Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump org.springframework:spring-context from 4.3.7.RELEASE to 6.1.11 in /marshalsec #132

Open
wants to merge 1 commit into
base: main
Choose a base branch
from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jul 12, 2024

Bumps org.springframework:spring-context from 4.3.7.RELEASE to 6.1.11.

Release notes

Sourced from org.springframework:spring-context's releases.

v6.1.11

⭐ New Features

  • Ensure varargs component type for MethodHandle is not null in SpEL's ReflectionHelper #33193
  • Confusing WebClient exception message in case of Reactor-Netty PrematureCloseException during response #33127
  • Include the bean name in the exception when an invalid factoryBeanObjectType attribute is found #33117
  • Use error handler for reactive cache aspect #33073
  • getTypeForFactoryMethod should catch NoClassDefFoundError #33075

🐞 Bug Fixes

  • SpEL cannot invoke varargs MethodHandle function with an array #33191
  • SpEL cannot invoke varargs MethodHandle function with zero variable arguments #33190
  • Nested bean instance supplier invocation does not retain previous factory method #33180
  • DefaultErrorResponseBuilder does not implement headers(Consumer) #33156
  • Fix adaptation of violations on Set method parameter #33150
  • Web controller call with invalid body resulting in 500 instead of 400 when using kotlinx-serialization #33138
  • "file:." cannot be resolved to java.nio.file.Path (and plain "." value resolves to classpath root) #33124
  • Mockito mock falsely initialized as CGLIB proxy with AspectJ aspect #33113
  • Fix ClassCastException from return value validation with proxy when adaptConstraintViolations=true #33105
  • Spring coroutines AOP is not compatible with @Transactional #33095
  • ReactorClientHttpConnector creates new HttpClient for every request #33093
  • Trace and Span IDs are no longer propagated RequestBodyAdvice beans #33091
  • Early LocalContainerEntityManagerFactoryBean initialization fails in case of null bean definition #33082
  • ReactorNettyClientRequest.convertException should include original exception if cause is null #33080
  • SpEL incorrectly splits string arguments by comma for Object... varargs method #33013
  • ProtobufMessageConverter fails to parse JSON payload if byte array is used #27408

📔 Documentation

  • Harmonize phrasing in URI Encoding section #33166
  • Document that ModelMap is not a supported argument type in WebFlux #33107
  • Example in Method Injection section of Spring Framework documentation refers to wrong bean names #33096
  • Resource writer doesn't consider subclasses of InputStreamResource for content length bypass #33089
  • Improve documentation regarding encoding in FreeMarker support #33071
  • Exception for validation failure in WebFlux does not match the documentation #33061

🔨 Dependency Upgrades

  • Upgrade to Kotlin 1.9.24 #33177
  • Upgrade to Kotlin Serialization 1.6.3 #33175
  • Upgrade to Micrometer 1.12.8 #33168
  • Upgrade to Reactor 2023.0.8 #33169

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​TAKETODAY, @​hunhee98, @​imvtsl, @​snussbaumer, and @​zizare

... (truncated)

Commits
  • 9b59345 Release v6.1.11
  • 611d3e5 Correct type names in docs on Validation in WebFlux
  • fa2a58b Ensure varargs component type for MethodHandle is not null in SpEL
  • 83ca2c0 Support MethodHandle function invocation with varargs array in SpEL
  • dc16f3c Polish SpEL function invocation support
  • f2b3263 Polishing
  • 1d890a8 Make coroutines with custom AOP aspects work with @Transactional
  • 3ccaefe Polishing
  • 300f458 Update spring.jdbc.getParameterType.ignore note for 6.1.2
  • a0f5c16 Support MethodHandle function invocation with zero varargs in SpEL
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [org.springframework:spring-context](https://github.com/spring-projects/spring-framework) from 4.3.7.RELEASE to 6.1.11.
- [Release notes](https://github.com/spring-projects/spring-framework/releases)
- [Commits](spring-projects/spring-framework@v4.3.7.RELEASE...v6.1.11)

---
updated-dependencies:
- dependency-name: org.springframework:spring-context
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Jul 12, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file java Pull requests that update Java code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants