digital-bauhaus / Ferienpass

Anmeldung & Administration für den digitalen Ferienpass der Stadt Weimar
https://ferienpass.herokuapp.com/
MIT License
5 stars 0 forks source link

Bump spring-boot-starter-parent from 2.3.4.RELEASE to 2.7.3 #386

Closed dependabot[bot] closed 2 years ago

dependabot[bot] commented 2 years ago

Bumps spring-boot-starter-parent from 2.3.4.RELEASE to 2.7.3.

Release notes

Sourced from spring-boot-starter-parent's releases.

v2.7.3

:lady_beetle: Bug Fixes

  • Misleading error message when using JarMode Layertools and the source is not an archive #32097
  • ClassNotFoundException can be thrown for classes in nested jars when under GC pressure #32085
  • Flyway auto-configuration fails with Flyway 9 #32034
  • BasicJsonParser does not protect against deeply nested maps #32031
  • OptionalLiveReloadServer logs the wrong port number when it is configured to use an ephemeral port #31984
  • Servlet WebServerStartStopLifecycle doesn't set running to false on stop #31967
  • JUL-based logging performed during close of application context is lost #31963
  • The hash of spring-boot-jarmode-layertools.jar that's added to a fat jar doesn't match the hash of the equivalent published artifact #31949
  • management.endpoint.health.probes.add-additional-paths has no effect when configuration properties have already created the liveness and/or readiness groups #31926
  • UnsupportedDataSourcePropertyException is thrown when attempting to set jdbcUrl for C3P0 #31921
  • Dev Tools restart failures caused by a too short quiet period are hard to diagnose #31906
  • HealthContributor beans managed by a CompositeHealthContributor are recreated on each call #31879
  • Dependency management for REST Assured is incomplete #31877
  • Jar Handler never clears PROTOCOL_HANDLER system property #31875
  • BasicJsonParser can fail with a timeout or stackoverflow with malformed map JSON #31873
  • BasicJsonParser can fail with a stackoverflow exception #31871

:notebook_with_decorative_cover: Documentation

  • Review Git contribution documentation #32099
  • Documentation for Maven Plugin classifier has an unresolved external reference #32043
  • Update Static Content reference documentation to reflect the DefaultServlet no longer being enabled by default #32026
  • Example log output is out-of-date and inconsistent #31987
  • Document that Undertow's record-request-start-time server option must be enabled for %D to work in access logging #31976
  • Update documentation on using H2C to consider running behind a proxy that's performing TLS termination #31974
  • Some properties in the Common Application Properties appendix have no description #31971
  • Fix links in documentations #31951
  • External configuration documentation uses incorrect placeholder syntax #31943
  • server.reactive.session.cookie properties are not listed in the application properties appendix #31914
  • Remove documentation and metadata references to ConfigFileApplicationListener #31901
  • Metadata for 'spring.beaninfo.ignore' has incorrect SourceType #31899
  • Remove reference to nitrite-spring-boot-starter #31893
  • Remove reference to Azure Application Insights #31890
  • Fix typos in code and documentation #31865

:hammer: Dependency Upgrades

  • Upgrade to Byte Buddy 1.12.13 #32013
  • Upgrade to Couchbase Client 3.3.3 #32014
  • Upgrade to Dependency Management Plugin 1.0.13.RELEASE #32056
  • Upgrade to Dropwizard Metrics 4.2.11 #32015
  • Upgrade to Embedded Mongo 3.4.8 #32016
  • Upgrade to GraphQL Java 18.3 #31945
  • Upgrade to Groovy 3.0.12 #32017
  • Upgrade to Gson 2.9.1 #32018
  • Upgrade to Hazelcast 5.1.3 #32019
  • Upgrade to Hibernate Validator 6.2.4.Final #32020

... (truncated)

Commits
  • bff9b39 Release v2.7.3
  • 60e1cc5 Merge branch '2.6.x' into 2.7.x
  • 13bd61b Revert nested jar fixes
  • bd74344 Revert "Don't close jar files early"
  • 674022d Revert "Don't close nested jars or wrapper when parent is closed"
  • 3fcfcc4 Merge branch '2.6.x' into 2.7.x
  • 3b01325 Use asList consistently
  • ca63a6e Merge branch '2.6.x' into 2.7.x
  • 191593c Review Git contribution documentation
  • 1c6624d Merge branch '2.6.x' into 2.7.x
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 2 years ago

Superseded by #399.