You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@archiva.apache.org by "dependabot[bot] (via GitHub)" <gi...@apache.org> on 2023/04/17 17:45:54 UTC
[GitHub] [archiva-redback-core] dependabot[bot] opened a new pull request, #102: Bump spring-core from 5.3.22 to 5.3.27
dependabot[bot] opened a new pull request, #102:
URL: https://github.com/apache/archiva-redback-core/pull/102
Bumps [spring-core](https://github.com/spring-projects/spring-framework) from 5.3.22 to 5.3.27.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/spring-projects/spring-framework/releases">spring-core's releases</a>.</em></p>
<blockquote>
<h2>v5.3.27</h2>
<h2>:star: New Features</h2>
<ul>
<li>Limit string concatenation in SpEL expressions <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30331">#30331</a></li>
<li>Limit SpEL expression length <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30329">#30329</a></li>
<li>Disable variable assignment in SimpleEvaluationContext <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30327">#30327</a></li>
<li>Introduce <code>StringUtils.truncate()</code> <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30291">#30291</a></li>
<li>Introduce <code>ObjectUtils.nullSafeConciseToString()</code> <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30287">#30287</a></li>
<li>Make <code>HttpComponentsHeadersAdapter#getFirst</code> nullable <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30269">#30269</a></li>
</ul>
<h2>:lady_beetle: Bug Fixes</h2>
<ul>
<li>Fix regression in ReactorServerHttpRequest related to IPV6 Zone id with "%" <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30314">#30314</a></li>
<li>SSE breaks with indenting serializer in WebMvc.fn <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30302">#30302</a></li>
<li>Increase max regex length in SpEL expressions <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30298">#30298</a></li>
<li>NullPointerException on timeout in HttpComponentsClientHttpConnector when using Apache HttpComponents <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30246">#30246</a></li>
<li>Wrong MockRestRequestMatchers.header() method in spring-test being invoked (JDK issue?) <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30235">#30235</a></li>
<li>TypeNotPresentException: org/springframework/cglib/proxy/NoOp not present on Java 17 <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30228">#30228</a></li>
<li>Refine generic type management in <code>AbstractMessageWriterResultHandler</code> <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30215">#30215</a></li>
<li>MvcUriComponentsBuilder.fromMethodCall breaks for controller with CharSequence return type <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30212">#30212</a></li>
<li>Handle all exceptions for stored proc output param retrieval in <code>SharedEntityManagerCreator</code> <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30164">#30164</a></li>
</ul>
<h2>:notebook_with_decorative_cover: Documentation</h2>
<ul>
<li>Fix <code>@PathVariable</code> reference documentation code snippets <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30258">#30258</a></li>
<li>Fix example in Javadoc for <code>@EnableWebSocket</code> <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30187">#30187</a></li>
<li>Fix anchor in link to "Web on Reactive Stack" chapter <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30163">#30163</a></li>
</ul>
<h2>:hammer: Dependency Upgrades</h2>
<ul>
<li>Upgrade to Reactor 2020.0.31 <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30315">#30315</a></li>
</ul>
<h2>v5.3.26</h2>
<h2>:star: New Features</h2>
<ul>
<li>Improve diagnostics in SpEL for <code>matches</code> operator <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30145">#30145</a></li>
<li>Improve diagnostics in SpEL for repeated text <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30143">#30143</a></li>
<li>Increase scope of regex pattern cache for the SpEL <code>matches</code> operator <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30141">#30141</a></li>
<li>Minor updates in HandlerMappingIntrospector <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30128">#30128</a></li>
