Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the spring group with 17 updates #7878

Closed
wants to merge 1 commit into from
Closed

Bump the spring group with 17 updates #7878

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 1, 2023
edited
Loading

Bumps the spring group with 17 updates:

Package From To
org.springframework.boot 2.7.13 2.7.16
org.springframework.boot:spring-boot-autoconfigure 3.1.1 3.1.4
org.springframework.boot:spring-boot 3.1.1 3.1.4
org.springframework.boot:spring-boot-starter-web 3.1.1 3.1.4
org.springframework.boot:spring-boot-starter-validation 3.1.1 3.1.4
org.springframework.boot:spring-boot-test 3.1.1 3.1.4
org.springframework.boot:spring-boot-starter-test 3.1.1 3.1.4
org.springframework.boot:spring-boot-starter-security 3.1.1 3.1.4
org.springframework.boot:spring-boot-starter-data-redis 3.1.1 3.1.4
org.springframework.boot:spring-boot-starter-actuator 3.1.1 3.1.4
org.springframework.boot:spring-boot-starter-oauth2-resource-server 3.1.1 3.1.4
org.springframework.security:spring-security-config 6.1.1 6.1.4
org.springframework.security:spring-security-core 6.1.1 6.1.4
org.springframework.security:spring-security-ldap 6.1.1 6.1.4
org.springframework.security:spring-security-web 6.1.1 6.1.4
org.springframework.security:spring-security-oauth2-jose 6.1.1 6.1.4
org.springdoc:springdoc-openapi-starter-webmvc-ui 2.1.0 2.2.0

Updates org.springframework.boot from 2.7.13 to 2.7.16

Updates org.springframework.boot:spring-boot-autoconfigure from 3.1.1 to 3.1.4

Release notes

Sourced from org.springframework.boot:spring-boot-autoconfigure's releases.

v3.1.4

⭐ New Features

  • Add TWENTY_ONE to JavaVersion enum #37364

🐞 Bug Fixes

  • When SLF4J and Logback are initialized on multiple threads in parallel, startup may fail due to SubstituteLoggerFactory being considered to be a competing LoggerFactory implementation #37484
  • Saml2RelyingPartyAutoConfiguration ignores sign-request when metadata-url is used #37482
  • Leaking file descriptor / socket within DomainSocket tooling #37460
  • Invalid Accept header produces HTTP 500 in WelcomePageHandlerMapping #37457
  • PrivateKeyParser doesn't support ed448, XDH and RSA-PSS keys #37422
  • "languageVersion is final and cannot be changed" when using Gradle 8.3 and configuring the Java toolchain's language version #37380
  • AOT processing fails when a @ConfigurationProperties-annotated record has multiple constructors #37336
  • Spring Boot dependency management not working for ehcache when using Gradle and the dependency management plugin #37270
  • SslStoreBundle implementations aren't immutable #37222
  • Parsing OCI image names that are invalid due to the use of upper case letters is very slow #37183
  • Producing and consuming different tracing propagation formats doesn't work #37178
  • Using https with elliptic curves other than secp384r1 fails #37169
  • In 3.0.x and later, Spring Security cannot be used to secure a WebSocket upgrade request when using Jetty #37158
  • Local baggage is propagated when using Brave and W3C #37156
  • ServiceConnectionContextCustomizer can trigger docker usage during AOT processing #37097
  • java.lang.OutOfMemoryError: Metaspace when repeatedly deploying and undeploying a Spring Boot web application multiple times in Tomcat #37096
  • Property 'logging.threshold.console' not working #36741

📔 Documentation

  • Document that PKCS8 PEM files should be used whenever possible #37443
  • Add reference to Oracle Spring Boot Starters #37411
  • Correct the description of spring.artemis.broker-url #37309
  • Add default value metadata for management.metrics.export.signalfx.published-histogram-type #37253
  • Polish javadoc #37143

🔨 Dependency Upgrades

  • Upgrade to Byte Buddy 1.14.8 #37419
  • Upgrade to Couchbase Client 3.4.10 #37297
  • Upgrade to Groovy 4.0.15 #37386
  • Upgrade to Hibernate 6.2.9.Final #37465
  • Upgrade to Infinispan 14.0.17.Final #37299
  • Upgrade to Jakarta XML Bind 4.0.1 #37387
  • Upgrade to Jetty 11.0.16 #37300
  • Upgrade to Lombok 1.18.30 #37488
  • Upgrade to Micrometer 1.11.4 #37261
  • Upgrade to Micrometer Tracing 1.1.5 #37262
  • Upgrade to Native Build Tools Plugin 0.9.27 #37420
  • Upgrade to Neo4j Java Driver 5.12.0 #37353
  • Upgrade to Pooled JMS 3.1.3 #37421
  • Upgrade to R2DBC MySQL 1.0.3 #37466
  • Upgrade to Reactor Bom 2022.0.11 #37263

... (truncated)

Commits
  • 3ed1f1a Release v3.1.4
  • 68830a4 Merge branch '3.0.x' into 3.1.x
  • 37adadb Next development version (v3.0.12-SNAPSHOT)
  • 7ae22d6 Merge branch '3.0.x' into 3.1.x
  • b88b8a9 Merge branch '2.7.x' into 3.0.x
  • f24c0e2 Next development version (v2.7.17-SNAPSHOT)
  • 78eb8f9 Merge branch '3.0.x' into 3.1.x
  • 78c3512 Polish
  • 9b5062e Merge branch '2.7.x' into 3.0.x
  • b83e7b4 Update copyright year of changed files
  • Additional commits viewable in compare view

Updates org.springframework.boot:spring-boot from 3.1.1 to 3.1.4

Release notes

Sourced from org.springframework.boot:spring-boot's releases.

v3.1.4

⭐ New Features

  • Add TWENTY_ONE to JavaVersion enum #37364

🐞 Bug Fixes

  • When SLF4J and Logback are initialized on multiple threads in parallel, startup may fail due to SubstituteLoggerFactory being considered to be a competing LoggerFactory implementation #37484
  • Saml2RelyingPartyAutoConfiguration ignores sign-request when metadata-url is used #37482
  • Leaking file descriptor / socket within DomainSocket tooling #37460
  • Invalid Accept header produces HTTP 500 in WelcomePageHandlerMapping #37457
  • PrivateKeyParser doesn't support ed448, XDH and RSA-PSS keys #37422
  • "languageVersion is final and cannot be changed" when using Gradle 8.3 and configuring the Java toolchain's language version #37380
  • AOT processing fails when a @ConfigurationProperties-annotated record has multiple constructors #37336
  • Spring Boot dependency management not working for ehcache when using Gradle and the dependency management plugin #37270
  • SslStoreBundle implementations aren't immutable #37222
  • Parsing OCI image names that are invalid due to the use of upper case letters is very slow #37183
  • Producing and consuming different tracing propagation formats doesn't work #37178
  • Using https with elliptic curves other than secp384r1 fails #37169
  • In 3.0.x and later, Spring Security cannot be used to secure a WebSocket upgrade request when using Jetty #37158
  • Local baggage is propagated when using Brave and W3C #37156
  • ServiceConnectionContextCustomizer can trigger docker usage during AOT processing #37097
  • java.lang.OutOfMemoryError: Metaspace when repeatedly deploying and undeploying a Spring Boot web application multiple times in Tomcat #37096
  • Property 'logging.threshold.console' not working #36741

📔 Documentation

  • Document that PKCS8 PEM files should be used whenever possible #37443
  • Add reference to Oracle Spring Boot Starters #37411
  • Correct the description of spring.artemis.broker-url #37309
  • Add default value metadata for management.metrics.export.signalfx.published-histogram-type #37253
  • Polish javadoc #37143

🔨 Dependency Upgrades

  • Upgrade to Byte Buddy 1.14.8 #37419
  • Upgrade to Couchbase Client 3.4.10 #37297
  • Upgrade to Groovy 4.0.15 #37386
  • Upgrade to Hibernate 6.2.9.Final #37465
  • Upgrade to Infinispan 14.0.17.Final #37299
  • Upgrade to Jakarta XML Bind 4.0.1 #37387
  • Upgrade to Jetty 11.0.16 #37300
  • Upgrade to Lombok 1.18.30 #37488
  • Upgrade to Micrometer 1.11.4 #37261
  • Upgrade to Micrometer Tracing 1.1.5 #37262
  • Upgrade to Native Build Tools Plugin 0.9.27 #37420
  • Upgrade to Neo4j Java Driver 5.12.0 #37353
  • Upgrade to Pooled JMS 3.1.3 #37421
  • Upgrade to R2DBC MySQL 1.0.3 #37466
  • Upgrade to Reactor Bom 2022.0.11 #37263

... (truncated)

Commits
  • 3ed1f1a Release v3.1.4
  • 68830a4 Merge branch '3.0.x' into 3.1.x
  • 37adadb Next development version (v3.0.12-SNAPSHOT)
  • 7ae22d6 Merge branch '3.0.x' into 3.1.x
  • b88b8a9 Merge branch '2.7.x' into 3.0.x
  • f24c0e2 Next development version (v2.7.17-SNAPSHOT)
  • 78eb8f9 Merge branch '3.0.x' into 3.1.x
  • 78c3512 Polish
  • 9b5062e Merge branch '2.7.x' into 3.0.x
  • b83e7b4 Update copyright year of changed files
  • Additional commits viewable in compare view

Updates org.springframework.boot:spring-boot-starter-web from 3.1.1 to 3.1.4

Release notes

Sourced from org.springframework.boot:spring-boot-starter-web's releases.

v3.1.4

⭐ New Features

  • Add TWENTY_ONE to JavaVersion enum #37364

🐞 Bug Fixes

  • When SLF4J and Logback are initialized on multiple threads in parallel, startup may fail due to SubstituteLoggerFactory being considered to be a competing LoggerFactory implementation #37484
  • Saml2RelyingPartyAutoConfiguration ignores sign-request when metadata-url is used #37482
  • Leaking file descriptor / socket within DomainSocket tooling #37460
  • Invalid Accept header produces HTTP 500 in WelcomePageHandlerMapping #37457
  • PrivateKeyParser doesn't support ed448, XDH and RSA-PSS keys #37422
  • "languageVersion is final and cannot be changed" when using Gradle 8.3 and configuring the Java toolchain's language version #37380
  • AOT processing fails when a @ConfigurationProperties-annotated record has multiple constructors #37336
  • Spring Boot dependency management not working for ehcache when using Gradle and the dependency management plugin #37270
  • SslStoreBundle implementations aren't immutable #37222
  • Parsing OCI image names that are invalid due to the use of upper case letters is very slow #37183
  • Producing and consuming different tracing propagation formats doesn't work #37178
  • Using https with elliptic curves other than secp384r1 fails #37169
  • In 3.0.x and later, Spring Security cannot be used to secure a WebSocket upgrade request when using Jetty #37158
  • Local baggage is propagated when using Brave and W3C #37156
  • ServiceConnectionContextCustomizer can trigger docker usage during AOT processing #37097
  • java.lang.OutOfMemoryError: Metaspace when repeatedly deploying and undeploying a Spring Boot web application multiple times in Tomcat #37096
  • Property 'logging.threshold.console' not working #36741

📔 Documentation

  • Document that PKCS8 PEM files should be used whenever possible #37443
  • Add reference to Oracle Spring Boot Starters #37411
  • Correct the description of spring.artemis.broker-url #37309
  • Add default value metadata for management.metrics.export.signalfx.published-histogram-type #37253
  • Polish javadoc #37143

🔨 Dependency Upgrades

  • Upgrade to Byte Buddy 1.14.8 #37419
  • Upgrade to Couchbase Client 3.4.10 #37297
  • Upgrade to Groovy 4.0.15 #37386
  • Upgrade to Hibernate 6.2.9.Final #37465
  • Upgrade to Infinispan 14.0.17.Final #37299
  • Upgrade to Jakarta XML Bind 4.0.1 #37387
  • Upgrade to Jetty 11.0.16 #37300
  • Upgrade to Lombok 1.18.30 #37488
  • Upgrade to Micrometer 1.11.4 #37261
  • Upgrade to Micrometer Tracing 1.1.5 #37262
  • Upgrade to Native Build Tools Plugin 0.9.27 #37420
  • Upgrade to Neo4j Java Driver 5.12.0 #37353
  • Upgrade to Pooled JMS 3.1.3 #37421
  • Upgrade to R2DBC MySQL 1.0.3 #37466
  • Upgrade to Reactor Bom 2022.0.11 #37263

... (truncated)

Commits
  • 3ed1f1a Release v3.1.4
  • 68830a4 Merge branch '3.0.x' into 3.1.x
  • 37adadb Next development version (v3.0.12-SNAPSHOT)
  • 7ae22d6 Merge branch '3.0.x' into 3.1.x
  • b88b8a9 Merge branch '2.7.x' into 3.0.x
  • f24c0e2 Next development version (v2.7.17-SNAPSHOT)
  • 78eb8f9 Merge branch '3.0.x' into 3.1.x
  • 78c3512 Polish
  • 9b5062e Merge branch '2.7.x' into 3.0.x
  • b83e7b4 Update copyright year of changed files
  • Additional commits viewable in compare view

Updates org.springframework.boot:spring-boot-starter-validation from 3.1.1 to 3.1.4

Release notes

Sourced from org.springframework.boot:spring-boot-starter-validation's releases.

v3.1.4

⭐ New Features

  • Add TWENTY_ONE to JavaVersion enum #37364

🐞 Bug Fixes

  • When SLF4J and Logback are initialized on multiple threads in parallel, startup may fail due to SubstituteLoggerFactory being considered to be a competing LoggerFactory implementation #37484
  • Saml2RelyingPartyAutoConfiguration ignores sign-request when metadata-url is used #37482
  • Leaking file descriptor / socket within DomainSocket tooling #37460
  • Invalid Accept header produces HTTP 500 in WelcomePageHandlerMapping #37457
  • PrivateKeyParser doesn't support ed448, XDH and RSA-PSS keys #37422
  • "languageVersion is final and cannot be changed" when using Gradle 8.3 and configuring the Java toolchain's language version #37380
  • AOT processing fails when a @ConfigurationProperties-annotated record has multiple constructors #37336
  • Spring Boot dependency management not working for ehcache when using Gradle and the dependency management plugin #37270
  • SslStoreBundle implementations aren't immutable #37222
  • Parsing OCI image names that are invalid due to the use of upper case letters is very slow #37183
  • Producing and consuming different tracing propagation formats doesn't work #37178
  • Using https with elliptic curves other than secp384r1 fails #37169
  • In 3.0.x and later, Spring Security cannot be used to secure a WebSocket upgrade request when using Jetty #37158
  • Local baggage is propagated when using Brave and W3C #37156
  • ServiceConnectionContextCustomizer can trigger docker usage during AOT processing #37097
  • java.lang.OutOfMemoryError: Metaspace when repeatedly deploying and undeploying a Spring Boot web application multiple times in Tomcat #37096
  • Property 'logging.threshold.console' not working #36741

📔 Documentation

  • Document that PKCS8 PEM files should be used whenever possible #37443
  • Add reference to Oracle Spring Boot Starters #37411
  • Correct the description of spring.artemis.broker-url #37309
  • Add default value metadata for management.metrics.export.signalfx.published-histogram-type #37253
  • Polish javadoc #37143

🔨 Dependency Upgrades

  • Upgrade to Byte Buddy 1.14.8 #37419
  • Upgrade to Couchbase Client 3.4.10 #37297
  • Upgrade to Groovy 4.0.15 #37386
  • Upgrade to Hibernate 6.2.9.Final #37465
  • Upgrade to Infinispan 14.0.17.Final #37299
  • Upgrade to Jakarta XML Bind 4.0.1 #37387
  • Upgrade to Jetty 11.0.16 #37300
  • Upgrade to Lombok 1.18.30 #37488
  • Upgrade to Micrometer 1.11.4 #37261
  • Upgrade to Micrometer Tracing 1.1.5 #37262
  • Upgrade to Native Build Tools Plugin 0.9.27 #37420
  • Upgrade to Neo4j Java Driver 5.12.0 #37353
  • Upgrade to Pooled JMS 3.1.3 #37421
  • Upgrade to R2DBC MySQL 1.0.3 #37466
  • Upgrade to Reactor Bom 2022.0.11 #37263

... (truncated)

Commits
  • 3ed1f1a Release v3.1.4
  • 68830a4 Merge branch '3.0.x' into 3.1.x
  • 37adadb Next development version (v3.0.12-SNAPSHOT)
  • 7ae22d6 Merge branch '3.0.x' into 3.1.x
  • b88b8a9 Merge branch '2.7.x' into 3.0.x
  • f24c0e2 Next development version (v2.7.17-SNAPSHOT)
  • 78eb8f9 Merge branch '3.0.x' into 3.1.x
  • 78c3512 Polish
  • 9b5062e Merge branch '2.7.x' into 3.0.x
  • b83e7b4 Update copyright year of changed files
  • Additional commits viewable in compare view

Updates org.springframework.boot:spring-boot-test from 3.1.1 to 3.1.4

Release notes

Sourced from org.springframework.boot:spring-boot-test's releases.

v3.1.4

⭐ New Features

  • Add TWENTY_ONE to JavaVersion enum #37364

🐞 Bug Fixes

  • When SLF4J and Logback are initialized on multiple threads in parallel, startup may fail due to SubstituteLoggerFactory being considered to be a competing LoggerFactory implementation #37484
  • Saml2RelyingPartyAutoConfiguration ignores sign-request when metadata-url is used #37482
  • Leaking file descriptor / socket within DomainSocket tooling #37460
  • Invalid Accept header produces HTTP 500 in WelcomePageHandlerMapping #37457
  • PrivateKeyParser doesn't support ed448, XDH and RSA-PSS keys #37422
  • "languageVersion is final and cannot be changed" when using Gradle 8.3 and configuring the Java toolchain's language version #37380
  • AOT processing fails when a @ConfigurationProperties-annotated record has multiple constructors #37336
  • Spring Boot dependency management not working for ehcache when using Gradle and the dependency management plugin #37270
  • SslStoreBundle implementations aren't immutable #37222
  • Parsing OCI image names that are invalid due to the use of upper case letters is very slow #37183
  • Producing and consuming different tracing propagation formats doesn't work #37178
  • Using https with elliptic curves other than secp384r1 fails #37169
  • In 3.0.x and later, Spring Security cannot be used to secure a WebSocket upgrade request when using Jetty #37158
  • Local baggage is propagated when using Brave and W3C #37156
  • ServiceConnectionContextCustomizer can trigger docker usage during AOT processing #37097
  • java.lang.OutOfMemoryError: Metaspace when repeatedly deploying and undeploying a Spring Boot web application multiple times in Tomcat #37096
  • Property 'logging.threshold.console' not working #36741

📔 Documentation

  • Document that PKCS8 PEM files should be used whenever possible #37443
  • Add reference to Oracle Spring Boot Starters #37411
  • Correct the description of spring.artemis.broker-url #37309
  • Add default value metadata for management.metrics.export.signalfx.published-histogram-type #37253
  • Polish javadoc #37143

🔨 Dependency Upgrades

  • Upgrade to Byte Buddy 1.14.8 #37419
  • Upgrade to Couchbase Client 3.4.10 #37297
  • Upgrade to Groovy 4.0.15 #37386
  • Upgrade to Hibernate 6.2.9.Final #37465
  • Upgrade to Infinispan 14.0.17.Final #37299
  • Upgrade to Jakarta XML Bind 4.0.1 #37387
  • Upgrade to Jetty 11.0.16 #37300
  • Upgrade to Lombok 1.18.30 #37488
  • Upgrade to Micrometer 1.11.4 #37261
  • Upgrade to Micrometer Tracing 1.1.5 #37262
  • Upgrade to Native Build Tools Plugin 0.9.27 #37420
  • Upgrade to Neo4j Java Driver 5.12.0 #37353
  • Upgrade to Pooled JMS 3.1.3 #37421
  • Upgrade to R2DBC MySQL 1.0.3 #37466
  • Upgrade to Reactor Bom 2022.0.11 #37263

... (truncated)

Commits
  • 3ed1f1a Release v3.1.4
  • 68830a4 Merge branch '3.0.x' into 3.1.x
  • 37adadb Next development version (v3.0.12-SNAPSHOT)
  • 7ae22d6 Merge branch '3.0.x' into 3.1.x
  • b88b8a9 Merge branch '2.7.x' into 3.0.x
  • f24c0e2 Next development version (v2.7.17-SNAPSHOT)
  • 78eb8f9 Merge branch '3.0.x' into 3.1.x
  • 78c3512 Polish
  • 9b5062e Merge branch '2.7.x' into 3.0.x
  • b83e7b4 Update copyright year of changed files
  • Additional commits viewable in compare view

Updates org.springframework.boot:spring-boot-starter-test from 3.1.1 to 3.1.4

Release notes

Sourced from org.springframework.boot:spring-boot-starter-test's releases.

v3.1.4

⭐ New Features

  • Add TWENTY_ONE to JavaVersion enum #37364

🐞 Bug Fixes

  • When SLF4J and Logback are initialized on multiple threads in parallel, startup may fail due to SubstituteLoggerFactory being considered to be a competing LoggerFactory implementation #37484
  • Saml2RelyingPartyAutoConfiguration ignores sign-request when metadata-url is used #37482
  • Leaking file descriptor / socket within DomainSocket tooling #37460
  • Invalid Accept header produces HTTP 500 in WelcomePageHandlerMapping #37457
  • PrivateKeyParser doesn't support ed448, XDH and RSA-PSS keys #37422
  • "languageVersion is final and cannot be changed" when using Gradle 8.3 and configuring the Java toolchain's language version #37380
  • AOT processing fails when a @ConfigurationProperties-annotated record has multiple constructors #37336
  • Spring Boot dependency management not working for ehcache when using Gradle and the dependency management plugin #37270
  • SslStoreBundle implementations aren't immutable #37222
  • Parsing OCI image names that are invalid due to the use of upper case letters is very slow #37183
  • Producing and consuming different tracing propagation formats doesn't work #37178
  • Using https with elliptic curves other than secp384r1 fails #37169
  • In 3.0.x and later, Spring Security cannot be used to secure a WebSocket upgrade request when using Jetty #37158
  • Local baggage is propagated when using Brave and W3C #37156
  • ServiceConnectionContextCustomizer can trigger docker usage during AOT processing #37097
  • java.lang.OutOfMemoryError: Metaspace when repeatedly deploying and undeploying a Spring Boot web application multiple times in Tomcat #37096
  • Property 'logging.threshold.console' not working #36741

📔 Documentation

  • Document that PKCS8 PEM files should be used whenever possible #37443
  • Add reference to Oracle Spring Boot Starters #37411
  • Correct the description of spring.artemis.broker-url #37309
  • Add default value metadata for management.metrics.export.signalfx.published-histogram-type #37253
  • Polish javadoc #37143

🔨 Dependency Upgrades

  • Upgrade to Byte Buddy 1.14.8 #37419
  • Upgrade to Couchbase Client 3.4.10 #37297
  • Upgrade to Groovy 4.0.15 #37386
  • Upgrade to Hibernate 6.2.9.Final #37465
  • Upgrade to Infinispan 14.0.17.Final #37299
  • Upgrade to Jakarta XML Bind 4.0.1 #37387
  • Upgrade to Jetty 11.0.16 #37300
  • Upgrade to Lombok 1.18.30 #37488
  • Upgrade to Micrometer 1.11.4 #37261
  • Upgrade to Micrometer Tracing 1.1.5 #37262
  • Upgrade to Native Build Tools Plugin 0.9.27 #37420
  • Upgrade to Neo4j Java Driver 5.12.0 #37353
  • Upgrade to Pooled JMS 3.1.3 #37421
  • Upgrade to R2DBC MySQL 1.0.3 #37466
  • Upgrade to Reactor Bom 2022.0.11 #37263

... (truncated)

Commits
  • 3ed1f1a Release v3.1.4
  • 68830a4 Merge branch '3.0.x' into 3.1.x
  • 37adadb Next development version (v3.0.12-SNAPSHOT)
  • 7ae22d6 Merge branch '3.0.x' into 3.1.x
  • b88b8a9 Merge branch '2.7.x' into 3.0.x
  • f24c0e2 Next development version (v2.7.17-SNAPSHOT)
  • 78eb8f9 Merge branch '3.0.x' into 3.1.x
  • 78c3512 Polish
  • 9b5062e Merge branch '2.7.x' into 3.0.x
  • b83e7b4 Update copyright year of changed files
  • Additional commits viewable in compare view

Updates org.springframework.boot:spring-boot-starter-security from 3.1.1 to 3.1.4

Release notes

Sourced from org.springframework.boot:spring-boot-starter-security's releases.

v3.1.4

⭐ New Features

  • Add TWENTY_ONE to JavaVersion enum #37364

🐞 Bug Fixes

  • When SLF4J and Logback are initialized on multiple threads in parallel, startup may fail due to SubstituteLoggerFactory being considered to be a competing LoggerFactory implementation #37484
  • Saml2RelyingPartyAutoConfiguration ignores sign-request when metadata-url is used #37482
  • Leaking file descriptor / socket within DomainSocket tooling #37460
  • Invalid Accept header produces HTTP 500 in WelcomePageHandlerMapping #37457
  • PrivateKeyParser doesn't support ed448, XDH and RSA-PSS keys #37422
  • "languageVersion is final and cannot be changed" when using Gradle 8.3 and configuring the Java toolchain's language version #37380
  • AOT processing fails when a @ConfigurationProperties-annotated record has multiple constructors #37336
  • Spring Boot dependency management not working for ehcache when using Gradle and the dependency management plugin #37270
  • SslStoreBundle implementations aren't immutable #37222
  • Parsing OCI image names that are invalid due to the use of upper case letters is very slow #37183
  • Producing and consuming different tracing propagation formats doesn't work #37178
  • Using https with elliptic curves other than secp384r1 fails #37169
  • In 3.0.x and later, Spring Security cannot be used to secure a WebSocket upgrade request when using Jetty #37158
  • Local baggage is propagated when using Brave and W3C #37156
  • ServiceConnectionContextCustomizer can trigger docker usage during AOT processing #37097
  • java.lang.OutOfMemoryError: Metaspace when repeatedly deploying and undeploying a Spring Boot web application multiple times in Tomcat #37096
  • Property 'logging.threshold.console' not working #36741

📔 Documentation

  • Document that PKCS8 PEM files should be used whenever possible #37443
  • Add reference to Oracle Spring Boot Starters #37411
  • Correct the description of spring.artemis.broker-url #37309
  • Add default value metadata for management.metrics.export.signalfx.published-histogram-type #37253
  • Polish javadoc #37143

🔨 Dependency Upgrades

  • Upgrade to Byte Buddy 1.14.8 #37419
  • Upgrade to Couchbase Client 3.4.10 #37297
  • Upgrade to Groovy 4.0.15 #37386
  • Upgrade to Hibernate 6.2.9.Final #37465
  • Upgrade to Infinispan 14.0.17.Final #37299
  • Upgrade to Jakarta XML Bind 4.0.1 #37387
  • Upgrade to Jetty 11.0.16 #37300
  • Upgrade to Lombok 1.18.30 #37488
  • Upgrade to Micrometer 1.11.4 #37261
  • Upgrade to Micrometer Tracing 1.1.5 #37262
  • Upgrade to Native Build Tools Plugin 0.9.27 #37420
  • Upgrade to Neo4j Java Driver 5.12.0 #37353
  • Upgrade to Pooled JMS 3.1.3 #37421
  • Upgrade to R2DBC MySQL 1.0.3 #37466
  • Upgrade to Reactor Bom 2022.0.11 #37263

... (truncated)

Commits
  • 3ed1f1a Release v3.1.4
  • 68830a4 Merge branch '3.0.x' into 3.1.x
  • 37adadb Next development version (v3.0.12-SNAPSHOT)
  • 7ae22d6 Merge branch '3.0.x' into 3.1.x
  • b88b8a9 Merge branch '2.7.x' into 3.0.x
  • f24c0e2 Next development version (v2.7.17-SNAPSHOT)
  • 78eb8f9 Merge branch '3.0.x' into 3.1.x
  • 78c3512 Polish
  • 9b5062e Merge branch '2.7.x' into 3.0.x
  • b83e7b4 Update copyright year of changed files
  • Additional commits viewable in compare view

Updates org.springframework.boot:spring-boot-starter-data-redis from 3.1.1 to 3.1.4

Release notes

Sourced from org.springframework.boot:spring-boot-starter-data-redis's releases.

