devondragon / SpringUserFramework

Easy User Management Framework/Starter App for Spring. Providing registration, login, logout, and more built on top of Spring Security.
Apache License 2.0
88 stars 28 forks source link

Bump org.springframework.boot from 3.3.4 to 3.3.5 #120

Closed dependabot[bot] closed 4 weeks ago

dependabot[bot] commented 1 month ago

Bumps org.springframework.boot from 3.3.4 to 3.3.5.

Release notes

Sourced from org.springframework.boot's releases.

v3.3.5

:lady_beetle: Bug Fixes

  • Running mvn spring-boot:run with classpaths that exceeds Windows' length limits leaves temporary files #42841
  • Report produced by ConditionReportApplicationContextFailureProcessor is always empty in a failed test #42785
  • Case-insensitive comparisons may be adversely affected by the user's locale #42735
  • DataSourceProperties#driverClassIsLoadable should not print a stacktrace to the error stream when it fails #42683
  • Some @ControllerEndpoint and @RestControllerEndpoint infrastructure remains undeprecated #42498
  • Auto-configuration for Rabbit Streams doesn't consider RabbitConnectionDetails #42490
  • ClassNotFoundException is thrown when loading protocol resolvers from ForkJoinPool task #42468
  • ActiveMQ Artemis Connection Factory creation fails in native image #42421
  • Duplicate meter binding when context contains multiple registries, none are primary, and one or more is a composite #42397

:notebook_with_decorative_cover: Documentation

  • Document that embedded Tomcat must be at least 10.1.25 #42849
  • Fix systemd example configuration #42805
  • Document that the exact behavior of the maximum HTTP request header size property is server-specific #42789
  • Clarify why @Primary is recommended when defining your own ObjectMapper that replaces JacksonAutoConfiguration's #42787
  • Polish javadoc for Binder#bindOrCreate(String, Class) #42778
  • Document that Tomcat's maxQueueCapacity need to be greater than 0 #42726
  • Remove stale link to jar-to-war getting started guide #42723
  • Fix typos and formatting errors in documentation #42718
  • Fix case used for examples in "Sanitize Sensitive Values" #42702
  • Fix Regex javadoc links #42685
  • Document how Map properties are bound from environment variables #42672
  • Improve classpath index documentation for reproducible builds #42643
  • Remove links to Spring Data GemFire #42596
  • Order alphabetically the sections in Common Application Properties #42520
  • Improve the javadoc describing when @ConditionalOn(Missing)Bean will infer the type to match #42505
  • Document how to handle MANIFEST.MF in native image with Maven #42476
  • Fix links to Micrometer reference doc #42467
  • Polish documentation #42454
  • Add Javadoc since for PrometheusScrapeEndpoint(PrometheusRegistry, Properties) #42406
  • Remove note about graceful shutdown with Tomcat requiring 9.0.33 or later as we now require 10.1.x #42382
  • Document support for Java 23 #42380
  • Improve documentation for CycloneDX integration #41506

:hammer: Dependency Upgrades

  • Prohibit upgrades to Undertow 2.3.18.Final #42756
  • Upgrade to CycloneDX Maven Plugin 2.8.2 #42631
  • Upgrade to GraphQL Java 22.3 #42757
  • Upgrade to Infinispan 15.0.10.Final #42632
  • Upgrade to Jaybird 5.0.6.java11 #42752
  • Upgrade to Jersey 3.1.9 #42633
  • Upgrade to Jetty 12.0.14 #42635
  • Upgrade to Jetty Reactive HTTPClient 4.0.8 #42634
  • Upgrade to jOOQ 3.19.14 #42818
  • Upgrade to JUnit Jupiter 5.10.5 #42637

... (truncated)

Commits
  • 2316ce6 Release v3.3.5
  • 02f6eb4 Merge branch '3.2.x' into 3.3.x
  • 728deaf Next development version (v3.2.12-SNAPSHOT)
  • 9ca6667 Merge branch '3.2.x' into 3.3.x
  • 9858b4b Fix release script
  • 2bf3e5a Document that embedded Tomcat must be 10.1.25 or later
  • 13e75dc Upgrade to Spring Integration 6.3.5
  • 131bbaf Merge branch '3.2.x' into 3.3.x
  • 83a3212 Use github.ref_name when deploying snapshots
  • 2d91385 Merge branch '3.2.x' into 3.3.x
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)