davidmoten / openapi-codegen

OpenAPI Java client and Spring server generator, strong typing, immutability, fail-fast validation, chained builders, feature rich
Apache License 2.0
8 stars 1 forks source link

Bump org.springframework:spring-web from 5.3.30 to 5.3.31 #119

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Bumps org.springframework:spring-web from 5.3.30 to 5.3.31.

Release notes

Sourced from org.springframework:spring-web's releases.

v5.3.31

:star: New Features

  • Log4jLog needs to re-resolve ExtendedLogger on deserialization (for compatibility with Log4J 2.21) #31583

:lady_beetle: Bug Fixes

  • MessageBuilder#createMessage should not define the payload as @Nullable #31611
  • Avoid duplicate JAR resources in PathMatchingResourcePatternResolver on MS Windows #31603
  • Spring web integration commons fileupload receives files and other parameter uploads, with a null pointer #31564
  • Function column out doesn't resolve to SqlOutParameter #31560
  • Resolve to empty MultiValueMap when no matrix variables are provided #31484
  • BeanUtils.copyProperties() consumes large amount of memory #31481
  • CGLIB BeanCopier falls back to ClassLoader.defineClass for public target #31436
  • R2DBC Connection is closed during transaction when using TransactionAwareConnectionFactoryProxy #31411
  • HibernateJpaDialect and HibernateExceptionTranslator throw SQLExceptionTranslator-provided exception instead of returning it #31410
  • NamedParameterJdbcTemplate throws unexpected exception for null query #31394
  • LazyResolutionMessage does not implement proper toString #31385
  • Illegal reflective access in ContextOverridingClassLoader.isEligibleForOverriding #31233

:notebook_with_decorative_cover: Documentation

  • Clarify documentation for @Transactional on interfaces #31401
  • Default behavior of BeanPropertyRowMapper.getColumnValue(ResultSet, int, Class) inconsistent with code #31349
  • Referencing a @Bean method in a @Configuration class' @PostConstruct method leads to circular reference #31339
  • Incorrect reference information about CGLIB supported method visibility #31311

:hammer: Dependency Upgrades

  • Upgrade to Reactor 2020.0.38 #31584
Commits
  • 8c85c31 Release v5.3.31
  • b28a5f8 Upgrade to Reactor 2020.0.38 and Netty 4.1.101
  • e660859 Consistent ordering of overloaded operations
  • a6ab308 Fix wrong nullability requirement
  • c489234 Polish contribution
  • af59358 Avoid duplicate resources in PathMatchingResourcePatternResolver on Windows
  • 75193b2 Upgrade to Log4J 2.21.1, Tomcat 9.0.82, Jetty 9.4.53, Undertow 2.2.28, Netty ...
  • f97e819 Log4jLog re-resolves ExtendedLogger on deserialization
  • f8e1ce3 Check for procedure vs function constants in CallMetaDataContext
  • d3ec939 Guard for empty FileItems in CommonsFileUploadSupport
  • Additional commits viewable in compare view


Most Recent Ignore Conditions Applied to This Pull Request | Dependency Name | Ignore Conditions | | --- | --- | | org.springframework:spring-web | [>= 6.a, < 7] |

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)