search

pivotal-cf / java-cfenv

Apache License 2.0
91 stars 56 forks source link

Bump spring-boot-dependencies from 2.5.4 to 2.6.2 #177

Closed dependabot[bot] closed 2 years ago

dependabot[bot] commented 2 years ago

Bumps spring-boot-dependencies from 2.5.4 to 2.6.2.

Release notes

Sourced from spring-boot-dependencies's releases.

v2.6.2

:lady_beetle: Bug Fixes

  • The getter and setter that's used during configuration property binding varies when a getter or setter has been overridden to use a subclass of the property's type #29143
  • DatabaseInitializationDependencyConfigurer triggers eager initialization of factory beans #29103
  • Spring boot 2.6.0 Quartz mysql/mariadb tables are not created #29095
  • Platform used for Quartz, Session, Integration, and Batch schema initialization cannot be configured #29002
  • App fails to start when it depends on thymeleaf-extras-springsecurity5 but does not have Spring Security on the classpath #28979
  • ResponseStatusException no longer returning response body in 2.6.1 using spring security #28953
  • DataSourceScriptDatabaseInitializer may still try to access the database even though its initialization mode is never #28931
  • Hibernate validation messages broken in spring boot 2.6.1 when setUseCodeAsDefaultMessage set to true #28930
  • Image buildpack references without tag do not default to latest version #28922
  • Invalid classpath index manifest attribute in war files built with Maven #28904
  • AbstractMethodError in org.springframework.boot.web.servlet.filter.ErrorPageSecurityFilter when deployed to a Servlet 3.1-compatible container #28902
  • Setting cache time-to-live for the health endpoint has no effect #28882
  • server.servlet.session.cookie.same-site isn't applied to Spring Session's SESSION cookie #28784

:notebook_with_decorative_cover: Documentation

  • 2.5.x snapshot documentation links to source code on the main branch #29141
  • Document that using DevTools with a remote application is not supported with WebFlux #29138
  • Polish Creating Your Own Auto-configuration section in Core Features reference doc #29133
  • Polish CacheManager customization section in reference doc #29098
  • Polish README.adoc #28948
  • Fix documented default value for property spring.mvc.pathmatch.matching-strategy #28936
  • Add consistent quotes in YAML samples of reference doc #28911

:hammer: Dependency Upgrades

  • Upgrade to Logback 1.2.9 #29012
  • Upgrade to AppEngine SDK 1.9.93 #29054
  • Upgrade to Caffeine 2.9.3 #29055
  • Upgrade to Couchbase Client 3.2.4 #29056
  • Upgrade to DB2 JDBC 11.5.7.0 #29124
  • Upgrade to Dropwizard Metrics 4.2.7 #29125
  • Upgrade to Ehcache3 3.9.9 #29126
  • Upgrade to Flyway 8.0.5 #29059
  • Upgrade to Hazelcast 4.2.4 #29146
  • Upgrade to Hibernate 5.6.3.Final #29127
  • Upgrade to HttpAsyncClient 4.1.5 #29062
  • Upgrade to HttpCore 4.4.15 #29063
  • Upgrade to Infinispan 12.1.10.Final #29128
  • Upgrade to Jackson Bom 2.13.1 #29129
  • Upgrade to JDOM2 2.0.6.1 #29064
  • Upgrade to Jedis 3.7.1 #29065
  • Upgrade to JUnit Jupiter 5.8.2 #29066
  • Upgrade to Kotlin 1.6.10 #29067
  • Upgrade to Log4j2 2.17.0 #28984
  • Upgrade to Micrometer 1.8.1 #28971
  • Upgrade to MSSQL JDBC 9.4.1.jre8 #29068

... (truncated)

Commits
  • 4256344 Release v2.6.2
  • 78ea146 Merge branch '2.5.x' into 2.6.x
  • 61c978e Upgrade to Spring Integration 5.5.7
  • 369046c Upgrade to Spring Integration 5.5.7
  • c748774 Upgrade to Spring Session 2021.1.1
  • 878a65d Merge branch '2.5.x' into 2.6.x
  • 2e67645 Upgrade to Hazelcast 4.2.4
  • f362170 Upgrade to Hazelcast 4.1.8
  • a6350f2 Upgrade to Spring Session 2021.0.4
  • ed5ea95 Merge branch '2.5.x' into 2.6.x
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 2 years ago

Superseded by #179.