search

ciso-appsec-mend-evaluation / WebGoat

Other
0 stars 0 forks source link

Update Mend: high confidence minor and patch dependency updates #2

Open mend-for-github-com[bot] opened 6 days ago

mend-for-github-com[bot] commented 6 days ago

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
maven 3.8.1 -> 3.9.9 age adoption passing confidence
org.apache.maven.plugins:maven-enforcer-plugin 3.0.0 -> 3.5.0 age adoption passing confidence
org.apache.commons:commons-compress (source) 1.21 -> 1.27.1 age adoption passing confidence
org.ow2.asm:asm (source) 9.1 -> 9.7 age adoption passing confidence
com.nulab-inc:zxcvbn 1.5.2 -> 1.9.0 age adoption passing confidence
com.thoughtworks.xstream:xstream (source) 1.4.5 -> 1.4.20 age adoption passing confidence
io.github.bonigarcia:webdrivermanager (source) 4.3.1 -> 4.4.3 age adoption passing confidence
org.apache.maven.plugins:maven-surefire-plugin 3.0.0-M5 -> 3.5.0 age adoption passing confidence
org.jsoup:jsoup (source) 1.14.3 -> 1.18.1 age adoption passing confidence
org.bitbucket.b_c:jose4j (source) 0.7.6 -> 0.9.6 age adoption passing confidence
org.apache.commons:commons-text (source) 1.9 -> 1.12.0 age adoption passing confidence
commons-io:commons-io (source) 2.6 -> 2.17.0 age adoption passing confidence
org.apache.maven.plugins:maven-checkstyle-plugin 3.1.2 -> 3.5.0 age adoption passing confidence
cglib:cglib-nodep 2.2 -> 2.2.2 age adoption passing confidence
org.springframework.boot:spring-boot-starter-parent (source) 2.7.1 -> 2.7.18 age adoption passing confidence

Release Notes

nulab/zxcvbn4j (com.nulab-inc:zxcvbn) ### [`v1.9.0`](https://togithub.com/nulab/zxcvbn4j/blob/HEAD/CHANGELOG.md#190-2024-04-06) [Compare Source](https://togithub.com/nulab/zxcvbn4j/compare/1.8.2...1.9.0) - addition of Portuguese in the languages available for feedback [#​173](https://togithub.com/nulab/zxcvbn4j/pull/173) ([javcasrod](https://togithub.com/javcasrod)) - Add exports com.nulabinc.zxcvbn.io to module-info.java [#​175](https://togithub.com/nulab/zxcvbn4j/pull/175) ([HaasJona](https://togithub.com/HaasJona)) - Updated URL to "Five Algorithms..." article [#​169](https://togithub.com/nulab/zxcvbn4j/pull/169) ([weberhofer](https://togithub.com/weberhofer)) - refactor: modifier 'private' is redundant for enum constructors [#​168](https://togithub.com/nulab/zxcvbn4j/pull/168) ([vvatanabe](https://togithub.com/vvatanabe)) - refactor: Deprecate setters in AttackTimes class [#​167](https://togithub.com/nulab/zxcvbn4j/pull/167) ([vvatanabe](https://togithub.com/vvatanabe)) - refactor: Deprecate com.nulabinc.zxcvbn.Guess and introduce new interface in com.nulabinc.zxcvbn.guesses [#​166](https://togithub.com/nulab/zxcvbn4j/pull/166) ([vvatanabe](https://togithub.com/vvatanabe)) - refactor: Deprecate com.nulabinc.zxcvbn.Matcher and introduce new interface in com.nulabinc.zxcvbn.matchers [#​165](https://togithub.com/nulab/zxcvbn4j/pull/165) ([vvatanabe](https://togithub.com/vvatanabe)) - refactor: Initialize all Strength properties via constructor [#​164](https://togithub.com/nulab/zxcvbn4j/pull/164) ([vvatanabe](https://togithub.com/vvatanabe)) - fix: fix sonarcloud maintainability phase 4 [#​163](https://togithub.com/nulab/zxcvbn4j/pull/163) ([vvatanabe](https://togithub.com/vvatanabe)) - fix: fix sonarcloud maintainability phase 3 [#​162](https://togithub.com/nulab/zxcvbn4j/pull/162) ([vvatanabe](https://togithub.com/vvatanabe)) - fix: fix sonar cloud maintainability phase 2 [#​161](https://togithub.com/nulab/zxcvbn4j/pull/161) ([vvatanabe](https://togithub.com/vvatanabe)) - fix: fix sonarcloud maintainability [#​160](https://togithub.com/nulab/zxcvbn4j/pull/160) ([vvatanabe](https://togithub.com/vvatanabe)) - fix: Fix sonarcloud reliability [#​159](https://togithub.com/nulab/zxcvbn4j/pull/159) ([vvatanabe](https://togithub.com/vvatanabe)) - chore: Update GitHub Actions Configuration [#​158](https://togithub.com/nulab/zxcvbn4j/pull/158) ([vvatanabe](https://togithub.com/vvatanabe)) - refactor: refactor and improve code readability in Scoring [#​157](https://togithub.com/nulab/zxcvbn4j/pull/157) ([vvatanabe](https://togithub.com/vvatanabe)) - fix: fix warning messages of checkstyle [#​156](https://togithub.com/nulab/zxcvbn4j/pull/156) ([vvatanabe](https://togithub.com/vvatanabe)) - refactor: Refactoring Feedback [#​155](https://togithub.com/nulab/zxcvbn4j/pull/155) ([vvatanabe](https://togithub.com/vvatanabe)) - refactor: refactoring TimeEstimates class [#​154](https://togithub.com/nulab/zxcvbn4j/pull/154) ([vvatanabe](https://togithub.com/vvatanabe)) - refactor: refactoring guesses package [#​153](https://togithub.com/nulab/zxcvbn4j/pull/153) ([vvatanabe](https://togithub.com/vvatanabe)) - chore: update gradle version to 8.3 and update gradle plugins to latest [#​152](https://togithub.com/nulab/zxcvbn4j/pull/152) ([vvatanabe](https://togithub.com/vvatanabe)) ### [`v1.8.2`](https://togithub.com/nulab/zxcvbn4j/blob/HEAD/CHANGELOG.md#182-2023-08-21) [Compare Source](https://togithub.com/nulab/zxcvbn4j/compare/1.8.1...1.8.2) - fix: fix the discrepancy in password guesses between zxcvbn and zxcvbn4j [#​151](https://togithub.com/nulab/zxcvbn4j/pull/151) ([vvatanabe](https://togithub.com/vvatanabe)) - style: format all with google-java-format [#​150](https://togithub.com/nulab/zxcvbn4j/pull/150) ([vvatanabe](https://togithub.com/vvatanabe)) - refactor: refactoring matchers.Match [#​149](https://togithub.com/nulab/zxcvbn4j/pull/149) ([vvatanabe](https://togithub.com/vvatanabe)) - refactor: refactoring matchers.OmnibusMatcher [#​148](https://togithub.com/nulab/zxcvbn4j/pull/148) ([vvatanabe](https://togithub.com/vvatanabe)) ### [`v1.8.1`](https://togithub.com/nulab/zxcvbn4j/blob/HEAD/CHANGELOG.md#181-2023-08-18) [Compare