Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump spring-framework-bom from 5.3.23 to 5.3.24 #2492

Merged
merged 1 commit into from Nov 17, 2022
Merged

Bump spring-framework-bom from 5.3.23 to 5.3.24 #2492

merged 1 commit into from Nov 17, 2022

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 17, 2022
edited

Bumps spring-framework-bom from 5.3.23 to 5.3.24.

Release notes

Sourced from spring-framework-bom's releases.

v5.3.24

⭐ New Features

  • Avoid reflection for annotation method invocations #29448
  • Avoid unnecessary allocations in StompDecoder#unescape #29443
  • Avoid String allocations in MediaType.checkParameters #29428
  • Reduce allocations caused by producible media types #29412
  • Provide optional SimpleBeanInfoFactory for better introspection performance in 5.3.x #29330
  • Filter out null WebSocket session attributes #29315
  • Introduce TestSocketUtils as a replacement for SocketUtils #29132
  • Avoid Commons Logging API for using LoggingCacheErrorHandler with a custom logger #28678

🐞 Bug Fixes

  • Missing SessionFactory property (filter AutoCloseable from PropertyDescriptors) #29480
  • SpEL ternary and Elvis expressions are missing enclosing parentheses in toStringAST() #29463
  • If-Unmodified-Since header check removes Last-Modified and Etag headers from response, even if condition passes #29362
  • Annotation searches fail for non-public repeatable annotations #29301
  • AbstractBeanFactory's interaction with BeanPostProcessorCacheAwareList is not fully thread-safe #29299
  • WebTestClient cannot assert custom HTTP status code #29283
  • Body token not expected error when trying to upload a large multipart file #29227
  • Avoid resizing of Maps created by CollectionUtils #29190
  • DefaultWebClient logging sensitive information in URI #29148
  • Fix SimpleMailMessage nullability annotations #29139
  • Webflux fails to apply the rule for controller methods returning void to kotlin suspend functions returning Unit #27629
  • Resource.isFile() return true when the resource path actually not exists #26707
  • AnnotatedElementUtils does not find merged repeatable annotations on other repeatable annotations #20279

📔 Documentation

  • Fix two typos in integration.adoc and webflux.adoc #29469
  • Fix typo: "as describe in" -> "as described in" #29393
  • Fix typos #29364
  • Correct documentation for "other return values" from a web controller method #29349
  • Document how to use WebJars without webjars-locator-core dependency #29322
  • Update RestTemplate Javadoc with regards to setting interceptors on startup vs at runtime #29311
  • Document how to switch to the default set of TestExecutionListeners #29281
  • Document limitation of AopTestUtils.getUltimateTargetObject() regarding non-static TargetSource #29276
  • Fix typo in WebSocket reference doc regarding subscription header #29228
  • Fix MockMvc sample setup #29201

🔨 Dependency Upgrades

  • Upgrade to Reactor 2020.0.25 #29464

❤️ Contributors

We'd like to thank all the contributors who worked on this release!

... (truncated)

Commits
  • 2af9d96 Release v5.3.24
  • 8e64701 Fix Javadoc formatting issue in TestSocketUtils
  • ae9a9e3 Document TestSocketUtils in the testing chapter
  • c940256 Upgrade to Reactor 2020.0.25
  • ec3f59e Allow AutoCloseable dereferences on original AutoCloseable beans
  • 49ee4a4 Deprecated unused findAutowireCandidates template method (removed in 6.0)
  • 698f899 Revise TestSocketUtils and tests
  • ee51dab Introduce TestSocketUtils as a replacement for SocketUtils
  • 743a96b Polish SocketUtilsTests
  • b766a49 Support suspending functions returning Unit in WebFlux
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot added Priority 1: Must Highest priority. A release cannot be made if this issue isn’t resolved. Status: In Progress Use to signal this issue is actively worked on. Type: Dependency Upgrade Use to signal an issue that adjusts the project’s dependencies. Typically used by dependabot only. labels Nov 17, 2022
@dependabot dependabot bot added this to the Release 4.6.3 milestone Nov 17, 2022
@smcvb
Copy link
Member

smcvb commented Nov 17, 2022

@dependabot rebase

@dependabot
Bump spring-framework-bom from 5.3.23 to 5.3.24
7890440 
Bumps [spring-framework-bom](https://github.com/spring-projects/spring-framework) from 5.3.23 to 5.3.24.
- [Release notes](https://github.com/spring-projects/spring-framework/releases)
- [Commits](spring-projects/spring-framework@v5.3.23...v5.3.24)

---
updated-dependencies:
- dependency-name: org.springframework:spring-framework-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/maven/axon-4.6.x/org.springframework-spring-framework-bom-5.3.24 branch from a383dad to 7890440 Compare November 17, 2022 10:50
@sonarcloud
Copy link

sonarcloud bot commented Nov 17, 2022

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
0.0% 0.0% Duplication

smcvb
smcvb approved these changes Nov 17, 2022
View reviewed changes
Copy link
Member

@smcvb smcvb left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good to me 👍

@smcvb smcvb merged commit 3bf18d7 into axon-4.6.x Nov 17, 2022
@smcvb smcvb self-assigned this Nov 17, 2022
@smcvb smcvb added Status: Resolved Use to signal that work on this issue is done. and removed Status: In Progress Use to signal this issue is actively worked on. labels Nov 17, 2022
@dependabot dependabot bot deleted the dependabot/maven/axon-4.6.x/org.springframework-spring-framework-bom-5.3.24 branch November 17, 2022 12:29
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@smcvb smcvb smcvb approved these changes

@gklijs gklijs Awaiting requested review from gklijs

@CodeDrivenMitch CodeDrivenMitch Awaiting requested review from CodeDrivenMitch

Assignees

@smcvb smcvb

Labels
Priority 1: Must Highest priority. A release cannot be made if this issue isn’t resolved. Status: Resolved Use to signal that work on this issue is done. Type: Dependency Upgrade Use to signal an issue that adjusts the project’s dependencies. Typically used by dependabot only.
Projects
None yet
Milestone
Release 4.6.3
Development

Successfully merging this pull request may close these issues.

None yet
1 participant
@smcvb