You are viewing a plain text version of this content. The canonical link for it is here.
Posted to notifications@dubbo.apache.org by "dependabot[bot] (via GitHub)" <gi...@apache.org> on 2023/04/24 08:10:34 UTC
[GitHub] [dubbo] dependabot[bot] opened a new pull request, #12180: Bump spring-boot-maven-plugin from 2.7.10 to 2.7.11
dependabot[bot] opened a new pull request, #12180:
URL: https://github.com/apache/dubbo/pull/12180
Bumps [spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) from 2.7.10 to 2.7.11.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/spring-projects/spring-boot/releases">spring-boot-maven-plugin's releases</a>.</em></p>
<blockquote>
<h2>v2.7.11</h2>
<h2>:lady_beetle: Bug Fixes</h2>
<ul>
<li>CloudFoundry integration does not use endpoint path mappings <a href="https://redirect.github.com/spring-projects/spring-boot/issues/35085">#35085</a></li>
<li>Gradle Spring Boot plugin with Kotlin DSL does not support includeProjectDependencies in bootJar > layered > dependencies configuration <a href="https://redirect.github.com/spring-projects/spring-boot/issues/35033">#35033</a></li>
<li>Banner placeholders use default values too soon <a href="https://redirect.github.com/spring-projects/spring-boot/pull/34764">#34764</a></li>
<li>Cassandra default configuration substitutions don't resolve against configuration derived from spring.data.cassandra properties <a href="https://redirect.github.com/spring-projects/spring-boot/issues/34643">#34643</a></li>
<li>ApplicationAvailability bean is auto-configured even if a custom one is already present <a href="https://redirect.github.com/spring-projects/spring-boot/pull/34347">#34347</a></li>
<li>Nested test classes don't inherit properties from slice test annotations on enclosing class <a href="https://redirect.github.com/spring-projects/spring-boot/issues/33317">#33317</a></li>
</ul>
<h2>:notebook_with_decorative_cover: Documentation</h2>
<ul>
<li>Use current Neo4j version in Testcontainers-based examples <a href="https://redirect.github.com/spring-projects/spring-boot/pull/34775">#34775</a></li>
<li>Clarify servlet container compatibility <a href="https://redirect.github.com/spring-projects/spring-boot/pull/34697">#34697</a></li>
<li>Document that optional dependencies are included by default in fat jars built with Maven <a href="https://redirect.github.com/spring-projects/spring-boot/issues/34636">#34636</a></li>
</ul>
<h2>:hammer: Dependency Upgrades</h2>
<ul>
<li>Upgrade to DB2 JDBC 11.5.8.0 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/34906">#34906</a></li>
<li>Upgrade to GraphQL Java 18.5 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/34995">#34995</a></li>
<li>Upgrade to Groovy 3.0.17 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/34907">#34907</a></li>
<li>Upgrade to Logback 1.2.12 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/34908">#34908</a></li>
<li>Upgrade to Micrometer 1.9.10 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/34855">#34855</a></li>
<li>Upgrade to MySQL 8.0.33 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/35057">#35057</a></li>
<li>Upgrade to Netty 4.1.91.Final <a href="https://redirect.github.com/spring-projects/spring-boot/issues/34909">#34909</a></li>
<li>Upgrade to Reactor Bom 2020.0.31 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/34856">#34856</a></li>
<li>Upgrade to Spring AMQP 2.4.12 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/34947">#34947</a></li>
<li>Upgrade to Spring Data Bom 2021.2.11 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/34902">#34902</a></li>
<li>Upgrade to Spring Framework 5.3.27 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/34857">#34857</a></li>
<li>Upgrade to Spring Security 5.7.8 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/34948">#34948</a></li>
<li>Upgrade to Spring WS 3.1.6 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/34949">#34949</a></li>
<li>Upgrade to Tomcat 9.0.74 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/35058">#35058</a></li>
<li>Upgrade to Undertow 2.2.24.Final <a href="https://redirect.github.com/spring-projects/spring-boot/issues/34910">#34910</a></li>
</ul>
<h2>:heart: Contributors</h2>
<p>Thank you to all the contributors who worked on this release:</p>
<p><a href="https://github.com/SeasonPanPan"><code>@SeasonPanPan</code></a>, <a href="https://github.com/acktsap"><code>@acktsap</code></a>, <a href="https://github.com/dreis2211"><code>@dreis2211</code></a>, <a href="https://github.com/jgslima"><code>@jgslima</code></a>, <a href="https://github.com/krzyk"><code>@krzyk</code></a>, and <a href="https://github.com/meistermeier"><code>@meistermeier</code></a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/spring-projects/spring-boot/commit/36589df7b9eca90568a1a833a76a4c97f7d30d06"><code>36589df</code></a> Release v2.7.11</li>
