Bump com.graphql-java:graphql-java from 20.4 to 21.3

[dependabot[bot]]

Bumps com.graphql-java:graphql-java from 20.4 to 21.3.

Release notes

Sourced from com.graphql-java:graphql-java's releases.

21.3

A small bugfix release on top of 21.2, which includes correct unwrapping of non-null input types for @oneOf.

What's Changed

• @​oneOf handles non-null inputs by @​felipe-gdr in graphql-java/graphql-java#3353

Full Changelog: https://github.com/graphql-java/graphql-java/compare/v21.2...v21.3

21.2

This is a release with new features and bugfixes. There are no breaking changes.

Thanks to everyone who contributed to this release. Thanks for your code contributions, for reporting issues, and contributing to discussions.

@oneOf directive

We've implemented the @oneOf directive for input objects. From the RFC:

OneOf Input Objects are a special variant of Input Objects where the type system asserts that exactly one of the fields must be set and non-null, all others being omitted

This will soon be a new built-in directive in the GraphQL specification.

The directive is currently labelled as experimental inside graphql-java while we wait for the RFC to be formally approved. The final step before the RFC is approved is your feedback! If you're using @oneOf, please share your thoughts on the RFC on the GraphQL Working Group repository.

DataLoader version 3.2.1 released

We've released a new version of java-dataloader including a new ticker mode and predicates per dataloader. See the release notes for more details.

What's Changed

• Add max depth option to ExecutableNormalizedOperationFactory by @​gnawf in graphql-java/graphql-java#3268
• Handle repeated query directives by @​gnawf in graphql-java/graphql-java#3270
• Update readme by @​dondonz in graphql-java/graphql-java#3273
• Wrap NumberFormatException by @​arthurscchan in graphql-java/graphql-java#3282
• Bump org.openjdk.jmh:jmh-core from 1.36 to 1.37 by @​dependabot in graphql-java/graphql-java#3289
• Bump com.google.guava:guava from 32.1.1-jre to 32.1.2-jre by @​dependabot in graphql-java/graphql-java#3284
• Bump org.openjdk.jmh:jmh-generator-annprocess from 1.36 to 1.37 by @​dependabot in graphql-java/graphql-java#3290
• deprecated default value method produces bad results by @​bbakerman in graphql-java/graphql-java#3286
• write query directives from ENF to AST by @​russellyou in graphql-java/graphql-java#3295
• Add SchemaPrinter AST comments support by @​vadimofd in graphql-java/graphql-java#3287
• Bug 3276 - default values not being used correctly during validation by @​bbakerman in graphql-java/graphql-java#3278
• Experimental - oneOf directive support by @​bbakerman in graphql-java/graphql-java#3275
• add directiveName as property to AppliedDirectiveLocationDetail by @​faizan-siddiqui in graphql-java/graphql-java#3297
• Schema Printer - add deprecation reason printing and fix missing deprecated directive on argument by @​vadimofd in graphql-java/graphql-java#3298
• Added support for async create state in instrumentmentations by @​bbakerman in graphql-java/graphql-java#3302
• The last Java unit test by @​bbakerman in graphql-java/graphql-java#3305
• Permit parent restricted nodes to map to isolated nodes by @​gnawf in graphql-java/graphql-java#3304
• Bump org.codehaus.groovy:groovy from 3.0.18 to 3.0.19 by @​dependabot in graphql-java/graphql-java#3307
• Use the non deprecated method in InstrumentationExamples.java by @​appreciated in graphql-java/graphql-java#3265
• Update security policy by @​dondonz in graphql-java/graphql-java#3316
• guava version fix for master by @​bbakerman in graphql-java/graphql-java#3321
• Bump actions/checkout from 3 to 4 by @​dependabot in graphql-java/graphql-java#3325
• ES errors test to lock in current behavior by @​bbakerman in graphql-java/graphql-java#3327
• Fix OSGi bundle manifest by @​geichelberger in graphql-java/graphql-java#3313
• Allow schema diff to use SDL document to enforce directives by @​ndejaco2 in graphql-java/graphql-java#3344

... (truncated)

Commits

• 42efd9b Merge pull request #3360 from graphql-java/revert-2741-2740-parse_and_validat...
• 3f03bd1 Revert "A test to show that validation rules do not catch a mutation query to...
• ab23957 Merge pull request #2741 from graphql-java/2740-parse_and_validate-catch_oper...
• ea4414f Merge pull request #3353 from felipe-gdr/one-of-handle-non-null-inputs
• 4841432 @​oneOf handles non-null inputs
• 42870f3 Merge pull request #3351 from graphql-java/upgrade-dataloader-3.2.1
• 7d7a336 Update DataLoader
• 4ce92a5 Merge pull request #3317 from graphql-java/removing_syncrhonised_for_locking
• d070e38 Merge pull request #3272 from graphql-java/schema_usage_applied_directives
• 517fc70 Merge pull request #3334 from graphql-java/issue-3332-overlapping-fields-alia...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot[bot]]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.