jenkins-infra / plugin-health-scoring

This project aims to introduce a metric system to calculate the health score of each plugin within the Jenkins ecosystem and reflect the final scores on the Plugin Site for the plugin maintainers and users.
https://plugin-health.jenkins.io
MIT License
24 stars 46 forks source link

Bump spring-boot.version from 3.2.2 to 3.2.3 #473

Closed dependabot[bot] closed 8 months ago

dependabot[bot] commented 8 months ago

Bumps spring-boot.version from 3.2.2 to 3.2.3. Updates org.springframework.boot:spring-boot-dependencies from 3.2.2 to 3.2.3

Release notes

Sourced from org.springframework.boot:spring-boot-dependencies's releases.

v3.2.3

:warning: Noteworthy

  • This release upgrades to Hibernate 6.4.4.Final. While it contains a number of valuable bug fixes, it does not work correctly in a native image. If you are using GraalVM, Hibernate should be temporarily downgraded to 6.4.2.Final using the hibernate.version property.

:lady_beetle: Bug Fixes

  • Nested jar URLs can not be resolved if the path contains spaces #39675
  • Image building runs for a long time when a long image name is used and the tag contains an illegal character #39638
  • Banner printing doesn't respect set charset #39621
  • "micrometer.observations.*" configuration properties should be "management.observations.*" #39600
  • Metadata reading during configuration class parsing uses the default resource loader rather than the application's resource loader #39598
  • Several gson properties, including spring.gson.disable-html-escaping, do not behave correctly when set to false #39524
  • Property placeholders aren't resolved when configuration property binding creates a Map from a property value using a converter #39515
  • Gradle plugin allows the use of Gradle 7.4 but the documented and tested minimum is 7.5 #39513
  • WebFlux auto-configuration should only configure the blocking executor when virtual threads are enabled #39469
  • TestcontainersPropertySource assertion has typo #39449
  • Webflux actuator endpoints respond with 500 when a parameter is missing #39444
  • NoSuchMethod error when using the non-shaded Pulsar client and configuring authentications parameters #39389
  • Jetty GracefulShutdown writes to System.out #39360
  • Building images fails with Docker 25.0 when custom buildpacks are configured #39347
  • Creating a RestClient from a RestTemplateBuilder-created RestTemplate requires double configuration of the baseUrl/rootUri #39317
  • Auto-configured ConcurrentPulsarListenerContainerFactory and PulsarConsumerFactory cannot be injected into injection points with specific generic type information #39308
  • Startup failure when you have multiple @DynamicPropertySources in Spring Boot 3.2.2 #39297
  • Mockito's MockedStatic isn't closed in all cases #39272
  • TracingProperties exposes package-private PropagationType from public methods #39268

:notebook_with_decorative_cover: Documentation

  • Add note regarding mixing of bundle-based and direct SSL configuration #39641
  • Add link to Pulsar workaround when using environment variables for authentication #39630
  • Document that task executor pool size properties are ignored when using virtual threads #39629
  • Document default value for show-value configuration properties #39596
  • Clarify that configuration properties only apply to the auto-configured OpenTelemetry Resource bean #39509
  • Update the Debugging Documentation of the Spring Boot Maven Plugin #39422
  • Awaitility link in Test Scoped Dependencies is incorrect #39415
  • Fixed NestedJarFile constructor javadoc #39285
  • Endpoint documentation contains the typo 'Unuthorized' #39280
  • Update Revved up by Develocity badge #39263

:hammer: Dependency Upgrades

  • Upgrade to Byte Buddy 1.14.12 #39665
  • Upgrade to Commons Codec 1.16.1 #39566
  • Upgrade to Dropwizard Metrics 4.2.25 #39567
  • Upgrade to Groovy 4.0.18 #39568
  • Upgrade to Hibernate 6.4.4.Final #39569
  • Upgrade to Infinispan 14.0.24.Final #39570
  • Upgrade to Jackson Bom 2.15.4 #39666
  • Upgrade to Janino 3.1.12 #39571
  • Upgrade to Jetty 12.0.6 #39573

... (truncated)

Commits
  • c24afef Release v3.2.3
  • 5d88ada Merge branch '3.1.x' into 3.2.x
  • 8dff249 Next development version (v3.1.10-SNAPSHOT)
  • d13c006 Merge pull request #39675' from slovi
  • a457638 Polish 'Decode URL content before passing it to NestedLocation.parse'
  • 06569e7 Decode URL content before passing it to NestedLocation.parse
  • 428ddb7 Merge branch '3.1.x' into 3.2.x
  • 3930414 Upgrade CI images to ubuntu:jammy-20240212
  • 12de6aa Merge branch '3.1.x' into 3.2.x
  • 2c4909a Update copyright year of changed files
  • Additional commits viewable in compare view


