search

spring-projects / spring-security-samples

1.46k stars 709 forks source link

Bump org.springframework.security:spring-security-bom from 6.2.0 to 6.2.1 #197

Closed dependabot[bot] closed 10 months ago

dependabot[bot] commented 10 months ago

Bumps org.springframework.security:spring-security-bom from 6.2.0 to 6.2.1.

Release notes

Sourced from org.springframework.security:spring-security-bom's releases.

6.2.1

:star: New Features

  • docs: make XML and Java/Kotlin consistent with AspectJExpressionPointcut #14219
  • Document that Shibboleth Repository is Required for SAML Support #14295
  • Integrate HandlerMappingIntrospector Caching #14332
  • OAuth2 Resource Server is exposing server information. #14278

:beetle: Bug Fixes

  • Update Java Config Spring MVC documentation #14234
  • add missing [tabs] fix typo in docs #14208
  • AnnotationConfigurationException when using PreAuthorize, CGLIB and EnableMethodSecurity #14267
  • Correct What's New in 6.2 reference to forServletPattern #14200
  • Fix typo in getClaimAsMap docstring #14183
  • Fix typo in the 'Authorizing Requests' example #14169
  • fix wrong document about "jws-algorithms" #14280
  • Improve error message when ServletRegistration API is unavailable #14232
  • Update Javadoc Comments in AuthorizationEvent Class #14175
  • Fix typo in architecture.adoc #14254
  • Fixing link in authentication/architecture.adoc #13593

:hammer: Dependency Upgrades

  • Bump actions/checkout from 3 to 4 #14323
  • Bump actions/setup-java from 3 to 4 #14320
  • Bump ch.qos.logback:logback-classic from 1.4.11 to 1.4.13 #14213
  • Bump ch.qos.logback:logback-classic from 1.4.13 to 1.4.14 #14239
  • Bump com.unboundid:unboundid-ldapsdk from 6.0.10 to 6.0.11 #14223
  • Bump Gamesight/slack-workflow-status from 1.0.1 to 1.2.0 #14328
  • Bump Gradle Wrapper from 8.4 to 8.5 #14222
  • Bump io.micrometer:micrometer-observation from 1.12.0 to 1.12.1 #14284
  • Bump io.projectreactor:reactor-bom from 2023.0.0 to 2023.0.1 #14289
  • Bump org-apache-maven-resolver from 1.9.16 to 1.9.17 #14184
  • Bump org-apache-maven-resolver from 1.9.17 to 1.9.18 #14197
  • Bump org-aspectj from 1.9.20.1 to 1.9.21 #14271
  • Bump org.apache.maven:maven-resolver-provider from 3.9.5 to 3.9.6 #14228
  • Bump org.hibernate.orm:hibernate-core from 6.3.1.Final to 6.3.2.Final #14190
  • Bump org.jetbrains.kotlin:kotlin-bom from 1.9.20 to 1.9.21 #14192
  • Bump org.jetbrains.kotlin:kotlin-gradle-plugin from 1.9.20 to 1.9.21 #14191
  • Bump org.springframework.data:spring-data-bom from 2023.1.0 to 2023.1.1 #14341
  • Bump org.springframework.ldap:spring-ldap-core from 3.2.0 to 3.2.1 #14335
  • Bump org.springframework:spring-framework-bom from 6.1.0 to 6.1.1 #14189
  • Bump org.springframework:spring-framework-bom from 6.1.1 to 6.1.2 #14319
  • Bump sjohnr/slack-workflow-status from 1.pre.beta to 1.1.0 #14318
  • Bump slackapi/slack-github-action from 1.19.0 to 1.24.0 #14322
  • Bump spring-io/spring-gradle-build-action from 1 to 2 #14321

:heart: Contributors

... (truncated)

Commits
  • af2d210 Release 6.2.1
  • 69aeeea Bump org.springframework.data:spring-data-bom from 2023.1.0 to 2023.1.1
  • 4d31528 Fix typo in Authorization Events' Doc Page
  • 4eae9f4 Bump org.springframework.ldap:spring-ldap-core from 3.2.0 to 3.2.1
  • c7047ad Merge branch '6.1.x' into 6.2.x
  • 142b268 Use CompositeFilterChainProxy
  • 6dd2952 Merge branch '6.1.x' into 6.2.x
  • 70dfb3d Add HandlerMappingIntrospector Caching
  • 0bd3b9e Bump Gamesight/slack-workflow-status from 1.0.1 to 1.2.0
  • a162875 Merge branch '6.1.x' into 6.2.x
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)