Update all-backend-non-major-dependencies

[renovate]

This PR contains the following updates:

Package	Type	Update	Change	Age	Adoption	Passing	Confidence
gradle (source)		minor	8.11.1 -> 8.12
org.springframework.security:spring-security-test (source)	dependencies	patch	6.4.1 -> 6.4.2
io.projectreactor:reactor-test	dependencies	patch	3.7.0 -> 3.7.1
org.flywaydb:flyway-database-postgresql (source)	dependencies	minor	11.0.1 -> 11.1.0
org.flywaydb:flyway-core (source)	dependencies	minor	11.0.1 -> 11.1.0
org.apache.commons:commons-text (source)	dependencies	minor	1.12.0 -> 1.13.0
com.google.guava:guava	dependencies	minor	33.3.1-jre -> 33.4.0-jre
io.micrometer:micrometer-core	dependencies	patch	1.14.1 -> 1.14.2
io.micrometer:micrometer-registry-prometheus	dependencies	patch	1.14.1 -> 1.14.2
org.eclipse.persistence:org.eclipse.persistence.moxy (source)	dependencies	patch	4.0.4 -> 4.0.5
software.amazon.awssdk:bom	dependencies	patch	2.29.29 -> 2.29.40
com.nimbusds:nimbus-jose-jwt	dependencies	minor	9.47 -> 9.48
com.google.protobuf:protobuf-java (source)	dependencies	patch	4.29.1 -> 4.29.2
org.springframework.cloud:spring-cloud-starter-kubernetes-client-config (source)	dependencies	minor	3.1.4 -> 3.2.0
org.springframework.security:spring-security-oauth2-resource-server (source)	dependencies	patch	6.4.1 -> 6.4.2
org.flywaydb.flyway	plugin	minor	11.0.1 -> 11.1.0
io.spring.dependency-management	plugin	patch	1.1.6 -> 1.1.7
org.springframework.boot	plugin	minor	3.3.5 -> 3.4.1

---

Warning

Some dependencies could not be looked up. Check the warning logs for more information.

---

Release Notes

gradle/gradle (gradle)

v8.12

Compare Source

spring-projects/spring-security (org.springframework.security:spring-security-test)

v6.4.2

Compare Source

⭐ New Features

• Add 6.4 Sample Serializations for Serializable classes #​16274
• Add @inheritDoc to sessionIdChanged method #​16216
• Fix typo in oauth2 resource server documentation #​16053
• Fixed confusing phrasing in the docs for a better clarity. #​16169
• Improve AuthorizationManager configuration error messages #​16194
• Polish #​16148
• Use Documentation Tags for Maven and Gradle in Getting Started #​16234
• Add WebDriver WebAuthn test #​15969

🪲 Bug Fixes

• Add Deprecated ObjectPostProcessor constructor #​16212
• Add RuntimeHints for webauthn Javascript resource #​16159
• Always return current ClientRegistration in loadAuthorizedClient #​16139
• Avoid requesting an unnecessary attestation statement when creating a webauthn credential #​16252
• CI is not using the correct secret for Develocity #​16263
• Dark mode rendering issue with images on CSRF and Method Security pages #​16176
• DefaultSaml2AuthenticatedPrincipal should define a serialVersionUID #​16163
• Delay initialization of AuthenticationProvider in Global Authentication #​16147
• Fix Documentation Typos #​16054
• Correct OAuth2ClientHttpRequestInterceptor Usage Documentation #​16172
• Fix Typo in 'What's New' Documentation #​16183
• Fix WebAuthnWebdriverTests #​16279
• Correct OpenSAML 5.x Documentation #​16195
• Issue when using @AuthenticationPrincipal on interfaces #​16177
• Mutate breaks functionality of StrictFirewallHttpHeaders with recently modified HttpHeaders#writabeHttpHeaders #​16261
• Remove duplicate cache in AuthenticationPrincipalArgumentResolverand CurrentSecurityContextArgumentResolver #​16202
• Resolve ObjectPostProcessor collisions between RSocket and WebFlux security configuration #​16161
• Restore @AuthenticationPrincipal/@CurrentSecurityContext Interface Support #​16245
• Restore Servlet 5 Compatiblity for CookieCsrfTokenRepository #​16220
• Spelling error in opensaml.adoc #​16146
• Update document regarding PublicKeyCredentialCreationOptions.attestation value #​16264
• Verification Options Should Return Saved Transports for Credentials #​16084

🔨 Dependency Upgrades

• Bump com.fasterxml.jackson:jackson-bom from 2.18.1 to 2.18.2 #​16184
• Bump com.webauthn4j:webauthn4j-core from 0.28.2.RELEASE to 0.28.3.RELEASE #​16203
• Bump io.micrometer:micrometer-observation from 1.14.1 to 1.14.2 #​16255
• Bump io.projectreactor:reactor-bom from 2023.0.12 to 2023.0.13 #​16256
• Bump org.gradle.wrapper-upgrade from 0.11.4 to 0.12 #​16209
• Bump org.gretty:gretty from 4.1.5 to 4.1.6 #​16247
• Bump org.hibernate.orm:hibernate-core from 6.6.2.Final to 6.6.3.Final #​16145
• Bump org.htmlunit:htmlunit from 4.6.0 to 4.7.0 #​16205
• Bump org.jfrog.buildinfo:build-info-extractor-gradle from 4.33.22 to 4.33.23 #​16180
• Bump org.seleniumhq.selenium:htmlunit3-driver from 4.26.0 to 4.27.0 #​16204
• Bump org.seleniumhq.selenium:selenium-java from 4.26.0 to 4.27.0 #​16167
• Bump org.springframework.data:spring-data-bom from 2024.1.0 to 2024.1.1 #​16290
• Bump org.springframework.ldap:spring-ldap-core from 3.2.8 to 3.2.10 #​16270
• Bump org.springframework:spring-framework-bom from 6.2.0 to 6.2.1 #​16271

🔩 Build Updates

• Bump @antora/collector-extension from 1.0.0 to 1.0.1 in /docs #​16239
• Bump antora from 3.2.0-alpha.6 to 3.2.0-alpha.8 in /docs #​16237
• Bump gradle/gradle-build-action from 2 to 3 #​16278
• Remove 5.8.x and 6.2.x dependabot configuration #​16268
• Remove 5.8.x from Auto Merge Forward Dependabot PRs #​15770

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​12OneTwo12, @​Kehrlann, @​MuhammadNFadhil, @​OrangeDog, @​Spikhalskiy, @​dependabot[bot], @​harpreets789, @​kse-music, @​martin-tarjanyi, @​ngocnhan-tran1996, and @​ynojima

reactor/reactor-core (io.projectreactor:reactor-test)

v3.7.1

Reactor Core 3.7.1 is part of 2024.0.1 Release Train.

What's Changed

✨ New features and improvements

• Optimize observability and debugging experience by @​Stephan202 in #​3901
• Skip redundant tag deduplication by @​Stephan202 in #​3902
• Refactor and add tests for optimized assembly traceback by @​chemicL in #​3949

🐞 Bug fixes

• Fix SwitchOnFirst hanging subscription by @​chemicL in #​3939

📖 Documentation

• Add warning about static exceptions by @​chemicL in #​3944

New Contributors

• @​Stephan202 made their first contribution in #​3902

Full Changelog: reactor/reactor-core@v3.7.0...v3.7.1

micrometer-metrics/micrometer (io.micrometer:micrometer-core)

v1.14.2: 1.14.2

Compare Source

🐞 Bug Fixes

• Protect against concurrent reads/writes to Context keyvalues #​5739
• Null stacktrace in InvalidObservationException using Virtual Threads #​5702
• Deprecate AggregationTemporality#toOtlpAggregationTemporality #​5733
• Warn about gauge re-registration #​5688
• executor.queued metrics of ForkJoinPool does not include queued submissions #​5650
• Default ObservationConventions for Grpc do not always use a consistent set of keyvalues #​5609

🔨 Dependency Upgrades

• Bump software.amazon.awssdk:cloudwatch from 2.29.14 to 2.29.23 #​5724
• Bump io.prometheus:prometheus-metrics-bom from 1.3.3 to 1.3.4 #​5723
• Bump dropwizard-metrics from 4.2.28 to 4.2.29 #​5721

