build(deps): bump okhttp from 3.8.0 to 4.2.2

[dependabot-preview[bot]]

Bumps okhttp from 3.8.0 to 4.2.2.

Changelog

*Sourced from [okhttp's changelog](https://github.com/square/okhttp/blob/master/CHANGELOG.md).* > ## Version 4.2.2 > > _2019-10-06_ > > * Fix: When closing a canceled HTTP/2 stream, don't send the `END_STREAM` flag. This could cause > the server to incorrectly interpret the stream as having completed normally. This is most useful > when a request body needs to cancel its own call. > > > ## Version 4.2.1 > > _2019-10-02_ > > * Fix: In 4.1.0 we introduced a performance regression that prevented connections from being > pooled in certain situations. We have good test coverage for connection pooling but we missed > this because it only occurs if you have proxy configured and you share a connection pool among > multiple `OkHttpClient` instances. > > This particularly-subtle bug was caused by us assigning each `OkHttpClient` instance its own > `NullProxySelector` when an explicit proxy is configured. But we don't share connections when > the proxy selectors are different. Ugh! > > > ## Version 4.2.0 > > _2019-09-10_ > > * New: API to decode a certificate and private key to create a `HeldCertificate`. This accepts a > string containing both a certificate and PKCS #8-encoded private key. > > ```kotlin > val heldCertificate = HeldCertificate.decode(""" > |-----BEGIN CERTIFICATE----- > |MIIBYTCCAQegAwIBAgIBKjAKBggqhkjOPQQDAjApMRQwEgYDVQQLEwtlbmdpbmVl > |cmluZzERMA8GA1UEAxMIY2FzaC5hcHAwHhcNNzAwMTAxMDAwMDA1WhcNNzAwMTAx > |MDAwMDEwWjApMRQwEgYDVQQLEwtlbmdpbmVlcmluZzERMA8GA1UEAxMIY2FzaC5h > |cHAwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAASda8ChkQXxGELnrV/oBnIAx3dD > |ocUOJfdz4pOJTP6dVQB9U3UBiW5uSX/MoOD0LL5zG3bVyL3Y6pDwKuYvfLNhoyAw > |HjAcBgNVHREBAf8EEjAQhwQBAQEBgghjYXNoLmFwcDAKBggqhkjOPQQDAgNIADBF > |AiAyHHg1N6YDDQiY920+cnI5XSZwEGhAtb9PYWO8bLmkcQIhAI2CfEZf3V/obmdT > |yyaoEufLKVXhrTQhRfodTeigi4RX > |-----END CERTIFICATE----- > |-----BEGIN PRIVATE KEY----- > |MEECAQAwEwYHKoZIzj0CAQYIKoZIzj0DAQcEJzAlAgEBBCA7ODT0xhGSNn4ESj6J > |lu/GJQZoU9lDrCPeUcQ28tzOWw== > |-----END PRIVATE KEY----- > """.trimMargin()) > val handshakeCertificates = HandshakeCertificates.Builder() > .heldCertificate(heldCertificate) > .build() > ... (truncated)

Commits

- [`d02340f`](https://github.com/square/okhttp/commit/d02340f9dfac4ead42befc1a4d477b45401956cf) Prepare for release 4.2.2. - [`b897fb8`](https://github.com/square/okhttp/commit/b897fb8e0f3fe3622633d59ecaf220ddcae5830f) Merge pull request [#5537](https://github-redirect.dependabot.com/square/okhttp/issues/5537) from square/jwilson.1006.cancel_close - [`10f9227`](https://github.com/square/okhttp/commit/10f9227b9398d9c7651131bdeeae92bb714a3bb2) If RST STREAM and END OF STREAM race, send RST STREAM (4.2.x branch) - [`97d25e8`](https://github.com/square/okhttp/commit/97d25e88b82454b128d1588c9c0bc013efeee7fe) Prepare next development version. - [`57a165b`](https://github.com/square/okhttp/commit/57a165b69c6551c1caec8a557e0e9c9abf54b536) Prepare for release 4.2.1. - [`4c640ad`](https://github.com/square/okhttp/commit/4c640ad6c3016f49e753b5c86ab5c4d8b072bb66) Merge pull request [#5524](https://github-redirect.dependabot.com/square/okhttp/issues/5524) from square/jwilson.1002.cherrypick_poolfix - [`1b4b6bb`](https://github.com/square/okhttp/commit/1b4b6bbc82206816ced207bb0132611f770c56cd) Fix connection pooling for different clients with the same pool. - [`582f8ef`](https://github.com/square/okhttp/commit/582f8ef2f78cf001d479cb65831674289fd83af0) Prepare for release 4.2.0. - [`9b60ca8`](https://github.com/square/okhttp/commit/9b60ca8e88445de48997d3391ae15417a6ef5d90) Merge pull request [#5434](https://github-redirect.dependabot.com/square/okhttp/issues/5434) from square/jwilson.0909.race - [`510475a`](https://github.com/square/okhttp/commit/510475a21586fdf6010312a1950dca6e87cb6d2e) Don't leak incoming bytes when we race incoming data and close - Additional commits viewable in [compare view](https://github.com/square/okhttp/compare/parent-3.8.0...parent-4.2.2)

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Automerge options (never/patch/minor, and dev/runtime dependencies) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired)

[dependabot-preview[bot]]

Superseded by #1163.