Update gson version to fix sonatype-2025-000535

[silviuburceadev]

gson has fixed sonatype-2025-000535 on their side in version 2.12.0 , so bumping the version in split.io Java client.

See gson 2.12.0 Release notes https://github.com/google/gson/releases/tag/gson-parent-2.12.0, in particular this one:

• Add nesting limit for JsonReader by @Marcono1234 in Add nesting limit for JsonReader google/gson#2588

[silviuburceadev]

@chillaq Is there anything I need to do to have this merged, so we can get rid of the vulnerability?

[robsmorenburg]

+1

This PR was created 1 month ago. What is the status?

[agustinona]

Hi @silviuburceadev and @robsmorenburg apologies for the lack of updates here. This PR is scheduled to be included in our next release.

[robsmorenburg]

Good to hear. What is the planned release date?

Each week we re-evaluate the situation.
Our options are limited.
It impacts squads and our products.

[agustinona]

@robsmorenburg version 4.16.1-rc1 is already available for you to test, and the stable release is expected to be live by tomorrow EOD.

[sanzmauro]

Hi @silviuburceadev and @robsmorenburg,

We’ve released version 4.16.1
I’m going to close this ticket, but feel free to reopen it if needed