You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@myfaces.apache.org by GitBox <gi...@apache.org> on 2022/07/01 16:06:34 UTC
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request, #2901: build(deps): bump spring-boot.version from 2.7.0 to 2.7.1
dependabot[bot] opened a new pull request, #2901:
URL: https://github.com/apache/myfaces-tobago/pull/2901
Bumps `spring-boot.version` from 2.7.0 to 2.7.1.
Updates `spring-boot-dependencies` from 2.7.0 to 2.7.1
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/spring-projects/spring-boot/releases">spring-boot-dependencies's releases</a>.</em></p>
<blockquote>
<h2>v2.7.1</h2>
<h2>:lady_beetle: Bug Fixes</h2>
<ul>
<li>Values in a spring.data.cassandra.config file can't override some defaults defined in CassandraProperties <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31503">#31503</a></li>
<li><code>@RestControllerAdvice</code> <code>@ExceptionHandler</code> Inconsistent behavior with <code>@RestControllerEndpoint</code> <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31501">#31501</a></li>
<li>Malformed json causes BasicJsonParser to throw a NullPointerException <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31499">#31499</a></li>
<li>Metadata generated by the configuration properties annotation processor can miss inherited properties from nested classes <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31484">#31484</a></li>
<li>JarFile implementation calls close early which breaks verification of signed unpacked nested jars on Oracle JDK <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31395">#31395</a></li>
<li>Health indicators that take a long time to respond are difficult to diagnose <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31384">#31384</a></li>
<li>Custom Converter annotated with <code>@ConfigurationPropertiesBinding</code> does not get selected if targetType has a static factory method different return type <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31341">#31341</a></li>
<li>Tomcat server.max-http-header-size property is ignored when using HTTP/2 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31329">#31329</a></li>
<li>OAuth2 Resource Server Auto-Configuration can only configure a single JWS algorithm <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31321">#31321</a></li>
<li>Maven shade plugin configuration in spring-boot-starter-parent does not append META-INF/spring/*.imports files <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31316">#31316</a></li>
<li>GraphQL RouterFunctions are unordered which prevents other functions from being ordered after them <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31314">#31314</a></li>
<li>spring-boot-dependencies manages spring-ldap-ldif-batch which no longer exists <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31254">#31254</a></li>
<li>Dependency task can fail due to BootJar and BootWar afterResolve hooks <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31213">#31213</a></li>
<li>MimeMappings does not include application/wasm <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31188">#31188</a></li>
<li>spring-configuration-metadata.json is missing for additional-spring-configuration-metadata.json after switching from <code>@Configuration</code> to <code>@AutoConfiguration</code> <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31186">#31186</a></li>
<li>Binder(ConfigurationPropertySource... sources) does not assert that sources contains only non-null elements <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31183">#31183</a></li>
<li>WebMvcMetricsFilter stopped working since 2.7.0 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31150">#31150</a></li>
<li>Dependency management for mimepull is redundant and the managed version is incompatible with Java 8 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/pull/31145">#31145</a></li>
<li>layers.xsd is out of sync with the documentation and implementation for including and excluding module dependencies <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31128">#31128</a></li>
</ul>
<h2>:notebook_with_decorative_cover: Documentation</h2>
<ul>
<li>Make SpringApplication Kotlin samples idiomatic <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/pull/31463">#31463</a></li>
<li>Harmonize Kotlin example <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/pull/31458">#31458</a></li>
<li>Remove duplicate content from "The Spring WebFlux Framework" section <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31381">#31381</a></li>
<li>Document that property placeholders should use the canonical property name form <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31369">#31369</a></li>
<li>Fix typos in the reference documentation <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31366">#31366</a></li>
<li>Enable Links for the Javadoc of the Gradle Plugin <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31362">#31362</a></li>
