fix(deps): update all dependencies (major) by renovate[bot] · Pull Request #1164 · dbmdz/digitalcollections-commons

renovate · 2024-11-23T17:24:31Z

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Type	Update	Change
actions/cache	action	major	`v4` → `v5`
actions/checkout	action	major	`v4` → `v6`
actions/setup-java	action	major	`v4` → `v5`
org.springframework.security:spring-security-web (source)	compile	major	`5.7.13` → `7.0.3`
org.springframework.security:spring-security-core (source)	compile	major	`5.7.14` → `7.0.3`
org.springframework.security:spring-security-config (source)	compile	major	`5.4.10` → `7.0.3`
org.springframework.boot:spring-boot-test-autoconfigure (source)	test	major	`2.3.12.RELEASE` → `4.0.3`
org.springframework.boot:spring-boot-test (source)	test	major	`2.3.12.RELEASE` → `4.0.3`
org.springframework.boot:spring-boot-actuator (source)	compile	major	`2.7.18` → `4.0.3`
org.springframework.boot:spring-boot (source)	compile	major	`2.3.12.RELEASE` → `4.0.3`
org.springframework:spring-webmvc	test	major	`5.2.22.RELEASE` → `7.0.6`
org.springframework:spring-test	test	major	`5.2.22.RELEASE` → `7.0.6`
org.springframework:spring-context	compile	major	`5.2.22.RELEASE` → `7.0.6`
org.springframework:spring-test	compile	major	`5.2.22.RELEASE` → `7.0.6`
org.springframework:spring-beans	compile	major	`5.2.22.RELEASE` → `7.0.6`
org.slf4j:slf4j-api (source, changelog)	compile	major	`1.7.36` → `2.0.17`
org.springframework.boot:spring-boot-configuration-processor (source)	optional	major	`2.3.12.RELEASE` → `4.0.3`
org.slf4j:slf4j-simple (source, changelog)	test	major	`1.7.36` → `2.0.17`
org.springframework:spring-webmvc	compile	major	`5.2.22.RELEASE` → `7.0.6`
org.junit.jupiter:junit-jupiter (source)	test	major	`5.10.1` → `6.0.3`
com.maxmind.geoip2:geoip2 (source)	compile	major	`2.14.0` → `5.0.2`
org.springframework.data:spring-data-commons (source)	compile	major	`2.7.2` → `4.0.3`
com.ibm.icu:icu4j (source)	compile	major	`72.1` → `78.2`

Release Notes

actions/cache (actions/cache)

`v5`

Compare Source

actions/checkout (actions/checkout)

`v6`

Compare Source

`v5`

Compare Source

actions/setup-java (actions/setup-java)

`v5`

Compare Source

spring-projects/spring-security (org.springframework.security:spring-security-web)

`v7.0.3`

Compare Source

⭐ New Features

Fix Javadoc warnings in spring-security-web #18473
Fix/gradle 9 deprecations #18485
Fix/gradle 9 deprecations #18477
Replace method call with 'Builder.configureMessageConverters()' #18378
Replacing use of deprecated 'check' in authorization documentation #18390
Use DefaultParameterNameDiscoverer#getSharedInstance #18481

🪲 Bug Fixes

Authorization Server fails to start with multiple PasswordEncoder beans #18645
BearerTokenAuthenticationEntryPoint uses context path #18528
Create SHA-1 MessageDigest for every new check request in Compromised Password Checker #18594
Document Client PKCE settings #18304
Fix docs typo X-Requested-By -> X-Requested-With #18123
Fix Formatting in mfa.adoc #18134
Fix typo in documentation #18344
Fix typos #18121