📔 Documentation

• Remove duplicated contextpropagation.adoc #​5693
• Polish "Grafana Dashboard" section #​5662
• Use BOM for Micrometer dependency examples in reference docs #​5652

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​izeye

eclipse-ee4j/eclipselink (org.eclipse.persistence:org.eclipse.persistence.moxy)

v4.0.5

Compare Source

What's Changed

• [4.0] Version change to 4.0.5-SNAPSHOT by @​rfelcman in https://github.com/eclipse-ee4j/eclipselink/pull/2215
• [4.0] detach() fixes (#​2037) - backport from master by @​rfelcman in https://github.com/eclipse-ee4j/eclipselink/pull/2225
• [4.0] DatabasePlatform.wasFailureCommunicationBased() fix - backport from master by @​rfelcman in https://github.com/eclipse-ee4j/eclipselink/pull/2228
• [4.0] Maven build - OSGi Bundle-Version fix (#​2230) - backport from master by @​rfelcman in https://github.com/eclipse-ee4j/eclipselink/pull/2231
• add export of internal.weaving package by @​lukasj in https://github.com/eclipse-ee4j/eclipselink/pull/2236
• [4.0] OptimisticLockException while using L2 cache fix - backport from master by @​rfelcman in https://github.com/eclipse-ee4j/eclipselink/pull/2251
• Fixes coalesce and case operators in multithreaded environments with different number of arguments (backport to 4.0) by @​igormukhin in https://github.com/eclipse-ee4j/eclipselink/pull/2262
• [4.0] ASM 9.7.1 upgrade by @​rfelcman in https://github.com/eclipse-ee4j/eclipselink/pull/2291
• [4.0] Fix for ReportQuery not fetching relationships with BatchFetch.IN by @​Sheikah45 in https://github.com/eclipse-ee4j/eclipselink/pull/2310
• [4.0] Issue #​2301 - Sorting not honored with JPA and Oracle by @​Tomas-Kraus in https://github.com/eclipse-ee4j/eclipselink/pull/2313
• [4.0] UUID field type mapping - PostgreSQLPlatform (#​2284) - backport from master by @​rfelcman in https://github.com/eclipse-ee4j/eclipselink/pull/2325
• [4.0] DatasourceAccessor ReentrantLock fix plus new SpringBoot test by @​rfelcman in https://github.com/eclipse-ee4j/eclipselink/pull/2328
• [4.0] ConcurrencyException "Max number of attempts to lock object" in WriteLockManager - bugfix - backport from master by @​rfelcman in https://github.com/eclipse-ee4j/eclipselink/pull/2329
• [4.0] NPE in QueryBasedValueHolder due to #​2181 - bugfix by @​rfelcman in https://github.com/eclipse-ee4j/eclipselink/pull/2330
• [4.0] Maven Spring test modules on Java 17 and higher by @​rfelcman in https://github.com/eclipse-ee4j/eclipselink/pull/2331
• Fix calling stored procs on Postgres, and enable some tests by @​rdicroce in https://github.com/eclipse-ee4j/eclipselink/pull/2308
• [4.0] Fix #​2075 Slow startup because of low entropy for PRNG (#​2318) by @​Zuplyx in https://github.com/eclipse-ee4j/eclipselink/pull/2335

Full Changelog: eclipse-ee4j/eclipselink@4.0.4...4.0.5

connect2id/nimbus-jose-jwt (com.nimbusds:nimbus-jose-jwt)

v9.48

Compare Source

spring-cloud/spring-cloud-kubernetes (org.springframework.cloud:spring-cloud-starter-kubernetes-client-config)

v3.2.0: 3.2.0

⭐ New Features

• Add support for the configuration watcher to shut down the application to refresh the application #​1799

📔 Documentation

• Update k8s how-to documentation link #​1801
• Fix outdated branch name #​1794

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​cloudchamb3r, @​dependabot[bot], @​quaff, and @​ryanjbaxter

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - "before 5:30am every weekday,after 7:30pm every weekday" in timezone Europe/Berlin.

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.