Source](https://togithub.com/nulab/zxcvbn4j/compare/1.8.0...1.8.1) - fix: improved SpatialMatcher decision logic ([#​84](https://togithub.com/nulab/zxcvbn4j/issues/84)) ([#​129](https://togithub.com/nulab/zxcvbn4j/issues/129)) [#​147](https://togithub.com/nulab/zxcvbn4j/pull/147) ([vvatanabe](https://togithub.com/vvatanabe)) - refactor: refactoring matchers.ReverseDictionaryMatcher [#​146](https://togithub.com/nulab/zxcvbn4j/pull/146) ([vvatanabe](https://togithub.com/vvatanabe)) - style: format code in matchers.RepeatMatcher [#​145](https://togithub.com/nulab/zxcvbn4j/pull/145) ([vvatanabe](https://togithub.com/vvatanabe)) - refactor: refactoring matchers.DateMatcher [#​144](https://togithub.com/nulab/zxcvbn4j/pull/144) ([vvatanabe](https://togithub.com/vvatanabe)) - refactor: refactoring matchers.RegexMatcher [#​143](https://togithub.com/nulab/zxcvbn4j/pull/143) ([vvatanabe](https://togithub.com/vvatanabe)) - refactor: refactoring matchers.DictionaryMatcher [#​142](https://togithub.com/nulab/zxcvbn4j/pull/142) ([vvatanabe](https://togithub.com/vvatanabe)) - refactor: refactoring matchers.L33tMatcher [#​141](https://togithub.com/nulab/zxcvbn4j/pull/141) ([vvatanabe](https://togithub.com/vvatanabe)) - refactor: refactoring matchers.SequenceMatcher [#​140](https://togithub.com/nulab/zxcvbn4j/pull/140) ([vvatanabe](https://togithub.com/vvatanabe)) - fix: fix the warnings from SpotBugs [#​139](https://togithub.com/nulab/zxcvbn4j/pull/139) ([vvatanabe](https://togithub.com/vvatanabe)) - refactor: refactoring matchers.SpatialMatcher [#​138](https://togithub.com/nulab/zxcvbn4j/pull/138) ([vvatanabe](https://togithub.com/vvatanabe)) - refactor: refactoring matchers.RepeatMatcher [#​137](https://togithub.com/nulab/zxcvbn4j/pull/137) ([vvatanabe](https://togithub.com/vvatanabe)) ### [`v1.8.0`](https://togithub.com/nulab/zxcvbn4j/blob/HEAD/CHANGELOG.md#180-2023-04-29) [Compare Source](https://togithub.com/nulab/zxcvbn4j/compare/1.7.0...1.8.0) - Added feedback messages translated into Spanish [#​135](https://togithub.com/nulab/zxcvbn4j/pull/135) ([manchilop](https://togithub.com/manchilop)) - Switch the JavaScript engine used for testing from Nashorn to GraalJS [#​128](https://togithub.com/nulab/zxcvbn4j/pull/128) ([yasuyuki-baba](https://togithub.com/yasuyuki-baba)) - JMH-based set of benchmarks [#​127](https://togithub.com/nulab/zxcvbn4j/pull/127) ([yasuyuki-baba](https://togithub.com/yasuyuki-baba)) ### [`v1.7.0`](https://togithub.com/nulab/zxcvbn4j/blob/HEAD/CHANGELOG.md#170-2022-04-13) [Compare Source](https://togithub.com/nulab/zxcvbn4j/compare/1.6.0...1.7.0) - fix typo in the package name of the resource file ([#​125](https://togithub.com/nulab/zxcvbn4j/issues/125)) [#​126](https://togithub.com/nulab/zxcvbn4j/pull/126) ([vvatanabe](https://togithub.com/vvatanabe)) - Allow users to use their own keyboard layouts and dictionaries [#​124](https://togithub.com/nulab/zxcvbn4j/pull/124) ([yasuyuki-baba](https://togithub.com/yasuyuki-baba)) ### [`v1.6.0`](https://togithub.com/nulab/zxcvbn4j/blob/HEAD/CHANGELOG.md#160-2022-04-05) [Compare Source](https://togithub.com/nulab/zxcvbn4j/compare/1.5.2...1.6.0) - Change the position of the defining signing ([#​121](https://togithub.com/nulab/zxcvbn4j/issues/121)) [#​123](https://togithub.com/nulab/zxcvbn4j/pull/123) ([vvatanabe](https://togithub.com/vvatanabe)) - use configurations.archives in signing ([#​121](https://togithub.com/nulab/zxcvbn4j/issues/121)) [#​122](https://togithub.com/nulab/zxcvbn4j/pull/122) ([vvatanabe](https://togithub.com/vvatanabe)) - Make Scoring.factorial(int) return long [#​116](https://togithub.com/nulab/zxcvbn4j/pull/116) ([InkerBot](https://togithub.com/InkerBot)) - Added Italian translation [#​113](https://togithub.com/nulab/zxcvbn4j/pull/113) ([gdonisi](https://togithub.com/gdonisi)) - Correct strength.score definition [#​117](https://togithub.com/nulab/zxcvbn4j/pull/117) ([AChep](https://togithub.com/AChep)) - Fixes [#​110](https://togithub.com/nulab/zxcvbn4j/issues/110) - correct encoding for French and German. [#​111](https://togithub.com/nulab/zxcvbn4j/pull/111) ([40rn05lyv](https://togithub.com/40rn05lyv)) - Add module-info.java [#​104](https://togithub.com/nulab/zxcvbn4j/pull/104) ([overheadhunter](https://togithub.com/overheadhunter)) - temporarily remove test with JDK 17 ([#​119](https://togithub.com/nulab/zxcvbn4j/issues/119)) [#​120](https://togithub.com/nulab/zxcvbn4j/pull/120) ([vvatanabe](https://togithub.com/vvatanabe)) - Migrated to GitHub Actions [#​112](https://togithub.com/nulab/zxcvbn4j/pull/112) ([overheadhunter](https://togithub.com/overheadhunter)) - Update README.md [#​108](https://togithub.com/nulab/zxcvbn4j/pull/108) ([eltociear](https://togithub.com/eltociear))
bonigarcia/webdrivermanager (io.github.bonigarcia:webdrivermanager) ### [`v4.4.3`](https://togithub.com/bonigarcia/webdrivermanager/blob/HEAD/CHANGELOG.md#443---2021-05-09) ##### Added - Support for ARM64 (Aarch64) architecture (issue [#​634](https://togithub.com/bonigarcia/webdrivermanager/issues/634)) - Include method arm64() in WDM API to specify ARM64 architecture ##### Fixed - Fix execution of registry query commands to detect browser version (for Windows) ### [`v4.4.2`](https://togithub.com/bonigarcia/webdrivermanager/blob/HEAD/CHANGELOG.md#442---2021-05-09) - Due to a problem in the release procedure, version 4.4.2 is identical to 4.4.1 ### [`v4.4.1`](https://togithub.com/bonigarcia/webdrivermanager/blob/HEAD/CHANGELOG.md#441---2021-04-22) ##### Fixed - Fix browser version detection in Mac (issue [#​632](https://togithub.com/bonigarcia/webdrivermanager/issues/632)) ### [`v4.4.0`](https://togithub.com/bonigarcia/webdrivermanager/blob/HEAD/CHANGELOG.md#440---2021-03-06) ##### Added - Automatic module name in MANIFEST.MF for JDK 9+ support (PR [#​615](https://togithub.com/bonigarcia/webdrivermanager/issues/615)) - Include config key wdm.browserVersionDetectionRegex, equivalent to API method browserVersionDetectionRegex() - Expose method .exportParameter() in WebDriverManager API - Include config key wdm.useChromiumDriverSnap to use Chromium snap package (false by default) - Support local URLs (file://) for versions and commands properties - Include new API methods: useLocalCommandsPropertiesFirst(), versionsPropertiesUrl(URL), and commandsPropertiesUrl(URL) ##### Changed - Extract commands database as a properties file (commands.properties) ##### Removed - Remove method browserPath() in WebDriverManager API (changed by browserVersionDetectionCommand())
jhy/jsoup (org.jsoup:jsoup) ### [`v1.18.1`](https://togithub.com/jhy/jsoup/blob/HEAD/CHANGES.md#1181-2024-Jul-10) ##### Improvements - **Stream Parser**: A `StreamParser` provides a progressive parse of its input. As each `Element` is completed, it is emitted via a `Stream` or `Iterator` interface. Elements returned will be complete with all their children, and an (empty) next sibling, if applicable. Elements (or their children) may be removed from the DOM during the parse, for e.g. to conserve memory, providing a mechanism to parse an input document that would otherwise be too large to fit into memory, yet still providing a DOM interface to the document and its elements. Additionally, the parser provides a `selectFirst(String query)` / `selectNext(String query)`, which will run the parser until a hit is found, at which point the parse is suspended. It can be resumed via another `select()` call, or via the `stream()` or `iterator()` methods. [2096](https://togithub.com/jhy/jsoup/pull/2096) - **Download Progress**: added a Response Progress event interface, which reports progress and URLs are downloaded (and parsed). Supported on both a session and a single connection level. [2164](https://togithub.com/jhy/jsoup/pull/2164), [656](https://togithub.com/jhy/jsoup/issues/656) - Added `Path` accepting parse methods: `Jsoup.parse(Path)`, `Jsoup.parse(path, charsetName, baseUri, parser)`, etc. [2055](https://togithub.com/jhy/jsoup/pull/2055) - Updated the `button` tag configuration to include a space between multiple button elements in the `Element.text()` method. [2105](https://togithub.com/jhy/jsoup/issues/2105) - Added support for the `ns|*` all elements in namespace Selector. [1811](https://togithub.com/jhy/jsoup/issues/1811) - When normalising attribute names during serialization, invalid characters are now replaced with `_`, vs being stripped. This should make the process clearer, and generally prevent an invalid attribute name being coerced unexpectedly. [2143](https://togithub.com/jhy/jsoup/issues/2143) ##### Changes - Removed previously deprecated internal classes and methods. [2094](https://togithub.com/jhy/jsoup/pull/2094) - Build change: the built jar's OSGi manifest no longer imports itself. [2158](https://togithub.com/jhy/jsoup/issues/2158) ##### Bug Fixes - When tracking source positions, if the first node was a TextNode, its position was incorrectly set to `-1.` [2106](https://togithub.com/jhy/jsoup/issues/2106) - When connecting (or redirecting) to URLs with characters such as `{`, `}` in the path, a Malformed URL exception would be thrown (if in development), or the URL might otherwise not be escaped correctly (if in production). The URL encoding process has been improved to handle these characters correctly. [2142](https://togithub.com/jhy/jsoup/issues/2142) - When using `W3CDom` with a custom output Document, a Null Pointer Exception would be thrown. [2114](https://togithub.com/jhy/jsoup/pull/2114) - The `:has()` selector did not match correctly when using sibling combinators (like e.g.: `h1:has(+h2)`). [2137](https://togithub.com/jhy/jsoup/issues/2137) - The `:empty` selector incorrectly matched elements that started with a blank text node and were followed by non-empty nodes, due to an incorrect short-circuit. [2130](https://togithub.com/jhy/jsoup/issues/2130) - `Element.cssSelector()` would fail with "Did not find balanced marker" when building a selector for elements that had a `(` or `[` in their class names. And selectors with those characters escaped would not match as expected. [2146](https://togithub.com/jhy/jsoup/issues/2146) - Updated `Entities.escape(string)` to make the escaped text suitable for both text nodes and attributes (previously was only for text nodes). This does not impact the output of `Element.html()` which correctly applies a minimal escape depending on if the use will be for text data or in a quoted attribute. [1278](https://togithub.com/jhy/jsoup/issues/1278) - Fuzz: a Stack Overflow exception could occur when resolving a crafted `` URL, in the normalizing regex. [2165](https://togithub.com/jhy/jsoup/issues/2165) *** ### [`v1.17.2`](https://togithub.com/jhy/jsoup/blob/HEAD/CHANGES.md#1172-2023-Dec-29) ##### Improvements - **Attribute object accessors**: Added `Element.attribute(String)` and `Attributes.attribute(String)` to more simply obtain an `Attribute` object. [2069](https://togithub.com/jhy/jsoup/issues/2069) - **Attribute source tracking**: If source tracking is on, and an Attribute's key is changed ( via `Attribute.setKey(String)`), the source range is now still tracked in `Attribute.sourceRange()`. [2070](https://togithub.com/jhy/jsoup/issues/2070) - **Wildcard attribute selector**: Added support for the `[*]` element with any attribute selector. And also restored support for selecting by an empty attribute name prefix (`[^]`). [2079](https://togithub.com/jhy/jsoup/issues/2079) ##### Bug Fixes - **Mixed-cased source position**: When tracking the source position of attributes, if the