🔨 Dependency Upgrades

Bump ch.qos.logback:logback-classic from 1.5.22 to 1.5.24 #18384
Bump ch.qos.logback:logback-classic from 1.5.24 to 1.5.28 #18684
Bump ch.qos.logback:logback-classic from 1.5.28 to 1.5.29 #18711
Bump com.fasterxml.jackson:jackson-bom from 2.20.1 to 2.20.2 #18660
Bump com.webauthn4j:webauthn4j-core from 0.29.7.RELEASE to 0.31.0.RELEASE #18687
Bump gradle-wrapper from 8.14 to 8.14.4 #18705
Bump io.mockk:mockk from 1.14.7 to 1.14.9 #18681
Bump io.projectreactor:reactor-bom from 2025.0.1 to 2025.0.2 #18658
Bump io.projectreactor:reactor-bom from 2025.0.2 to 2025.0.3 #18717
Bump io.spring.develocity.conventions from 0.0.24 to 0.0.25 #18683
Bump io.spring.gradle:spring-security-release-plugin from 1.0.13 to 1.0.14 #18725
Bump jakarta.xml.bind:jakarta.xml.bind-api from 4.0.4 to 4.0.5 #18706
Bump org-apache-maven-resolver from 1.9.24 to 1.9.25 #18309
Bump org-aspectj from 1.9.25 to 1.9.25.1 #18326
Bump org.apache.httpcomponents.client5:httpclient5 from 5.5.1 to 5.5.2 #18346
Bump org.apache.maven:maven-resolver-provider from 3.9.11 to 3.9.12 #18327
Bump org.assertj:assertj-core from 3.27.6 to 3.27.7 #18682
Bump org.junit:junit-bom from 6.0.1 to 6.0.2 #18385
Bump org.springframework.data:spring-data-bom from 2025.1.1 to 2025.1.2 #18655
Bump org.springframework.ldap:spring-ldap-core from 4.0.0 to 4.0.1 #18316
Bump org.springframework.ldap:spring-ldap-core from 4.0.1 to 4.0.2 #18733
Bump org.springframework:spring-framework-bom from 7.0.3 to 7.0.4 #18732
Bump org.springframework:spring-framework-bom from 7.0.3-SNAPSHOT to 7.0.4-SNAPSHOT #18657
Bump spring-io/spring-doc-actions from 0.0.20 to 0.0.22 #18651
Bump tools.jackson:jackson-bom from 3.0.3 to 3.0.4 #18659
Update Antora UI Spring to v0.4.25 #18249
Update to Spring Framework 7.0.3 #18667
Update to spring-data-bom 2025.1.3 #18735

❤️ Contributors

Thank you to all the contributors who worked on this release:

@Been24, @Fr05ty-hub, @Kehrlann, @Rigu1, @bloomsei, @martinboulais, @ngocnhan-tran1996, @paulvas, @rwinch, @therepanic, and @vincentstradiot

`v7.0.2`

Compare Source

🪲 Bug Fixes

AuthorizationWebProxyConfiguration should only be active when both spring-security-web and spring-webmvc are on the classpath #18315

`v7.0.1`

Compare Source

⭐ New Features

Stop deploying JavaDoc outside of Antora #18200

🪲 Bug Fixes

An unexpected dependency appeared for spring-security-config of spring-security-web #18307
Fix "typ" header value in NimbusJwtEncoder-encoded JWT #18270
Fix broken link to Spring Boot docs #18236
Fix documentation resource server sample title #18231
Fix MyCustomDsl to use csrf(Customizer) instead of removed csrf().disabled() #18223
Fix typo in AnnotationTemplateExpressionDefaults documentation #18255
Fix typos in documentation depenendencies->dependencies #18209
NimbusJwtEncoder produces JWT with wrong "typ" header value #18269
OAuth2AuthorizationEndpointFilter should be applied after AuthorizationFilter #18251
Remove requireProofKey warning for non-auth-code flows #18221
Remove throws from MyCustomDsl in docs #18224

🔨 Dependency Upgrades

Bump ch.qos.logback:logback-classic from 1.5.20 to 1.5.21 #18214
Bump ch.qos.logback:logback-classic from 1.5.21 to 1.5.22 #18311
Bump com.fasterxml.jackson:jackson-bom from 2.20.0 to 2.20.1 #18245
Bump com.unboundid:unboundid-ldapsdk from 7.0.3 to 7.0.4 #18262
Bump io.micrometer:micrometer-observation from 1.14.12 to 1.14.13 #18189
Bump io.micrometer:micrometer-observation from 1.14.13 to 1.14.14 #18277
Bump io.mockk:mockk from 1.14.6 to 1.14.7 #18274
Bump io.projectreactor:reactor-bom from 2025.0.0 to 2025.0.1 #18289
Bump io.spring.gradle:spring-security-release-plugin from 1.0.10 to 1.0.13 #18187
Bump org-aspectj from 1.9.24 to 1.9.25 #18186
Bump org.apache.kerby:kerb-simplekdc from 2.1.0 to 2.1.1 #18215
Bump org.junit:junit-bom from 6.0.0 to 6.0.1 #18188
Bump org.springframework.data:spring-data-bom from 2025.1.0 to 2025.1.1 #18312
Bump org.springframework:spring-framework-bom from 7.0.0 to 7.0.1 #18213
Bump org.springframework:spring-framework-bom from 7.0.1 to 7.0.2 #18310
Bump tools.jackson:jackson-bom from 3.0.1 to 3.0.2 #18212
Bump tools.jackson:jackson-bom from 3.0.2 to 3.0.3 #18244

🔩 Build Updates

Add Test for ServletRequestPathUtils.parseAndCache(method=null) #18166
Bump antora from 3.2.0-alpha.10 to 3.2.0-alpha.11 in /docs #18238

❤️ Contributors

Thank you to all the contributors who worked on this release:

@L33gn21, @ghusta, @ronodhirSoumik, @rwinch, @sach429, and @ziqin

`v7.0.0`

Compare Source

⭐ New Features

Add a minimal authorization server configuration #18153
Mark GrantedAuthority#getAuthority as @Nullable #18014
Polish SimpleGrantedAuthority #18062

🪲 Bug Fixes

Correct the org.springframework.security.config.annotation.web.LogoutDsl's property description #18026
Fix webauthn multifactor authentication #18163

🔨 Dependency Upgrades

Bump org.jetbrains.kotlin:kotlin-bom from 2.2.20 to 2.2.21 #18099
Bump org.jetbrains.kotlin:kotlin-gradle-plugin from 2.2.20 to 2.2.21 #18100
Bump tools.jackson:jackson-bom from 3.0.0 to 3.0.1 #18097
Update to Reactor 2025.0.0 #18173
Update to Spring Data 2025.1.0 #18174
Update to Spring Framework 7.0.0 #18172
Update to Spring LDAP 4.0.0 #18175

❤️ Contributors

Thank you to all the contributors who worked on this release:

@Kehrlann, @SimonVonXCVII, @quaff, and @therepanic

`v6.5.8`

Compare Source

⭐ New Features

Add @FunctionalInterface to RequestMatcher #18337
Spring Security 7 should provide migration path from request-matcher="ant" #18211
Stop deploying JavaDoc outside of Antora #18199

🪲 Bug Fixes

Add Missing Migration Pages to Navigation #18313
Create SHA-1 MessageDigest for every new check request in Compromised Password Checker #18235
Fix typo in "Preparing for 7.0" in reference to PathPatternRequestMatcher #18336
Fix typo in AnnotationTemplateExpressionDefaults documentation #18176
Fix typos in documentation depenendencies->dependencies #18208

