Update Samples dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
ch.qos.logback:logback-classic (source, changelog)	1.5.18 -> 1.5.20
io.grpc:grpc-netty	1.75.0 -> 1.76.0
io.ktor.plugin	3.3.0 -> 3.3.1
io.ktor:ktor-client-js	3.3.0 -> 3.3.1
io.ktor:ktor-client-cio	3.3.0 -> 3.3.1
io.ktor:ktor-client-websockets	3.3.0 -> 3.3.1
io.ktor:ktor-client-core	3.3.0 -> 3.3.1
io.ktor:ktor-server-test-host	3.3.0 -> 3.3.1
io.ktor:ktor-server-host-common-jvm	3.3.0 -> 3.3.1
io.ktor:ktor-server-websockets-jvm	3.3.0 -> 3.3.1
io.ktor:ktor-server-cors-jvm	3.3.0 -> 3.3.1
io.ktor:ktor-server-netty-jvm	3.3.0 -> 3.3.1
io.ktor:ktor-server-core-jvm	3.3.0 -> 3.3.1
io.ktor:ktor-serialization-kotlinx-json	3.3.0 -> 3.3.1
io.ktor:ktor-client-serialization	3.3.0 -> 3.3.1
io.ktor:ktor-client-content-negotiation	3.3.0 -> 3.3.1
io.ktor:ktor-client-okhttp	3.3.0 -> 3.3.1
io.ktor:ktor-client-websockets-js	3.3.0 -> 3.3.1
io.ktor:ktor-server-cio	3.3.0 -> 3.3.1
org.jetbrains.compose	1.9.0 -> 1.9.1
androidx.compose.material3:material3 (source)	1.3.2 -> 1.4.0
androidx.compose.ui:ui-tooling-preview (source)	1.9.1 -> 1.9.4
androidx.compose.ui:ui-tooling (source)	1.9.1 -> 1.9.4
androidx.compose:compose-bom	2025.09.00 -> 2025.10.01
org.jetbrains.kotlinx.rpc.plugin	0.10.0-grpc-127 -> 0.10.0
androidx.compose.foundation:foundation (source)	1.9.1 -> 1.9.4
androidx.compose.ui:ui-test-junit4 (source)	1.9.1 -> 1.9.4
androidx.compose.ui:ui-test-manifest (source)	1.9.1 -> 1.9.4
androidx.compose.ui:ui-graphics (source)	1.9.1 -> 1.9.4
androidx.compose.ui:ui (source)	1.9.1 -> 1.9.4
org.jetbrains.kotlin-wrappers:kotlin-wrappers-bom	2025.9.8 -> 2025.10.12

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

grpc/grpc-java (io.grpc:grpc-netty)

v1.76.0

Bug Fixes

• xds: ClusterResolverLb has been converted to use XdsDepManager, which finishes the changes for gRFC A74 xDS Config Tears. This change should resolve some unnecessary reconnections introduced in v1.75.0 when using weighted_round_robin and maybe other policies.
• compiler: A fix has been implemented for the blockingV2 stub to mangle generated method names that conflict with java.lang.Object methods.
• servlet: A race condition in AsyncServletOutputStreamWriter has been fixed to prevent threads from getting stuck.
• servlet: An issue where AsyncContext.complete() was called multiple times, causing an IllegalStateException, has been resolved.
• binder: The REMOTE_UID is now required to hold the exact UID passed to the SecurityPolicy.
• binder: The server will now only accept post-setup transactions from the authorized server UID.
• util: AdvancedTlsX509TrustManager now errors with a message to say that files don’t exist instead of the previous “Files were unmodified before their initial update. Probably a bug.”
• android: A fix has been implemented for network change handling on API levels below 24.

Improvements

• api: Allocations of Attributes.Builder have been reduced. This mostly benefits attributes.toBuilder(), but that’s not expected to be visible in regular workloads.
• api: An empty array allocation in LoadBalancer.CreateSubchannelArgs.Builder has been avoided. It is a small optimization and is not expected to have any performance impact.
• servlet: A configurable methodNameResolver has been added to configure the mapping from servlet request paths to gRPC method name
• servlet: Avoid a race by increasing the AsyncContext timeout by 5 seconds. The gRPC Context timeout should trigger first
• xds: Pretty-print envoy.service.discovery.v3.Resource in debug logs
• bazel: The java/proto rules from rules_java/rules_proto are now used instead of native rules.
• bazel: Unnecessary direct build dependencies were removed from some targets
• netty: Support for the BCJSSE provider has been added in GrpcSslContexts.
• netty: Huffman coding in server response headers has been disabled; it was already disabled for client request headers
• netty: Include allow header for HTTP response code 405
• okhttp: Include allow header for HTTP response code 405
• binder: Error descriptions for ServiceConnection callbacks have been improved
• binder: Apps can now call SecurityPolicy.checkAuthorization() by PeerUid.

New Features

• stub: Trailers are now propagated in StatusException when thrown by BlockingClientCall.
• compiler: Support for macOS aarch64 with a universal binary has been added.
• opentelemetry: grpc.subchannel.* metrics as described in gRFC A94 OTel metrics for Subchannels have been added. grpc.disconnect_error will show as “unknown” until transports implement support
• binder: A NameResolver for Android's intent: URIs has been introduced.
• binder: A basic SocketStats with just the local and remote addresses has been added for channelz.

Documentation

• SECURITY.md: The documentation now describes how to use gcompat with LD_PRELOAD for Alpine.
• examples: The documentation now explains Bazel BCR releases and the git_override option.

Dependencies

• Upgraded Guava version to 33.4.8.
• The org.apache.tomcat:annotations-api dependency has been removed from the examples.

Thanks to

@​JoeCqupt
@​Sangamesh1997
@​benjaminp
@​camelcc
@​dmytroreutov
@​duckladydinh
@​jirkafm
@​kilink
@​panchenko
@​umairk79
@​vimanikag
@​werkt
@​xuhongxu96
@​zrlw

ktorio/ktor (io.ktor:ktor-client-js)

v3.3.1

Compare Source

Published 8 October 2025

Improvements

• Add a note about SSE session lifetime in KDoc (KTOR-8440)
• Update Kotlin to 2.2.20 (KTOR-8896)

Bugfixes

• NumberFormatException when Content-Length header value contains null bytes (KTOR-4828)
• SerializationException: Serializer for class 'ClientSSESession' is not found when server responds with JSON (KTOR-7631)
• Netty: loadConfiguration missing enableHttp2 and enableH2c properties (KTOR-8898)
• Netty: EmbeddedServer.stop always blocks for twice of shutdownGracePeriod (KTOR-8770)
• shutdownGracePeriod is used instead of shutdownTimeout in EmbeddedServer.stop() (KTOR-8771)
• Support serving static resources within bootJar (KTOR-8592)

JetBrains/compose-jb (org.jetbrains.compose)

v1.9.1

Changes since 1.9.0

Migration Notes

Multiple Platforms

• compose.material3 alias from Gradle plugin now points to org.jetbrains.compose.material3:material3:1.9.0 (based on Jetpack Compose Material3 1.4.0), it was org.jetbrains.compose.material3:material3:1.8.2 (based on Jetpack Compose Material3 1.3.2) in Compose Multiplatform 1.9.0. If you want to stay on the same minor version, replace the alias by an explicit dependency: #​5441

  // was
  implementation(compose.material3)
  
  // replace by
  implementation("org.jetbrains.compose.material3:material3:1.8.2")
  

Fixes

iOS

• Add ability to reach internal accessibility elements inside accessibility nodes #​2416
• Fix input session restarts triggered by PlatformImeOptionsImpl not being @Immutable #​2413
• Fix crash when removing characters after string replacement #​2361
• Fix context menu appearance for text fields with transformation #​2377

Desktop

• ComposePanel can now re-dispatch unconsumed mouse wheel events, allowing scrollable components beneath to be scrolled. To enable this behavior, set the system property "compose.swing.redispatchMouseWheelEvents" to "true" #​2438

Dependencies

• Gradle Plugin org.jetbrains.compose, version 1.9.1. Based on Jetpack Compose libraries:

  • Runtime 1.9.3
  • UI 1.9.3
  • Foundation 1.9.3
  • Material 1.9.3
  • Material3 1.4.0

• Compose Material3 libraries org.jetbrains.compose.material3:material3*:1.9.0. Based on Jetpack Compose Material3 1.4.0

• Compose Material3 Adaptive libraries org.jetbrains.compose.material3.adaptive:adaptive*:1.2.0-alpha05. Based on Jetpack Compose Material3 Adaptive 1.2.0-alpha10

• Lifecycle libraries org.jetbrains.androidx.lifecycle:lifecycle-*:2.9.5. Based on Jetpack Lifecycle 2.9.4

• Navigation libraries org.jetbrains.androidx.navigation:navigation-*:2.9.1. Based on Jetpack Navigation 2.9.4

• Savedstate library org.jetbrains.androidx.savedstate:savedstate:1.3.5. Based on Jetpack Savedstate 1.3.3

• WindowManager Core library org.jetbrains.androidx.window:window-core:1.4.0. Based on Jetpack WindowManager 1.4.0

---

Kotlin/kotlinx-rpc (org.jetbrains.kotlinx.rpc.plugin)

v0.10.0

Published 7 October 2025

Overview

This release brings a lot of changes, work:

• Kotlin 2.2.20 and 2.2.10 support
• kRPC: Backpressure

To read about the backpressure feature,
see the updated kRPC Configuration page.

