Bump spring-web.version from 5.3.23 to 5.3.32-wso2v1

[dependabot[bot]]

Bumps spring-web.version from 5.3.23 to 5.3.32-wso2v1. Updates org.springframework:spring-web from 5.3.23 to 5.3.32-wso2v1

Release notes

Sourced from org.springframework:spring-web's releases.

v5.3.32

:star: New Features

• Add CORS support for Private Network Access #31974
• Avoid early getMostSpecificMethod resolution in CommonAnnotationBeanPostProcessor #31969

:lady_beetle: Bug Fixes

• Consistent parsing of user information in UriComponentsBuilder #32247
• QualifierAnnotationAutowireCandidateResolver.checkQualifier does identity checks when comparing arrays used as qualifier fields #32108
• Guard against multiple body subscriptions in Jetty and JDK reactive responses #32101
• Static resources caching issues with ShallowEtagHeaderFilter and Jetty caching directives #32051
• ChannelSendOperator.WriteBarrier race condition in request(long) method leads to response being dropped #32021
• Spring AOP does not propagate arguments for dynamic prototype-scoped advice #31964
• MergedAnnotation swallows IllegalAccessException for attribute method #31961
• CronTrigger hard-codes default ZoneId instead of participating in scheduler-wide Clock setup #31950
• MergedAnnotations finds duplicate annotations on method in multi-level interface hierarchy #31825
• PathEditor cannot handle absolute Windows paths with forward slashes #31728
• Include Hibernate's Query.scroll() in SharedEntityManagerCreator's queryTerminatingMethods set #31684
• TypeDescriptor does not check generics in equals method (for ConversionService caching) #31674
• Slow SpEL performance due to method sorting in ReflectiveMethodResolver #31665
• Jackson encoder releases resources in wrong order #31657
• WebSocketMessageBrokerStats has null stats for stompSubProtocolHandler since 5.3.2 #31642

:notebook_with_decorative_cover: Documentation

• Document cron-vs-quartz parsing convention for dayOfWeek part in CronExpression #32131

:hammer: Dependency Upgrades

• Upgrade to Reactor 2020.0.41 #32276

v5.3.31

:star: New Features

• Log4jLog needs to re-resolve ExtendedLogger on deserialization (for compatibility with Log4J 2.21) #31583

:lady_beetle: Bug Fixes

• MessageBuilder#createMessage should not define the payload as @Nullable #31611
• Avoid duplicate JAR resources in PathMatchingResourcePatternResolver on MS Windows #31603
• Spring web integration commons fileupload receives files and other parameter uploads, with a null pointer #31564
• Function column out doesn't resolve to SqlOutParameter #31560
• Resolve to empty MultiValueMap when no matrix variables are provided #31484
• BeanUtils.copyProperties() consumes large amount of memory #31481
• CGLIB BeanCopier falls back to ClassLoader.defineClass for public target #31436
• R2DBC Connection is closed during transaction when using TransactionAwareConnectionFactoryProxy #31411
• HibernateJpaDialect and HibernateExceptionTranslator throw SQLExceptionTranslator-provided exception instead of returning it #31410
• NamedParameterJdbcTemplate throws unexpected exception for null query #31394
• LazyResolutionMessage does not implement proper toString #31385

... (truncated)

Commits

• See full diff in compare view

Updates org.springframework:spring-context from 5.3.23 to 5.3.32-wso2v1

Release notes

Sourced from org.springframework:spring-context's releases.

v5.3.32

:star: New Features

• Add CORS support for Private Network Access #31974
• Avoid early getMostSpecificMethod resolution in CommonAnnotationBeanPostProcessor #31969

:lady_beetle: Bug Fixes

• Consistent parsing of user information in UriComponentsBuilder #32247
• QualifierAnnotationAutowireCandidateResolver.checkQualifier does identity checks when comparing arrays used as qualifier fields #32108
• Guard against multiple body subscriptions in Jetty and JDK reactive responses #32101
• Static resources caching issues with ShallowEtagHeaderFilter and Jetty caching directives #32051
• ChannelSendOperator.WriteBarrier race condition in request(long) method leads to response being dropped #32021
• Spring AOP does not propagate arguments for dynamic prototype-scoped advice #31964
• MergedAnnotation swallows IllegalAccessException for attribute method #31961
• CronTrigger hard-codes default ZoneId instead of participating in scheduler-wide Clock setup #31950
• MergedAnnotations finds duplicate annotations on method in multi-level interface hierarchy #31825
• PathEditor cannot handle absolute Windows paths with forward slashes #31728
• Include Hibernate's Query.scroll() in SharedEntityManagerCreator's queryTerminatingMethods set #31684
• TypeDescriptor does not check generics in equals method (for ConversionService caching) #31674
• Slow SpEL performance due to method sorting in ReflectiveMethodResolver #31665
• Jackson encoder releases resources in wrong order #31657
• WebSocketMessageBrokerStats has null stats for stompSubProtocolHandler since 5.3.2 #31642

:notebook_with_decorative_cover: Documentation

• Document cron-vs-quartz parsing convention for dayOfWeek part in CronExpression #32131

:hammer: Dependency Upgrades

• Upgrade to Reactor 2020.0.41 #32276

v5.3.31

:star: New Features

• Log4jLog needs to re-resolve ExtendedLogger on deserialization (for compatibility with Log4J 2.21) #31583

:lady_beetle: Bug Fixes

• MessageBuilder#createMessage should not define the payload as @Nullable #31611
• Avoid duplicate JAR resources in PathMatchingResourcePatternResolver on MS Windows #31603
• Spring web integration commons fileupload receives files and other parameter uploads, with a null pointer #31564
• Function column out doesn't resolve to SqlOutParameter #31560
• Resolve to empty MultiValueMap when no matrix variables are provided #31484
• BeanUtils.copyProperties() consumes large amount of memory #31481
• CGLIB BeanCopier falls back to ClassLoader.defineClass for public target #31436
• R2DBC Connection is closed during transaction when using TransactionAwareConnectionFactoryProxy #31411
• HibernateJpaDialect and HibernateExceptionTranslator throw SQLExceptionTranslator-provided exception instead of returning it #31410
• NamedParameterJdbcTemplate throws unexpected exception for null query #31394
• LazyResolutionMessage does not implement proper toString #31385

... (truncated)

Commits

• See full diff in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/wso2/carbon-apimgt/network/alerts).

Note Automatic rebases have been disabled on this pull request as it has been open for over 30 days.