🔨 Dependency Upgrades

Bump @antora/atlas-extension from 1.0.0-alpha.2 to 1.0.0-alpha.5 in /docs #18675
Bump @antora/collector-extension from 1.0.1 to 1.0.2 in /docs #18677
Bump @springio/antora-extensions from 1.14.4 to 1.14.7 in /docs #18676
Bump antora from 3.2.0-alpha.8 to 3.2.0-alpha.11 in /docs #18679
Bump ch.qos.logback:logback-classic from 1.5.20 to 1.5.21 #18192
Bump ch.qos.logback:logback-classic from 1.5.21 to 1.5.22 #18321
Bump ch.qos.logback:logback-classic from 1.5.22 to 1.5.24 #18387
Bump ch.qos.logback:logback-classic from 1.5.24 to 1.5.25 #18525
Bump ch.qos.logback:logback-classic from 1.5.25 to 1.5.26 #18591
Bump ch.qos.logback:logback-classic from 1.5.26 to 1.5.27 #18631
Bump ch.qos.logback:logback-classic from 1.5.27 to 1.5.28 #18678
Bump ch.qos.logback:logback-classic from 1.5.28 to 1.5.29 #18710
Bump gradle-wrapper from 8.14 to 8.14.4 #18704
Bump io.micrometer:context-propagation from 1.1.3 to 1.1.4 #18703
Bump io.micrometer:micrometer-observation from 1.14.13 to 1.14.14 #18279
Bump io.mockk:mockk from 1.14.6 to 1.14.7 #18275
Bump io.projectreactor:reactor-bom from 2024.0.12 to 2024.0.13 #18293
Bump io.projectreactor:reactor-bom from 2024.0.13 to 2024.0.14 #18495
Bump io.projectreactor:reactor-bom from 2024.0.14 to 2024.0.15 #18716
Bump io.spring.develocity.conventions from 0.0.24 to 0.0.25 #18535
Bump io.spring.gradle:spring-security-release-plugin from 1.0.13 to 1.0.14 #18724
Bump jakarta.xml.bind:jakarta.xml.bind-api from 4.0.4 to 4.0.5 #18670
Bump org-apache-maven-resolver from 1.9.24 to 1.9.25 #18292
Bump org-aspectj from 1.9.25 to 1.9.25.1 #18329
Bump org.apache.maven:maven-resolver-provider from 3.9.11 to 3.9.12 #18352
Bump org.assertj:assertj-core from 3.27.6 to 3.27.7 #18590
Bump org.hibernate.orm:hibernate-core from 6.6.34.Final to 6.6.36.Final #18193
Bump org.hibernate.orm:hibernate-core from 6.6.36.Final to 6.6.38.Final #18241
Bump org.hibernate.orm:hibernate-core from 6.6.38.Final to 6.6.39.Final #18308
Bump org.hibernate.orm:hibernate-core from 6.6.39.Final to 6.6.40.Final #18351
Bump org.hibernate.orm:hibernate-core from 6.6.40.Final to 6.6.41.Final #18524
Bump org.hibernate.orm:hibernate-core from 6.6.41.Final to 6.6.42.Final #18632
Bump org.springframework.data:spring-data-bom from 2024.1.12 to 2024.1.13 #18320
Bump org.springframework.ldap:spring-ldap-core from 3.2.15 to 3.2.16 #18322
Bump org.springframework:spring-framework-bom from 6.2.13 to 6.2.14 #18206
Bump org.springframework:spring-framework-bom from 6.2.14 to 6.2.15 #18323
Bump org.springframework:spring-framework-bom from 6.2.15 to 6.2.16 #18731
Bump spring-io/spring-doc-actions from 0.0.20 to 0.0.22 #18649
Update Antora UI Spring to v0.4.25 #18402

🔩 Build Updates

Remove unnecessary Gradle wrapper from buildSrc #18692

❤️ Contributors

Thank you to all the contributors who worked on this release:

@garvit-joshi, @ghusta, @kucoll, and @rwinch

`v6.5.7`

Compare Source

⭐ New Features

Add Include-Code for the Password Storage page #18054
Default WebAuthnConfigurer#rpName to rpId #18131
Document effects of disabling CORS #18129

🪲 Bug Fixes

typ values should not be case-sensitive in JwtTypeValidator #18101
BCryptPasswordEncoderTests should password limit of 72 bytes #18136
Fix GenerateOneTimeTokenRequestResolver ignored if username param not present #18074
GenerateOneTimeTokenFilter should not attempt to generate a token with a null token request #18088

🔨 Dependency Upgrades

Bump com.fasterxml.jackson:jackson-bom from 2.18.4.1 to 2.18.5 #18110
Bump io.micrometer:micrometer-observation from 1.14.12 to 1.14.13 #18149
Bump io.spring.gradle:spring-security-release-plugin from 1.0.11 to 1.0.13 #18141
Bump org-aspectj from 1.9.24 to 1.9.25 #18142
Bump org.hibernate.orm:hibernate-core from 6.6.33.Final to 6.6.34.Final #18111
Update to Reactor 2024.0.12 #18181
Update to Spring Data 2024.1.12 #18182
Update to Spring Framework 6.2.13 #18180

❤️ Contributors

Thank you to all the contributors who worked on this release:

@himanshu-pareek, @marcusdacoregio, and @namest504

`v6.5.6`

Compare Source

🔨 Dependency Upgrades

Bump ch.qos.logback:logback-classic from 1.5.19 to 1.5.20 #18082
Bump com.google.code.gson:gson from 2.13.1 to 2.13.2 #17930
Bump com.webauthn4j:webauthn4j-core from 0.29.5.RELEASE to 0.29.6.RELEASE #17929
Bump io.micrometer:micrometer-observation from 1.14.11 to 1.14.12 #18045
Bump org.assertj:assertj-core from 3.27.5 to 3.27.6 #17950
Bump org.gretty:gretty from 4.1.7 to 4.1.10 #17945
Bump org.hibernate.orm:hibernate-core from 6.6.31.Final to 6.6.33.Final #18039
Bump org.springframework.data:spring-data-bom from 2024.1.10 to 2024.1.11 #18083
Bump org.springframework.ldap:spring-ldap-core from 3.2.14 to 3.2.15 #18067
Bump org.springframework:spring-framework-bom from 6.2.11 to 6.2.12 #18068

`v6.5.5`

Compare Source

🔨 Dependency Upgrades

Bump io.micrometer:micrometer-observation from 1.14.10 to 1.14.11 #17922
Bump io.micrometer:micrometer-observation from 1.14.10 to 1.14.11 #17911
Bump jakarta.xml.bind:jakarta.xml.bind-api from 4.0.2 to 4.0.4 #17923
Bump jakarta.xml.bind:jakarta.xml.bind-api from 4.0.2 to 4.0.4 #17910
Bump org.hibernate.orm:hibernate-core from 6.6.26.Final to 6.6.29.Final #17924
Bump org.hibernate.orm:hibernate-core from 6.6.26.Final to 6.6.29.Final #17913
Bump org.springframework.data:spring-data-bom from 2024.1.8 to 2024.1.10 #17925
Bump org.springframework.data:spring-data-bom from 2024.1.8 to 2024.1.10 #17912
Bump org.springframework:spring-framework-bom from 6.2.10 to 6.2.11 #17926
Bump org.springframework:spring-framework-bom from 6.2.10 to 6.2.11 #17914

`v6.5.4`

Compare Source

⭐ New Features

Update servlet test method docs to use include-code #17749

🪲 Bug Fixes

Annonation Scanning Should Fallback to Object when Parameter Matching #17899
Fix double-slash when basePath is root #17841
Fix traceId discrepancy in case error in servlet web #17796
Reference should advise avoiding post-authorization on writes #17798

🔨 Dependency Upgrades

Bump com.google.code.gson:gson from 2.13.1 to 2.13.2 #17893
Bump com.google.code.gson:gson from 2.13.1 to 2.13.2 #17874
Bump com.webauthn4j:webauthn4j-core from 0.29.5.RELEASE to 0.29.6.RELEASE #17895
Bump com.webauthn4j:webauthn4j-core from 0.29.5.RELEASE to 0.29.6.RELEASE #17854
Bump com.webauthn4j:webauthn4j-core from 0.29.5.RELEASE to 0.29.6.RELEASE #17836
Bump io.micrometer:micrometer-observation from 1.14.10 to 1.14.11 #17894
Bump io.micrometer:micrometer-observation from 1.14.10 to 1.14.11 #17858
Bump org.assertj:assertj-core from 3.27.3 to 3.27.4 #17767
Bump org.hibernate.orm:hibernate-core from 6.6.23.Final to 6.6.26.Final #17766
Bump org.hibernate.orm:hibernate-core from 6.6.23.Final to 6.6.26.Final #17759
Bump org.hibernate.orm:hibernate-core from 6.6.26.Final to 6.6.28.Final #17853
Bump org.hibernate.orm:hibernate-core from 6.6.26.Final to 6.6.28.Final #17837
Bump org.hibernate.orm:hibernate-core from 6.6.26.Final to 6.6.29.Final #17896
Bump org.springframework.data:spring-data-bom from 2024.1.8 to 2024.1.10 #17897
Bump org.springframework.data:spring-data-bom from 2024.1.8 to 2024.1.9 #17855
Bump org.springframework.data:spring-data-bom from 2024.1.8 to 2024.1.9 #17791
Bump org.springframework.data:spring-data-bom from 2024.1.8 to 2024.1.9 #17771
Bump org.springframework.data:spring-data-bom from 2024.1.8 to 2024.1.9 #17758
Bump org.springframework.ldap:spring-ldap-core from 3.2.13 to 3.2.14 #17773

❤️ Contributors

Thank you to all the contributors who worked on this release:

