search

Samsung / LPVS

License Pre-Validation Service analyzes which open source components and licenses are used in every patch. It returns the list of restricted licenses and the possibility of license violation on the comment with the exact code location and the open source component information.
https://samsung.github.io/LPVS/
MIT License
24 stars 26 forks source link

build(deps): bump org.springframework.boot:spring-boot-starter-parent from 3.3.1 to 3.3.3 #587

Closed dependabot[bot] closed 2 months ago

dependabot[bot] commented 2 months ago

Bumps org.springframework.boot:spring-boot-starter-parent from 3.3.1 to 3.3.3.

Release notes

Sourced from org.springframework.boot:spring-boot-starter-parent's releases.

v3.3.3

:star: New Features

  • Add TWENTY_THREE to JavaVersion enum #41716

:lady_beetle: Bug Fixes

  • Extending DefaultErrorAttributes and overriding getErrorAttributes() gets called twice #41995
  • When using WebFlux, server.error.include-binding-errors=ALWAYS no longer has an effect when the BindingResult exception is the cause of a ResponseStatusException #41987
  • PropertiesLauncher does not respect classpath.idx when adding jars in BOOT-INF/lib to the classpath #41970
  • Web extension for SBOM endpoint isn't available under /cloudfoundryapplication #41890
  • Launcher's ClassLoader is no longer parallel capable #41873
  • spring-boot-testcontainers causes unwanted container initialization during AOT processing #41859
  • ReactiveElasticsearchRepositoriesAutoConfiguration should back off when Reactor is not on the classpath #41678
  • mvn spring-boot:build-image fails when 'classifier' is set to non-default value #41661
  • Spring Boot Maven plugin AOT cannot handle Maven modules with module-info.java #41647
  • Docker publishRegistry in Maven plugin configuration is validated when publish option is false #41641
  • Using Gradle's new file permission API is implemented in a way that prevents removal of the old API #41607
  • Some @ControllerEndpoint and @RestControllerEndpoint infrastructure remains undeprecated #41596
  • Constructor binding of EnumMap fails due to missing key type #41563

:notebook_with_decorative_cover: Documentation

  • Improve documented logging property descriptions and default values #41989
  • Explain that enabling virtual threads disables traditional thread pools #41976
  • Harmonize code sample for MyUserHandler in reference documentation #41949
  • Document when environment variable property mapping applies #41945
  • Javadoc of slice test annotations should describe more accurately which components are considered #41935
  • Fix duplicate words #41920
  • Document the need to explicitly reset mock servers when using mock server customizers directly #41849
  • Correct grammar in 'Running your Application with Maven' #41840
  • Document more clearly that username and password are not used when spring.data.redis.url is set #41748
  • Pulsar configuration does not have default value for several entries in the metadata #41683
  • management.otlp.metrics.export.aggregation-temporality does not have a default value in the metadata #41676
  • management.newrelic.metrics.export.client-provider-type does not have a default value in the metadata #41670
  • server.error.include-path does not have a default value in the metadata #41667
  • The effect upon Actuator of defining your own SecurityFilterChain is documented inconsistently #41638
  • "Use Spring Data repositories" How-to incorrectly refers to Repository annotations #41628
  • "Use Spring Data repositories" How-to incorrectly refers to Repository annotations #41627
  • Update link to documentation for log4j-spring-boot #41622
  • Fix link to Flyway reference documentation #41593
  • Document configuration property binding's support for using @Name to customize a property name #41585
  • Add hint for new dependencies required for Flyway #41574
  • Document that spring-boot:repackage should not be run from the command-line #22317

:hammer: Dependency Upgrades

  • Upgrade to ActiveMQ 6.1.3 #41782
  • Upgrade to Awaitility 4.2.2 #41707

... (truncated)

Commits
  • 27f852a Release v3.3.3
  • f0d2503 Merge branch '3.2.x' into 3.3.x
  • 1822b2f Include spring-boot-starter-parent in Integration tests repository
  • d4e1aed Merge branch '3.2.x' into 3.3.x
  • 0b24ee8 Improve loading of jar entry certificates
  • 29e4607 Merge branch '3.2.x' into 3.3.x
  • 112cfc8 Remove processed annotations plugin declaration
  • 05b73ce Call getErrorAttributes() only once
  • d974686 Upgrade to apachepulsar/pulsar 3.2.4
  • 459d899 Add release type attribute for Antora documentation generation
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 2 months ago

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.