Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump org.springframework.boot from 2.2.13.RELEASE to 2.4.12 #145

Closed

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Nov 1, 2021

Bumps org.springframework.boot from 2.2.13.RELEASE to 2.4.12.

Release notes

Sourced from org.springframework.boot's releases.

v2.4.12

🐞 Bug Fixes

  • Misleading failure analysis when jOOQ's DSLContext is unavailable due to R2DBC taking precedence over JDBC #28378
  • ActiveMQ starter depends on org.apache.geronimo.specs:geronimo-j2ee-management_1.1_spec #28339
  • When lazy initialization is enabled, JMX endpoints are not available #28335
  • CachingOperationInvoker cache can consume a significant amount of heap space #28313
  • spring-boot-starter-oauth2-client has an unnecessary dependency on com.sun.mail:jakarta.mail #28308
  • MeterValue with "d" suffix not parsed as Duration for timer #28302
  • Layertools extract does not preserve last modified and last access times #28167
  • NumberFormatException when configuring spring.rabbitmq.addresses with an IPv6 address #28133
  • Flattened VCAP_SERVICES properties are not sanitized by default #28085
  • JarFileWrapper may cause many FinalReferences causing GC pressure #28042

📔 Documentation

  • Fix typo in EnvironmentPostProcessor's class-level javadoc #28376
  • Section 4.4 File Rotation mentions the wrong configuration file name for Log4j2 #28189
  • Update docs to be explicit about dot notation being correctly mapped #28170
  • Update javadoc on @ConstructorBinding to mention @ConfigurationPropertiesScan and @EnableConfigurationProperties #28168
  • Make it clearer that, when using @AutoConfigureTestEntityManager outside of @DataJpaTest, any tests using the test entity manager must be @Transactional #28086

🔨 Dependency Upgrades

  • Upgrade to Dropwizard Metrics 4.1.26 #28270
  • Upgrade to Ehcache3 3.9.7 #28390
  • Upgrade to Jetty 9.4.44.v20210927 #28277
  • Upgrade to Lombok 1.18.22 #28271
  • Upgrade to Micrometer 1.6.12 #28224
  • Upgrade to MySQL 8.0.27 #28391
  • Upgrade to Netty 4.1.69.Final #28359
  • Upgrade to Netty tcNative 2.0.44.Final #28272
  • Upgrade to Nimbus JOSE JWT 8.23 #28392
  • Upgrade to Postgresql 42.2.24 #28273
  • Upgrade to R2DBC Bom Arabba-SR11 #28274
  • Upgrade to Reactor 2020.0.12 #28222
  • Upgrade to Spring AMQP 2.3.11 #28226
  • Upgrade to Spring Data 2020.0.14 #28225
  • Upgrade to Spring Framework 5.3.12 #28223
  • Upgrade to Spring HATEOAS 1.2.10 #28358
  • Upgrade to Spring Kafka 2.6.11 #28227
  • Upgrade to Spring Security 5.4.9 #28228
  • Upgrade to Spring Session 2020.0.7 #28229
  • Upgrade to Tomcat 9.0.54 #28275
  • Upgrade to Undertow 2.2.12.Final #28276

❤️ Contributors

We'd like to thank all the contributors who worked on this release!

... (truncated)

Commits
  • 0f0e7dd Release v2.4.12
  • 60c815a Upgrade Ubuntu version in CI images
  • 3abda65 Upgrade to Spring Session 2020.0.7
  • 91524cc Upgrade to Spring Framework 5.3.12
  • 3d20911 Upgrade to Nimbus JOSE JWT 8.23
  • 3e6da7e Upgrade to MySQL 8.0.27
  • 5865246 Upgrade to Ehcache3 3.9.7
  • 971bdd3 Start building against Framework 5.3.12 snapshots
  • 6c45878 Merge pull request #28376 from fml2
  • 54ce51e Polish "Fix typos in EnvironmentPostProcessor javadoc"
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [org.springframework.boot](https://github.com/spring-projects/spring-boot) from 2.2.13.RELEASE to 2.4.12.
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](spring-projects/spring-boot@v2.2.13.RELEASE...v2.4.12)

---
updated-dependencies:
- dependency-name: org.springframework.boot
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Nov 1, 2021
@dependabot dependabot bot requested a review from sepe81 November 1, 2021 02:19
@sonarcloud
Copy link

sonarcloud bot commented Nov 1, 2021

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
No Duplication information No Duplication information

@sepe81
Copy link
Owner

sepe81 commented Nov 2, 2021

first we need CodeforLeipzig#63

@dependabot ignore this minor version

@sepe81 sepe81 closed this Nov 2, 2021
@dependabot @github
Copy link
Author

dependabot bot commented on behalf of github Nov 2, 2021

OK, I won't notify you about version 2.4.x again, unless you re-open this PR or update to a 2.4.x release yourself.

@dependabot dependabot bot deleted the dependabot/gradle/org.springframework.boot-2.4.12 branch November 2, 2021 22:33
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant