Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update dependency org.springframework.boot:spring-boot-starter-parent to v2.4.3 #98

Merged
merged 2 commits into from
Mar 12, 2021
Merged

Update dependency org.springframework.boot:spring-boot-starter-parent to v2.4.3 #98

merged 2 commits into from
Mar 12, 2021

Conversation

renovate-bot
Copy link
Contributor

@renovate-bot renovate-bot commented Sep 23, 2020
edited
Loading

WhiteSource Renovate

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
org.springframework.boot:spring-boot-starter-parent (source) 2.0.4.RELEASE -> 2.4.3 age adoption passing confidence
org.springframework.boot:spring-boot-starter-parent (source) 2.3.4.RELEASE -> 2.4.3 age adoption passing confidence

Release Notes

spring-projects/spring-boot

v2.4.3

Compare Source

🗒️ Noteworthy Changes
Nimbus JOSE JWT

In versions 5.4.4 and earlier, Spring Security 5.4.x depended on versions of oauth2-oidc-sdk and nimbus-jose-jwt that were not compatible with each other. This was corrected in Spring Security 5.4.5 by downgrading from nimbus-jose-jwt 9.x to 8.x. A similar change has been made to Spring Boot's dependency management in this release. If you were relying on nimbus-jose-jwt 9.x, you can restore the 9.x version using the nimbus-jose-jwt.version property.

🪲 Bug Fixes
  • DataSourceBuilder no longer invokes setUser on org.postgresql.ds.PGSimpleDataSource #​25363
  • DatabaseDriver does not detect Amazon Redshift correctly #​25312
  • Migrations performed by Flyway or Liquibase may not have completed before the database is accessed via jOOQ #​25310
  • No error message when using spring.profiles.include in a profile-specific config file if it's written as a YAML list #​25309
  • Dependency management for Hibernate's new hibernate-micrometer module is missing #​25305
  • DataSourceBuilder no longer invokes setUser on org.h2.jdbcx.JdbcDataSource #​25263
  • Missing RabbitMQ metrics if bean is defined as a ConnectionFactory #​25185
  • A ContextRefreshedEvent from a child context may result in deadlock when using JPA deferred repositories #​25174
  • Gradle plugin does not include transitive project dependencies into application layer #​25163
  • initQueryTimeout and ildeTimeout defaults are not aligned with Cassandra defaults #​25150
  • Remote application from devtools does not work with security filter in WebSecurityConfigurerAdapter #​25147
  • TestRestTemplate exchange triggers UnsupportedOperationException when using a UriTemplateRequestEntity #​25097
  • WebMvcTest and WebFluxTest ignore user-provided Thymeleaf IDialect beans #​25072
  • Managed versions of oauth2-oidc-sdk and nimbus-jose-jwt are incompatible #​25070
  • BeanCreationException thrown creating 'neo4jMappingContext' with Spring Boot 2.4.2 when combined with MongoDB #​25069
  • Collection conversion doesn't work for configtree properties #​25057
  • ConfigData with Option.IGNORE_IMPORTS can cause NPE #​25029
  • spring.config.activate.on-profile cannot be used in profile specific file #​24990
  • ConfigDataLoaders cannot have a DeferredLogFactory injected preventing their subcomponents from logging accurately #​24988
  • Spring Data Solr support is not flagged as deprecated #​24943
  • Since 2.4.2, the Logback charset defaults to UTF-8 rather than the OS's default #​24894
  • InvalidConfigDataPropertyException thrown when server processed ConfigData contains profiles #​24890
  • When spring.mvc.pathmatch.matching-strategy is set to path-pattern-parser, the error handling of a management server listening on a separate port is broken #​24877
  • mappings endpoint fails due to an NPE when spring.mvc.pathmatch.matching-strategy is set to path-pattern-parser #​24874
  • Failures when recording metrics in MetricsClientHttpRequestInterceptor may interfere with RestTemplate's main behaviour #​24872
  • Auto-configured DataSourceTransactionManager uses spring.dao.exceptiontranslation.enable rather than spring.dao.exceptiontranslation.enabled to control exception translation #​24867
  • Illegal reflective access by org.springframework.cglib.core.ReflectUtils #​24857
  • Configuration metadata for logging.charset.* has invalid reference for java.nio.charset.Charset #​24851
  • Asynchronous deserialization performed by Hazelcast may fail due to the wrong ClassLoader being used #​24836
📔 Documentation
  • Update the Gradle plugin documentation to recommend the maven-publish plugin over the maven plugin #​25307
  • Document Kafka Streams metrics support #​25297
  • Default values of integer properties in the application properties appendix are rendered as decimals #​25176
  • Clarify usage of BufferingApplicationStartup #​25075
  • Since 2.3.8 and 2.4.2, the documented index format does not match the implementation #​25066
  • Clarify when retaining . characters in property keys requires bracket notation to be used #​25064
  • Highlight that Duration and Period conversion is provided by the ApplicationConversionService and, by default, is not available for web conversion #​25061
  • Document logging.register-shutdown-hook and why you may want to enable it #​25044
  • bootRun project property command line example is incomplete #​25042
  • Document the need to use the launcher to be able to use application.* properties in a custom banner #​25040
  • Add some guidance to the reference documentation about diagnosing unexpected property values #​25038
  • WebMvcProperties.MatchingStrategy should be documented as being since 2.4.0 #​24875
  • CONTRIBUTING.adoc contains broken link to spring-javaformat-intellij-idea-plugin #​24869
  • Add version to reference docs index #​24854
  • Remove YAML shortcomings section as it no longer applies #​24620
🔨 Dependency Upgrades
❤️ Contributors

