#1434)
Changelog

Sourced from com.uber.nullaway:nullaway's changelog.

Version 0.13.0

NullAway now requires a minimum of JDK 17 and Error Prone 2.36.0 to run; we bump the version to 0.13.0 to reflect these updated requirements. There are also many improvements to JSpecify mode support, and several nice changes and improvements from first-time contributors.

  • Support added for JUnit's @​TempDir by @​romainmoreau (#1387)
  • Use OptimizedLibraryModels for method type variable upper bounds (#1388)
  • Add @​InjectWireMock as known excluded field annotation (#1391)
  • Require JDK 17 to run NullAway (#1394)
  • Support adding nested nullability annotations in library models (#1407)
  • Add library model for AtomicReferenceFieldUpdater (#1409)
  • Correctly get parameter types for a lambda whose type was inferred (#1348)
  • Add Mockito annotations to default excluded field annotations by @​murdos (#1418)
  • Properly identify annotations directly on the array element type of a Symbol (#1419)
  • Update to Checker Framework 3.53.0 (#1429)
  • JSpecify: Apply annotations on type variables to lambdas in more cases (#1428)
  • Migrate AutoValue to Records by @​rishikraj990 (#1415)
  • Bump minimum Error Prone version to 2.36.0, and add detection of nullable dereference by switch expressions (#1427)
  • JSpecify: Improve handling of method references (#1430)
  • Allow suppressing nullaway on individual parameters by @​jackwickham (#1436)
  • Update jdk-javac-plugin to contain nested annotations by @​haewiful (#1432)
  • Maintenance
    • Delete code to generate library models from source (#1385)
    • Refactor: Migration to Version Catalog completed by @​vitinh0z (#1386)
    • Bump Gradle to 9.2.1 (#1392)
    • Update to Error Prone 2.45.0 (#1401)
    • Stop matching switch expression kind using strings (#1404)
    • Refactoring: clarify docs and naming for RestoreNullnessAnnotationsVisitor (#1406)
    • Refactoring: rename method and field (#1405)
    • Run NullAway on jdk-javac-plugin code (#1408)
    • Clarify comment in test (#1411)
    • Enable PatternMatchingInstanceOf check and fix all warnings (#1412)
    • Enable StatementSwitchToExpressionSwitch check and fix all warnings (#1413)
    • bump and remove some dependencies (#1414)
    • Update minimum supported Error Prone version to 2.25.0 (#1421)
    • Update CI to run builds on JDK 25 (#1422)
    • Various cleanups suggested by IntelliJ (#1423)
    • Convert test data in main NullAway tests to use text blocks (#1424)
    • Refactor CoreTests and UnannotatedTests to use addSourceLines and inline test data by @​cobayo (#1426)
    • Refactor ContractsTests to use Java text blocks by @​cobayo (#1435)
    • Update Error Prone and errorprone-plugin versions (#1434)
Commits
  • 36403f3 Prepare for release 0.13.0.
  • 12fe2a1 Changelog for release 0.13.0 (#1439)
  • 32febbd Update jdk-javac-plugin to contain nested annotations (#1432)
  • 1ca1b25 Allow suppressing nullaway on individual parameters (#1436)
  • d594809 JSpecify: Improve handling of method references (#1430)
  • 0b4156b Bump minimum Error Prone version to 2.36.0, and add detection of nullable der...
  • c9278a1 Migrate AutoValue to Records (#1415)
  • 2e04fb5 Update Error Prone and errorprone-plugin versions (#1434)
  • 80fbdc9 Refactor ContractsTests to use Java text blocks (#1435)
  • 4b4d1e8 JSpecify: Apply annotations on type variables to lambdas in more cases (#1428)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump com.uber.nullaway:nullaway from 0.12.15 to 0.13.0
9d8bb12 
Bumps [com.uber.nullaway:nullaway](https://github.com/uber/NullAway) from 0.12.15 to 0.13.0.
- [Release notes](https://github.com/uber/NullAway/releases)
- [Changelog](https://github.com/uber/NullAway/blob/master/CHANGELOG.md)
- [Commits](uber/NullAway@v0.12.15...v0.13.0)

---
updated-dependencies:
- dependency-name: com.uber.nullaway:nullaway
  dependency-version: 0.13.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Update of dependencies java Pull requests that update Maven Java dependencies labels Jan 20, 2026
@github-actions github-actions bot requested a review from uhafner January 20, 2026 16:32
@github-actions
Copy link

github-actions bot commented Jan 20, 2026

☀️   Quality Monitor

Tests

   JUnit   Unit Tests (Whole Project): 100.00% successful (86 passed, 2 skipped)
   ⛔   Architecture Tests (Whole Project): 100.00% successful (17 passed, 2 skipped)

Coverage for New Code

   〰️   Line Coverage (Changed Code): n/a (0 missed lines)
   ➰   Branch Coverage (Changed Code): n/a (0 missed branches)
   PIT   Mutation Coverage (Changed Code): n/a (0 survived mutations)
   💪   Test Strength (Changed Code): n/a (0 survived mutations in tested code)

Coverage for Whole Project

   〰️   Line Coverage (Whole Project): 91.22% (64 missed lines)
   ➰   Branch Coverage (Whole Project): 90.45% (21 missed branches)
   PIT   Mutation Coverage (Whole Project): 84.38% (60 survived mutations)
   💪   Test Strength (Whole Project): 89.26% (39 survived mutations in tested code)

Style

   CheckStyle   CheckStyle (Whole Project): No warnings
   PMD   PMD (Whole Project): No warnings
   ☕   Java Compiler (Whole Project): No warnings

Bugs

   SpotBugs   SpotBugs (Whole Project): No bugs
   🐛   Error Prone (Whole Project): No bugs

API Problems

   🚫   Revapi (Whole Project): No warnings

Vulnerabilities

   🛡️   OWASP Dependency Check (Whole Project): No vulnerabilities

Software Metrics

   🌀   Cyclomatic Complexity (Whole Project): 377 (total)
   💭   Cognitive Complexity (Whole Project): 174 (total)
   ➿   N-Path Complexity (Whole Project): 341 (total)
   📏   Lines of Code (Whole Project): 4282 (total)
   📝   Non Commenting Source Statements (Whole Project): 1261 (total)
   🔗   Class Cohesion (Whole Project): 71.43% (maximum)
   ⚖️   Weight of Class (Whole Project): 100.00% (maximum)

🚦 Quality Gates

Overall Status: ✅ SUCCESS

✅ Passed Gates

  • ✅ Overall Tests Success Rate: 100.00 >= 100.00
  • ✅ Line Coverage in New Code: 100.00 >= 90.00
  • ✅ Branch Coverage in New Code: 100.00 >= 90.00
  • ✅ Mutation Coverage in New Code: 100.00 >= 90.00
  • ✅ Potential Bugs in Whole Project: 0.00 <= 0.00
  • ✅ Style Violation in Whole Project: 0.00 <= 0.00

Created by Quality Monitor v4.0.0 (#8f591a4). More details are shown in the GitHub Checks Result.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@uhafner uhafner Awaiting requested review from uhafner

Assignees

No one assigned

Labels

dependencies Update of dependencies java Pull requests that update Maven Java dependencies

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant