Bump the production-dependencies group across 1 directory with 5 updates

[dependabot]

Bumps the production-dependencies group with 5 updates in the / directory:

Package	From	To
org.jetbrains.kotlinx:kotlinx-serialization-json	1.10.0	1.11.0
org.apache.logging.log4j:log4j-api	2.25.3	2.25.4
org.apache.logging.log4j:log4j-slf4j2-impl	2.25.3	2.25.4
org.apache.logging.log4j:log4j-core	2.25.3	2.25.4
org.jetbrains.dokka:dokka-maven-plugin	2.1.0	2.2.0

Updates org.jetbrains.kotlinx:kotlinx-serialization-json from 1.10.0 to 1.11.0

Release notes

Sourced from org.jetbrains.kotlinx:kotlinx-serialization-json's releases.

1.11.0

This release is based on Kotlin 2.3.20 and provides a new Json exceptions API and some bugfixes and improvements.

Expose Json exceptions structure

To make working with exceptions easier and providing proper error codes in e.g., REST APIs, classes JsonException, JsonDecodingException, and JsonEncodingException are now public. They have relevant public properties, such as shortMessage, path, offset, and others. This API is currently experimental, and we're going to improve it further in the subsequent releases. See the linked issues for the details: #1930, #1877.

Ability to hide user input from exception messages for security/privacy reasons.

Historically, exception messages in kotlinx.serialization often included the input Json itself for debuggability reason. Such behavior may pose additional challenges for logging, analytics, and other systems, since a system is not always allowed to store user data due to privacy/security reasons, which imposes additional sanitation logic. To address this issue, a new property exceptionsWithDebugInfo is added to JsonConfiguration. Disable it to hide user input from exception messages. IMPORTANT: This behavior will be enabled by default when this property becomes stable. See #2590 for more details.

Bugfixes and improvements

• CBOR: Relax value range check when decoding numbers (#3167)
• Use a specialized writeDecimalLong method for IO stream integrations in Json (#3152)

Changelog

Sourced from org.jetbrains.kotlinx:kotlinx-serialization-json's changelog.

1.11.0 / 2026-04-10

This release is based on Kotlin 2.3.20 and provides new Json exceptions API and some bugfixes and improvements.

Expose Json exceptions structure

To make working with exceptions easier and providing proper error codes in e.g., REST APIs, classes JsonException, JsonDecodingException, and JsonEncodingException are now public. They have relevant public properties, such as shortMessage, path, offset, and others. This API is currently experimental, and we're going to improve it further in the subsequent releases. See the linked issues for the details: #1930, #1877.

Ability to hide user input from exception messages for security/privacy reasons.

Historically, exception messages in kotlinx.serialization often included the input Json itself for debuggability reason. Such behavior may pose additional challenges for logging, analytics, and other systems, since a system is not always allowed to store user data due to privacy/security reasons, which imposes additional sanitation logic. To address this issue, a new property exceptionsWithDebugInfo is added to JsonConfiguration. Disable it to hide user input from exception messages. IMPORTANT: This behavior will be enabled by default when this property becomes stable. See #2590 for more details.

Bugfixes and improvements

• CBOR: Relax value range check when decoding numbers (#3167)
• Use a specialized writeDecimalLong method for IO stream integrations in Json (#3152)

Commits

• 6956af2 Prepare 1.11 release
• 390d84c Merge remote-tracking branch 'origin/master' into dev
• 431fe2d Use local repo for publishing (#3171)
• 05c12b6 Add usage attribute to "testRepositories" configuration
• a4e1f08 Bump Kover version to 0.9.8 release (#3174)
• 304e858 Expose Json exceptions structure (#3145)
• 4a0338e Included G Play SDK verification file for core-jvm (#3169)
• 421f64c CBOR: Relax value range check when decoding numbers (#3167)
• 85a4f12 KT-84955: mark apple x64 tagets as deprecated error
• bd38b0e Remove dead code
• Additional commits viewable in compare view

Updates org.apache.logging.log4j:log4j-api from 2.25.3 to 2.25.4

Updates org.apache.logging.log4j:log4j-slf4j2-impl from 2.25.3 to 2.25.4

Updates org.apache.logging.log4j:log4j-core from 2.25.3 to 2.25.4

Updates org.apache.logging.log4j:log4j-slf4j2-impl from 2.25.3 to 2.25.4

Updates org.apache.logging.log4j:log4j-core from 2.25.3 to 2.25.4

Updates org.jetbrains.dokka:dokka-maven-plugin from 2.1.0 to 2.2.0

Release notes

Sourced from org.jetbrains.dokka:dokka-maven-plugin's releases.

