chore(deps): bump detekt from 2.0.0-alpha.3 to 2.0.0-alpha.5

[dependabot]

Bumps detekt from 2.0.0-alpha.3 to 2.0.0-alpha.5.
Updates dev.detekt:detekt-rules-ktlint-wrapper from 2.0.0-alpha.3 to 2.0.0-alpha.5

Release notes

Sourced from dev.detekt:detekt-rules-ktlint-wrapper's releases.

v2.0.0-alpha.5

2.0.0-alpha.5 - 2026-06-17

This is a hotfix release for 2.0.0-alpha.4 where we fixed 2 bugs that were preventing detekt from running correctly.

Changelog

• fix: stop leaking ktlint-repackage as a transitive dependency - #9391
• fix: exclude gradle-public-api from published POM - #9408
• Stop accepting unsupported API or language versions passed to CLI - #9410

v2.0.0-alpha.4

2.0.0-alpha.4 - 2026-06-13

This is an alpha release of Detekt 2.0.0. Is built against Kotlin 2.4.0, Gradle 9.5.1, AGP 9.2.1 and is tested against JDK 25.

Notable Changes

• Support Kotlin 2.4.0 - #9218
• Add new rule LeakingSessionBoundType - #9242
• Apply the indent_style configuration to all the ktlint wrapper rules (previsouly this was applied only to the Indentation rule) - #9315

Breaking Changes

• Expose Glob-to-Regex functions in psi-utils - #9340
• Make Detektion immutable - #8583

Changelog

• fix: prevent ArrayPrimitive crash on unresolved types - #9364
• Update ktlint documentation links - #9354
• Fix PrintStackTrace nested call detection - #9352
• Fix unused import false positive for companion object member extension properties - #9349
• Accept punctuation after a link - #9341
• Fixes UnnecessaryFullyQualifiedName false positive with explicit import shadowing - #9329
• docs: fix KMP type resolution task names - #9316
• Stop publishing ktlint-repackage - #9314
• Stop exposing ktlint's StandardRule to detekt-rules-ktlint-wrapper consumers - #9313
• Include ktlint-repackage in ktlint-wrapper JAR - #9312
• Declare DGP compatibility with Gradle's configuration cache - #9311
• Forward languageVersionSettings to KotlinAnalysisApiEngine.compile - #9305
• docs: add ForbiddenImport configuration example - #9302
• Fix UnnecessaryFullyQualifiedName clashes with kotlin package name - #9289
• Remove excludeImportStatements from Deprecation rule - #9287
• Improve repackaging of Analysis API dependencies - #9285
• MaxChainedCallsOnSameLine - Fix AA type leaks - #9261
• SuspendFunSwallowedCancellation - Fix AA type leaks - #9256
• feat: Add exhaustive option to OutdatedDocumentation rule, also improve error messages - #9255
• Excluding generated sources by default - #9251

... (truncated)

Commits

• 9c6ced6 Stop accepting unsupported API or language versions passed to CLI (#9410)
• 44526f4 fix: exclude gradle-public-api from published POM (#9408)
• 6bad2e8 fix: stop leaking ktlint-repackage as a transitive dependency (#9391)
• fd5683e Update dependency path-to-regexp to v0.2.5 (#9397)
• 7865b27 fix: resolve npm security vulnerabilities in website and bots dependencies (#...
• bb582d5 Unbreak snapshot publishing (#9394)
• 69866dd Update caniuse browser definitions (#9393)
• bfd3b5d Add Docs for 2.0.0-alpha.4 (#9388)
• 60300b2 Switch to vanniktech/gradle-maven-publish-plugin for publishing (#9357)
• 63e0777 Update gradle/actions digest to 3f131e8 (#9386)
• Additional commits viewable in compare view

Updates dev.detekt from 2.0.0-alpha.3 to 2.0.0-alpha.5

Release notes

Sourced from dev.detekt's releases.

v2.0.0-alpha.5

2.0.0-alpha.5 - 2026-06-17

This is a hotfix release for 2.0.0-alpha.4 where we fixed 2 bugs that were preventing detekt from running correctly.

Changelog

• fix: stop leaking ktlint-repackage as a transitive dependency - #9391
• fix: exclude gradle-public-api from published POM - #9408
• Stop accepting unsupported API or language versions passed to CLI - #9410

v2.0.0-alpha.4

2.0.0-alpha.4 - 2026-06-13

This is an alpha release of Detekt 2.0.0. Is built against Kotlin 2.4.0, Gradle 9.5.1, AGP 9.2.1 and is tested against JDK 25.

Notable Changes

• Support Kotlin 2.4.0 - #9218
• Add new rule LeakingSessionBoundType - #9242
• Apply the indent_style configuration to all the ktlint wrapper rules (previsouly this was applied only to the Indentation rule) - #9315

Breaking Changes

• Expose Glob-to-Regex functions in psi-utils - #9340
• Make Detektion immutable - #8583

Changelog

• fix: prevent ArrayPrimitive crash on unresolved types - #9364
• Update ktlint documentation links - #9354
• Fix PrintStackTrace nested call detection - #9352
• Fix unused import false positive for companion object member extension properties - #9349
• Accept punctuation after a link - #9341
• Fixes UnnecessaryFullyQualifiedName false positive with explicit import shadowing - #9329
• docs: fix KMP type resolution task names - #9316
• Stop publishing ktlint-repackage - #9314
• Stop exposing ktlint's StandardRule to detekt-rules-ktlint-wrapper consumers - #9313
• Include ktlint-repackage in ktlint-wrapper JAR - #9312
• Declare DGP compatibility with Gradle's configuration cache - #9311
• Forward languageVersionSettings to KotlinAnalysisApiEngine.compile - #9305
• docs: add ForbiddenImport configuration example - #9302
• Fix UnnecessaryFullyQualifiedName clashes with kotlin package name - #9289
• Remove excludeImportStatements from Deprecation rule - #9287
• Improve repackaging of Analysis API dependencies - #9285
• MaxChainedCallsOnSameLine - Fix AA type leaks - #9261
• SuspendFunSwallowedCancellation - Fix AA type leaks - #9256
• feat: Add exhaustive option to OutdatedDocumentation rule, also improve error messages - #9255
• Excluding generated sources by default - #9251

... (truncated)

Commits

• 9c6ced6 Stop accepting unsupported API or language versions passed to CLI (#9410)
• 44526f4 fix: exclude gradle-public-api from published POM (#9408)
• 6bad2e8 fix: stop leaking ktlint-repackage as a transitive dependency (#9391)
• fd5683e Update dependency path-to-regexp to v0.2.5 (#9397)
• 7865b27 fix: resolve npm security vulnerabilities in website and bots dependencies (#...
• bb582d5 Unbreak snapshot publishing (#9394)
• 69866dd Update caniuse browser definitions (#9393)
• bfd3b5d Add Docs for 2.0.0-alpha.4 (#9388)
• 60300b2 Switch to vanniktech/gradle-maven-publish-plugin for publishing (#9357)
• 63e0777 Update gradle/actions digest to 3f131e8 (#9386)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)