@jkuhel and @therepanic

`v6.5.3`

Compare Source

⭐ New Features

Add META-INF/LICENSE.txt to published jars #17639
Update Angular documentation links in csrf.adoc #17653
Update Shibboleth Repository URL #17637
Use 2004-present Copyright #17634

🪲 Bug Fixes

Add Missing Navigation in Preparing for 7.0 Guide #17731
DPoP authentication throws JwtDecoderFactory ClassNotFoundException #17249
OpenSamlAssertingPartyDetails Should Be Serializable #17727
Use final values in equals and hashCode #17621

🔨 Dependency Upgrades

Bump com.webauthn4j:webauthn4j-core from 0.29.4.RELEASE to 0.29.5.RELEASE #17739
Bump com.webauthn4j:webauthn4j-core from 0.29.4.RELEASE to 0.29.5.RELEASE #17690
Bump com.webauthn4j:webauthn4j-core from 0.29.4.RELEASE to 0.29.5.RELEASE #17684
Bump com.webauthn4j:webauthn4j-core from 0.29.4.RELEASE to 0.29.5.RELEASE #17661
Bump io.micrometer:micrometer-observation from 1.14.8 to 1.14.9 #17615
Bump io.micrometer:micrometer-observation from 1.14.8 to 1.14.9 #17599
Bump io.micrometer:micrometer-observation from 1.14.9 to 1.14.10 #17737
Bump io.micrometer:micrometer-observation from 1.14.9 to 1.14.10 #17701
Bump io.mockk:mockk from 1.14.4 to 1.14.5 #17614
Bump io.spring.develocity.conventions from 0.0.23 to 0.0.24 #17647
Bump io.spring.gradle:spring-security-release-plugin from 1.0.10 to 1.0.11 #17733
Bump io.spring.gradle:spring-security-release-plugin from 1.0.10 to 1.0.11 #17711
Bump io.spring.gradle:spring-security-release-plugin from 1.0.6 to 1.0.10 #17612
Bump io.spring.gradle:spring-security-release-plugin from 1.0.6 to 1.0.10 #17598
Bump org-eclipse-jetty from 11.0.25 to 11.0.26 #17742
Bump org.apache.maven:maven-resolver-provider from 3.9.10 to 3.9.11 #17613
Bump org.apache.maven:maven-resolver-provider from 3.9.10 to 3.9.11 #17595
Bump org.assertj:assertj-core from 3.27.3 to 3.27.4 #17760
Bump org.assertj:assertj-core from 3.27.3 to 3.27.4 #17692
Bump org.assertj:assertj-core from 3.27.3 to 3.27.4 #17683
Bump org.assertj:assertj-core from 3.27.3 to 3.27.4 #17671
Bump org.gretty:gretty from 4.1.6 to 4.1.7 #17616
Bump org.gretty:gretty from 4.1.6 to 4.1.7 #17597
Bump org.hibernate.orm:hibernate-core from 6.6.20.Final to 6.6.23.Final #17646
Bump org.hibernate.orm:hibernate-core from 6.6.23.Final to 6.6.24.Final #17660
Bump org.hibernate.orm:hibernate-core from 6.6.23.Final to 6.6.25.Final #17694
Bump org.hibernate.orm:hibernate-core from 6.6.23.Final to 6.6.25.Final #17685
Bump org.jfrog.buildinfo:build-info-extractor-gradle from 4.34.1 to 4.34.2 #17650
Bump org.springframework.data:spring-data-bom from 2024.1.7 to 2024.1.8 #17645
Bump org.springframework.ldap:spring-ldap-core from 3.2.13 to 3.2.14 #17757
Bump org.springframework:spring-framework-bom from 6.2.8 to 6.2.9 #17651
Bump org.springframework:spring-framework-bom from 6.2.8 to 6.2.9 #17596
Bump org.springframework:spring-framework-bom from 6.2.9 to 6.2.10 #17735

❤️ Contributors

Thank you to all the contributors who worked on this release:

@codingtim

`v6.5.2`

Compare Source

🪲 Bug Fixes

<websocket-message-broker> should pick up a bean named csrfChannelInterceptor #17495
Add 7.0 Migration Steps for Messaging PathPattern Usage #17509
EnableReactiveMethodSecurity should not import Servlet configuration #17545
Fix equals and hashCode in PathPatternRequestMatcher to include HTTP method #17337
Fix securityContextRepository() initialization in oauth2Login() DSL #17557
OAuth2Login DSL should support post-processing AuthenticationProvider implementations #17176
Websocket XML config should pick up PathPatternMessageMatcher.Builder #17508

🔨 Dependency Upgrades

Bump com.webauthn4j:webauthn4j-core from 0.29.3.RELEASE to 0.29.4.RELEASE #17444
Bump io-spring-javaformat from 0.0.46 to 0.0.47 [#17470](#17470
Bump io.micrometer:micrometer-observation from 1.14.8 to 1.14.9 [#17570](#17570
Bump io.mockk:mockk from 1.14.2 to 1.14.4 #17467
Bump io.mockk:mockk from 1.14.4 to 1.14.5 #17572
Bump org-apache-maven-resolver from 1.9.23 to 1.9.24 #17469
Bump org.apache.maven:maven-resolver-provider from 3.9.10 to 3.9.11 #17555
Bump org.hibernate.orm:hibernate-core from 6.6.17.Final to 6.6.20.Final #17491
Bump org.hibernate.orm:hibernate-core from 6.6.20.Final to 6.6.22.Final #17571
Bump org.springframework.data:spring-data-bom from 2024.1.6 to 2024.1.7 #17466
Bump org.springframework.data:spring-data-bom from 2024.1.7 to 2024.1.8 #17569
Bump org.springframework.ldap:spring-ldap-core from 3.2.12 to 3.2.13 #17468
Bump org.springframework:spring-framework-bom from 6.2.7 to 6.2.8 #17481
Bump org.springframework:spring-framework-bom from 6.2.8 to 6.2.9 #17568

❤️ Contributors

Thank you to all the contributors who worked on this release:

@fkowal and @therepanic

`v6.5.1`

Compare Source

⭐ New Features

Create demonstration of include-code usage #17161
Setup include-code extension for docs #17160

🪲 Bug Fixes

ClearSiteDataHeaderWriter log is misleading #17166
Fix to allow multiple AuthenticationFilter instances to process each request #17216
Inconsistent constructor declaration on bean with name '_reactiveMethodSecurityConfiguration' #17210
OAuth2ResourceServer using authenticationManagerResolver results in tokenAuthenticationManager cannot be null while startup #17172
Publishing a default TargetVisitor should not override Spring MVC support #17189
Use HttpStatus in back-channel logout filters #17157

🔨 Dependency Upgrades

Bump com.fasterxml.jackson:jackson-bom from 2.18.4 to 2.18.4.1 #17233
Bump com.webauthn4j:webauthn4j-core from 0.29.2.RELEASE to 0.29.3.RELEASE #17192
Bump io-spring-javaformat from 0.0.43 to 0.0.45 [#17152](https://redirect.github.com/s

Configuration

📅 Schedule: Branch creation - "every weekend" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

renovate bot added the dependencies Pull requests that update a dependency file label Nov 23, 2024

renovate bot changed the title ~~chore(deps): update all dependencies (major)~~ fix(deps): update all dependencies (major) Dec 11, 2024

renovate bot force-pushed the renovate/major-all branch 2 times, most recently from 9a6781e to 03d3c03 Compare December 20, 2024 05:55

renovate bot force-pushed the renovate/major-all branch 3 times, most recently from 7ee65c1 to 7e83e30 Compare January 23, 2025 20:14

renovate bot force-pushed the renovate/major-all branch 3 times, most recently from b0a1cbf to 2169e1e Compare February 20, 2025 04:02

renovate bot force-pushed the renovate/major-all branch 2 times, most recently from e737b94 to acf3821 Compare February 27, 2025 08:15

renovate bot force-pushed the renovate/major-all branch 4 times, most recently from c54e462 to ec44bd2 Compare March 21, 2025 23:46

renovate bot force-pushed the renovate/major-all branch from ec44bd2 to 6683b77 Compare March 26, 2025 04:04

renovate bot force-pushed the renovate/major-all branch 2 times, most recently from e1ccf65 to 49ed793 Compare April 18, 2025 04:10

renovate bot force-pushed the renovate/major-all branch 2 times, most recently from 7d4dd81 to af9baad Compare April 27, 2025 00:08