Updates org.springframework.boot:spring-boot-maven-plugin from 3.2.2 to 3.2.3

Release notes

Sourced from org.springframework.boot:spring-boot-maven-plugin's releases.

v3.2.3

:warning: Noteworthy

  • This release upgrades to Hibernate 6.4.4.Final. While it contains a number of valuable bug fixes, it does not work correctly in a native image. If you are using GraalVM, Hibernate should be temporarily downgraded to 6.4.2.Final using the hibernate.version property.

:lady_beetle: Bug Fixes

  • Nested jar URLs can not be resolved if the path contains spaces #39675
  • Image building runs for a long time when a long image name is used and the tag contains an illegal character #39638
  • Banner printing doesn't respect set charset #39621
  • "micrometer.observations.*" configuration properties should be "management.observations.*" #39600
  • Metadata reading during configuration class parsing uses the default resource loader rather than the application's resource loader #39598
  • Several gson properties, including spring.gson.disable-html-escaping, do not behave correctly when set to false #39524
  • Property placeholders aren't resolved when configuration property binding creates a Map from a property value using a converter #39515
  • Gradle plugin allows the use of Gradle 7.4 but the documented and tested minimum is 7.5 #39513
  • WebFlux auto-configuration should only configure the blocking executor when virtual threads are enabled #39469
  • TestcontainersPropertySource assertion has typo #39449
  • Webflux actuator endpoints respond with 500 when a parameter is missing #39444
  • NoSuchMethod error when using the non-shaded Pulsar client and configuring authentications parameters #39389
  • Jetty GracefulShutdown writes to System.out #39360
  • Building images fails with Docker 25.0 when custom buildpacks are configured #39347
  • Creating a RestClient from a RestTemplateBuilder-created RestTemplate requires double configuration of the baseUrl/rootUri #39317
  • Auto-configured ConcurrentPulsarListenerContainerFactory and PulsarConsumerFactory cannot be injected into injection points with specific generic type information #39308
  • Startup failure when you have multiple @DynamicPropertySources in Spring Boot 3.2.2 #39297
  • Mockito's MockedStatic isn't closed in all cases #39272
  • TracingProperties exposes package-private PropagationType from public methods #39268

:notebook_with_decorative_cover: Documentation

  • Add note regarding mixing of bundle-based and direct SSL configuration #39641
  • Add link to Pulsar workaround when using environment variables for authentication #39630
  • Document that task executor pool size properties are ignored when using virtual threads #39629
  • Document default value for show-value configuration properties #39596
  • Clarify that configuration properties only apply to the auto-configured OpenTelemetry Resource bean #39509
  • Update the Debugging Documentation of the Spring Boot Maven Plugin #39422
  • Awaitility link in Test Scoped Dependencies is incorrect #39415
  • Fixed NestedJarFile constructor javadoc #39285
  • Endpoint documentation contains the typo 'Unuthorized' #39280
  • Update Revved up by Develocity badge #39263

:hammer: Dependency Upgrades

  • Upgrade to Byte Buddy 1.14.12 #39665
  • Upgrade to Commons Codec 1.16.1 #39566
  • Upgrade to Dropwizard Metrics 4.2.25 #39567
  • Upgrade to Groovy 4.0.18 #39568
  • Upgrade to Hibernate 6.4.4.Final #39569
  • Upgrade to Infinispan 14.0.24.Final #39570
  • Upgrade to Jackson Bom 2.15.4 #39666
  • Upgrade to Janino 3.1.12 #39571
  • Upgrade to Jetty 12.0.6 #39573

... (truncated)

Commits
  • c24afef Release v3.2.3
  • 5d88ada Merge branch '3.1.x' into 3.2.x
  • 8dff249 Next development version (v3.1.10-SNAPSHOT)
  • d13c006 Merge pull request #39675' from slovi
  • a457638 Polish 'Decode URL content before passing it to NestedLocation.parse'
  • 06569e7 Decode URL content before passing it to NestedLocation.parse
  • 428ddb7 Merge branch '3.1.x' into 3.2.x
  • 3930414 Upgrade CI images to ubuntu:jammy-20240212
  • 12de6aa Merge branch '3.1.x' into 3.2.x
  • 2c4909a Update copyright year of changed files
  • Additional commits viewable in compare view


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)