eclipse-tractusx / digital-product-pass

Eclipse Tractus-X Digital Product Pass - An application for visualizing Digital Product Passports, Battery Passports and Transmission Passports, it is the reference implementation of the EcoPass KIT
https://github.com/eclipse-tractusx/digital-product-pass
Apache License 2.0
25 stars 17 forks source link

chore(deps): bump org.springframework.boot:spring-boot-starter-security from 3.0.2 to 3.3.2 in /dpp-backend/digitalproductpass #385

Closed dependabot[bot] closed 3 months ago

dependabot[bot] commented 4 months ago

Bumps org.springframework.boot:spring-boot-starter-security from 3.0.2 to 3.3.2.

Release notes

Sourced from org.springframework.boot:spring-boot-starter-security's releases.

v3.3.2

:lady_beetle: Bug Fixes

  • No configuration property for defaultTimeout setting that was introduced in Spring Integration 6.2 #41521
  • NPE during auto-configuration in OnClassCondition.resolveOutcomesThreaded because firstHalf is null #41504
  • Spring Authorization Server now defaults multipleIssuersAllowed to false and it cannot be easily re-enabled #41355
  • ServiceConnection does not work with @DataLdapTest #41325
  • PropertiesMigrationListener wrongly reports property as deprecated #41252
  • @NestedConfigurationProperty doesn't work on records #41251
  • TestcontainersLifecycleBeanPostProcessor does not work correctly with scoped beans #41238
  • Error message can be misleading if spring.config.import fails to resolve #41236
  • build-image failures after docker desktop update with 'Illegal char at index 5: npipe:////' #41234
  • When using Jetty, filters, listeners, and servlets are not initialized with the same thread context classloader #41225
  • DirtiesContext used with Webflux, a random port and multiple contexts causes multiple contexts to misbehave #41221
  • NoSuchMethodException on org.apache.activemq.ActiveMQConnectionFactory.<init> when using spring-boot-starter-activemq in a native image #41214

:notebook_with_decorative_cover: Documentation

  • Fix documentation links in the README #41531
  • Document the types to which each spring.mvc.format and spring.webflux.format property applies #41518
  • Document that logging.file.name and logging.file.path cannot be used together #41516
  • Refine CDS how-to guide #41464
  • Fix typos in javadoc of BootstrapContext #41448
  • CDS link in "Efficient Deployments" documentation is broken #41321
  • Update Kotlin DSL examples that configure the environment of bootBuildImage to be additive #41270
  • Document tracing support for RestClient #41192
  • Documentation wrongly states that zipkin-sender-urlconnection is needed #41181

:hammer: Dependency Upgrades

  • Upgrade to AspectJ 1.9.22.1 #41474
  • Upgrade to Byte Buddy 1.14.18 #41371
  • Upgrade to Dependency Management Plugin 1.1.6 #41372
  • Upgrade to GraphQL Java 22.1 #41219
  • Upgrade to Groovy 4.0.22 #41373
  • Upgrade to HttpCore5 5.2.5 #41374
  • Upgrade to Jackson Bom 2.17.2 #41375
  • Upgrade to Jetty 12.0.11 #41376
  • Upgrade to JsonAssert 1.5.3 #41377
  • Upgrade to JUnit Jupiter 5.10.3 #41378
  • Upgrade to Kafka 3.7.1 #41379
  • Upgrade to Lombok 1.18.34 #41380
  • Upgrade to Micrometer 1.13.2 #41298
  • Upgrade to Micrometer Tracing 1.3.2 #41299
  • Upgrade to MSSQL JDBC 12.6.3.jre11 #41381
  • Upgrade to Neo4j Java Driver 5.22.0 #41382
  • Upgrade to R2DBC MariaDB 1.2.1 #41383
  • Upgrade to Reactor Bom 2023.0.8 #41384
  • Upgrade to Spring Data Bom 2024.0.2 #41300
  • Upgrade to Spring Framework 6.1.11 #41301

... (truncated)

Commits
  • 2d0861d Release v3.3.2
  • 397f3f4 Merge branch '3.2.x' into 3.3.x
  • f5df7e7 Fix documentation links in the README
  • 6f745c7 Merge pull request #41531 from anbusampath
  • 3d29359 Update README to fix links to the docs
  • b7ff40e Merge pull request #41355 from opcooc
  • 1a6760e Polish "Add configuration property to allow multiple issuers"
  • b0b97fb Add configuration property to allow multiple issuers
  • f7780b4 Polish
  • 51646fb Upgrade to Spring Pulsar 1.1.2
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 3 months ago

Superseded by #406.