Update dependency com.squareup.okio:okio to v3.16.0

[renovate]

Note

Mend has cancelled the proposed renaming of the Renovate GitHub app being renamed to mend[bot].

This notice will be removed on 2025-10-07.

---

This PR contains the following updates:

Package	Change	Age	Confidence
com.squareup.okio:okio	3.13.0 -> 3.16.0

---

Release Notes

square/okio (com.squareup.okio:okio)

v3.16.0

2025-07-29

• Fix: Change Socket.asOkioSocket() to resolve its source InputStream and OutputStream
  eagerly. This will throw a SocketException immediately if the socket isn’t connected.
  This behavior is consistent with our similar APIs, Socket.source() and Socket.sink().

• Fix: Optimize AsyncTimeout on systems with a very large number of active timeouts. This class
  originally kept active timeouts in a linked list; with this update the internal data structure is
  a binary heap. The old runtime was 𝑂(𝑛²) to activate 𝑛 timeouts; with this optimization the
  runtime is 𝑂(𝑛 log 𝑛).

• Upgrade: [Kotlin 2.2.0][kotlin_2_2_0].

v3.15.0

2025-07-01

• Upgrade: [kotlinx-datetime 0.7.0-0.6.x-compat][datetime_0_7_0_compat]. The previous 3.14.0
  release, FakeFileSystem broke binary-compatibility for calls to FakeFileSystem(). This
  restores that compatibility.

• Breaking: Change FakeFileSystem.clock from a JVM field to a property. This avoids a crash
  running Okio in a Gradle 8.x plugin. This change is not binary-compatible.

v3.14.0

2025-06-28

• Upgrade: [kotlinx-datetime 0.7.0][datetime_0_7_0]. This impacts the okio-fakefilesystem
  artifact only. This is a binary-incompatible backwards-incompatible change that cannot co-exist
  with previous releases of okio-fakefilesystem! If you observe a NoSuchMethodError calling
  FakeFileSystem.init, update the calling code to this release (or newer) and recompile. We don't
  like imposing backwards-incompatible changes like this on you and do so regretfully.

---

Configuration

📅 Schedule: Branch creation - "before 5am on Monday" in timezone Europe/London, Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Never, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions]

Dependency Review

The following issues were found:

• ✅ 0 vulnerable package(s)
• ✅ 0 package(s) with incompatible licenses
• ✅ 0 package(s) with invalid SPDX license definitions
• ⚠️ 1 package(s) with unknown licenses.
• ⚠️ 2 packages with OpenSSF Scorecard issues.

See the Details below.

License Issues

settings.gradle.kts

Package	Version	License	Issue Type
org.jetbrains.kotlin:kotlin-stdlib-common	2.2.0	Null	Unknown License

OpenSSF Scorecard

Package	Version	Score	Details
maven/com.squareup.okio:okio	3.16.0	🟢 5.7	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 9 issue activity found in the last 90 days -- score normalized to 10 Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Code-Review 🟢 5 Found 5/10 approved changesets -- score normalized to 5 Security-Policy 🟢 10 security policy file detected CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Binary-Artifacts 🟢 9 binaries present in source code Packaging 🟢 10 packaging workflow detected SAST 🟢 4 SAST tool is not run on all commits -- score normalized to 4 Vulnerabilities ⚠️ 2 8 existing vulnerabilities detected
maven/com.squareup.okio:okio-jvm	3.16.0	🟢 5.7	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 9 issue activity found in the last 90 days -- score normalized to 10 Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Code-Review 🟢 5 Found 5/10 approved changesets -- score normalized to 5 Security-Policy 🟢 10 security policy file detected CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Binary-Artifacts 🟢 9 binaries present in source code Packaging 🟢 10 packaging workflow detected SAST 🟢 4 SAST tool is not run on all commits -- score normalized to 4 Vulnerabilities ⚠️ 2 8 existing vulnerabilities detected
maven/org.jetbrains.kotlin:kotlin-stdlib	2.2.0	⚠️ 2.4	Details Check Score Reason Packaging ⚠️ -1 packaging workflow not detected Code-Review ⚠️ 0 Found 0/30 approved changesets -- score normalized to 0 Maintained 🟢 10 30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Branch-Protection ⚠️ -1 internal error: error during GetBranch(2.2.20): error during branchesHandler.query: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ 0 Project has not signed or included provenance with any releases. Token-Permissions ⚠️ -1 No tokens found Security-Policy 🟢 10 security policy file detected Dangerous-Workflow ⚠️ -1 no workflows found License 🟢 9 license file detected Fuzzing ⚠️ 0 project is not fuzzed SAST ⚠️ 0 no SAST tool detected Binary-Artifacts ⚠️ 0 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities ⚠️ 0 30 existing vulnerabilities detected
maven/org.jetbrains.kotlin:kotlin-stdlib-common	2.2.0	⚠️ 2.4	Details Check Score Reason Packaging ⚠️ -1 packaging workflow not detected Code-Review ⚠️ 0 Found 0/30 approved changesets -- score normalized to 0 Maintained 🟢 10 30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Branch-Protection ⚠️ -1 internal error: error during GetBranch(2.2.20): error during branchesHandler.query: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ 0 Project has not signed or included provenance with any releases. Token-Permissions ⚠️ -1 No tokens found Security-Policy 🟢 10 security policy file detected Dangerous-Workflow ⚠️ -1 no workflows found License 🟢 9 license file detected Fuzzing ⚠️ 0 project is not fuzzed SAST ⚠️ 0 no SAST tool detected Binary-Artifacts ⚠️ 0 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities ⚠️ 0 30 existing vulnerabilities detected

Scanned Files

• settings.gradle.kts

[github-actions]

😔 JUnit failed

Passed	Failed	Skipped
✅ 0	❌ 0	⚠️ 0

You can see the report here.