dependabot[bot] opened a new pull request, #801: URL: https://github.com/apache/shiro/pull/801
Bumps [hazelcast](https://github.com/hazelcast/hazelcast) from 5.2.2 to 5.2.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/hazelcast/hazelcast/releases";>hazelcast's releases</a>.</em></p> <blockquote> <h2>v5.2.3</h2> <p>This document lists the enhancements and fixes for Hazelcast Platform 5.2.3 release. The numbers in the square brackets refer to the issues and pull requests in Hazelcast's GitHub repository.</p> <h2>Enhancements</h2> <ul> <li>When advanced networking is enabled, the Kubernetes discovery plugin might have been discovering several endpoints (per each port) for each member's pod. The discovery plugin now matches only the private IP per endpoint, ignoring the port values. <a href="https://redirect.github.com/hazelcast/hazelcast/issues/23931";>#23931</a></li> <li>Introduced the <code>hazelcast.discovery.public.address.fallback</code> property to enable smart client connectivity to Hazelcast clusters deployed on Kubernetes, and having advanced network configuration enabled.<a href="https://redirect.github.com/hazelcast/hazelcast/issues/23920";>#23920</a></li> </ul> <h2>Fixes</h2> <ul> <li>Fixed an issue where a ECS Fargate cluster was failing to start due to the <code>Failed to configure discovery strategies</code> error. <a href="https://redirect.github.com/hazelcast/hazelcast/issues/23939";>#23939</a></li> <li>Fixed an issue where the Hazelcast configuration was modified by the Jet engine, if the wildcard configuration is used and Jet is enabled; meaning the configurations made by the user was not being reflected. <a href="https://redirect.github.com/hazelcast/hazelcast/issues/23877";>#23877</a></li> <li>Fixed an issue where Debezium connector for MongoDB could not keep the connection after some time. <a href="https://redirect.github.com/hazelcast/hazelcast/issues/23690";>#23690</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/hazelcast/hazelcast/commit/22c3efb6bfc202a6288e147d5d8842024efde8b9";><code>22c3efb</code></a> Upgrade version to 5.2.3</li> <li><a href="https://github.com/hazelcast/hazelcast/commit/30f246a8a613941a88b4f4a40c411014fd98cb03";><code>30f246a</code></a> Bump json-smart from to 2.4.10 to fix CVE-2023-1370 [5.2.3] (<a href="https://redirect.github.com/hazelcast/hazelcast/issues/24058";>#24058</a>)</li> <li><a href="https://github.com/hazelcast/hazelcast/commit/6ceb0f091bfd7411c4fe9ce5a842fa8693017755";><code>6ceb0f0</code></a> Defensive changes in DeferredValue [HZ-1187] [5.2.3] (<a href="https://redirect.github.com/hazelcast/hazelcast/issues/24029";>#24029</a>)</li> <li><a href="https://github.com/hazelcast/hazelcast/commit/24348114b262576fd495631385927404a6e9e7a2";><code>2434811</code></a> Adding RN for Platform OS 5.2.3.</li> <li><a href="https://github.com/hazelcast/hazelcast/commit/7be97a68b01d40aec7660ab6a392a49b9c104635";><code>7be97a6</code></a> Update release_notes.txt</li> <li><a href="https://github.com/hazelcast/hazelcast/commit/d1a5d538b7ed2ccb340238422929f3f516a225c2";><code>d1a5d53</code></a> Prepare release 5.2.3</li> <li><a href="https://github.com/hazelcast/hazelcast/commit/0dc28ab6a94caf473d25391426b2d629fdcb3bdf";><code>0dc28ab</code></a> Update owasp-check-suppressions.xml (<a href="https://redirect.github.com/hazelcast/hazelcast/issues/23998";>#23998</a>)</li> <li><a href="https://github.com/hazelcast/hazelcast/commit/a06990576d8220ab8a3ba7194357f4dfa7e78319";><code>a069905</code></a> Add new suppressions to owasp checks (<a href="https://redirect.github.com/hazelcast/hazelcast/issues/23980";>#23980</a>)</li> <li><a href="https://github.com/hazelcast/hazelcast/commit/72d7a1cacb268cda7f52fdb647bd0e7b48d9f726";><code>72d7a1c</code></a> Bump jmx_prometheus_javaagent from 0.17.2 to 0.18.0 [5.2.z] (<a href="https://redirect.github.com/hazelcast/hazelcast/issues/23975";>#23975</a>)</li> <li><a href="https://github.com/hazelcast/hazelcast/commit/bacaef0608771d75deb5c17b7b515cdac9eaf417";><code>bacaef0</code></a> Migrate from log4j to reload4j (<a href="https://redirect.github.com/hazelcast/hazelcast/issues/23953";>#23953</a>) [5.2.z] (<a href="https://redirect.github.com/hazelcast/hazelcast/issues/23966";>#23966</a>)</li> <li>Additional commits viewable in <a href="https://github.com/hazelcast/hazelcast/compare/v5.2.2...v5.2.3";>compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
