chore(deps): Update Gradle to 9.5 and migrate dependency management with locking

[thelooter]

No description provided.

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[Copilot]

Pull request overview

Updates the project’s Gradle build infrastructure to Gradle 9.5, migrating dependency coordinates into a version catalog and enabling dependency locking to improve build reproducibility.

Changes:

• Upgrade Gradle Wrapper to 9.5.0 and refresh wrapper scripts.
• Introduce gradle/libs.versions.toml and migrate build dependencies/plugins to version-catalog aliases.
• Enable dependency locking (adding lockfiles) and refresh CI workflows to newer pinned GitHub Action revisions.

Reviewed changes

Copilot reviewed 11 out of 13 changed files in this pull request and generated 3 comments.

Show a summary per file

File	Description
settings.gradle.kts	Adds plugin/dependency repository management and configures centralized repositories.
settings-gradle.lockfile	Adds settings-level dependency lockfile (generated).
gradlew.bat	Updates Windows wrapper script logic for Gradle 9.5 wrapper execution.
gradlew	Updates POSIX wrapper script to the newer -jar wrapper invocation.
gradle/wrapper/gradle-wrapper.properties	Bumps wrapper distribution to Gradle 9.5.0 and adds SHA-256 checksum.
gradle/libs.versions.toml	Introduces a version catalog for libraries/plugins used by the build.
gradle.properties	Enables caching/config-cache and adds build-wide Gradle properties.
gradle.lockfile	Adds project dependency lockfile (generated).
build.gradle.kts	Migrates to version-catalog aliases, enables dependency locking, and adjusts packaging/publishing/test+JaCoCo config.
.github/workflows/release.yml	Pins changelog action to a commit SHA.
.github/workflows/gradle.yml	Updates CI actions (pinned SHAs) and switches Gradle caching to setup-gradle enhanced caching.
.github/workflows/gradle-publish.yml	Enables wrapper validation, updates/pins actions, and uses --no-daemon for publishing.

Comments suppressed due to low confidence (1)

gradle.properties:6

• dependencyVerification.enabled=false disables Gradle dependency verification for everyone by default, which weakens supply-chain protection and makes it easier for compromised/malicious artifacts to go unnoticed. Prefer keeping verification enabled and checking in the verification metadata (or disabling it only in a constrained CI profile if absolutely necessary).

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 72.41%. Comparing base (ac8af33) to head (56a362f).

Additional details and impacted files

@@            Coverage Diff            @@
##               main     #243   +/-   ##
=========================================
  Coverage     72.41%   72.41%           
  Complexity       59       59           
=========================================
  Files             6        6           
  Lines           174      174           
  Branches         27       27           
=========================================
  Hits            126      126           
  Misses           27       27           
  Partials         21       21           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.