We'd like to thank all the contributors who worked on this release!

v2.4.2

Compare Source

⭐ New Features
  • Add API for PropertySource resource location retrieval #​24504
🪲 Bug Fixes
  • DataSourceUnwrapper calls Wrapper.isWrapperFor with a interface rather than an class causing HikariDataSourceMetricsRegistry failure #​24841
  • Wrong logging pattern with multiple web applications #​24835
  • Configuration metadata json does not include spring.config.use-legacy-processing #​24816
  • Setting -Dspring.devtools.restart.enabled=true has no effect when the class loader class name does not contain AppClassLoader #​24797
  • Auto-configured JdbcSessionDataSourceInitializer does not use the @SpringSessionDataSource if available #​24790
  • Error Invalid entry size when build application with a dependency jar larger than 2,147,483,647 bytes with Gradle #​24768
  • Default servlet location is not registered using a ServletContextResource #​24748
  • bootRun task does not use the project's toolchain by default #​24738
  • BootRun does not consider configured javaLauncher when determining JVM arguments for an optimized launch #​24735
  • spring.profiles.include is silently ignored when used in a profile-specific document #​24733
  • main application.yaml overrides test application.properties #​24719
  • Actuator 'configprops' endpoint does not show inputs for @Name parameters #​24713
  • Exploded archives launched using the launcher have an incorrectly ordered classpath that also contains non-existent jar files #​24710
  • spring-boot:build-image has a layout parameter that cannot be always be honoured #​24689
  • FailureAnalyzers' unmet dependency errors add noise to logs #​24683
  • WebTestClient base path is not set to the application context path #​24678
  • Support JSR-305 @Nullable annotations on endpoint methods #​24672
  • JSR-305 @Nullable cannot be used to indicate that a parameter to an endpoint operation is optional #​24670
  • ConfigDataEnvironment doesn't register updated Binder #​24669
  • WebServer implementations should return -1 if not listening on a port #​24657
  • Support JSR-305 @Nullable annotations on endpoint methods #​24654
  • Handle missing manifest files in JarTypeFilter #​24597
  • ConfigDataLocationNotFoundException thrown at application startup with configserver: config imports, that are not even meant for the current profile #​24584
  • Maven resources plugin execution generates a warning with a vanilla project #​24576
  • BootstrapContext Binder cannot be used if accessed early #​24559
  • Opening a connection to a jar:war: URL created by Tomcat results in an illegal reflective access warning on Java 13+ #​24554
  • Enforce that builder and run images are pulled from the same authenticated registry #​24552
  • Actuator doesn't use the CORS Configuration with default security configuration and Spring MVC #​24542
  • Avoid duplicate classes in MergedContextConfiguration #​24536
  • Image is built from jar file when when using war packaging with Gradle #​24535
  • configtree not working with Kubernetes projected volume #​24530
  • Netty Web Server will not start if using Unix Domain Sockets #​24529
  • Application Startup Fails For Existing, Non-Optional Config Location, Resulting In ConfigDataLocationNotFoundException #​24499
  • Exceptions are still translated by JdbcTransactionManager when spring.dao.exceptiontranslation.enabled is false #​24321
  • Persistent and RelationshipProperties-annotated types are not scanned with Spring Data Neo4j #​24239
  • flashMapManager and themeResolver beans can no longer be configured without enabling bean overriding #​24207
📔 Documentation
  • Fix documentation on probes states during graceful shutdown #​24843
  • Clarify behaviour of WebServerFactory in reference guide #​24707
  • Migrate away from pivotal-legacy/homebrew-tap #​24681
  • Fix javadoc typo in ConfigDataLocation #​24660
  • Harmonize ActiveMQ Artemis naming #​24587
  • Update version of git-properties plugin in the docs #​24572
  • Improve "Git Commit Information" reference documentation #​24570
  • Clarify when SpEL expressions in application properties are evaluated #​24565
  • Reorder documentation about building images #​24563
  • Update documentation containing examples of WebSecurityConfigurerAdapter #​24551
  • Improve error message when attempting to build an image when using war packaging with Maven #​24538
  • Testing Properties missing from Application Properties Appendix #​24518
  • Update reference guide to refine note on excluding spring-boot-configuration-processor explicitly #​24498
  • Document warning about InMemoryOAuth2AuthorizedClientService #​24313
🔨 Dependency Upgrades
❤️ Contributors

