spring-projects / spring-security-samples

1.45k stars 703 forks source link

Bump org.springframework.boot from 3.1.9 to 3.1.12 #257

Closed dependabot[bot] closed 5 months ago

dependabot[bot] commented 5 months ago

Bumps org.springframework.boot from 3.1.9 to 3.1.12.

Release notes

Sourced from org.springframework.boot's releases.

v3.1.12

:lady_beetle: Bug Fixes

  • Help information for spring init's build option has the wrong default #40603
  • SpringBootMockMvcBuilderCustomizer can crash cryptically while collecting data that it would have discarded anyway #40500
  • ServiceLevelObjectiveBoundary properties cannot be bound in a native image application #40480
  • Using relative paths to describe the classpath in the error message from ResolveMainClassName hinders problem diagnosis #40463
  • Unlike DataSourceAutoConfiguration, DevToolsDataSourceAutoConfiguration assumes that javax.sql.DataSource will always be available #40434
  • Native image doesn't start and doesn't log anything if an environment post processor throws an exception #40429
  • Runtime hint registration for property binding should not fail when parameter information is unavailable #40051
  • spring-boot-dependencies cannot be used with repositories that ban com.oracle.database.jdbc:ojdbc-bom #39945
  • spring.data.redis.cluster.nodes and spring.data.redis.sentinel.nodes do not handle IPv6 addresses correctly #39819
  • Containers not shut down between tests when using .withReuse(true) but env. does not support reuse (e.g. CI builds) #39609
  • Failure Analysis for InvalidConfigurationPropertyValueException is skipped when the property is not set #33261

:notebook_with_decorative_cover: Documentation

  • Document that a custom HttpMessageConverters bean can be used to reorder json message converters when needed #40767
  • Clarify devtools restart class loader #40604
  • Note that spring-boot-docker-compose is excluded by default from packaged jars #40556
  • Clarify the directory that's used by default to find Docker Compose compose.yaml #40512
  • Clarify docs around spring.jpa.generate-ddl #40503
  • Clarify that all named properties must match for @ConditionalOnProperty to match #40110
  • Improve graceful shutdown documentation to remove ambiguity #40108
  • Document ways to opt out from immutable @ConfigurationProperties binding with single constructor #34820

:hammer: Dependency Upgrades

  • Upgrade to Byte Buddy 1.14.16 #40875
  • Upgrade to Dependency Management Plugin 1.1.5 #40709
  • Upgrade to Hibernate 6.2.25.Final #40710
  • Upgrade to Infinispan 14.0.28.Final #40711
  • Upgrade to Jakarta XML SOAP 3.0.2 #40776
  • Upgrade to Jakarta XML WS 4.0.2 #40777
  • Upgrade to Jetty 11.0.21 #40778
  • Upgrade to Jetty Reactive HTTPClient 3.0.13 #40807
  • Upgrade to jOOQ 3.18.15 #40712
  • Upgrade to Maven Deploy Plugin 3.1.2 #40713
  • Upgrade to Maven Install Plugin 3.1.2 #40714
  • Upgrade to Micrometer 1.11.12 #40646
  • Upgrade to Micrometer Tracing 1.1.13 #40715
  • Upgrade to Neo4j Java Driver 5.20.0 #40654
  • Upgrade to Netty 4.1.110.Final #40876
  • Upgrade to Pooled JMS 3.1.6 #40716
  • Upgrade to R2DBC Proxy 1.1.5.RELEASE #40717
  • Upgrade to Reactor Bom 2022.0.19 #40647
  • Upgrade to SAAJ Impl 3.0.4 #40779
  • Upgrade to Spring AMQP 3.0.14 #40824
  • Upgrade to Spring Batch 5.0.6 #40648
  • Upgrade to Spring Data Bom 2023.0.12 #40649

... (truncated)

Commits
  • 36a152b Release v3.1.12
  • 5620994 Upgrade to Spring Framework 6.0.21
  • 29dbc04 Upgrade to Netty 4.1.110.Final
  • cc67c53 Upgrade to Byte Buddy 1.14.16
  • 03a1424 Upgrade to Spring Session 3.1.6
  • 96cea34 Upgrade to Spring Integration 6.1.9
  • 4dfcec6 Upgrade to Spring Batch 5.0.6
  • 4007b42 Free up more disk space on GitHub Actions
  • f692fb1 Ensure that Hazelcast binds to localhost for client tests
  • f743dc8 Improve graceful shutdown documentation to remove ambiguity
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)