v3.1.4

⭐ New Features

  • Add TWENTY_ONE to JavaVersion enum #37364

🐞 Bug Fixes

  • When SLF4J and Logback are initialized on multiple threads in parallel, startup may fail due to SubstituteLoggerFactory being considered to be a competing LoggerFactory implementation #37484
  • Saml2RelyingPartyAutoConfiguration ignores sign-request when metadata-url is used #37482
  • Leaking file descriptor / socket within DomainSocket tooling #37460
  • Invalid Accept header produces HTTP 500 in WelcomePageHandlerMapping #37457
  • PrivateKeyParser doesn't support ed448, XDH and RSA-PSS keys #37422
  • "languageVersion is final and cannot be changed" when using Gradle 8.3 and configuring the Java toolchain's language version #37380
  • AOT processing fails when a @ConfigurationProperties-annotated record has multiple constructors #37336
  • Spring Boot dependency management not working for ehcache when using Gradle and the dependency management plugin #37270
  • SslStoreBundle implementations aren't immutable #37222
  • Parsing OCI image names that are invalid due to the use of upper case letters is very slow #37183
  • Producing and consuming different tracing propagation formats doesn't work #37178
  • Using https with elliptic curves other than secp384r1 fails #37169
  • In 3.0.x and later, Spring Security cannot be used to secure a WebSocket upgrade request when using Jetty #37158
  • Local baggage is propagated when using Brave and W3C #37156
  • ServiceConnectionContextCustomizer can trigger docker usage during AOT processing

@dependabot dependabot bot requested a review from planetf1 as a code owner October 1, 2023 03:52
@dependabot dependabot bot added external-dependency Related to an external dependency (ie maven package etc). Bug or update java Pull requests that update Java code labels Oct 1, 2023
@dependabot dependabot bot mentioned this pull request Oct 1, 2023
Closed
@dependabot dependabot bot force-pushed the dependabot/gradle/spring-fc3871d670 branch from 341a2ff to 798bd8c Compare October 3, 2023 09:35
@dependabot
Bump the spring group with 17 updates
d7ef3a3 
Bumps the spring group with 17 updates:

| Package | From | To |
| --- | --- | --- |
| org.springframework.boot | `2.7.13` | `2.7.16` |
| [org.springframework.boot:spring-boot-autoconfigure](https://github.com/spring-projects/spring-boot) | `3.1.1` | `3.1.4` |
| [org.springframework.boot:spring-boot](https://github.com/spring-projects/spring-boot) | `3.1.1` | `3.1.4` |
| [org.springframework.boot:spring-boot-starter-web](https://github.com/spring-projects/spring-boot) | `3.1.1` | `3.1.4` |
| [org.springframework.boot:spring-boot-starter-validation](https://github.com/spring-projects/spring-boot) | `3.1.1` | `3.1.4` |
| [org.springframework.boot:spring-boot-test](https://github.com/spring-projects/spring-boot) | `3.1.1` | `3.1.4` |
| [org.springframework.boot:spring-boot-starter-test](https://github.com/spring-projects/spring-boot) | `3.1.1` | `3.1.4` |
| [org.springframework.boot:spring-boot-starter-security](https://github.com/spring-projects/spring-boot) | `3.1.1` | `3.1.4` |
| [org.springframework.boot:spring-boot-starter-data-redis](https://github.com/spring-projects/spring-boot) | `3.1.1` | `3.1.4` |
| [org.springframework.boot:spring-boot-starter-actuator](https://github.com/spring-projects/spring-boot) | `3.1.1` | `3.1.4` |
| [org.springframework.boot:spring-boot-starter-oauth2-resource-server](https://github.com/spring-projects/spring-boot) | `3.1.1` | `3.1.4` |
| [org.springframework.security:spring-security-config](https://github.com/spring-projects/spring-security) | `6.1.1` | `6.1.4` |
| [org.springframework.security:spring-security-core](https://github.com/spring-projects/spring-security) | `6.1.1` | `6.1.4` |
| [org.springframework.security:spring-security-ldap](https://github.com/spring-projects/spring-security) | `6.1.1` | `6.1.4` |
| [org.springframework.security:spring-security-web](https://github.com/spring-projects/spring-security) | `6.1.1` | `6.1.4` |
| [org.springframework.security:spring-security-oauth2-jose](https://github.com/spring-projects/spring-security) | `6.1.1` | `6.1.4` |
| [org.springdoc:springdoc-openapi-starter-webmvc-ui](https://github.com/springdoc/springdoc-openapi) | `2.1.0` | `2.2.0` |


Updates `org.springframework.boot` from 2.7.13 to 2.7.16

Updates `org.springframework.boot:spring-boot-autoconfigure` from 3.1.1 to 3.1.4
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](spring-projects/spring-boot@v3.1.1...v3.1.4)

Updates `org.springframework.boot:spring-boot` from 3.1.1 to 3.1.4
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](spring-projects/spring-boot@v3.1.1...v3.1.4)

Updates `org.springframework.boot:spring-boot-starter-web` from 3.1.1 to 3.1.4
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](spring-projects/spring-boot@v3.1.1...v3.1.4)

Updates `org.springframework.boot:spring-boot-starter-validation` from 3.1.1 to 3.1.4
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](spring-projects/spring-boot@v3.1.1...v3.1.4)