source attribute name was mix-cased but the parser was lower-case normalizing attribute names, the source position for that attribute was not tracked correctly. [2067](https://togithub.com/jhy/jsoup/issues/2067) - **Source position NPE**: When tracking the source position of a body fragment parse, a null pointer exception was thrown. [2068](https://togithub.com/jhy/jsoup/issues/2068) - **Multi-point emoji entity**: A multi-point encoded emoji entity may be incorrectly decoded to the replacement character. [2074](https://togithub.com/jhy/jsoup/issues/2074) - **Selector sub-expressions**: (Regression) in a selector like `parent [attr=va], other`, the `, OR` was binding to `[attr=va]` instead of `parent [attr=va]`, causing incorrect selections. The fix includes a EvaluatorDebug class that generates a sexpr to represent the query, allowing simpler and more thorough query parse tests. [2073](https://togithub.com/jhy/jsoup/issues/2073) - **XML CData output**: When generating XML-syntax output from parsed HTML, script nodes containing (pseudo) CData sections would have an extraneous CData section added, causing script execution errors. Now, the data content is emitted in a HTML/XML/XHTML polyglot format, if the data is not already within a CData section. [2078](https://togithub.com/jhy/jsoup/issues/2078) - **Thread safety**: The `:has` evaluator held a non-thread-safe Iterator, and so if an Evaluator object was shared across multiple concurrent threads, a NoSuchElement exception may be thrown, and the selected results may be incorrect. Now, the iterator object is a thread-local. [2088](https://togithub.com/jhy/jsoup/issues/2088) *** Older changes for versions 0.1.1 (2010-Jan-31) through 1.17.1 (2023-Nov-27) may be found in [change-archive.txt](./change-archive.txt).
spring-projects/spring-boot (org.springframework.boot:spring-boot-starter-parent) ### [`v2.7.18`](https://togithub.com/spring-projects/spring-boot/releases/tag/v2.7.18) [Compare Source](https://togithub.com/spring-projects/spring-boot/compare/v2.7.17...v2.7.18) #### ⚠️ Noteworthy Changes - Following the Paketo team's [announcement](https://blog.paketo.io/posts/paketo-bionic-builder-is-unsafe/) that the Bionic CNB builders will be removed, the default builder using by `bootBuildImage` (Gradle) and `spring-boot:build-image` (Maven) has been changed to Paketo Jammy [#​38477](https://togithub.com/spring-projects/spring-boot/issues/38477) #### :lady_beetle: Bug Fixes - App fails to start with a NoSuchMethodError when using Flyway 10.0.0 [#​38164](https://togithub.com/spring-projects/spring-boot/issues/38164) - spring.webflux.multipart.max-disk-usage-per-part behaves incorrectly for values where the number of bytes overflows an int [#​38146](https://togithub.com/spring-projects/spring-boot/issues/38146) - Mail health indicator fails when host is not set in properties [#​38007](https://togithub.com/spring-projects/spring-boot/issues/38007) #### :notebook_with_decorative_cover: Documentation - Document supported SQL comment prefixes [#​38385](https://togithub.com/spring-projects/spring-boot/pull/38385) - Fix link to Elasticsearch health indicator [#​38330](https://togithub.com/spring-projects/spring-boot/pull/38330) - Improve --help and documentation for "encodepassword -a/--algorithm" in the Spring Boot CLI [#​38203](https://togithub.com/spring-projects/spring-boot/issues/38203) - Document that TomcatConnectorCustomizers are not applied to additional connectors [#​38183](https://togithub.com/spring-projects/spring-boot/issues/38183) - MyErrorWebExceptionHandler example in documentation isn't working [#​38104](https://togithub.com/spring-projects/spring-boot/issues/38104) - Document that SerializationFeature.WRITE_DURATIONS_AS_TIMESTAMPS is disabled by default [#​38083](https://togithub.com/spring-projects/spring-boot/issues/38083) - Update "Running Behind a Front-end Proxy Server" to include reactive and ForwardedHeaderTransformer [#​37282](https://togithub.com/spring-projects/spring-boot/issues/37282) - Improve documentation of `classpath.idx` file and its generation by the Maven and Gradle plugins [#​37125](https://togithub.com/spring-projects/spring-boot/issues/37125) - Document configuration for building images with Colima [#​34522](https://togithub.com/spring-projects/spring-boot/issues/34522) - Code sample in "Developing Your First Spring Boot Application" does not work [#​34513](https://togithub.com/spring-projects/spring-boot/issues/34513) - Document ConfigurationPropertyCaching [#​34172](https://togithub.com/spring-projects/spring-boot/issues/34172) - Document that application.\* banner variables require a packaged jar or the use of Boot's launcher [#​33489](https://togithub.com/spring-projects/spring-boot/issues/33489) - Add section on AspectJ support [#​32642](https://togithub.com/spring-projects/spring-boot/issues/32642) - Document server.servlet.encoding.\* properties and server.servlet.encoding.mapping in particular [#​32472](https://togithub.com/spring-projects/spring-boot/issues/32472) - Add a section on customizing embedded reactive servers [#​31917](https://togithub.com/spring-projects/spring-boot/issues/31917) - Clarify that MVC components provided through WebMvcRegistrations are subject to subsequent processing and configuration by MVC [#​31232](https://togithub.com/spring-projects/spring-boot/issues/31232) - Clarifying documentation on including a top-level `@TestConfiguration` class in a test [#​30513](https://togithub.com/spring-projects/spring-boot/issues/30513) - Clarify that `@AutoConfigureWebTestClient` binds WebTestClient to mock infrastructure [#​29890](https://togithub.com/spring-projects/spring-boot/issues/29890) - Improve systemd configuration documentation [#​28453](https://togithub.com/spring-projects/spring-boot/issues/28453) - Document how to customize the basePackages that auto-configurations consider (for example Spring Data Repositories) [#​27549](https://togithub.com/spring-projects/spring-boot/issues/27549) - Document additional user configuration that's required after setting `spring.hateoas.use-hal-as-default-json-media-type` to `false` [#​26814](https://togithub.com/spring-projects/spring-boot/issues/26814) - Add how-to documentation for test-only database migrations with Flyway/Liquibase [#​26796](https://togithub.com/spring-projects/spring-boot/issues/26796) #### :hammer: Dependency Upgrades - Upgrade to ActiveMQ 5.16.7 [#​38427](https://togithub.com/spring-projects/spring-boot/issues/38427) - Upgrade to DB2 JDBC 11.5.9.0 [#​38428](https://togithub.com/spring-projects/spring-boot/issues/38428) - Upgrade to Dropwizard Metrics 4.2.22 [#​38429](https://togithub.com/spring-projects/spring-boot/issues/38429) - Upgrade to Elasticsearch 7.17.15 [#​38430](https://togithub.com/spring-projects/spring-boot/issues/38430) - Upgrade to Glassfish JAXB 2.3.9 [#​38431](https://togithub.com/spring-projects/spring-boot/issues/38431) - Upgrade to Micrometer 1.9.17 [#​38279](https://togithub.com/spring-projects/spring-boot/issues/38279) - Upgrade to Netty 4.1.101.Final [#​38432](https://togithub.com/spring-projects/spring-boot/issues/38432) - Upgrade to Pooled JMS 1.2.6 [#​38433](https://togithub.com/spring-projects/spring-boot/issues/38433) - Upgrade to Reactor Bom 2020.0.38 [#​38280](https://togithub.com/spring-projects/spring-boot/issues/38280) - Upgrade to Spring Batch 4.3.10 [#​38281](https://togithub.com/spring-projects/spring-boot/issues/38281) - Upgrade to Spring Data Bom 2021.2.18 [#​38282](https://togithub.com/spring-projects/spring-boot/issues/38282) - Upgrade to Spring Framework 5.3.31 [#​38283](https://togithub.com/spring-projects/spring-boot/issues/38283) - Upgrade to Spring HATEOAS 1.5.6 [#​38373](https://togithub.com/spring-projects/spring-boot/issues/38373) - Upgrade to Spring Integration 5.5.20 [#​38491](https://togithub.com/spring-projects/spring-boot/issues/38491) - Upgrade to Spring RESTDocs 2.0.8.RELEASE [#​38434](https://togithub.com/spring-projects/spring-boot/issues/38434) - Upgrade to Spring WS 3.1.8 [#​38284](https://togithub.com/spring-projects/spring-boot/issues/38284) - Upgrade to Tomcat 9.0.83 [#​38435](https://togithub.com/spring-projects/spring-boot/issues/38435) #### :heart: Contributors Thank you to all the contributors who worked on this release: [@​GVictorG7](https://togithub.com/GVictorG7), [@​PENEKhun](https://togithub.com/PENEKhun), [@​dreis2211](https://togithub.com/dreis2211), and [@​izeye](https://togithub.com/izeye) ### [`v2.7.17`](https://togithub.com/spring-projects/spring-boot/releases/tag/v2.7.17) [Compare Source](https://togithub.com/spring-projects/spring-boot/compare/v2.7.16...v2.7.17) #### :warning: Noteworthy Changes - The behavior of `spring.jms.listener.concurrency` has been corrected to match the documentation ([#​37180](https://togithub.com/spring-projects/spring-boot/pull/37180)). If you were setting `spring.jms.listener.concurrency` without also setting `spring.jms.listener.max-concurrency`, please review your configuration when upgrading. #### :lady_beetle: Bug Fixes - `@Order` does not work on (CommandLine|Application)Runner `@Bean` methods [#​37905](https://togithub.com/spring-projects/spring-boot/pull/37905) - Gradle plugin uses to-be-deprecated API for getting and setting file permissions [#​37878](https://togithub.com/spring-projects/spring-boot/issues/37878) - Task executor metrics are not registered when using lazy initialization [#​37832](https://togithub.com/spring-projects/spring-boot/issues/37832) - Constructor binding with a custom collection type does not work [#​37734](https://togithub.com/spring-projects/spring-boot/issues/37734) - Dependency management for kafka-server-common with a test classifier is missing [#​37499](https://togithub.com/spring-projects/spring-boot/issues/37499) - fileMode and dirMode are not applied to all entries in an archive produced by BootJar [#​37496](https://togithub.com/spring-projects/spring-boot/issues/37496) - Gradle plugin's build info support produces a deprecation warning when using Gradle 8.4-rc-1 [#​37493](https://togithub.com/spring-projects/spring-boot/issues/37493) - RepackageMojo doesn't support 1 digit numerical values for project.build.outputTimestamp [#​37438](https://togithub.com/spring-projects/spring-boot/pull/37438) - Restarter creates memory leak in tests [#​37373](https://togithub.com/spring-projects/spring-boot/issues/37373) - Contrary to the documentation, setting spring.jms.listener.concurrency alone configures the maximum concurrency [#​37180](https://togithub.com/spring-projects/spring-boot/pull/37180) - Application fails to start when an optional config import cannot be resolved [#​35683](https://togithub.com/spring-projects/spring-boot/issues/35683) - `@ComponentScan` on a test class is processed when creating a test context but is not included in the context's cache key [#​31577](https://togithub.com/spring-projects/spring-boot/issues/31577) - AspectJ transaction management with compile-time weaving does not work with spring.main.lazy-initialization=true [#​37506](https://togithub.com/spring-projects/spring-boot/issues/37506) #### :notebook_with_decorative_cover: Documentation - Remove link to LiveReload website due to timeout [#​37643](https://togithub.com/spring-projects/spring-boot/pull/37643) - Refer to ActiveMQ as ActiveMQ "Classic" [#​37606](https://togithub.com/spring-projects/spring-boot/pull/37606) - Use more idiomatic Kotlin in example for "Map Health Indicators to Micrometer