<li>Remove "earlier in this chapter" from places where content is now elsewhere in the documentation <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31360">#31360</a></li>
<li>Restore custom favicon documentation <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31358">#31358</a></li>
<li>Document that when using Lombok it must be configured to run before spring-boot-configuration-processor <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31356">#31356</a></li>
<li>Use Lambda-based API in Spring Security examples <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31354">#31354</a></li>
<li>Fix typo in name of imports file in javadoc of ImportCandidates.from <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/pull/31277">#31277</a></li>
<li>Typos in documentation ("spring-factories" instead of "spring.factories") <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31206">#31206</a></li>
<li>Fix Custom Layers Configuration section title in Maven plugin docs <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31180">#31180</a></li>
<li>org.springframework.boot.actuate.autoconfigure.metrics.graphql has no package info <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/pull/31140">#31140</a></li>
<li>Update Dynatrace Micrometer registry documentation <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/pull/31132">#31132</a></li>
</ul>
<h2>:hammer: Dependency Upgrades</h2>
<ul>
<li>Upgrade to AppEngine SDK 1.9.97 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31421">#31421</a></li>
<li>Upgrade to Byte Buddy 1.12.11 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31508">#31508</a></li>
<li>Upgrade to Couchbase Client 3.3.1 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31422">#31422</a></li>
<li>Upgrade to Dropwizard Metrics 4.2.10 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31488">#31488</a></li>
<li>Upgrade to Elasticsearch 7.17.4 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31423">#31423</a></li>
<li>Upgrade to Embedded Mongo 3.4.6 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31424">#31424</a></li>
<li>Upgrade to Flyway 8.5.13 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31425">#31425</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/spring-projects/spring-boot/commit/77beca96198c4124f56df508db008a5c13351ff3"><code>77beca9</code></a> Release v2.7.1</li>
<li><a href="https://github.com/spring-projects/spring-boot/commit/498f052a7a48349c81e7c3e0585be2260a7d4ee6"><code>498f052</code></a> Fix deprecation warning</li>
<li><a href="https://github.com/spring-projects/spring-boot/commit/bc2d20edf086f7dace790906f0d963b742a4a83d"><code>bc2d20e</code></a> Merge branch '2.6.x' into 2.7.x</li>
<li><a href="https://github.com/spring-projects/spring-boot/commit/a94e7d667209e322fadf7171fcf51c22084e3dc0"><code>a94e7d6</code></a> Upgrade to Jetty 9.4.48.v20220622</li>
<li><a href="https://github.com/spring-projects/spring-boot/commit/59764572713b9aaba3a7d1c7ea09473300754a5b"><code>5976457</code></a> Upgrade to Byte Buddy 1.12.11</li>
<li><a href="https://github.com/spring-projects/spring-boot/commit/6484be2aa5e7eb9308185c1e05ae8c9f182a9914"><code>6484be2</code></a> Upgrade to Jetty 9.4.48.v20220622</li>
<li><a href="https://github.com/spring-projects/spring-boot/commit/28775c2c53086a055888adaf47b31540a09f0712"><code>28775c2</code></a> Merge branch '2.6.x' into 2.7.x</li>
<li><a href="https://github.com/spring-projects/spring-boot/commit/9e98f694c7c510a19d13775c5b385288c84b18fc"><code>9e98f69</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31238">#31238</a> from ittays</li>
<li><a href="https://github.com/spring-projects/spring-boot/commit/904feb249006cd28464e0eef7da9dad43ced20fc"><code>904feb2</code></a> Polish 'Allow spring.data.cassandra.config file to override default values'</li>
<li><a href="https://github.com/spring-projects/spring-boot/commit/1c7d99890e05201aefba6eb58d284ce0a11506a8"><code>1c7d998</code></a> Allow spring.data.cassandra.config file to override default values</li>
<li>Additional commits viewable in <a href="https://github.com/spring-projects/spring-boot/compare/v2.7.0...v2.7.1">compare view</a></li>
</ul>
</details>
<br />
Updates `spring-boot-maven-plugin` from 2.7.0 to 2.7.1
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/spring-projects/spring-boot/releases">spring-boot-maven-plugin's releases</a>.</em></p>
<blockquote>
<h2>v2.7.1</h2>
<h2>:lady_beetle: Bug Fixes</h2>
<ul>
<li>Values in a spring.data.cassandra.config file can't override some defaults defined in CassandraProperties <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31503">#31503</a></li>
<li><code>@RestControllerAdvice</code> <code>@ExceptionHandler</code> Inconsistent behavior with <code>@RestControllerEndpoint</code> <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31501">#31501</a></li>
<li>Malformed json causes BasicJsonParser to throw a NullPointerException <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31499">#31499</a></li>
<li>Metadata generated by the configuration properties annotation processor can miss inherited properties from nested classes <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31484">#31484</a></li>
