fix: detect incompatible Jackson version at startup

[Artur-]

Vaadin requires Jackson 3.1+ but Spring Boot 4.0.3 and earlier ship Jackson 3.0 which has incompatible API changes. This caused a cryptic NoSuchMethodError at runtime. Adding an early check in VaadinService.init() surfaces a clear error message with remediation steps instead.

[github-actions]

Test Results

 1 386 files  ±0   1 386 suites  ±0   1h 29m 9s ⏱️ + 1m 29s
 9 920 tests +1   9 849 ✅ +1  71 💤 ±0  0 ❌ ±0 
10 393 runs  +1  10 313 ✅ +1  80 💤 ±0  0 ❌ ±0 

Results for commit 2528af0. ± Comparison against base commit 0d03ea1.

♻️ This comment has been updated with latest results.

[mcollovati]

One more though about the message. Basically, we are telling users to update Jackson to 3.1.
However, it might be the case that the project is using Jackson 2 and there is actually no need to migrate to 3.1. The fix is to bump to a Jackson 2 version with a compatible jackson-annotation dependency.

For example, Quarkus does not support Jackson 3, but it depends on the latest Jackson 2 version, compatible Jackson 3.1

[mcollovati]

Another potential example is JEE containers like Wildfly, that might ship an older Jackson version that leaks into the application classpath.
In the release notes we already have some hints on how to deal with this, but the proposed message could be misleading.

[Artur-]

Would this new version work better?

[mcollovati]

I'm a bit picky. but the issue is not only about having Jackson 3.0 instead of 3.1.
The problem can still happen if the project uses Jackson 2.19 for its own purposes. This might also cause failures, depending on how transitive dependencies are resolved. In that case the fix would be to bump Jackson 2 to 2.21.x.

We should maybe also add something like: "If you have Jackson 2, update it to version 2.21 or later"

[sonarqubecloud]

Quality Gate passed

Issues
2603 New issues
1 Accepted issue

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud