orange-cloudfoundry / static-creds-broker

A CloudFoundry service broker to ease exposition of static credentials
Apache License 2.0
7 stars 1 forks source link

Bump spring-boot-starter-parent from 1.4.3.RELEASE to 2.4.1 #89

Closed dependabot-preview[bot] closed 3 years ago

dependabot-preview[bot] commented 3 years ago

Bumps spring-boot-starter-parent from 1.4.3.RELEASE to 2.4.1.

Release notes

Sourced from spring-boot-starter-parent's releases.

v2.4.1

:beetle: Bug Fixes

  • Wildcard config file locations from the working directory override each other #24428
  • Configuration property binding processes JavaBean methods in a non-deterministic order which may result in variable behavior #24425
  • JPA repositories mode should not be deferred by default #24401
  • @Name support for value object binding fails with Kotlin classes #24379
  • Allow recursive profile group references #24327
  • Correct external application properties load order #24308
  • Wrapper types are not displayed in actuator env endpoint #24307
  • OriginTrackedPropertiesLoader#isNewDocument has wrong visibility #24268
  • Redis health indicator requests more information than it needs resulting in unnecessarily large responses from Redis #24251
  • ErrorAttributeOptions.excluding throws IllegalArgumentException if includes is empty #24234
  • Actuator web endpoints cannot respond with custom HTTP status codes when running on MVC or WebFlux #24223
  • Missing Spring Integration metrics due to the MeterRegistry bean being looked for before it has been defined #24220
  • LocaleResolver (MVC) and LocaleContextResolver (WebFlux) beans will back off if a user provides a bean of the same type and a custom name but Framework will then use its own default #24209
  • DevTools still refers to deprecated keys #24203
  • DataSourceUnwrapper calls Wrapper.isWrapperFor with a class rather than an interface causing Oracle UCP warnings #24200
  • WebFluxTags performs unnecessary Pattern compilation when ignoring trailing slashes #24194
  • elasticsearch-rest-client-sniffer is missing from the dependency management for Elasticsearch's REST client modules #24186
  • No converter is found when binding a non-string property via config tree #24171
  • LoggingSystem calls with Log4J throws NullPointerException #24163
  • Any line that is immediately after a line that contains only a # is lost when reading application properties files #24158
  • Ensure the WebClient to be present before enabling the WebTestClientContextCustomizer #24152
  • ConfigDataResourceNotFoundException incorrectly thrown for valid classpath locations #24143

:notebook_with_decorative_cover: Documentation

  • Document how to use Devtools without an IDE #24410
  • Add link to appendix from error handling documentation #24408
  • Document how to run unit tests #24301
  • Invalid ErrorAttributesOptions#getInclude Javadoc #24259
  • Fix typo in TomcatWebServer Javadoc #24245
  • Security properties appendix contains spring.session and spring.ldap properties that belong elsewhere #24196
  • Rename "sla" to "slo" in reference documentation #24162
  • Document the granularity for property document imports #22987

:hammer: Dependency Upgrades

  • Upgrade to Caffeine 2.8.8 #24443
  • Upgrade to DB2 JDBC 11.5.5.0 #24383
  • Upgrade to Dropwizard Metrics 4.1.16 #24384
  • Upgrade to Groovy 2.5.14 #24385
  • Upgrade to Hibernate 5.4.25.Final #24386
  • Upgrade to HttpCore 4.4.14 #24387
  • Upgrade to Infinispan 11.0.8.Final #24388
  • Upgrade to Jetty 9.4.35.v20201120 #24389
  • Upgrade to jOOQ 3.14.4 #24390
  • Upgrade to Kotlin 1.4.21 #24391
  • Upgrade to Kotlin Coroutines 1.4.2 #24392
Commits
  • e701fd6 Release v2.4.1
  • ab0bfa2 Merge branch '2.3.x'
  • 235f4a7 Merge branch '2.2.x' into 2.3.x
  • 1f8a6dd Write docker/config.json for CI Image generation
  • f012bd1 Merge branch '2.3.x'
  • 743fedc Merge branch '2.2.x' into 2.3.x
  • ff124c0 Use GitHub token rather than password
  • c45600e Merge branch '2.3.x'
  • 305694e Merge branch '2.2.x' into 2.3.x
  • babae11 Attempt to fix oci-build-task config
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired)
dependabot-preview[bot] commented 3 years ago

Superseded by #90.