<li>JarFile implementation calls close early which breaks verification of signed unpacked nested jars on Oracle JDK <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31395">#31395</a></li>
<li>Health indicators that take a long time to respond are difficult to diagnose <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31384">#31384</a></li>
<li>Custom Converter annotated with <code>@ConfigurationPropertiesBinding</code> does not get selected if targetType has a static factory method different return type <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31341">#31341</a></li>
<li>Tomcat server.max-http-header-size property is ignored when using HTTP/2 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31329">#31329</a></li>
<li>OAuth2 Resource Server Auto-Configuration can only configure a single JWS algorithm <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31321">#31321</a></li>
<li>Maven shade plugin configuration in spring-boot-starter-parent does not append META-INF/spring/*.imports files <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31316">#31316</a></li>
<li>GraphQL RouterFunctions are unordered which prevents other functions from being ordered after them <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31314">#31314</a></li>
<li>spring-boot-dependencies manages spring-ldap-ldif-batch which no longer exists <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31254">#31254</a></li>
<li>Dependency task can fail due to BootJar and BootWar afterResolve hooks <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31213">#31213</a></li>
<li>MimeMappings does not include application/wasm <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31188">#31188</a></li>
<li>spring-configuration-metadata.json is missing for additional-spring-configuration-metadata.json after switching from <code>@Configuration</code> to <code>@AutoConfiguration</code> <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31186">#31186</a></li>
<li>Binder(ConfigurationPropertySource... sources) does not assert that sources contains only non-null elements <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31183">#31183</a></li>
<li>WebMvcMetricsFilter stopped working since 2.7.0 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31150">#31150</a></li>
<li>Dependency management for mimepull is redundant and the managed version is incompatible with Java 8 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/pull/31145">#31145</a></li>
<li>layers.xsd is out of sync with the documentation and implementation for including and excluding module dependencies <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31128">#31128</a></li>
</ul>
<h2>:notebook_with_decorative_cover: Documentation</h2>
<ul>
<li>Make SpringApplication Kotlin samples idiomatic <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/pull/31463">#31463</a></li>
<li>Harmonize Kotlin example <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/pull/31458">#31458</a></li>
<li>Remove duplicate content from "The Spring WebFlux Framework" section <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31381">#31381</a></li>
<li>Document that property placeholders should use the canonical property name form <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31369">#31369</a></li>
<li>Fix typos in the reference documentation <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31366">#31366</a></li>
<li>Enable Links for the Javadoc of the Gradle Plugin <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31362">#31362</a></li>
<li>Remove "earlier in this chapter" from places where content is now elsewhere in the documentation <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31360">#31360</a></li>
<li>Restore custom favicon documentation <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31358">#31358</a></li>
<li>Document that when using Lombok it must be configured to run before spring-boot-configuration-processor <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31356">#31356</a></li>
<li>Use Lambda-based API in Spring Security examples <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31354">#31354</a></li>
<li>Fix typo in name of imports file in javadoc of ImportCandidates.from <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/pull/31277">#31277</a></li>
<li>Typos in documentation ("spring-factories" instead of "spring.factories") <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31206">#31206</a></li>
<li>Fix Custom Layers Configuration section title in Maven plugin docs <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31180">#31180</a></li>
<li>org.springframework.boot.actuate.autoconfigure.metrics.graphql has no package info <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/pull/31140">#31140</a></li>
<li>Update Dynatrace Micrometer registry documentation <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/pull/31132">#31132</a></li>
</ul>
<h2>:hammer: Dependency Upgrades</h2>
<ul>
