search

ModellingWebLab / WebLab

Django-based front-end for the modelling Web Lab v2
Other
3 stars 2 forks source link

Bump spring-core from 3.2.0.RELEASE to 4.3.21.RELEASE in /weblab/static/js/visualizers/displayPlotHC/exporting-server/java/highcharts-export #355

Closed dependabot[bot] closed 3 years ago

dependabot[bot] commented 3 years ago

Bumps spring-core from 3.2.0.RELEASE to 4.3.21.RELEASE.

Release notes

Sourced from spring-core's releases.

3.2.6 Release

:star: New Features

  • Expression evaluator should accept raw collection value for parameterized method argument [SPR-7831] #12487
  • Map "Foreign key constraint violation occurred" Sybase error code to DataIntegrityViolationException [SPR-11097] #15723
  • Minor issue with fix for CVE 2010-1622 [SPR-11098] #15724
  • Add Maven 'bill-of-materials' project for 3.2.x [SPR-11204] #15512

:beetle: Bug Fixes

  • In spring MVC portlet, @resourceMapping doesn't work. [SPR-10791] #15417
  • Security vulnerabilities in Spring v2.5.6 and v3.2.4 [SPR-10912] #15540
  • Remove integer conversion in JmsListenerContainerParser [SPR-10986] #15614
  • MBeanExporter/MBeanRegistrationSupport lack synchronization [SPR-11002] #15630
  • Use StoredProcedure to call sp, if not set the rowmapper for out parameter which type is cursor, will throw null pointer exception [SPR-11076] #15702
  • ClassPathScanningCandidateComponentProvider.findCandidateComponents fails on private meta-attributes [SPR-11091] #15717
  • If the !profile selector is used the other profiles can be ignored in [SPR-11093] #15719
  • performancedrop due to repeated JDBC 3.0 getParameterType calls in setNull in StatementCreatorUtils [SPR-11100] #15726
  • "CglibAopProxy: Unable to proxy method" WARN when bean class contains static final method [SPR-11107] #15733
  • Type resolution fails for uninitialized factory-method declaration [SPR-11112] #15738
  • Cannot autowire qualified scoped-proxy @Bean definitions [SPR-11116] #15742
  • Dependency Injection issue when using ManagedMap or ManagedList in BeanDefinitionParser [SPR-11131] #15757
  • Fix tests related to java.beans.BeanInfo changes in JDK8-b117 [SPR-11139] #15765
  • ServletTestExecutionListener breaks old code [SPR-11144] #15771
  • Recently changes of GenericTypeAwarePropertyDescriptor breaks BeanUtils.copyProperties() [SPR-11209] #15834
  • ReflectivePropertyAccessor should not consider "is" methods with non boolean returns [SPR-11142] #15768
  • Support multiple comma-separated values in X-Forwarded-Host header [SPR-11140] #15766
  • EhCacheFactoryBean.afterPropertiesSet should be synchronized [SPR-11132] #15758
  • Spring caching: combining multiple @Cacheable within @Caching annotation doesn't work [SPR-11124] #15750
  • EhCacheFactoryBean fails when statistics are enabled [SPR-11080] #15706

3.2.5 Release

:star: New Features

  • Disable the processing of external entities in SourceHttpMessageConverter by default [SPR-11078] #15704
  • Avoid unnecessary char[] allocation in NamedParameterUtils [SPR-11042] #15670
  • Spring doesn't parse jndi variables default values to match the expected-type [SPR-11039] #15667
  • Methods in AnnotationConfigUtils.processCommonDefinitionAnnotations(…) should be public [SPR-11032] #15660
  • PropertyOrFieldReference suffers from potential NullPointerException [SPR-11031] #15659
  • ClassPathBeanDefinitionScanner INFO logging on JSR 330 [SPR-10974] #15602
  • Make createRequestMappingInfo in RequestMappingHandlerMapping protected [SPR-10950] #15578
  • Add XStream CatchAllConverter [SPR-10821] #15447
  • Order of values in @PropertySource annotation depends on name attribute [SPR-10820] #15446

:beetle: Bug Fixes

  • Cannot override singleton with scoped proxy [SPR-10744] #15370
  • ClasspathXmlApplicationContext does not inherit/merge parent context environment [SPR-11068] #15695
  • MockHttpServletRequestBuilder not handling parameter without value [SPR-11043] #15671
  • @Autowired setter randomly called twice or not called at all when two beans of the same class [SPR-11027] #15655

... (truncated)

Commits
  • ca50a47 Release version 4.3.21.RELEASE
  • 9600e01 Revised alias definition example in reference documentation
  • e9f7c35 ResolvableType-based matching consistently respects generic factory method re...
  • cf8479c Upgrade to Tomcat 8.5.35, Netty 4.1.31, Gson 2.8.5, Jackson 2.8.11.3
  • 1c1b942 DefaultResponseErrorHandler detects non-standard error code as well
  • 85b5c5a Polishing
  • ed9afa3 FastByteArrayOutputStream.read byte-to-int conversion
  • 22f4b1c SerializedBeanFactoryReference falls back to dummy with specific id
  • abacc6d BEST_MATCHING_HANDLER_ATTRIBUTE for spring-webmvc
  • 8d668ac Up-to-date version and link in ASM/CGLIB/Objenesis package javadoc
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/ModellingWebLab/WebLab/network/alerts).
codecov[bot] commented 3 years ago

Codecov Report

Merging #355 (1ea4f39) into master (00699c0) will not change coverage. The diff coverage is n/a.

Impacted file tree graph

@@           Coverage Diff           @@
##           master     #355   +/-   ##
=======================================
  Coverage   95.22%   95.22%           
=======================================
  Files          68       68           
  Lines        3768     3768           
  Branches      388      388           
=======================================
  Hits         3588     3588           
  Misses        131      131           
  Partials       49       49

Continue to review full report at Codecov.

Legend - Click here to learn more Δ = absolute <relative> (impact), ø = not affected, ? = missing data Powered by Codecov. Last update 22a54d8...1ea4f39. Read the comment docs.