OWASP / SecurityShepherd

Web and mobile application security training platform
https://owasp.org/www-project-security-shepherd/
GNU General Public License v3.0
1.35k stars 460 forks source link

Bump org.springframework:spring-test from 5.3.23 to 6.0.12 #770

Open dependabot[bot] opened 1 year ago

dependabot[bot] commented 1 year ago

Bumps org.springframework:spring-test from 5.3.23 to 6.0.12.

Release notes

Sourced from org.springframework:spring-test's releases.

v6.0.12

:star: New Features

  • ArithmeticException: long overflow on @Scheduled(fixedDelay = Long.MAX_VALUE, timeUnit = TimeUnit.MINUTES) #31210
  • Polish resolveArgument method in RequestResponseBodyMethodProcessor #31175
  • Update logging level in BeanValidationBeanRegistrationAotProcessor for validation exceptions #31147
  • Skip searching of nonexistent directory in PathMatchingResourcePatternResolver #31111
  • Add @Nullable to argValue in doSetValue() in Argument[Type]PreparedStatementSetter #31086
  • Optimize whitespace checks in StringUtils #31067
  • Missing proxy hint when using a simple JPARepository #31050
  • Register an override for an existing adapter in ReactiveAdapterRegistry #31047
  • DefaultListableBeanFactory#getBeanNamesForType does not take target type into account for FactoryBean resolution #30987
  • Give spring-core access to org.jboss.vfs for VfsUtils support on WildFly #30973
  • Use readNBytes in StringHttpMessageConverter when contentLength is available #30942
  • Skip array sort when the length of array not greater than 1 #30934
  • Avoid flushing for each SseEventBuilder entry #30912
  • Make DefaultGenerationContext(DefaultGenerationContext, String) constructor protected #30895
  • Add missing @Nullable annotations in AbstractResourceResolver subclasses in Spring MVC #30893
  • Performance bottlenecks while creating scoped bean instances #30883
  • Make bean initialization deterministic for multiple @Autowired methods on same bean class #30359
  • Optimize ClassUtils#getMostSpecificMethod #30272
  • Missing native hints for Hibernate Native Query proxy #29603
  • Check exception cause for @PropertySource(ignoreResourceNotFound) support #22276
  • Align validation metadata handling in PayloadMethodArgumentResolver #21852

:lady_beetle: Bug Fixes

  • Spring Boot fails with "does not reside in the file system: manifoldclass://622488023/.../" #31216
  • WebClientResponseException.getResponseBodyAs throws exception instead of returning null for empty body #31179
  • Possible classloader leak through incomplete clearing of annotation caches #31170
  • Spring LogFactory implementation deviates from original Apache LogFactory in terms of abstract method declarations #31166
  • graalvm native image feature PreComputeFieldFeature disable all netty native transports #31141
  • Bean injection fails due to nullSafeConciseToString() invoking isEmpty() on a Map/Collection proxy #31138
  • R2DBC: Skip release connection after nested with existing transaction #31133
  • SpelExpressionParser throws IllegalStateException instead of ParseException for invalid expression #31097
  • @DynamicPropertySource in @Nested test class cannot override dynamic properties from enclosing class #31083
  • Spring Boot WebFlux validation of invalid inputs #31045
  • TransactionalApplicationListenerMethodAdapter should find @TransactionalEventListener on target class method #31034
  • ScheduledAnnotationBeanPostProcessor: graceful shutdown should not interrupt currently running jobs #31019
  • TypeBootstrapContext constructor not called in custom types with Hibernate 6 #30924
  • MethodIntrospector.selectMethods(?) fails to find methods in case of special bridge method arrangement #30906
  • Spring webflux @ModelAttribute annotated methods not working with kotlin suspend methods #30894
  • Support Kotlin Serialization custom serializers #30870
  • Test AOT processing fails if a feature name prefix is reused #30861
  • NoUniqueBeanDefinitionException should make sure beansNameFound is serializable #29753
  • Permgen memory leak due to ClassInfo caching in java.beans.Introspector on JDK 11/17 #27781
  • Model.set() Kotlin extension method does not allow null value #27115
  • Allow PropertySourcesPlaceholderConfigurer subclass to customize PropertyResolver #26761

:notebook_with_decorative_cover: Documentation

... (truncated)

Commits
  • 73a1f4f Release v6.0.12
  • a51eb29 Clarify IN clause resolution with List/Iterable parameter
  • 50d4a44 Upgrade to Context Propagation 1.0.5
  • ebf2cef Upgrade to Reactor 2022.0.11
  • c89002a Upgrade to Micrometer 1.10.11
  • 29a4dab Support @​ModelAttribute with suspending function in WebFlux
  • f5f8eab Remove duplicated section links for test annotations
  • 659500b Polishing
  • 4235a11 Throw IllegalArgumentException for unsupported Duration values
  • 966b0a9 Defensively call Resource.getFile() for fallback resolution
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)