Bump the maven group across 1 directory with 5 updates#182
Open
dependabot[bot] wants to merge 1 commit into
Open
Bump the maven group across 1 directory with 5 updates#182dependabot[bot] wants to merge 1 commit into
dependabot[bot] wants to merge 1 commit into
Conversation
Bumps the maven group with 5 updates in the / directory: | Package | From | To | | --- | --- | --- | | [org.springframework:spring-core](https://github.com/spring-projects/spring-framework) | `5.3.39` | `6.2.11` | | org.apache.tomcat.embed:tomcat-embed-core | `9.0.98` | `9.0.118` | | [org.springframework.security:spring-security-web](https://github.com/spring-projects/spring-security) | `5.7.13` | `6.5.9` | | [org.springframework.security:spring-security-core](https://github.com/spring-projects/spring-security) | `5.7.14` | `6.2.8` | | [ch.qos.logback:logback-core](https://github.com/qos-ch/logback) | `1.2.13` | `1.5.25` | Updates `org.springframework:spring-core` from 5.3.39 to 6.2.11 - [Release notes](https://github.com/spring-projects/spring-framework/releases) - [Commits](spring-projects/spring-framework@v5.3.39...v6.2.11) Updates `org.apache.tomcat.embed:tomcat-embed-core` from 9.0.98 to 9.0.118 Updates `org.springframework.security:spring-security-web` from 5.7.13 to 6.5.9 - [Release notes](https://github.com/spring-projects/spring-security/releases) - [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc) - [Commits](spring-projects/spring-security@5.7.13...6.5.9) Updates `org.springframework.security:spring-security-core` from 5.7.14 to 6.2.8 - [Release notes](https://github.com/spring-projects/spring-security/releases) - [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc) - [Commits](spring-projects/spring-security@5.7.14...6.2.8) Updates `ch.qos.logback:logback-core` from 1.2.13 to 1.5.25 - [Release notes](https://github.com/qos-ch/logback/releases) - [Commits](qos-ch/logback@v_1.2.13...v_1.5.25) --- updated-dependencies: - dependency-name: org.springframework:spring-core dependency-version: 6.2.11 dependency-type: direct:production dependency-group: maven - dependency-name: org.apache.tomcat.embed:tomcat-embed-core dependency-version: 9.0.118 dependency-type: direct:production dependency-group: maven - dependency-name: org.springframework.security:spring-security-web dependency-version: 6.5.9 dependency-type: direct:production dependency-group: maven - dependency-name: org.springframework.security:spring-security-core dependency-version: 6.2.8 dependency-type: direct:production dependency-group: maven - dependency-name: ch.qos.logback:logback-core dependency-version: 1.5.25 dependency-type: direct:production dependency-group: maven ... Signed-off-by: dependabot[bot] <support@github.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Bumps the maven group with 5 updates in the / directory:
5.3.396.2.119.0.989.0.1185.7.136.5.95.7.146.2.81.2.131.5.25Updates
org.springframework:spring-corefrom 5.3.39 to 6.2.11Release notes
Sourced from org.springframework:spring-core's releases.
... (truncated)
Commits
4c13425Release v6.2.11d17601eUpgrade to Undertow 2.3.19, RxJava 3.1.11, Aalto 1.3.35b38761Clarify intended nestedTransactionAllowed default in JpaTransactionManager0e3e34bFind annotations on parameters in overridden non-public methods4745c7cName local variables consistently275fb52Upgrade to Reactor 2024.0.10 and Micrometer 1.14.117f9aa39Polishingc788554Avoid thread pinning in SseEmitter, ResponseBodyEmitter9e8c640Make JsonPathAssertions#isEqualTo parameter nullableebb8e34Upgrade to Jetty 12.0.26, Jetty Reactive HttpClient 4.0.11, Netty 4.1.127, Ht...Updates
org.apache.tomcat.embed:tomcat-embed-corefrom 9.0.98 to 9.0.118Updates
org.springframework.security:spring-security-webfrom 5.7.13 to 6.5.9Release notes
Sourced from org.springframework.security:spring-security-web's releases.
... (truncated)
Commits
0c54a55Release 6.5.901ff3b0Add Workflow for Deferring Issues33e6f4bMerge Fix Jackson Deserializer for AuthenticationExtensionsClientOutputscdd4b36Update Antora UI Spring to v0.4.267672f76Bump io.projectreactor:reactor-bom from 2024.0.15 to 2024.0.163db4999Bump org.apache.maven:maven-resolver-provider from 3.9.13 to 3.9.14a708d2fBump org.springframework:spring-framework-bom from 6.2.16 to 6.2.17e726c05Fix Jackson 2 deserializer for AuthenticationExtensionsClientOutputsa7039fbTest Jackson 2 deserializer with unknown primitive WebAuthn ext88ea668Test Jackson 2 deserializer with unknown obj/arr WebAuthn extUpdates
org.springframework.security:spring-security-corefrom 5.7.14 to 6.2.8Release notes
Sourced from org.springframework.security:spring-security-core's releases.
... (truncated)
Commits
a5cd7ceRelease 6.2.8a8c4d6cRequire Locale argument for toLower/toUpperCase usage5f838b0Bump io.micrometer:micrometer-observation from 1.12.12 to 1.12.13bc3e6f2Bump org.springframework.data:spring-data-bom810d83eBump@antora/collector-extensionin /docs127ed4bBump org.springframework:spring-framework-bom from 6.1.14 to 6.1.15da345a3Bump org.springframework.ldap:spring-ldap-core from 3.2.7 to 3.2.80790978Bump io.projectreactor:reactor-bom from 2023.0.11 to 2023.0.120d8b8eeBump io.micrometer:micrometer-observation from 1.12.11 to 1.12.1281e74e6Support ServerExchangeRejectedHandler@BeanUpdates
ch.qos.logback:logback-corefrom 1.2.13 to 1.5.25Release notes
Sourced from ch.qos.logback:logback-core's releases.
... (truncated)
Commits
f426e00prepare release of 1.5.25d28931frestrict object creation to expected supertypeaa264f7test default variable values in appender-ref ref attribute8fb403aadjust copyright yearb294a12check optionList in start()b65040aAdd EpochConverter for milliseconds/seconds since epoch (related to issue #96...0690174cla for Duncan Jauncey71dc2afRemoved email address for Tony.1f97ae1check for undeclared by referenced appendersb07355eMove the artifact version checking code to VersionUtil in logback-core.Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditionsYou can disable automated security fix PRs for this repo from the Security Alerts page.