<li>Allow SnakeYaml 2.0 runtime compatibility <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30097">#30097</a></li>
<li>Add missing <code>@Nullable</code> annotations to <code>LogMessage.format</code> methods <a href="https://redirect.github.com/spring-projects/spring-framework/issues/30009">#30009</a></li>
<li>ASM upgrade for JDK 20/21 support <a href="https://redirect.github.com/spring-projects/spring-framework/issues/29966">#29966</a></li>
<li>Allow MockRest to match header/queryParam value list with one Matcher <a href="https://redirect.github.com/spring-projects/spring-framework/issues/29964">#29964</a></li>
<li>Add <code>MockMvc.multipart()</code> Kotlin extensions with <code>HttpMethod</code> <a href="https://redirect.github.com/spring-projects/spring-framework/issues/29941">#29941</a></li>
<li>Release R2DBC connection when cleanup fails in transaction <a href="https://redirect.github.com/spring-projects/spring-framework/issues/29925">#29925</a></li>
<li>org.springframework.web.context.ContextLoader should lazily load ContextLoader.properties <a href="https://redirect.github.com/spring-projects/spring-framework/issues/29909">#29909</a></li>
<li>Improve generated default name for <code>@JmsListener</code> subscription <a href="https://redirect.github.com/spring-projects/spring-framework/issues/29902">#29902</a></li>
<li>Include all Hibernate query methods in <code>SharedEntityManagerCreator</code>'s <code>queryTerminatingMethods</code> set <a href="https://redirect.github.com/spring-projects/spring-framework/issues/29888">#29888</a></li>
<li>SQL supplier in R2DBC <code>DatabaseClient</code> is eagerly invoked <a href="https://redirect.github.com/spring-projects/spring-framework/issues/29887">#29887</a></li>
<li>Spring Framework 5.3.x is incompatible with Jetty 10 (Client) <a href="https://redirect.github.com/spring-projects/spring-framework/issues/29867">#29867</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/spring-projects/spring-framework/commit/08bc1a050ec87cdaad6b05170c27e34d3f90cafa"><code>08bc1a0</code></a> Release v5.3.27</li>
<li><a href="https://github.com/spring-projects/spring-framework/commit/6bfb94a563800313745ddc2c8eca0de6e17f2cb5"><code>6bfb94a</code></a> Disable variable assignment in SimpleEvaluationContext</li>
<li><a href="https://github.com/spring-projects/spring-framework/commit/ebc82654282bda547fbc20a9749ab1bda886a46f"><code>ebc8265</code></a> Limit SpEL expression length</li>
<li><a href="https://github.com/spring-projects/spring-framework/commit/86457464d767284a7c588292a39d6accf1f65bfe"><code>8645746</code></a> Limit string concatenation in SpEL expressions</li>
<li><a href="https://github.com/spring-projects/spring-framework/commit/be129dc17160c82da9e56b88321da13199cda2af"><code>be129dc</code></a> Change max regex length in SpEL expressions to 1000</li>
<li><a href="https://github.com/spring-projects/spring-framework/commit/8bb1b3eb443ec8c0e497cc1bf4f232d61097adaa"><code>8bb1b3e</code></a> Upgrade to Netty 4.1.91 and Checkstyle 10.9.3</li>
<li><a href="https://github.com/spring-projects/spring-framework/commit/6abd822e77722e6c92853f9abd470fb36e68a1e7"><code>6abd822</code></a> Upgrade to Reactor 2020.0.31</li>
<li><a href="https://github.com/spring-projects/spring-framework/commit/1c43a4c7ab46e7e5ac871b0fb1c04830c6299bc4"><code>1c43a4c</code></a> Fix regression in ReactorServerHttpRequest</li>
<li><a href="https://github.com/spring-projects/spring-framework/commit/423f2215c2c542426afa6682b8240e668bb133ed"><code>423f221</code></a> Remove flaky assertion to fix build on JDK 17</li>
<li><a href="https://github.com/spring-projects/spring-framework/commit/0bad69d5fbab74cd1afded96fbf5ed287ece7f18"><code>0bad69d</code></a> Fix SSE with indenting serializer in WebMvc.fn</li>
<li>Additional commits viewable in <a href="https://github.com/spring-projects/spring-framework/compare/v5.3.22...v5.3.27">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/archiva-redback-core/network/alerts).
</details>
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: dev-unsubscribe@archiva.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org