2.2.0

Dokka Gradle Plugin

Starting from Dokka 2.1.0, the new Dokka Gradle Plugin is enabled by default. The documentation on kotlinlang.org has been updated accordingly:

• See Get started with Dokka for instructions on adding Dokka to a project
• See Migrate to Dokka Gradle plugin v2 for migrating from the old plugin

Dokka 2.2.0 introduces multiple improvements and fixes:

Note: most of the following changes affect only the new Dokka Gradle Plugin, enabled by default since Dokka 2.1.0

• Compatibility with Android Gradle Plugin 9.0.0, including Built-in Kotlin. (#4231, #4295, #4412)
  • See #4472 on documenting Android projects with flavors / multiple variants
• Android Gradle Library Plugin for KMP is now properly supported. (#4359, #4366)
• Support the new Kotlin Gradle Plugin API to work with generated sources (#4402, #4410)
• Fix suppressGeneratedFiles flag was unused (#4348)
• Improve classpath resolution and platform detection logic (#4296, #4263, #4258)
• Add olderVersionsDirName to DokkaVersioningPluginParameters (#4301). Thanks to @​osipxd!
• Rework the Gradle attributes to make them integrate better with the ecosystem (#4334). Thanks to @​martinbonnin!
• Drop usages of APIs deprecated in KGP (#4271)
  • this change makes deprecated DGPv1 be compatible with KGP 1.9.0+, aligning it with DGPv2

Analysis improvements

Starting from Dokka 2.1.0, the K2 analysis is enabled by default. K2 analysis is now stable, enabled by default, and fully migrated to the new shared Analysis API. This includes the migration to the new KDoc resolution API within the Analysis API.

Dokka 2.2.0 introduces multiple improvements and fixes:

Note: most of the following changes affect only Dokka's K2 analysis, enabled by default since Dokka 2.1.0

• Allow actual declarations to automatically inherit their documentation from expect counterparts in multiplatform projects (#2493, #4245, #4351)
• Link resolution improvements:
  • Support references to declarations with quoted names (#3356)
  • Support resolution of links to extensions with type parameters according to KEEP#385 (#3555)
  • Improve handling of ambiguous KDoc links according to KEEP#389 (#3451, #3179, #3632, #4327, #3604)
    • Note: those changes are currently available only under experimental org.jetbrains.dokka.analysis.enableExperimentalKDocResolution system property
• K2/K1 compatibility improvements:
  • Fix Multiple pages associated with key (#4300)
  • Fix inconsistent constructor rendering for expect/actual annotation (#4055)
  • Fix missing abstract modifier for abstract interface method with redundant open modifier (#4144)
  • Fix working with intersected and overridden fake functions/properties (#3857)
  • Fix rendering of links in @see block (#3680)
  • Fix redundant ? on properties with a type of typealias to nullable type (#4337)
  • Fix the missing default parameter value for inherited (not overridden) members (#4320)
  • Fix duplicate source links for function overloads and properties (#4049, #4338)
  • Fix resolution of links in the second line of KDoc tags (#4332, KT-75215, KT-79783)
• Improve DRI handling for varargs and properties (#3558, #4347)
• Context parameters improvements:
  • Fix KDoc links to context parameters (#4389)

... (truncated)

Commits

• 656ca46 Update Dokka version references to 2.2.0 (#4485)
• 534e242 Update com.gradle.publish:plugin-publish-plugin and declare Gradle CC compa...
• abc048d Update the version for the 2.2.0 release
• 60062bb Detect and handle intersected source roots in Android multi-variant projects ...
• 0bd8995 Fix DGP reading all Gradle properties (#4468)
• 06dbbfd Update the version for the 2.2.0-Beta release
• a81ace7 Update AGP version in tests to stable 9.0.0 (#4420)
• fd97482 Fix minor oversight in the implemenation: missed + in enum entries (#4411)
• 8148aa2 Fix unnecesary logging for unresolved links in module documentation (#4413)
• bf3b5ee Fix suppressGeneratedFiles was unused (#4348)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions