orange-cloudfoundry / sec-group-broker-filter

Dynamically opens security groups from creds returned by chained upstream broker
Apache License 2.0
12 stars 2 forks source link

Bump spring-context from 4.2.8.RELEASE to 5.2.5.RELEASE #172

Closed dependabot-preview[bot] closed 4 years ago

dependabot-preview[bot] commented 4 years ago

Bumps spring-context from 4.2.8.RELEASE to 5.2.5.RELEASE.

Release notes

Sourced from spring-context's releases.

v5.2.5.RELEASE

:star: New Features

  • Do not cache multipart mime types in MimeTypeUtils LRU cache #24767
  • Declare proxyBeanMethods=false in JmsBootstrapConfiguration #24752
  • Usage of java 14 record throws java.lang.UnsupportedOperationException: This feature requires ASM8_EXPERIMENTAL #24722
  • Non-public Kotlin beans can't be instantiated #24712
  • Avoid ClassCastException for CoyoteInputStream in TomcatHttpHandlerAdapter #24707
  • Avoid unnecessary sorting in AbstractHandlerMethodMapping #24704
  • Improve performance of StringUtils#cleanPath #24674
  • Optimize global advisor registration in ProxyFactoryBean #24669
  • Short circuit check in SynthesizedMergedAnnotationInvocationHandler.isVisible() #24664
  • Ignore empty domain string in ResponseCookie #24663
  • Remove UTF-8 charset parameter from Content-Type in SseEmitter #24632
  • Jaxb2XmlDecoder Does Not Throw Codec Exception For Invalid XML #24622
  • TransactionInterceptor constructors should accept a generic TransactionManager #24612
  • Relax GraalVM checks in DefaultParameterNameDiscoverer #24600
  • Multipart/related support in Spring Webclient #24582
  • Consider supporting PreFlight requests and CORS in Servlet Functional Endpoints #24564
  • Support for byte-range requests in Servlet Functional endpoints #24562
  • Provide a mechanism to configure integration tests with a dynamic property source #24540
  • Improve ConcurrentLruCache performance #24469
  • Reduce Class[] garbage when creating proxies #24221
  • implements checkNotModified for ServerRequest #24173
  • AbstractSockJsSession exception when handling message with closed session #23828

:beetle: Bug Fixes

  • Missing nullability declarations for package web.socket.server.jetty #24745
  • MediaTypeNotSupportedStatusException seems unused #24743
  • MessagingRSocket incorrectly tries to release entire input stream on channel interaction #24741
  • MimeTypeUtils performance degradation #24671
  • RSocket MetadataEncoder expands the routes incorrect #24656
  • Spring generates huge callstack for async requests #24652
  • CodecException (from JSON conversion) in RestController is not mapped to 400 but 500 (SB 2.2.5 & Kotlin) #24646
  • addCandidateComponentsFromIndex should create ScannedGenericBeanDefinitions #24638
  • ShallowETagHeaderFilter (still) overwrites ETag and Content-Length #24635
  • Invalid JSON in requests now causes 500 instead of 400 #24630
  • Invalid request results in 500 INTERNAL ERROR instead of 400 BAD REQUEST (with Lombok and Kotlin) #24610
  • Distributions no longer deployed #24605
  • UnknownHttpStatusCodeException is missing the response body #24595
  • Implementing interface in abstract class does not expose parameter annotations #24127

:notebook_with_decorative_cover: Documentation

  • Clarify name generation responsibility for PropertySourceFactory implementations #24757
  • Improve Javadoc in @Configuration #24753
  • Improve Javadoc in AnnotatedElementUtils #24740
  • Clarify behavior for WebClient statusHandlers #24736
  • Enhance Spring Core documentation, section 1.9.2. Using @Autowired #24711
... (truncated)
Commits


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired)
dependabot-preview[bot] commented 4 years ago

Superseded by #180.