Bump com.graphql-java:graphql-java from 22.3 to 23.1 in /backend

[dependabot]

Bumps com.graphql-java:graphql-java from 22.3 to 23.1.

Release notes

Sourced from com.graphql-java:graphql-java's releases.

23.1

This reverts a bug in 23.0 introduced in graphql-java/graphql-java#3871.

Please use 23.1, and not 23.0.

23.0

Notice: there is a bug with graphql-java/graphql-java#3871, a new bugfix release is about to be released. Use 23.1 instead, not 23.0

Thanks to everyone for contributing to this release, through pull requests, issues, and discussions!

This is a major release which contains breaking changes.

Key changes

• Enable batching on Mutations graphql-java/graphql-java#3737

• Support for draft error handling directive @experimental_disableErrorPropagation graphql-java/graphql-java#3772

• DataFetchers can now return reactive-streams Publisher objects from them and they will be turned into a CompleteableFuture value. Note only a single value will be retrieved from the Publisher graphql-java/graphql-java#3731

• We changed from JetBrains nullability annotations to JSpecify annotations graphql-java/graphql-java#3851. JSpecify is a new industry consortium effort, which has been adopted by Spring. See more in the documentation: https://jspecify.dev/docs/start-here/

• A new experimental callback is available to track the execution state of GraphQL Java: it allows for being notified when GraphQL Java is running actively code vs waiting/finished. See https://github.com/graphql-java/graphql-java/blob/master/src/test/groovy/graphql/EngineRunningTest.groovy#L174 for how to use it

• We have also released DataLoader 4.0.0 and made graphql-java dependent on it. See the release notes: https://github.com/graphql-java/java-dataloader/releases

• @defer directive is now included in the schema by default graphql-java/graphql-java#3839

Performance improvements

• Only call overlapping validation once during validation, which will significantly reduce validation time, with more savings for larger operations. We found ~150% improvement in benchmarks. graphql-java/graphql-java#3835

• Reducing object allocations and overhead from stream, thanks @​kilink for contributing many improvements graphql-java/graphql-java#3804 graphql-java/graphql-java#3803 graphql-java/graphql-java#3801 graphql-java/graphql-java#3798 graphql-java/graphql-java#3797 graphql-java/graphql-java#3710

• Reducing object allocations for PropertyDataFetcher and SchemaGeneratorHelper graphql-java/graphql-java#3755 graphql-java/graphql-java#3754

• Improvement on DataFetchingSelectionSet.getImmediateFields(), if descendant traversal is not required this saves considerable time. Thanks @​timward60 graphql-java/graphql-java#3855

• Comparing performance improvements. We run performance benchmarks on all changes, and you can view these results inside the GitHub repo. You can then use this JMH visualisation tool to compare benchmarks from different commits, for example these before and after results from the DataFetcherSelectionSet optimisation: https://jmh.morethan.io/?sources=https://raw.githubusercontent.com/graphql-java/graphql-java/refs/heads/master/performance-results/2025-03-18T23%3A42%3A07Z-3d7dce5e49dfbe92d656629ae4fdbab979bba8be-jdk17.json,https://raw.githubusercontent.com/graphql-java/graphql-java/refs/heads/master/performance-results/2025-03-20T04%3A24%3A26Z-9a931ba6ad8e2ee49ea48c98ca86c2901f2343b1-jdk17.json

See all performance improvements on GitHub: https://github.com/graphql-java/graphql-java/issues?q=is%3Amerged%20label%3A%22performance%22%20milestone%3A%2223.0%20breaking%20changes%22%20

Breaking changes

• Strict runtime wiring redefinition checks now on by default. We now have stricter runtime wiring redefinition checks by default to catch invalid cases. For example, a field that already had a DataFetcher registered must not have a second DataFetcher registered. This can be toggled off. graphql-java/graphql-java#3824

• Removed an unused protected method in ExecutionStrategy. graphql-java/graphql-java#3881

• A small breaking change to AstPrinter to enable re-use of StringBuilders graphql-java/graphql-java#3853

... (truncated)

Commits

• 6ff6f7d Merge pull request #3919 from graphql-java/cherry-pick-subs-validation-revert
• 18ac75c Cherry pick revert of susbcriptions include and skip rule from master
• 27b9def Merge pull request #3858 from graphql-java/java-dataloader-update
• d2c45ea Add performance results for commit 154bb89d14e9701d1b9f0764cbf813ba3a3c050a
• 35562f1 Merge branch 'master' into java-dataloader-update
• 154bb89 Merge pull request #3893 from graphql-java/tracking-refactor
• 59195c1 cleanup
• b3e94f4 Add performance results for commit 14c9136a6a33103f69f86f39bcd486bcae2ff525
• 14c9136 Merge pull request #3900 from graphql-java/updgrade-gradle-8.13
• 69f8230 upgrade to gradle 8.13
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[mpbrown]

@dependabot close

[mpbrown]

@dependabot reopen

[mpbrown]

Closed and reopened to get the github checks out of that stalled "waiting for status to be reported" state

[mpbrown]

LGTM testing on dev2

[arinkulshi-skylight]

smoke and backend tests are passing LGTM!