We'd like to thank all the contributors who worked on this release!

v2.4.1

Compare Source

🪲 Bug Fixes

  • Wildcard config file locations from the working directory override each other #​24428
  • Configuration property binding processes JavaBean methods in a non-deterministic order which may result in variable behavior #​24425
  • JPA repositories mode should not be deferred by default #​24401
  • @Name support for value object binding fails with Kotlin classes #​24379
  • Allow recursive profile group references #​24327
  • Correct external application properties load order #​24308
  • Wrapper types are not displayed in actuator env endpoint #​24307
  • OriginTrackedPropertiesLoader#isNewDocument has wrong visibility #​24268
  • Redis health indicator requests more information than it needs resulting in unnecessarily large responses from Redis #​24251
  • ErrorAttributeOptions.excluding throws IllegalArgumentException if includes is empty #​24234
  • Actuator web endpoints cannot respond with custom HTTP status codes when running on MVC or WebFlux #​24223
  • Missing Spring Integration metrics due to the MeterRegistry bean being looked for before it has been defined #​24220
  • LocaleResolver (MVC) and LocaleContextResolver (WebFlux) beans will back off if a user provides a bean of the same type and a custom name but Framework will then use its own default #​24209
  • DevTools still refers to deprecated keys #​24203
  • DataSourceUnwrapper calls Wrapper.isWrapperFor with a class rather than an interface causing Oracle UCP warnings #​24200
  • WebFluxTags performs unnecessary Pattern compilation when ignoring trailing slashes #​24194
  • elasticsearch-rest-client-sniffer is missing from the dependency management for Elasticsearch's REST client modules #​24186
  • No converter is found when binding a non-string property via config tree #​24171
  • LoggingSystem calls with Log4J throws NullPointerException #​24163
  • Any line that is immediately after a line that contains only a # is lost when reading application properties files #​24158
  • Ensure the WebClient to be present before enabling the WebTestClientContextCustomizer #​24152
  • ConfigDataResourceNotFoundException incorrectly thrown for valid classpath locations #​24143

📔 Documentation

  • Document how to use Devtools without an IDE #​24410
  • Add link to appendix from error handling documentation #​24408
  • Document how to run unit tests #​24301
  • Invalid ErrorAttributesOptions#getInclude Javadoc #​24259
  • Fix typo in TomcatWebServer Javadoc #​24245
  • Security properties appendix contains spring.session and spring.ldap properties that belong elsewhere #​24196
  • Rename "sla" to "slo" in reference documentation #​24162
  • Document the granularity for property document imports #​22987

🔨 Dependency Upgrades

❤️ Contributors

We'd like to thank all the contributors who worked on this release!

v2.4.0

Compare Source

⭐ New Features
  • Provide a property or environment variable to enable DevTools' restarter irrespective of how the application was launched #​21424
🪲 Bug Fixes
  • Using last modified for static resources in reproducible archives and images causes unwanted browser caching #​24099
  • BootJar's afterResolve action causes resolution failures with the Versions plugin due to configurations being copied and made resolvable #​24072
  • Configuration metadata annotation processor may use the wrong accessor for boolean properties #​24059
  • When using Tomcat, key and trust store passwords set via javax.net.ssl system properties are overwritten with null when Spring Boot's equivalent properties have not been set #​24053
  • Config files no longer loaded if they contain a hidden path element #​24043
  • @DataJpaTest using H2 with schema.sql and spring.datasource.schema-username fails #​24024
  • "java.lang.IllegalStateException: zip file closed" when call JarFileWrapper.stream() of spring-boot-loader #​24017
  • JdbcStoreTypeConfiguration picks transaction of primary data source when Quartz data source is not the primary data source #​24015
  • TestTypeExcludeFilter does not implement hashCode and equals as required by its super-class #​24013
  • Our auto-configuration should not use @PostConstruct as it's ignored on Java 11+ without a dependency on jakarta-annotation-api #​24010
  • @MockBean fields are not reset for JUnit 5 @Nested tests using @WebMvcTest #​23984
  • ClasspathLoggingApplicationListener logs the classpath as unknown on Java 11 and later #​23138
📔 Documentation
  • Fix link to Flyway callback docs #​24122
  • Fix deprecation warnings in javadoc comments #​24120
  • Provide more details about overriding SpringPhysicalNamingStrategy's case insensitive flag #​24062
  • Clarify documentation regarding relaxed binding of environment variables #​24033
  • Enhance spring.datasource.initialization-mode property description #​24030
  • Recommend disabling context path redirects when using proxy-terminated SSL with Tomcat #​24026
  • Improve Spring Session back off documentation #​24019
  • Clarify the javadoc of AutoConfigureTestDatabase to make it clearer that it only replaces the main DataSource #​24007
  • Recommend that bean definitions provide as much type information as possible #​24005
  • logging.file.* properties flagged with error level while they are still honoured #​23995
  • Add missing default value for enum-based configuration properties #​23992
  • Configuration property replacement metadata for spring.resources.cache.cachecontrol.stale-while-revalidate is invalid #​23980
🔨 Dependency Upgrades
❤️ Contributors

We'd like to thank all the contributors who worked on this release!

v2.3.9.RELEASE

Compare Source

🪲 Bug Fixes
  • Migrations performed by Flyway or Liquibase may not have completed before the database is accessed via jOOQ #​25279
  • Dependency management for Hibernate's new hibernate-micrometer module is missing #​25277
  • DatabaseDriver does not detect Amazon Redshift correctly #​25265
  • Missing RabbitMQ metrics if bean is defined as a ConnectionFactory #​25138
  • A ContextRefreshedEvent from a child context may result in deadlock when using JPA deferred repositories #​24966
  • Spring Data Solr support is not flagged as deprecated #​24942
  • Failures when recording metrics in MetricsClientHttpRequestInterceptor may interfere with RestTemplate's main behaviour #​24753
  • WebMvcTest and WebFluxTest ignore user-provided Thymeleaf IDialect beans #​24149
📔 Documentation
  • Update the Gradle plugin documentation to recommend the maven-publish plugin over the maven plugin #​25299
  • Document Kafka Streams metrics support #​25272
  • Default values of integer properties in the application properties appendix are rendered as decimals #​25172
  • bootRun project property command line example is incomplete #​25012
  • Document the need to use the launcher to be able to use application.* properties in a custom banner #​24982
  • CONTRIBUTING.adoc contains broken link to spring-javaformat-intellij-idea-plugin #​24864
  • Since 2.3.8 and 2.4.2, the documented index format does not match the implementation #​24856
  • Add version to reference docs index #​24848
  • Document logging.register-shutdown-hook and why you may want to enable it #​24507
  • Add some guidance to the reference documentation about diagnosing unexpected property values #​24336
  • Clarify when retaining . characters in property keys requires bracket notation to be used #​23390
  • Highlight that Duration and Period conversion is provided by the ApplicationConversionService and, by default, is not available for web conversion #​22718
🔨 Dependency Upgrades
❤️ Contributors

We'd like to thank all the contributors who worked on this release!

v2.3.8.RELEASE

Compare Source

🪲 Bug Fixes
  • Default servlet location is not registered using a ServletContextResource #​24747
  • DataSourceUnwrapper calls Wrapper.isWrapperFor with a interface rather than an class causing HikariDataSourceMetricsRegistry failure #​24697
  • JSR-305 @Nullable cannot be used to indicate that a parameter to an endpoint operation is optional #​24647
  • FailureAnalyzers' unmet dependency errors add noise to logs #​24630
  • Auto-configured JdbcSessionDataSourceInitializer does not use the @SpringSessionDataSource if available #​24624
  • Error Invalid entry size when build application with a dependency jar larger than 2,147,483,647 bytes with Gradle #​24618
  • WebServer implementations should return -1 if not listening on a port #​24606
  • Avoid duplicate classes in MergedContextConfiguration #​24532
  • Image is built from jar file when when using war packaging with Gradle #​24521
  • bootRun task does not use the project's toolchain by default #​24517
  • BootRun does not consider configured javaLauncher when determining JVM arguments for an optimized launch #​24512
  • Exploded archives launched using the launcher have an incorrectly ordered classpath that also contains non-existent jar files #​24192
  • spring-boot:build-image has a layout parameter that cannot be always be honoured #​24105
  • WebTestClient base path is not set to the application context path #​24168
  • Opening a connection to a jar:war: URL created by Tomcat results in an illegal reflective access warning on Java 13+ #​18631
📔 Documentation
  • Clarify behaviour of WebServerFactory in reference guide #​24705
  • Migrate away from pivotal-legacy/homebrew-tap #​24680
  • Document warning about InMemoryOAuth2AuthorizedClientService #​24596
  • Harmonize ActiveMQ Artemis naming #​24586
  • Update version of git-properties plugin in the docs #​24567
  • Reorder documentation about building images #​24560
  • Clarify when SpEL expressions in application properties are evaluated #​24531
  • Improve error message when attempting to build an image when using war packaging with Maven #​24522
  • Testing Properties missing from Application Properties Appendix #​24486
  • Improve "Git Commit Information" reference documentation #​24205
🔨 Dependency Upgrades
  • Upgrade to AppEngine SDK 1.9.84 #​24754
  • Upgrade to Byte Buddy 1.10.19 #​24755
  • Upgrade to Dependency Management Plugin 1.0.11.RELEASE #​24821
  • Upgrade to Dropwizard Metrics 4.1.17 #​24756
  • Upgrade to Hazelcast 3.12.11 #​24757
  • Upgrade to Hibernate 5.4.27.Final #​24758
  • Upgrade to Hibernate Validator 6.1.7.Final #​24759
  • Upgrade to Jackson Bom 2.11.4 #​24760
  • Upgrade to Jetty Reactive HTTPClient 1.1.5 #​24761
  • Upgrade to Johnzon 1.2.9 #​24762
  • Upgrade to Lettuce 5.3.6.RELEASE #​24801
  • Upgrade to Micrometer 1.5.10 #​24785
  • Upgrade to Neo4j OGM 3.2.19 #​24763
  • Upgrade to Netty 4.1.58.Final #​24822
  • Upgrade to Netty tcNative 2.0.36.Final #​24823
  • Upgrade to Reactor Dysprosium-SR16 #​24765
  • Upgrade to Spring AMQP 2.2.14.RELEASE #​24824
  • Upgrade to Spring Integration 5.3.5.RELEASE #​24825
  • Upgrade to Spring Kafka 2.5.11.RELEASE #​24826
  • Upgrade to Thymeleaf 3.0.12 #​24599
❤️ Contributors

We'd like to thank all the contributors who worked on this release!

v2.3.7.RELEASE

Compare Source

🪲 Bug Fixes
  • Configuration property binding processes JavaBean methods in a non-deterministic order which may result in variable behavior #​24424
  • Redis health indicator requests more information than it needs resulting in unnecessarily large responses from Redis #​24250
  • JPA repositories mode should not be deferred by default #​24249
  • ErrorAttributeOptions.excluding throws IllegalArgumentException if includes is empty #​24230
  • Actuator web endpoints cannot respond with custom HTTP status codes when running on MVC or WebFlux #​24222
  • Missing Spring Integration metrics due to the MeterRegistry bean being looked for before it has been defined #​24219
  • WebFluxTags performs unnecessary Pattern compilation when ignoring trailing slashes #​24193
  • elasticsearch-rest-client-sniffer is missing from the dependency management for Elasticsearch's REST client modules #​24185
  • DataSourceUnwrapper calls Wrapper.isWrapperFor with a class rather than an interface causing Oracle UCP warnings #​24154
📔 Documentation

Renovate configuration

📅 Schedule: At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻️ Rebasing: Renovate will not automatically rebase this PR, because other commits have been found.

🔕 Ignore: Close this PR and you won't be reminded about these updates again.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by WhiteSource Renovate. View repository job log here.

@google-cla google-cla bot added the cla: yes This human has signed the Contributor License Agreement. label Sep 23, 2020
@renovate-bot renovate-bot changed the title chore(deps): update dependency org.springframework.boot:spring-boot-starter-parent to v2.3.4.release chore(deps): update dependency org.springframework.boot:spring-boot-starter-parent to v2.3.5.release Oct 30, 2020
@renovate-bot renovate-bot changed the title chore(deps): update dependency org.springframework.boot:spring-boot-starter-parent to v2.3.5.release chore(deps): update dependency org.springframework.boot:spring-boot-starter-parent to v2.4.0 Nov 12, 2020
@renovate-bot renovate-bot changed the title chore(deps): update dependency org.springframework.boot:spring-boot-starter-parent to v2.4.0 chore(deps): update dependency org.springframework.boot:spring-boot-starter-parent to v2.4.1 Dec 11, 2020
@renovate-bot renovate-bot changed the title chore(deps): update dependency org.springframework.boot:spring-boot-starter-parent to v2.4.1 chore(deps): update dependency org.springframework.boot:spring-boot-starter-parent to v2.4.2 Jan 15, 2021
@renovate-bot renovate-bot changed the title chore(deps): update dependency org.springframework.boot:spring-boot-starter-parent to v2.4.2 Update dependency org.springframework.boot:spring-boot-starter-parent to v2.4.2 Jan 29, 2021
@renovate-bot renovate-bot changed the title Update dependency org.springframework.boot:spring-boot-starter-parent to v2.4.2 Update dependency org.springframework.boot:spring-boot-starter-parent to v2.4.3 Feb 18, 2021
@bshaffer bshaffer merged commit 3a9a41f into GoogleCloudPlatform:master Mar 12, 2021
@renovate-bot renovate-bot deleted the renovate/spring-boot branch March 12, 2021 00:50
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bshaffer bshaffer bshaffer approved these changes

Assignees
No one assigned
Labels
cla: yes This human has signed the Contributor License Agreement.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@renovate-bot @bshaffer