search

spring-projects / spring-security

Spring Security
http://spring.io/projects/spring-security
Apache License 2.0
8.55k stars 5.79k forks source link

Bump org.springframework:spring-framework-bom from 6.1.8 to 6.1.9 #15249

Closed dependabot[bot] closed 1 week ago

dependabot[bot] commented 1 week ago

Bumps org.springframework:spring-framework-bom from 6.1.8 to 6.1.9.

Release notes

Sourced from org.springframework:spring-framework-bom's releases.

v6.1.9

:star: New Features

  • CRaC: ignore checkpointOnRefresh afterRestore #32978
  • Add missing hints for Hibernate @TenantId #32967
  • AnnotationUtils performance degrades with deep stacks #32921
  • Missing hints for Hibernate generators #32842
  • AbstractAutoProxyCreator#determineBeanType can trigger bean initialization at build time for aspects implementing Ordered #32230

:lady_beetle: Bug Fixes

  • Behaviour change in ScheduledAnnotationBeanPostProcessor: canceling scheduled tasks on ContextClosedEvent v6.0 -> v6.1 #33009
  • ContentCachingRequestWrapper may allocate too much memory #32987
  • Support canEncode() for JAXBElement in Jaxb2XmlEncoder #32977
  • AspectJ CTW aspects executed twice #32970
  • @Valid annotations on container elements for handler argument validation not supported #32964
  • Add support for double backslashes to StringUtils#cleanPath #32962
  • @CacheEvict condition uses wrapper comparison instead of actual objects #32960
  • ConcurrentHashMap.computeIfAbsent used in AdvisedSupport can cause virtual thread pinning #32958
  • Exception mapping does not work as expected when plugging in ReactorNettyClientRequestFactory into RestTemplate and RestClient #32952
  • ReactorResourceFactory not working with CRaC onRefresh checkpoint #32945
  • SpEL compilation fails when indexing into an array or list with an Integer #32908
  • SpEL compilation fails when indexing into a Map with a primitive #32903
  • BeanUtils.copyProperties no longer copies generic type properties from a base class that has been enhanced #32888
  • Application not starting with @EnableTransactionManagement(mode = AdviceMode.ASPECTJ) #32882
  • ReactorNettyClientResponse should not throw exception if no body is available #32805
  • Observation in ServerHttpObservationFilter is never stopped for asynchronous requests #32730

:notebook_with_decorative_cover: Documentation

  • Fix typo in the Simple Broker section of the reference documentation #32993
  • Remove outdated copyright from index.adoc #32983
  • Use HttpStatusCode consistently in reference guide #32966
  • Entity name in MappingSqlQuery example of reference guide is wrong #32957
  • Fix RegisterReflectionForBinding Javadoc #32947
  • Reference documentation sample for MethodValidationPostProcessor is missing a static keyword #32929
  • Fix typo in Jakarta validation documentation #32928
  • Refine KotlinDetector.isKotlinType documentation for Kotlin 2.x lambdas #32905
  • Complete Kotlin example for HTTP message codecs in reference doc #32877
  • Use Threadlocal.remove() instead of .set(null) in documentation #32874
  • Unexpected bean override / inject behavior #32825
  • Document why complex object structure are not supported as paremeters or properties by AOT #32273

:hammer: Dependency Upgrades

  • Upgrade to Micrometer 1.12.7 #33001
  • Upgrade to Reactor 2023.0.7 #33007

:heart: Contributors

... (truncated)

Commits
  • 06b492d Release v6.1.9
  • 6f32ff4 Use null stream in ReactorNettyClientResponse if no body is available
  • 24c8dfe Remove duplicated javadoc paragraph
  • cdfe581 Upgrade to Netty 4.1.111 and Awaitility 4.2.1
  • 0ff200b Trigger cancellation on context close for non-managed objects only
  • 261dac8 Upgrade to Reactor 2023.0.7
  • fce2f49 Polishing (aligned with main)
  • eca2b96 Documentation notes for @​Bean overriding and bean name matching
  • e48f37d Upgrade to Micrometer 1.12.7
  • ddc397d Upgrade to spring-javaformat-checkstyle 0.0.42
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)