<li><a href="https://github.com/spring-projects/spring-boot/commit/3522714c13b47af03bf42e7f2d5994af568cb1a7"><code>3522714</code></a> Use endpoint mappings in CloudFoundry integration</li>
<li><a href="https://github.com/spring-projects/spring-boot/commit/da10c4e98b165572254615f45931c34519341a42"><code>da10c4e</code></a> Merge pull request <a href="https://redirect.github.com/spring-projects/spring-boot/issues/34347">#34347</a> from acktsap</li>
<li><a href="https://github.com/spring-projects/spring-boot/commit/1b832d82f8e55fead29b024f88fc96e201582461"><code>1b832d8</code></a> Polish "Back off if a custom ApplicationAvailability bean is present"</li>
<li><a href="https://github.com/spring-projects/spring-boot/commit/5e95ba84480a1982547a7252392a56c31b909bb3"><code>5e95ba8</code></a> Back off if a custom ApplicationAvailability bean is present</li>
<li><a href="https://github.com/spring-projects/spring-boot/commit/098d338d7c37092f2ffe61750e058931b8e0c82f"><code>098d338</code></a> Upgrade to Spring WS 3.1.6</li>
<li><a href="https://github.com/spring-projects/spring-boot/commit/cb56035bccde6a55362d863c6609fe3a38979c9a"><code>cb56035</code></a> Setup docker config.json on CI when building project</li>
<li><a href="https://github.com/spring-projects/spring-boot/commit/caaef89afffb7f266882805e5d2c7c9e3e19338a"><code>caaef89</code></a> Upgrade to Tomcat 9.0.74</li>
<li><a href="https://github.com/spring-projects/spring-boot/commit/b30d9d9961ab5753d6c9d2c7fa204733576d021d"><code>b30d9d9</code></a> Upgrade to MySQL 8.0.33</li>
<li><a href="https://github.com/spring-projects/spring-boot/commit/71ff5f4a416fd087cdd3282bd6a02c83880405f4"><code>71ff5f4</code></a> Upgrade to Spring Security 5.7.8</li>
<li>Additional commits viewable in <a href="https://github.com/spring-projects/spring-boot/compare/v2.7.10...v2.7.11">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: notifications-unsubscribe@dubbo.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: notifications-unsubscribe@dubbo.apache.org
For additional commands, e-mail: notifications-help@dubbo.apache.org
[GitHub] [dubbo] sonarcloud[bot] commented on pull request #12180: Bump spring-boot-maven-plugin from 2.7.10 to 2.7.11
Posted by "sonarcloud[bot] (via GitHub)" <gi...@apache.org>.
sonarcloud[bot] commented on PR #12180:
URL: https://github.com/apache/dubbo/pull/12180#issuecomment-1521237129
Kudos, SonarCloud Quality Gate passed! [](https://sonarcloud.io/dashboard?id=apache_dubbo&pullRequest=12180)
[](https://sonarcloud.io/project/issues?id=apache_dubbo&pullRequest=12180&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_dubbo&pullRequest=12180&resolved=false&types=BUG) [0 Bugs](https://sonarcloud.io/project/issues?id=apache_dubbo&pullRequest=12180&resolved=false&types=BUG)
[](https://sonarcloud.io/project/issues?id=apache_dubbo&pullRequest=12180&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/issues?id=apache_dubbo&pullRequest=12180&resolved=false&types=VULNERABILITY) [0 Vulnerabilities](https://sonarcloud.io/project/issues?id=apache_dubbo&pullRequest=12180&resolved=false&types=VULNERABILITY)
[](https://sonarcloud.io/project/security_hotspots?id=apache_dubbo&pullRequest=12180&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/security_hotspots?id=apache_dubbo&pullRequest=12180&resolved=false&types=SECURITY_HOTSPOT) [0 Security Hotspots](https://sonarcloud.io/project/security_hotspots?id=apache_dubbo&pullRequest=12180&resolved=false&types=SECURITY_HOTSPOT)
[](https://sonarcloud.io/project/issues?id=apache_dubbo&pullRequest=12180&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/project/issues?id=apache_dubbo&pullRequest=12180&resolved=false&types=CODE_SMELL) [0 Code Smells](https://sonarcloud.io/project/issues?id=apache_dubbo&pullRequest=12180&resolved=false&types=CODE_SMELL)
[](https://sonarcloud.io/component_measures?id=apache_dubbo&pullRequest=12180&metric=coverage&view=list) No Coverage information
[](https://sonarcloud.io/component_measures?id=apache_dubbo&pullRequest=12180&metric=duplicated_lines_density&view=list) No Duplication information
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: notifications-unsubscribe@dubbo.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: notifications-unsubscribe@dubbo.apache.org
For additional commands, e-mail: notifications-help@dubbo.apache.org
[GitHub] [dubbo] codecov-commenter commented on pull request #12180: Bump spring-boot-maven-plugin from 2.7.10 to 2.7.11
Posted by "codecov-commenter (via GitHub)" <gi...@apache.org>.
