OWASP / SecurityShepherd

Web and mobile application security training platform
https://owasp.org/www-project-security-shepherd/
GNU General Public License v3.0
1.35k stars 460 forks source link

Bump spring-test from 5.3.23 to 6.0.9 #762

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Bumps spring-test from 5.3.23 to 6.0.9.

Release notes

Sourced from spring-test's releases.

v6.0.9

:star: New Features

  • Consistent support for MultiValueMap and common Map implementations in CollectionFactory #30440
  • Introduce internal constants for implicit bounds in TypeUtils #30423
  • Update major/minor version properties in MockServletContext #30395
  • Reject null and empty SpEL expressions #30371
  • Support Test AOT processing with GraalVM tracing agent and Native Build Tools #30281
  • Introduce Environment.matchesProfiles() for profile expressions #30206
  • Optimize MultiValueMap iteration operations #29972

:lady_beetle: Bug Fixes

  • Respect TaskDecorator configuration on DefaultManagedTaskExecutor #30442
  • Qualifiers registered programmatically are not supported by AOT #30410
  • Support for InjectionPoint in bean factory methods when using AOT #30401
  • Bean methods with generic array/varargs parameters break native compilation #30407
  • ApplicationListenerMethodAdapter supports non-matching generic events #30399
  • Processing several @PersistenceContext injection points on the same class with AOT generates code that does not compile #30437
  • Make maximum SpEL expression length configurable #30380
  • Record beans do not compile to native images #30383
  • Missing resource hint for @PropertySource#value #30376
  • ApplicationEventPublisher - PayloadApplicationEvent not received by EventListener if event fired from child context #30360
  • StringDecoder.decode() should release chunks on cancellation #30299
  • Quote '?' in Quoted Printable filename #30252
  • Missing reflection hint for custom PropertySourceFactory in native image #30175
  • Aot generated sources fail to compile with 'File name too long' error #29846

:notebook_with_decorative_cover: Documentation

  • Update package-info for CGLIB fork #30461
  • Clarify differences between GenericBeanDefinition and RootBeanDefinition #30444
  • Document how to configure FactoryBean with a configurable target with AOT #30434
  • Add Antora docs-build branch #30415
  • Switch the reference documentation to Antora #30414
  • @ResponseStatus documentation incorrect #30305

:hammer: Dependency Upgrades

  • Upgrade to Micrometer 1.10.7 #30451
  • Upgrade to Reactor 2022.0.7 #30450

:heart: Contributors

Thank you to all the contributors who worked on this release:

@​divcon, @​izeye, @​luozhenyu, @​rwinch, @​sigee, and @​yuzawa-san

v6.0.8

:star: New Features

... (truncated)

Commits
  • c9930dd Release v6.0.9
  • 3f889e9 Clarify RootBeanDefinition vs GenericBeanDefinition
  • 6622a3c Consistent package-info declarations for CGLIB fork
  • d8f6567 Download the playbook to build dir
  • 1113096 Support Test AOT processing with GraalVM tracing agent and NBT
  • 89bcee6 Add author tag
  • c8927ae Polishing
  • e228f4b Consistent pre-resolution of event type vs payload type
  • c733ae0 Fix ApplicationListenerMethodAdapter#supportsEventType check
  • aefcb9d Make maximum SpEL expression length configurable
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 1 year ago

Superseded by #764.