Usually a desktop client can sit out minor JRE versions so you update only the Java / Kotlin code specific to your app. This makes the updates smaller. If there were a security fix, say with serialization or SSL, you might be compelled to upgrade but only if there's external exposure. For example, you have a peer-to-peer setup with open public ports.