Updates `org.springframework.boot:spring-boot-test` from 3.1.1 to 3.1.4
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](spring-projects/spring-boot@v3.1.1...v3.1.4)

Updates `org.springframework.boot:spring-boot-starter-test` from 3.1.1 to 3.1.4
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](spring-projects/spring-boot@v3.1.1...v3.1.4)

Updates `org.springframework.boot:spring-boot-starter-security` from 3.1.1 to 3.1.4
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](spring-projects/spring-boot@v3.1.1...v3.1.4)

Updates `org.springframework.boot:spring-boot-starter-data-redis` from 3.1.1 to 3.1.4
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](spring-projects/spring-boot@v3.1.1...v3.1.4)

Updates `org.springframework.boot:spring-boot-starter-actuator` from 3.1.1 to 3.1.4
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](spring-projects/spring-boot@v3.1.1...v3.1.4)

Updates `org.springframework.boot:spring-boot-starter-oauth2-resource-server` from 3.1.1 to 3.1.4
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](spring-projects/spring-boot@v3.1.1...v3.1.4)

Updates `org.springframework.security:spring-security-config` from 6.1.1 to 6.1.4
- [Release notes](https://github.com/spring-projects/spring-security/releases)
- [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc)
- [Commits](spring-projects/spring-security@6.1.1...6.1.4)

Updates `org.springframework.security:spring-security-core` from 6.1.1 to 6.1.4
- [Release notes](https://github.com/spring-projects/spring-security/releases)
- [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc)
- [Commits](spring-projects/spring-security@6.1.1...6.1.4)

Updates `org.springframework.security:spring-security-ldap` from 6.1.1 to 6.1.4
- [Release notes](https://github.com/spring-projects/spring-security/releases)
- [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc)
- [Commits](spring-projects/spring-security@6.1.1...6.1.4)

Updates `org.springframework.security:spring-security-web` from 6.1.1 to 6.1.4
- [Release notes](https://github.com/spring-projects/spring-security/releases)
- [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc)
- [Commits](spring-projects/spring-security@6.1.1...6.1.4)

Updates `org.springframework.security:spring-security-oauth2-jose` from 6.1.1 to 6.1.4
- [Release notes](https://github.com/spring-projects/spring-security/releases)
- [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc)
- [Commits](spring-projects/spring-security@6.1.1...6.1.4)

Updates `org.springdoc:springdoc-openapi-starter-webmvc-ui` from 2.1.0 to 2.2.0
- [Release notes](https://github.com/springdoc/springdoc-openapi/releases)
- [Changelog](https://github.com/springdoc/springdoc-openapi/blob/main/CHANGELOG.md)
- [Commits](springdoc/springdoc-openapi@v2.1.0...v2.2.0)

---
updated-dependencies:
- dependency-name: org.springframework.boot
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: spring
- dependency-name: org.springframework.boot:spring-boot-autoconfigure
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: spring
- dependency-name: org.springframework.boot:spring-boot
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: spring
- dependency-name: org.springframework.boot:spring-boot-starter-web
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: spring
- dependency-name: org.springframework.boot:spring-boot-starter-validation
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: spring
- dependency-name: org.springframework.boot:spring-boot-test
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: spring
- dependency-name: org.springframework.boot:spring-boot-starter-test
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: spring
- dependency-name: org.springframework.boot:spring-boot-starter-security
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: spring
- dependency-name: org.springframework.boot:spring-boot-starter-data-redis
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: spring
- dependency-name: org.springframework.boot:spring-boot-starter-actuator
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: spring
- dependency-name: org.springframework.boot:spring-boot-starter-oauth2-resource-server
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: spring
- dependency-name: org.springframework.security:spring-security-config
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: spring
- dependency-name: org.springframework.security:spring-security-core
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: spring
- dependency-name: org.springframework.security:spring-security-ldap
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: spring
- dependency-name: org.springframework.security:spring-security-web
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: spring
- dependency-name: org.springframework.security:spring-security-oauth2-jose
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: spring
- dependency-name: org.springdoc:springdoc-openapi-starter-webmvc-ui
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: spring
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/gradle/spring-fc3871d670 branch from 798bd8c to d7ef3a3 Compare October 3, 2023 10:19
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Oct 3, 2023

Looks like these dependencies are up-to-date now, so this is no longer needed.

@dependabot dependabot bot closed this Oct 3, 2023
@dependabot dependabot bot deleted the dependabot/gradle/spring-fc3871d670 branch October 3, 2023 15:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@planetf1 planetf1 Awaiting requested review from planetf1

@lpalashevski lpalashevski Awaiting requested review from lpalashevski

@mandy-chessell mandy-chessell Awaiting requested review from mandy-chessell mandy-chessell is a code owner

Assignees
No one assigned
Labels
external-dependency Related to an external dependency (ie maven package etc). Bug or update java Pull requests that update Java code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants