chore(deps): bump com.uber.nullaway:nullaway from 0.10.7 to 0.10.23

[dependabot]

Bumps com.uber.nullaway:nullaway from 0.10.7 to 0.10.23.

Release notes

Sourced from com.uber.nullaway:nullaway's releases.

NullAway 0.10.23

• Update for missing a couple possibly unsafe xml parser (#902)
• Add foojay-resolver-convention plugin (#905)
• JSpecify: Reason about nullability of reads from arrays (#875)
• Fix handling of static imports from subclasses (#904)
• Adding support for nullable type upper bounds considering Library models (#903)
• Support for extra Futures classes (#909)
• Build / CI tooling upgrades:
  • Bump various CI workflow versions (#906)

NullAway 0.10.22

IMPORTANT: The support for JDK 8 is deprecated in this release and will be removed in an upcoming release.

• Fix bug with implicit equals() methods in interfaces (#898)
• Fix crash with raw types in overrides in JSpecify mode (#899)
• Docs fix: Update instructions for Android and our sample app (#900)

NullAway 0.10.21

IMPORTANT: This release fixes a crash when running against <2.24.0 release of Error Prone (see #894) introduced in NullAway v0.10.20 and another crash related to Checker Framework (see #895) introduced in NullAway v0.10.19.

• Fix backwards-incompatible calls to ASTHelpers.hasDirectAnnotationWithSimpleName (#894)
• Downgrade to Checker Framework 3.40.0 (#895)

NullAway 0.10.20

• Fix JSpecify support on JDK 21 (#869)
• Build / CI tooling upgrades for NullAway itself:
  • Update to WALA 1.6.3 (#887)
  • Update to Error Prone 2.24.1 (#888)

NullAway 0.10.19

• Update to Checker Framework 3.41.0 (#873)
• Extend library models to mark fields as nullable (#878)
  • Main use case is NullAwayAnnotator
• Fix jarinfer cli output determinism (#884)
• Add support for AssertJ as() and describedAs() in AssertionHandler (#885)
• Support for JSpecify's 0.3.0 annotation [experimental]
  • JSpecify: In generics code, get rid of checks for ClassType (#863)
• Update some dependencies (#883)

NullAway 0.10.18

• Fix assertion check for structure of enhanced-for loop over a Map keySet (#868)

NullAway 0.10.17

• Fix bug with computing direct type use annotations on parameters (#864)
• Model Apache Flink's RichFunction.open as an @Initializer method (#862)
• Support for JSpecify's 0.3.0 annotation [experimental]
  • JSpecify: adding com.google.common to annotated packages in build.gradle (#857)
  • JSpecify: handling the return of a diamond operator anonymous object method caller (#858)
  • Create com.uber.nullaway.generics package (#855)
  • Clarifications and small fixes for checking JSpecify @Nullable annotation (#859)

... (truncated)

Changelog

Sourced from com.uber.nullaway:nullaway's changelog.

Version 0.10.23

• Update for missing a couple possibly unsafe xml parser (#902)
• Add foojay-resolver-convention plugin (#905)
• JSpecify: Reason about nullability of reads from arrays (#875)
• Fix handling of static imports from subclasses (#904)
• Adding support for nullable type upper bounds considering Library models (#903)
• Support for extra Futures classes (#909)
• Build / CI tooling upgrades:
  • Bump various CI workflow versions (#906)

Version 0.10.22

IMPORTANT: The support for JDK 8 is deprecated in this release and will be removed in an upcoming release.

• Fix bug with implicit equals() methods in interfaces (#898)
• Fix crash with raw types in overrides in JSpecify mode (#899)
• Docs fix: Update instructions for Android and our sample app (#900)

Version 0.10.21

IMPORTANT: This release fixes a crash when running against <2.24.0 release of Error Prone (see #894) introduced in NullAway v0.10.20 and another crash related to Checker Framework (see #895) introduced in NullAway v0.10.19.

• Fix backwards-incompatible calls to ASTHelpers.hasDirectAnnotationWithSimpleName (#894)
• Downgrade to Checker Framework 3.40.0 (#895)

Version 0.10.20

• Fix JSpecify support on JDK 21 (#869)
• Build / CI tooling upgrades for NullAway itself:
  • Update to WALA 1.6.3 (#887)
  • Update to Error Prone 2.24.1 (#888)

Version 0.10.19

• Update to Checker Framework 3.41.0 (#873)
• Extend library models to mark fields as nullable (#878)
  • Main use case is NullAwayAnnotator
• Fix jarinfer cli output determinism (#884)
• Add support for AssertJ as() and describedAs() in AssertionHandler (#885)
• Support for JSpecify's 0.3.0 annotation [experimental]
  • JSpecify: In generics code, get rid of checks for ClassType (#863)
• Update some dependencies (#883)

Version 0.10.18

... (truncated)

Commits

• 26d62e0 Prepare for release 0.10.23.
• 91d6809 Support for extra Futures classes (#909)
• 084bd96 Adding support for nullable type upper bounds considering Library models (#903)
• fdd2b55 Fix handling of static imports from subclasses (#904)
• 5068956 JSpecify: Reason about nullability of reads from arrays (#875)
• 1badf68 Bump various CI workflow versions (#906)
• 3fc9b8a Add foojay-resolver-convention plugin (#905)
• 848b0b1 update for missing a couple possibly unsafe xml parser (#902)
• 00a317a Prepare next development version.
• 986d060 Prepare for release 0.10.22.
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #4206.