alonsoir / demo-kafka-elastic

a demo with spring-boot, kafka, elastic search and docker.
7 stars 2 forks source link

Bump spring-boot-starter-parent from 2.5.3 to 2.5.5 #48

Closed dependabot[bot] closed 3 years ago

dependabot[bot] commented 3 years ago

Bumps spring-boot-starter-parent from 2.5.3 to 2.5.5.

Release notes

Sourced from spring-boot-starter-parent's releases.

v2.5.5

:lady_beetle: Bug Fixes

  • Actuator endpoints do not sanitize SPRING_APPLICATION_JSON by default #28081
  • Startup failure due to non-empty schema when using Flyway and Spring Integration's DataSource initialization #28079
  • Web MVC metrics may have the wrong status when a filter throws an exception other than NestedServletException #28069
  • Embedded Undertow throws MalformedURLException when archive filename contains characters that are reserved in a URL #28032
  • Concurrent image builds cause error deleting builder image #27993
  • War deployment in standalone Tomcat causes memory leak (Metaspace) #27987
  • IndexOutOfBoundsException when running a Zip64 jar file larger than 4,294,967,295 bytes #27900
  • Azure App Service is not correctly detected on Windows #27819
  • @MockBean combined with @Repeat results in "the field cannot have an existing value" error #27798
  • NullPointerException in RoutingDataSourceHealthContributor when a routing data source has a target with a null routing key #27698

:notebook_with_decorative_cover: Documentation

  • Document that devtools restart doesn't work when using AspectJ weaving #28083
  • Default value for spring.data.elasticsearch.client.reactive.endpoints is not documented #28072
  • Clarify Selenium auto-configuration requires HtmlUnit #27943
  • Document that spring-boot-starter-parent configures Java compilation to use -parameters #27885
  • Fix inconsistent devtools doc #27876
  • Fix typo in javadoc #27873
  • Document how to parameterize output directory for REST Docs with WebTestClient #27803
  • Document support for Java 17 #26767

:hammer: Dependency Upgrades

  • Upgrade to Ehcache3 3.9.6 #27974
  • Upgrade to Glassfish EL 3.0.4 #27975
  • Upgrade to Groovy 3.0.9 #27976
  • Upgrade to Gson 2.8.8 #27977
  • Upgrade to Jackson Bom 2.12.5 #27978
  • Upgrade to Jetty EL 9.0.52 #27979
  • Upgrade to jOOQ 3.14.15 #28088
  • Upgrade to Kotlin 1.5.31 #28089
  • Upgrade to Kotlin Coroutines 1.5.2 #27982
  • Upgrade to Lettuce 6.1.5.RELEASE #28031
  • Upgrade to Logback 1.2.6 #27983
  • Upgrade to Maven War Plugin 3.3.2 #27984
  • Upgrade to Micrometer 1.7.4 #27916
  • Upgrade to Netty 4.1.68.Final #27985
  • Upgrade to Netty tcNative 2.0.43.Final #27986
  • Upgrade to Reactor 2020.0.11 #27914
  • Upgrade to SendGrid 4.7.5 #28109
  • Upgrade to Spring Data 2021.0.5 #27917
  • Upgrade to Spring Framework 5.3.10 #27915
  • Upgrade to Spring HATEOAS 1.3.4 #27970
  • Upgrade to Spring Integration 5.5.4 #27949
  • Upgrade to Spring Kafka 2.7.7 #27918
  • Upgrade to Tomcat 9.0.53 #27963

... (truncated)

Commits


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 3 years ago

Superseded by #49.