gradle-standards

📁 bitsoex/bitso-java 📅 Jan 24, 2026

总安装量

周安装量

#30569

全站排名

安装命令

npx skills add https://github.com/bitsoex/bitso-java --skill gradle-standards

Agent 安装分布

claude-code 7

antigravity 6

windsurf 6

opencode 6

gemini-cli 6

codex 6

Skill 文档

Gradle Standards

Standards for Gradle configuration in Java projects, including version catalogs, dependency bundles, and multi-module setup.

When to use this skill

Setting up a new Gradle project
Adding or updating dependencies
Configuring multi-module builds
Troubleshooting dependency conflicts
Migrating to version catalogs
Cleaning up unused dependencies
Optimizing build performance
When asked for “gradle dependencies cleanup”

Skill Contents

Sections

When to use this skill (L23-L33)
Quick Start (L61-L89)
Key Principles (L90-L102)
Version Alignment (L103-L130)
References (L131-L142)
Related Rules (L143-L147)
Dependency Resolution Stack (L148-L187)
Related Skills (L188-L195)

Available Resources

ð references/ – Detailed documentation

Quick Start

1. Version Centralization (Required)

All versions MUST be centralized in gradle/libs.versions.toml:

[versions]
spring-boot = "3.5.9"
grpc = "1.78.0"

[libraries]
spring-boot-starter-web = { module = "org.springframework.boot:spring-boot-starter-web", version.ref = "spring-boot" }
spring-boot-starter-actuator = { module = "org.springframework.boot:spring-boot-starter-actuator", version.ref = "spring-boot" }

2. Use in build.gradle

dependencies {
    // â CORRECT: Use version catalog with explicit dependencies
    implementation libs.spring.boot.starter.web
    implementation libs.spring.boot.starter.actuator

    // â NEVER: Hardcode versions
    // implementation "org.springframework.boot:spring-boot-starter-web:3.5.9"
}

Key Principles

Principle	Description
Centralize Versions	All versions in `libs.versions.toml`, never inline
Explicit Dependencies	Declare each dependency explicitly for clarity
Use Native Locking	Use Gradle’s native dependency locking (Gradle 9+ recommended)
Never Downgrade	Don’t replace existing versions with older ones
Trust BOMs	Spring Boot BOM manages transitive dependencies
Platform Over Enforce	Use `platform()`, never `enforcedPlatform()`
Use resolutionStrategy	Use Gradle’s native `resolutionStrategy` for version control
Lock Dependencies	Generate `gradle.lockfile` for ALL submodules (use `build --write-locks`)

Version Alignment

Use Gradle’s native resolutionStrategy to ensure all modules in a library group use the same version:

// build.gradle - Native Gradle version alignment
configurations.configureEach {
    resolutionStrategy {
        // Force specific versions for security or compatibility
        force libs.jackson.core
        force libs.jackson.databind

        // Align all modules in a group
        eachDependency { details ->
            if (details.requested.group == 'io.grpc') {
                details.useVersion libs.versions.grpc.get()
            }
        }
    }
}

This approach is preferred because:

Subprojects can declare exactly what they need
Dependencies are explicit and visible in build files
No external plugins required (built into Gradle)
First-class support in Gradle 9+

References

Reference	Description
references/version-catalogs.md	Complete version catalog guide
references/multi-module.md	Multi-module project setup
references/native-dependency-locking.md	Gradle native locking (Gradle 9+ recommended)
references/cleanup-workflow.md	Dependency cleanup process
references/unused-detection.md	Finding unused dependencies
references/optimization.md	Build optimization techniques
references/troubleshooting.md	Common issues and solutions

Related Rules

java-gradle-best-practices – Full Gradle configuration reference
java-versions-and-dependencies – Version management policies

Dependency Resolution Stack

âââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââ
â  1. VERSION CATALOG (libs.versions.toml)                            â
â     Single source of truth for declared versions                    â
âââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââ¤
â  2. RESOLUTION STRATEGY (build.gradle)                              â
â     Use Gradle's native resolutionStrategy for:                     â
â     - force() for security fixes                                    â
â     - eachDependency for group alignment                            â
â     - dependencySubstitution for module replacement                 â
âââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââ¤
â  3. LOCK FILE (gradle.lockfile)                                     â
â     Native Gradle locking (Gradle 9+ recommended)                   â
â     Captures EXACT resolved versions                                â
â                                                                     â
â  â ï¸  CRITICAL: Multi-module projects need lockfiles for ALL modules â
â     Use: ./gradlew build --write-locks -x test                      â
â     NOT: ./gradlew dependencies --write-locks (root only!)          â
âââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââ

Lock File:

Native locking – Built-in, no plugins, recommended for Gradle 9+

Multi-Module Lockfile Generation:

# â CORRECT: Generates lockfiles for ALL submodules
./gradlew build --write-locks -x test

# â WRONG: Only generates for ROOT project
./gradlew dependencies --write-locks

# Verify coverage (lockfiles should â build.gradle files)
find . -name "gradle.lockfile" | wc -l
find . -name "build.gradle" | wc -l

Related Skills

Skill	Purpose
`dependency-management`	Version catalogs and BOMs
`dependabot-security`	Security vulnerability fixes
`java-coverage`	JaCoCo configuration in Gradle
`java-testing`	Test configuration with Spock

GitHub 仓库 ↗ ← 返回陌讯 Skills 聚合平台