codecov-commenter commented on PR #12180:
URL: https://github.com/apache/dubbo/pull/12180#issuecomment-1519686589
## [Codecov](https://codecov.io/gh/apache/dubbo/pull/12180?src=pr&el=h1&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) Report
> Merging [#12180](https://codecov.io/gh/apache/dubbo/pull/12180?src=pr&el=desc&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) (659edf6) into [3.2](https://codecov.io/gh/apache/dubbo/commit/e3600af21a55e42e4c8f106cdf18d24c95467a4a?el=desc&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) (e3600af) will **decrease** coverage by `2.59%`.
> The diff coverage is `n/a`.
```diff
@@ Coverage Diff @@
## 3.2 #12180 +/- ##
============================================
- Coverage 69.93% 67.35% -2.59%
+ Complexity 103 2 -101
============================================
Files 3405 1725 -1680
Lines 159372 68462 -90910
Branches 26318 9776 -16542
============================================
- Hits 111457 46112 -65345
+ Misses 38234 17930 -20304
+ Partials 9681 4420 -5261
```
[see 1970 files with indirect coverage changes](https://codecov.io/gh/apache/dubbo/pull/12180/indirect-changes?src=pr&el=tree-more&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation)
:mega: We’re building smart automated test selection to slash your CI/CD build times. [Learn more](https://about.codecov.io/iterative-testing/?utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation)
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: notifications-unsubscribe@dubbo.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: notifications-unsubscribe@dubbo.apache.org
For additional commands, e-mail: notifications-help@dubbo.apache.org
[GitHub] [dubbo] AlbumenJ merged pull request #12180: Bump spring-boot-maven-plugin from 2.7.10 to 2.7.11
Posted by "AlbumenJ (via GitHub)" <gi...@apache.org>.
AlbumenJ merged PR #12180:
URL: https://github.com/apache/dubbo/pull/12180
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: notifications-unsubscribe@dubbo.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: notifications-unsubscribe@dubbo.apache.org
For additional commands, e-mail: notifications-help@dubbo.apache.org
[GitHub] [dubbo] sonarcloud[bot] commented on pull request #12180: Bump spring-boot-maven-plugin from 2.7.10 to 2.7.11
Posted by "sonarcloud[bot] (via GitHub)" <gi...@apache.org>.
sonarcloud[bot] commented on PR #12180:
URL: https://github.com/apache/dubbo/pull/12180#issuecomment-1519659885
Kudos, SonarCloud Quality Gate passed! [](https://sonarcloud.io/dashboard?id=apache_dubbo&pullRequest=12180)
[](https://sonarcloud.io/project/issues?id=apache_dubbo&pullRequest=12180&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_dubbo&pullRequest=12180&resolved=false&types=BUG) [0 Bugs](https://sonarcloud.io/project/issues?id=apache_dubbo&pullRequest=12180&resolved=false&types=BUG)
[](https://sonarcloud.io/project/issues?id=apache_dubbo&pullRequest=12180&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/issues?id=apache_dubbo&pullRequest=12180&resolved=false&types=VULNERABILITY) [0 Vulnerabilities](https://sonarcloud.io/project/issues?id=apache_dubbo&pullRequest=12180&resolved=false&types=VULNERABILITY)
[](https://sonarcloud.io/project/security_hotspots?id=apache_dubbo&pullRequest=12180&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/security_hotspots?id=apache_dubbo&pullRequest=12180&resolved=false&types=SECURITY_HOTSPOT) [0 Security Hotspots](https://sonarcloud.io/project/security_hotspots?id=apache_dubbo&pullRequest=12180&resolved=false&types=SECURITY_HOTSPOT)
[](https://sonarcloud.io/project/issues?id=apache_dubbo&pullRequest=12180&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/project/issues?id=apache_dubbo&pullRequest=12180&resolved=false&types=CODE_SMELL) [0 Code Smells](https://sonarcloud.io/project/issues?id=apache_dubbo&pullRequest=12180&resolved=false&types=CODE_SMELL)
[](https://sonarcloud.io/component_measures?id=apache_dubbo&pullRequest=12180&metric=coverage&view=list) No Coverage information
[](https://sonarcloud.io/component_measures?id=apache_dubbo&pullRequest=12180&metric=duplicated_lines_density&view=list) No Duplication information
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: notifications-unsubscribe@dubbo.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: notifications-unsubscribe@dubbo.apache.org
For additional commands, e-mail: notifications-help@dubbo.apache.org