Version bumps needed for security

Before releasing 0.13, we need to check which dependencies can be bumped up, as there are a couple that have security risks.

One of these is `com.google.guava` by transitivity.