renovate bot force-pushed the renovate/major-all branch 2 times, most recently from 47e28a3 to 718668f Compare May 10, 2025 00:16

renovate bot force-pushed the renovate/major-all branch from 718668f to 0b711f7 Compare May 17, 2025 07:58

renovate bot force-pushed the renovate/major-all branch 2 times, most recently from 379f060 to 22caa82 Compare May 26, 2025 13:44

renovate bot force-pushed the renovate/major-all branch 3 times, most recently from bc95b7f to 356832f Compare June 5, 2025 05:25

renovate bot force-pushed the renovate/major-all branch from 356832f to 525ceda Compare June 13, 2025 00:09

renovate bot force-pushed the renovate/major-all branch from 5a795c5 to 732d452 Compare July 17, 2025 13:03

renovate bot force-pushed the renovate/major-all branch from 732d452 to 9cb09f7 Compare July 27, 2025 16:07

renovate bot force-pushed the renovate/major-all branch 3 times, most recently from 5f6a946 to 6d67f9b Compare August 15, 2025 13:49

renovate bot force-pushed the renovate/major-all branch 2 times, most recently from 87025e4 to 3389a7d Compare August 23, 2025 23:59

renovate bot force-pushed the renovate/major-all branch from 3389a7d to 5e96cea Compare September 1, 2025 03:23

renovate bot force-pushed the renovate/major-all branch 3 times, most recently from f33f198 to ecddd99 Compare September 17, 2025 08:02

renovate bot force-pushed the renovate/major-all branch from ecddd99 to abbe985 Compare September 21, 2025 10:48

renovate bot force-pushed the renovate/major-all branch from abbe985 to ec9f3d4 Compare September 30, 2025 10:34

renovate bot force-pushed the renovate/major-all branch 3 times, most recently from 24d735c to 4d13c87 Compare October 20, 2025 23:28

renovate bot force-pushed the renovate/major-all branch from 4d13c87 to 3ce29a2 Compare October 23, 2025 13:39

renovate bot force-pushed the renovate/major-all branch 2 times, most recently from 4798d92 to 5c05f63 Compare November 1, 2025 00:16

renovate bot force-pushed the renovate/major-all branch 3 times, most recently from 61b7469 to 46247b7 Compare November 18, 2025 02:22

renovate bot force-pushed the renovate/major-all branch 2 times, most recently from adb958b to 74c05d6 Compare November 22, 2025 08:09

renovate bot force-pushed the renovate/major-all branch 2 times, most recently from 9173f20 to ae8ca62 Compare December 9, 2025 08:11

renovate bot force-pushed the renovate/major-all branch 3 times, most recently from 0f6a876 to 53d31d9 Compare December 17, 2025 07:36

Update all dependencies

cfcbe86

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

fix(deps): update all dependencies (major)#1164

fix(deps): update all dependencies (major)#1164
renovate[bot] wants to merge 1 commit intomainfrom
renovate/major-all

renovate bot commented Nov 23, 2024 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

renovate bot commented Nov 23, 2024 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Release Notes

⭐ New Features

🪲 Bug Fixes

🔨 Dependency Upgrades

❤️ Contributors

🪲 Bug Fixes

⭐ New Features

🪲 Bug Fixes

🔨 Dependency Upgrades

🔩 Build Updates

❤️ Contributors

⭐ New Features

🪲 Bug Fixes

🔨 Dependency Upgrades

❤️ Contributors

⭐ New Features

🪲 Bug Fixes

🔨 Dependency Upgrades

🔩 Build Updates

❤️ Contributors

⭐ New Features

🪲 Bug Fixes

🔨 Dependency Upgrades

❤️ Contributors

🔨 Dependency Upgrades

🔨 Dependency Upgrades

⭐ New Features

🪲 Bug Fixes

🔨 Dependency Upgrades

❤️ Contributors

⭐ New Features

🪲 Bug Fixes

🔨 Dependency Upgrades

❤️ Contributors

🪲 Bug Fixes

🔨 Dependency Upgrades

❤️ Contributors

⭐ New Features

🪲 Bug Fixes

🔨 Dependency Upgrades

Configuration

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

renovate bot commented Nov 23, 2024 •

edited

Loading