Breaking Changes 🔴

• Allow suspend calls inside ktor rpc builder #​433 by @​Mr3zee in #​439

Features 🎉

• Kotlin 2.2.20 by @​Mr3zee in #​478
• Kotlin 2.2.10 by @​Mr3zee in #​456
• kRPC: Backpressure by @​Mr3zee in #​462
• Add support for Wasm/Wasi to krpc #​465 by @​Mr3zee in #​480

Bug fixes 🐛

• Add collect once check for client streams by @​Mr3zee in #​431
• Fix diagnostic rendering for compiler plugins checkers by @​Mr3zee in #​432
• fix wrong unchecked null cast (potential NPE) by @​y9maly in #​445

Documentation 📗

• Docs for gRPC with Ktor by @​Mr3zee in #​394
• Add a doc for KMP source sets with gRPC by @​Mr3zee in #​405
• Update strict-mode.topic by @​BierDav in #​440
• Update grpc-configuration.topic by @​flockbastian in #​450
• Added docs for release by @​Mr3zee in #​482
• Fix typo in docs grpc-configuration.topic by @​sebaslogen in #​495

Infra 🚧

• Fix docs yaml and signing tasks by @​Mr3zee in #​404
• Fix jdk resolution problems on CI by @​Mr3zee in #​406
• Use compat-patrouille for compatibility settings by @​Mr3zee in #​438

Other Changes 🧹

• Fix how we create 'publishMavenArtifact' tasks by @​Mr3zee in #​416
• Update grpc-sample app by @​Mr3zee in #​425
• Fix LV and signing by @​Mr3zee in #​424
• Update ktor-all-platforms-app sample to sync service creation by @​Mr3zee in #​455
• Added Ktor closure tests and Cancellation tests, + minor fixes by @​Mr3zee in #​479
• Fix flaky tests by @​Mr3zee in #​481

New Contributors

• @​flockbastian made their first contribution in #​450
• @​y9maly made their first contribution in #​445
• @​sebaslogen made their first contribution in #​495

Full Changelog: 0.9.1...0.10.0

JetBrains/kotlin-wrappers (org.jetbrains.kotlin-wrappers:kotlin-wrappers-bom)

v2025.10.12

Compare Source

Full Changelog: JetBrains/kotlin-wrappers@2025.10.11...2025.10.12

v2025.10.11

Compare Source

Full Changelog: JetBrains/kotlin-wrappers@2025.10.10...2025.10.11

v2025.10.10

Compare Source

Full Changelog: JetBrains/kotlin-wrappers@2025.10.9...2025.10.10

v2025.10.9

Compare Source

Full Changelog: JetBrains/kotlin-wrappers@2025.10.8...2025.10.9

v2025.10.8

Compare Source

Full Changelog: JetBrains/kotlin-wrappers@2025.10.7...2025.10.8

v2025.10.7

Compare Source

Full Changelog: JetBrains/kotlin-wrappers@2025.10.6...2025.10.7

v2025.10.6

Compare Source

Full Changelog: JetBrains/kotlin-wrappers@2025.10.5...2025.10.6

v2025.10.5

Compare Source

Full Changelog: JetBrains/kotlin-wrappers@2025.10.4...2025.10.5

v2025.10.4

Compare Source

Full Changelog: JetBrains/kotlin-wrappers@2025.10.3...2025.10.4

v2025.10.3

Compare Source

Full Changelog: JetBrains/kotlin-wrappers@2025.10.2...2025.10.3

v2025.10.2

Compare Source

Full Changelog: JetBrains/kotlin-wrappers@2025.10.1...2025.10.2

v2025.10.1

Compare Source

Full Changelog: JetBrains/kotlin-wrappers@2025.10.0...2025.10.1

v2025.10.0

Compare Source

Full Changelog: JetBrains/kotlin-wrappers@2025.9.11...2025.10.0

v2025.9.11

Compare Source

Full Changelog: JetBrains/kotlin-wrappers@2025.9.10...2025.9.11

v2025.9.10

Compare Source

Full Changelog: JetBrains/kotlin-wrappers@2025.9.9...2025.9.10

v2025.9.9

Compare Source

Full Changelog: JetBrains/kotlin-wrappers@2025.9.8...2025.9.9

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.