Metrics" [#​37491](https://togithub.com/spring-projects/spring-boot/pull/37491) - Document support for Java 21 [#​37371](https://togithub.com/spring-projects/spring-boot/issues/37371) #### :hammer: Dependency Upgrades - Upgrade to Dropwizard Metrics 4.2.21 [#​37893](https://togithub.com/spring-projects/spring-boot/issues/37893) - Upgrade to Elasticsearch 7.17.14 [#​37840](https://togithub.com/spring-projects/spring-boot/issues/37840) - Upgrade to Infinispan 13.0.20.Final [#​37841](https://togithub.com/spring-projects/spring-boot/issues/37841) - Upgrade to Jetty 9.4.53.v20231009 [#​37842](https://togithub.com/spring-projects/spring-boot/issues/37842) - Upgrade to Jetty Reactive HTTPClient 1.1.15 [#​37927](https://togithub.com/spring-projects/spring-boot/issues/37927) - Upgrade to Micrometer 1.9.16 [#​37674](https://togithub.com/spring-projects/spring-boot/issues/37674) - Upgrade to Netty 4.1.100.Final [#​37843](https://togithub.com/spring-projects/spring-boot/issues/37843) - Upgrade to Pooled JMS 1.2.5 [#​37894](https://togithub.com/spring-projects/spring-boot/issues/37894) - Upgrade to Reactor Bom 2020.0.37 [#​37675](https://togithub.com/spring-projects/spring-boot/issues/37675) - Upgrade to Spring AMQP 2.4.17 [#​37676](https://togithub.com/spring-projects/spring-boot/issues/37676) - Upgrade to Spring Data Bom 2021.2.17 [#​37677](https://togithub.com/spring-projects/spring-boot/issues/37677) - Upgrade to Spring Session Bom 2021.2.3 [#​37928](https://togithub.com/spring-projects/spring-boot/issues/37928) - Upgrade to Tomcat 9.0.82 [#​37895](https://togithub.com/spring-projects/spring-boot/issues/37895) - Upgrade to UnboundID LDAPSDK 6.0.10 [#​37753](https://togithub.com/spring-projects/spring-boot/issues/37753) - Upgrade to Undertow 2.2.28.Final [#​37929](https://togithub.com/spring-projects/spring-boot/issues/37929) #### :heart: Contributors Thank you to all the contributors who worked on this release: [@​bottlerocketjonny](https://togithub.com/bottlerocketjonny), [@​dependabot](https://togithub.com/dependabot)\[bot], [@​erichaagdev](https://togithub.com/erichaagdev), [@​esperar](https://togithub.com/esperar), [@​izeye](https://togithub.com/izeye), [@​jbertram](https://togithub.com/jbertram), [@​nielsbasjes](https://togithub.com/nielsbasjes), [@​onobc](https://togithub.com/onobc), [@​ttddyy](https://togithub.com/ttddyy), and [@​vpavic](https://togithub.com/vpavic) ### [`v2.7.16`](https://togithub.com/spring-projects/spring-boot/releases/tag/v2.7.16) [Compare Source](https://togithub.com/spring-projects/spring-boot/compare/v2.7.15...v2.7.16) #### :star: New Features - Add TWENTY_ONE to JavaVersion enum [#​37362](https://togithub.com/spring-projects/spring-boot/issues/37362) #### :lady_beetle: Bug Fixes - Invalid Accept header produces HTTP 500 in WelcomePageHandlerMapping [#​37455](https://togithub.com/spring-projects/spring-boot/issues/37455) - PrivateKeyParser doesn't support ed448, XDH and RSA-PSS keys [#​37237](https://togithub.com/spring-projects/spring-boot/issues/37237) - Parsing OCI image names that are invalid due to the use of upper case letters is very slow [#​35657](https://togithub.com/spring-projects/spring-boot/issues/35657) - Using https with elliptic curves other than secp384r1 fails [#​34232](https://togithub.com/spring-projects/spring-boot/issues/34232) - Saml2RelyingPartyAutoConfiguration ignores `sign-request` when `metadata-url` is used [#​33747](https://togithub.com/spring-projects/spring-boot/issues/33747) - Leaking file descriptor / socket within DomainSocket tooling [#​32423](https://togithub.com/spring-projects/spring-boot/issues/32423) #### :notebook_with_decorative_cover: Documentation - Correct the description of spring.artemis.broker-url [#​37260](https://togithub.com/spring-projects/spring-boot/pull/37260) - Add default value metadata for management.metrics.export.signalfx.published-histogram-type [#​37210](https://togithub.com/spring-projects/spring-boot/pull/37210) - Document that PKCS8 PEM files should be used whenever possible [#​37170](https://togithub.com/spring-projects/spring-boot/issues/37170) - Polish javadoc [#​37112](https://togithub.com/spring-projects/spring-boot/pull/37112) #### :hammer: Dependency Upgrades - Upgrade to Elasticsearch 7.17.13 [#​37286](https://togithub.com/spring-projects/spring-boot/issues/37286) - Upgrade to Jetty 9.4.52.v20230823 [#​37287](https://togithub.com/spring-projects/spring-boot/issues/37287) - Upgrade to Lombok 1.18.30 [#​37486](https://togithub.com/spring-projects/spring-boot/issues/37486) - Upgrade to Micrometer 1.9.15 [#​37245](https://togithub.com/spring-projects/spring-boot/issues/37245) - Upgrade to Reactor Bom 2020.0.36 [#​37246](https://togithub.com/spring-projects/spring-boot/issues/37246) - Upgrade to Spring AMQP 2.4.16 [#​37247](https://togithub.com/spring-projects/spring-boot/issues/37247) - Upgrade to Spring Data Bom 2021.2.16 [#​37248](https://togithub.com/spring-projects/spring-boot/issues/37248) - Upgrade to Spring Framework 5.3.30 [#​37249](https://togithub.com/spring-projects/spring-boot/issues/37249) - Upgrade to Spring GraphQL 1.0.6 [#​37250](https://togithub.com/spring-projects/spring-boot/issues/37250) - Upgrade to Spring Integration 5.5.19 [#​37251](https://togithub.com/spring-projects/spring-boot/issues/37251) - Upgrade to Spring Security 5.7.11 [#​37414](https://togithub.com/spring-projects/spring-boot/issues/37414) - Upgrade to Spring WS 3.1.7 [#​37415](https://togithub.com/spring-projects/spring-boot/issues/37415) - Upgrade to Tomcat 9.0.80 [#​37288](https://togithub.com/spring-projects/spring-boot/issues/37288) #### :heart: Contributors Thank you to all the contributors who worked on this release: [@​dependabot](https://togithub.com/dependabot)\[bot], [@​hakan-krgn](https://togithub.com/hakan-krgn), [@​izeye](https://togithub.com/izeye), [@​mdeinum](https://togithub.com/mdeinum), and [@​quaff](https://togithub.com/quaff) ### [`v2.7.15`](https://togithub.com/spring-projects/spring-boot/releases/tag/v2.7.15) [Compare Source](https://togithub.com/spring-projects/spring-boot/compare/v2.7.14...v2.7.15) #### :warning: Noteworthy Changes - This release upgrades to MariaDB 3.1.4 from 3.0.x to restore compatibility with Java 8. If the upgrade is problematic and Java 8 compatibility is not a requirement, downgrade to 3.0.x by using the `mariadb.version` property #### :lady_beetle: Bug Fixes - Artemis ConnectionFactory is not configured when CachingConnectionFactory is missing and enabled properties are false [#​36767](https://togithub.com/spring-projects/spring-boot/pull/36767) - server.max-http-request-header-size doesn't affect Netty server with http2 enabled [#​36766](https://togithub.com/spring-projects/spring-boot/pull/36766) - LogbackLoggingSystem does not report suppressed exception details [#​36645](https://togithub.com/spring-projects/spring-boot/issues/36645) - Tomcat warns about a missing +/- prefix when enabling multiple protocols through server.ssl.enabled-protocols [#​36572](https://togithub.com/spring-projects/spring-boot/pull/36572) - Descriptions of started and ready time metrics contain time units but the unit may change when the metrics are exported [#​36507](https://togithub.com/spring-projects/spring-boot/pull/36507) - management.metrics.export.wavefront properties are incomplete [#​36498](https://togithub.com/spring-projects/spring-boot/issues/36498) - management.metrics.export.signalfx properties are incomplete [#​36497](https://togithub.com/spring-projects/spring-boot/issues/36497) - management.metrics.export.atlas properties are incomplete [#​36496](https://togithub.com/spring-projects/spring-boot/issues/36496) - Script-based database initialization fails with an unhelpful error message when configured with a resource that points to a directory [#​36386](https://togithub.com/spring-projects/spring-boot/issues/36386) - JobLauncherApplicationRunner returns a success exit code even when no jobs have been run [#​36060](https://togithub.com/spring-projects/spring-boot/pull/36060) - DatabaseDriver swallows real exception [#​34728](https://togithub.com/spring-projects/spring-boot/issues/34728) - Application Context initialized twice during test when exception thrown during initialization [#​24888](https://togithub.com/spring-projects/spring-boot/issues/24888) #### :notebook_with_decorative_cover: Documentation - Maven plugin docs contain invalid parameter for image building [#​37048](https://togithub.com/spring-projects/spring-boot/issues/37048) - Align javadoc of AbstractFilterRegistrationBean#setDispatcherTypes [#​36965](https://togithub.com/spring-projects/spring-boot/pull/36965) - Update RestTemplateBuilder#defaultHeader javadoc to reference correct client-side HTTP request class [#​36614](https://togithub.com/spring-projects/spring-boot/pull/36614) - `@since` is missing from javadoc of values added to JavaVersion since its introduction [#​36608](https://togithub.com/spring-projects/spring-boot/issues/36608) - Document that server.forward-headers-strategy property defaults to native when running on Kubernetes [#​36564](https://togithub.com/spring-projects/spring-boot/pull/36564) - Clarify the effect of using `@EnableWebMvc` [#​36506](https://togithub.com/spring-projects/spring-boot/issues/36506) - Documentation of spring.redis.url incorrectly states that it does not override spring.redis.user [#​36477](https://togithub.com/spring-projects/spring-boot/pull/36477) - Improve documentation to describe how `@EntityScan` and `@Enable?Repositories` can be used to tune scanning [#​36282](https://togithub.com/spring-projects/spring-boot/issues/36282) - Document that scripts for database initialization are optional by default and how they can be made mandatory [#​36176](https://togithub.com/spring-projects/spring-boot/issues/36176) - Document `@DataR2dbcTest` support [#​35014](https://togithub.com/spring-projects/spring-boot/issues/35014) - Update expected size of the jar file in the first application getting started documentation [#​34514](https://togithub.com/spring-projects/spring-boot/issues/34514) - Improve documentation of spring.cache.type=none [#​33694](https://togithub.com/spring-projects/spring-boot/issues/33694) - Clarify that spring.security.filter properties only apply to servlet-based web apps [#​33551](https://togithub.com/spring-projects/spring-boot/issues/33551) - Describe quirks of JUL and Log4j2 in the javadoc of OutputCaptureExtension [#​32562](https://togithub.com/spring-projects/spring-boot/issues/32562) - Documentation describes how to opt in to using the path pattern parser but it's now the default [#​32557](https://togithub.com/spring-projects/spring-boot/issues/32557) - Clarify table that shows how logging properties are transferred to system properties [#​32160](https://togithub.com/spring-projects/spring-boot/issues/32160) - Rework Working with NoSQL Technologies to clarify which stores are supported by Spring Data [#​29694](https://togithub.com/spring-projects/spring-boot/issues/29694) - Clarify how nested directories are treated for configtree with wildcards [#​28203](https://togithub.com/spring-projects/spring-boot/issues/28203) - Document defaults for spring.mvc.format.\* and spring.webflux.format.