<li>Upgrade to AppEngine SDK 1.9.97 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31421">#31421</a></li>
<li>Upgrade to Byte Buddy 1.12.11 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31508">#31508</a></li>
<li>Upgrade to Couchbase Client 3.3.1 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31422">#31422</a></li>
<li>Upgrade to Dropwizard Metrics 4.2.10 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31488">#31488</a></li>
<li>Upgrade to Elasticsearch 7.17.4 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31423">#31423</a></li>
<li>Upgrade to Embedded Mongo 3.4.6 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31424">#31424</a></li>
<li>Upgrade to Flyway 8.5.13 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31425">#31425</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/spring-projects/spring-boot/commit/77beca96198c4124f56df508db008a5c13351ff3"><code>77beca9</code></a> Release v2.7.1</li>
<li><a href="https://github.com/spring-projects/spring-boot/commit/498f052a7a48349c81e7c3e0585be2260a7d4ee6"><code>498f052</code></a> Fix deprecation warning</li>
<li><a href="https://github.com/spring-projects/spring-boot/commit/bc2d20edf086f7dace790906f0d963b742a4a83d"><code>bc2d20e</code></a> Merge branch '2.6.x' into 2.7.x</li>
<li><a href="https://github.com/spring-projects/spring-boot/commit/a94e7d667209e322fadf7171fcf51c22084e3dc0"><code>a94e7d6</code></a> Upgrade to Jetty 9.4.48.v20220622</li>
<li><a href="https://github.com/spring-projects/spring-boot/commit/59764572713b9aaba3a7d1c7ea09473300754a5b"><code>5976457</code></a> Upgrade to Byte Buddy 1.12.11</li>
<li><a href="https://github.com/spring-projects/spring-boot/commit/6484be2aa5e7eb9308185c1e05ae8c9f182a9914"><code>6484be2</code></a> Upgrade to Jetty 9.4.48.v20220622</li>
<li><a href="https://github.com/spring-projects/spring-boot/commit/28775c2c53086a055888adaf47b31540a09f0712"><code>28775c2</code></a> Merge branch '2.6.x' into 2.7.x</li>
<li><a href="https://github.com/spring-projects/spring-boot/commit/9e98f694c7c510a19d13775c5b385288c84b18fc"><code>9e98f69</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31238">#31238</a> from ittays</li>
<li><a href="https://github.com/spring-projects/spring-boot/commit/904feb249006cd28464e0eef7da9dad43ced20fc"><code>904feb2</code></a> Polish 'Allow spring.data.cassandra.config file to override default values'</li>
<li><a href="https://github.com/spring-projects/spring-boot/commit/1c7d99890e05201aefba6eb58d284ce0a11506a8"><code>1c7d998</code></a> Allow spring.data.cassandra.config file to override default values</li>
<li>Additional commits viewable in <a href="https://github.com/spring-projects/spring-boot/compare/v2.7.0...v2.7.1">compare view</a></li>
</ul>
</details>
<br />
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: dev-unsubscribe@myfaces.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [myfaces-tobago] henningn commented on pull request #2901: build(deps): bump spring-boot.version from 2.7.0 to 2.7.1
Posted by GitBox <gi...@apache.org>.
henningn commented on PR #2901:
URL: https://github.com/apache/myfaces-tobago/pull/2901#issuecomment-1174946058
@dependabot rebase
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: dev-unsubscribe@myfaces.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] commented on pull request #2901: build(deps): bump spring-boot.version from 2.7.0 to 2.7.1
Posted by GitBox <gi...@apache.org>.
dependabot[bot] commented on PR #2901:
URL: https://github.com/apache/myfaces-tobago/pull/2901#issuecomment-1189044609
OK, I won't notify you again about this release, but will get in touch when a new version is available. You can also ignore all major, minor, or patch releases for a dependency by adding an [`ignore` condition](https://docs.github.com/en/code-security/supply-chain-security/configuration-options-for-dependency-updates#ignore) with the desired `update_types` to your config file.
If you change your mind, just re-open this PR and I'll resolve any conflicts on it.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: dev-unsubscribe@myfaces.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [myfaces-tobago] henningn commented on pull request #2901: build(deps): bump spring-boot.version from 2.7.0 to 2.7.1
Posted by GitBox <gi...@apache.org>.
henningn commented on PR #2901:
URL: https://github.com/apache/myfaces-tobago/pull/2901#issuecomment-1189044551
There is a CVE (https://nvd.nist.gov/vuln/detail/cve-2016-1000027) in spring-boot v2.7.1, so we stick on 2.7.0.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: dev-unsubscribe@myfaces.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [myfaces-tobago] henningn closed pull request #2901: build(deps): bump spring-boot.version from 2.7.0 to 2.7.1
Posted by GitBox <gi...@apache.org>.
henningn closed pull request #2901: build(deps): bump spring-boot.version from 2.7.0 to 2.7.1
URL: https://github.com/apache/myfaces-tobago/pull/2901
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: dev-unsubscribe@myfaces.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org