search

quarkiverse / quarkus-dapr

The Distributed Application Runtime (Dapr) provides APIs that simplify microservice connectivity
https://dapr.io/
Apache License 2.0
30 stars 16 forks source link

Bump quarkus.version from 2.16.6.Final to 2.16.12.Final #135

Closed dependabot[bot] closed 9 months ago

dependabot[bot] commented 9 months ago

Bumps quarkus.version from 2.16.6.Final to 2.16.12.Final. Updates io.quarkus:quarkus-bom from 2.16.6.Final to 2.16.12.Final

Release notes

Sourced from io.quarkus:quarkus-bom's releases.

2.16.12.Final

Complete changelog

  • #36431 - Add a test case verifying the RST flood protection
  • #36390 - Update Netty to 4.1.100
  • #36241 - Update Snappy to version 1.1.10.5
  • #36221 - Bump org.apache.avro:avro from 1.11.2 to 1.11.3 in /bom/application
  • #35968 - Warn when wrong token proxy is accessed
  • #35964 - OIDC: NPE when accessing IdToken when Bearer access token is sent

2.16.11.Final

Complete changelog

  • Fixes CVE-2023-4853

2.16.10.Final

Complete changelog

  • #34067 - Bump snappy-java from 1.1.8.4 to 1.1.10.1 in /bom/application

2.16.9.Final

Complete changelog

  • #34953 - Generated docs: move DOM manipulation to build time
  • #34820 - Keep maven-repo artifact 7 days instead of 1
  • #34804 - Encode multi char code points correctly in RestEasy Reactive
  • #34736 - [2.16] io.grpc:grpc-protobuf CVE-2023-1428 & CVE-2023-32731
  • #34471 - The Common Log Format requires the date to be wrapped into []
  • #32390 - Fix copy paste typo
  • #31518 - Prevent ContextNotActiveException during invalid config validation if resteasy-reactive module is present
  • #31434 - Invalid config value prevents app to startup with invalid stacktrace instead of validation error message
  • #31053 - Bump grpc.version from 1.52.1 to 1.53.0
  • #31010 - HTTP access log %t missing enclosing brackets
  • #30403 - Bump grpc.version from 1.52.0 to 1.52.1
  • #30323 - Bump grpc.version from 1.51.1 to 1.52.0
  • #10134 - MicroProfile RestClient Encoding Failing for Emojis

2.16.8.Final

Complete changelog

  • #34469 - 2.16 - Enforce the configured TLS version
  • #34371 - gRPC route to use mainrouter when http.root-path is not '/'
  • #34261 - grpc service not working when use-separate-server is set to false and custom http.root-path is set
  • #34142 - Fix NPE in RunningDevService which represens a shared service
  • #34105 - Avoid calling OIDC UserInfo endpoint if UserInfo is cached

... (truncated)

Commits
  • a85dbeb [RELEASE] - Bump version to 2.16.12.Final
  • d41313f Merge pull request #36443 from gsmet/2.16.12-backports-1
  • 9ef30a4 Add a test case verifying the RST flood protection
  • e9b2dd3 Update Netty to 4.1.100
  • 65a530b Update Snappy to version 1.1.10.5
  • d5d0727 Bump org.apache.avro:avro from 1.11.2 to 1.11.3 in /bom/application
  • aab4aa3 Warn when wrong token proxy is accessed
  • 5d389fc Upgrade RESTEasy Classic to 4.7.9.Final
  • 3ea41da Upgrade RESTEasy to 4.7.8.Final
  • 639a059 Merge pull request from GHSA-pv6m-j4fg-qx7h
  • Additional commits viewable in compare view


Updates io.quarkus:quarkus-maven-plugin from 2.16.6.Final to 2.16.12.Final

Updates io.quarkus:quarkus-extension-processor from 2.16.6.Final to 2.16.12.Final

Updates io.quarkus:quarkus-bootstrap-maven-plugin from 2.16.6.Final to 2.16.12.Final

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)