\* properties [#​30041](https://togithub.com/spring-projects/spring-boot/issues/30041) #### :hammer: Dependency Upgrades - Upgrade to Elasticsearch 7.17.12 [#​36870](https://togithub.com/spring-projects/spring-boot/issues/36870) - Upgrade to Groovy 3.0.19 [#​37055](https://togithub.com/spring-projects/spring-boot/issues/37055) - Upgrade to MariaDB 3.1.4 [#​36394](https://togithub.com/spring-projects/spring-boot/issues/36394) - Upgrade to Micrometer 1.9.14 [#​36824](https://togithub.com/spring-projects/spring-boot/issues/36824) - Upgrade to Netty 4.1.97.Final [#​37085](https://togithub.com/spring-projects/spring-boot/issues/37085) - Upgrade to Reactor Bom 2020.0.35 [#​36825](https://togithub.com/spring-projects/spring-boot/issues/36825) - Upgrade to Spring AMQP 2.4.15 [#​36826](https://togithub.com/spring-projects/spring-boot/issues/36826) - Upgrade to Spring Batch 4.3.9 [#​36827](https://togithub.com/spring-projects/spring-boot/issues/36827) - Upgrade to Spring Data Bom 2021.2.15 [#​36828](https://togithub.com/spring-projects/spring-boot/issues/36828) - Upgrade to Tomcat 9.0.79 [#​36992](https://togithub.com/spring-projects/spring-boot/issues/36992) - Upgrade to Undertow 2.2.26.Final [#​37029](https://togithub.com/spring-projects/spring-boot/issues/37029) #### :heart: Contributors Thank you to all the contributors who worked on this release: [@​MahatmaFatalError](https://togithub.com/MahatmaFatalError), [@​NersesAM](https://togithub.com/NersesAM), [@​chicobento](https://togithub.com/chicobento), [@​dependabot](https://togithub.com/dependabot)\[bot], [@​dreis2211](https://togithub.com/dreis2211), [@​eddumelendez](https://togithub.com/eddumelendez), [@​elevne](https://togithub.com/elevne), [@​fzyzcjy](https://togithub.com/fzyzcjy), [@​itsAkshayDubey](https://togithub.com/itsAkshayDubey), [@​izeye](https://togithub.com/izeye), [@​msobeck](https://togithub.com/msobeck), [@​rob-valor](https://togithub.com/rob-valor), [@​spa-abaudat](https://togithub.com/spa-abaudat), and [@​vpavic](https://togithub.com/vpavic) ### [`v2.7.14`](https://togithub.com/spring-projects/spring-boot/releases/tag/v2.7.14) [Compare Source](https://togithub.com/spring-projects/spring-boot/compare/v2.7.13...v2.7.14) #### :lady_beetle: Bug Fixes - Only one health group can be exposed using management.endpoint.health.group.xxx.additional-path=server:/newpath when using Jersey [#​36250](https://togithub.com/spring-projects/spring-boot/issues/36250) - MockitoPostProcessor doesn't check FactoryBean.OBJECT_TYPE_ATTRIBUTE correctly [#​36224](https://togithub.com/spring-projects/spring-boot/pull/36224) - ConfigurationPropertiesReportEndpoint does not display primitive wrapper types [#​36076](https://togithub.com/spring-projects/spring-boot/issues/36076) - When using Flyway 9.20.0, auto-configuration fails with a NoSuchMethodError due to the removal of Oracle-related methods from FluentConfiguration [#​36029](https://togithub.com/spring-projects/spring-boot/issues/36029) - Saml2RelyingPartyRegistrationConfiguration can choose the wrong RelyingPartyRegistration.Builder when using a metadata file with multiple providers [#​35902](https://togithub.com/spring-projects/spring-boot/pull/35902) - ImportsContextCustomizer does not support AliasFor [#​34917](https://togithub.com/spring-projects/spring-boot/pull/34917) - ConfigurationPropertyName#equals is not symmetric when element has trailing dashes [#​34804](https://togithub.com/spring-projects/spring-boot/pull/34804) #### :notebook_with_decorative_cover: Documentation - Add Javadoc since to ImageReference.inTaglessForm() [#​36048](https://togithub.com/spring-projects/spring-boot/pull/36048) - Polish Kafka Properties Docs [#​36032](https://togithub.com/spring-projects/spring-boot/pull/36032) - Fix typo in the Using R2DBC section of the reference documentation [#​36019](https://togithub.com/spring-projects/spring-boot/pull/36019) - Improve Kubernetes liveness and readiness probes customization documentation [#​34978](https://togithub.com/spring-projects/spring-boot/pull/34978) - Document auto-configuration of underlying HTTP client when using WebClient or RestTemplate [#​34136](https://togithub.com/spring-projects/spring-boot/issues/34136) #### :hammer: Dependency Upgrades - Upgrade to Elasticsearch 7.17.11 [#​36311](https://togithub.com/spring-projects/spring-boot/issues/36311) - Upgrade to Groovy 3.0.18 [#​36312](https://togithub.com/spring-projects/spring-boot/issues/36312) - Upgrade to Janino 3.1.10 [#​36313](https://togithub.com/spring-projects/spring-boot/issues/36313) - Upgrade to Johnzon 1.2.21 [#​36314](https://togithub.com/spring-projects/spring-boot/issues/36314) - Upgrade to Micrometer 1.9.13 [#​36171](https://togithub.com/spring-projects/spring-boot/issues/36171) - Upgrade to Neo4j Java Driver 4.4.12 [#​36315](https://togithub.com/spring-projects/spring-boot/issues/36315) - Upgrade to Rabbit AMQP Client 5.14.3 [#​36316](https://togithub.com/spring-projects/spring-boot/issues/36316) - Upgrade to Reactor Bom 2020.0.34 [#​36172](https://togithub.com/spring-projects/spring-boot/issues/36172) - Upgrade to Spring AMQP 2.4.14 [#​36399](https://togithub.com/spring-projects/spring-boot/issues/36399) - Upgrade to Spring Data Bom 2021.2.14 [#​36173](https://togithub.com/spring-projects/spring-boot/issues/36173) - Upgrade to Spring Framework 5.3.29 [#​36174](https://togithub.com/spring-projects/spring-boot/issues/36174) - Upgrade to Spring HATEOAS 1.5.5 [#​36413](https://togithub.com/spring-projects/spring-boot/issues/36413) - Upgrade to Spring Security 5.7.10 [#​36295](https://togithub.com/spring-projects/spring-boot/issues/36295) - Upgrade to Tomcat 9.0.78 [#​36317](https://togithub.com/spring-projects/spring-boot/issues/36317) #### :heart: Contributors Thank you to all the contributors who worked on this release: [@​ThomazPassarelli](https://togithub.com/ThomazPassarelli), [@​bbulgarelli](https://togithub.com/bbulgarelli), [@​bedla](https://togithub.com/bedla), [@​dependabot](https://togithub.com/dependabot)\[

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.