dependabot[bot] opened a new pull request, #3520: URL: https://github.com/apache/causeway/pull/3520
Bumps [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) from 3.5.13 to 3.5.14. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/spring-projects/spring-boot/releases";>org.springframework.boot:spring-boot-maven-plugin's releases</a>.</em></p> <blockquote> <h2>v3.5.14</h2> <h2>:lady_beetle: Bug Fixes</h2> <ul> <li>ApplicationPidFileWriter does not handle symlinks correctly <a href="https://redirect.github.com/spring-projects/spring-boot/issues/50173";>#50173</a></li> <li>RandomValuePropertySource is not suitable for secrets <a href="https://redirect.github.com/spring-projects/spring-boot/issues/50172";>#50172</a></li> <li>Cassandra auto-configuration misconfigures CqlSessionBuilder <a href="https://redirect.github.com/spring-projects/spring-boot/issues/50171";>#50171</a></li> <li>ApplicationTemp does not handle symlinks correctly <a href="https://redirect.github.com/spring-projects/spring-boot/issues/50170";>#50170</a></li> <li>Remote DevTools performs comparison incorrectly <a href="https://redirect.github.com/spring-projects/spring-boot/issues/50169";>#50169</a></li> <li>spring.rabbitmq.ssl.verify-hostname is applied inconsistently <a href="https://redirect.github.com/spring-projects/spring-boot/issues/50168";>#50168</a></li> <li>EnversRevisionRepositoriesRegistrar should reuse <code>@EnableEnversRepositories</code> rather than configuring the JPA counterpart <a href="https://redirect.github.com/spring-projects/spring-boot/pull/50035";>#50035</a></li> <li>Annotations like <code>@Ssl</code> don't work on <code>@Bean</code> methods when using <code>@ServiceConnection</code> <a href="https://redirect.github.com/spring-projects/spring-boot/pull/50033";>#50033</a></li> <li>Whole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter <a href="https://redirect.github.com/spring-projects/spring-boot/issues/50021";>#50021</a></li> <li>WebFlux Cloud Foundry links endpoint includes query string from received request in resolved links <a href="https://redirect.github.com/spring-projects/spring-boot/pull/50008";>#50008</a></li> <li>500 response from env endpoint when supplied pattern is invalid <a href="https://redirect.github.com/spring-projects/spring-boot/pull/49942";>#49942</a></li> <li>HTTP method is lost when configuring excludes in EndpointRequest <a href="https://redirect.github.com/spring-projects/spring-boot/pull/49885";>#49885</a></li> <li>Docker Compose support doesn't work with apache/artemis image <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49865";>#49865</a></li> <li>Honor HttpMethod for reactive additional endpoint paths <a href="https://redirect.github.com/spring-projects/spring-boot/pull/49864";>#49864</a></li> <li>Docker Compose support doesn't work with apache/activemq image <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49863";>#49863</a></li> <li>Imports on a containing test class are ignored when a nested class has imports <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49860";>#49860</a></li> </ul> <h2>:notebook_with_decorative_cover: Documentation</h2> <ul> <li>Link to the observability section of the Lettuce documentation is broken <a href="https://redirect.github.com/spring-projects/spring-boot/pull/50092";>#50092</a></li> <li>Javadoc for StaticResourceLocation.FAVICON doesn't describe icons location <a href="https://redirect.github.com/spring-projects/spring-boot/issues/50083";>#50083</a></li> <li>MySamlRelyingPartyConfiguration is missing a Kotlin sample <a href="https://redirect.github.com/spring-projects/spring-boot/issues/50023";>#50023</a></li> <li>Incorrect default value for management.httpexchanges.recording.include in configuration metadata <a href="https://redirect.github.com/spring-projects/spring-boot/pull/50010";>#50010</a></li> <li>Link to the Kubernetes documentation when discussing startup probes <a href="https://redirect.github.com/spring-projects/spring-boot/issues/50007";>#50007</a></li> <li>Update docs to encourage Java fundamentals for beginners that prefer to learn that way <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49895";>#49895</a></li> <li>Clarify that configuration property default values are not available through the Environment <a href="https://redirect.github.com/spring-projects/spring-boot/pull/49835";>#49835</a></li> </ul> <h2>:hammer: Dependency Upgrades</h2> <ul> <li>Upgrade to Groovy 4.0.31 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49905";>#49905</a></li> <li>Upgrade to Hibernate 6.6.49.Final <a href="https://redirect.github.com/spring-projects/spring-boot/issues/50140";>#50140</a></li> <li>Upgrade to <a href="https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1";>Jaxen 2.0.1</a> <a href="https://redirect.github.com/spring-projects/spring-boot/issues/50109";>#50109</a></li> <li>Upgrade to <a href="https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5";>Jaybird 6.0.5</a> <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49907";>#49907</a></li> <li>Upgrade to <a href="https://github.com/jetty/jetty.project/releases/tag/jetty-12.0.34";>Jetty 12.0.34</a> <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49908";>#49908</a></li> <li>Upgrade to <a href="https://github.com/jOOQ/jOOQ/releases/tag/version-3.19.32";>jOOQ 3.19.32</a> <a href="https://redirect.github.com/spring-projects/spring-boot/issues/50110";>#50110</a></li> <li>Upgrade to Lombok 1.18.46 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/50148";>#50148</a></li> <li>Upgrade to <a href="https://mariadb.com/kb/en/mariadb-connector-j-3-5-8-release-notes";>MariaDB 3.5.8</a> <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49909";>#49909</a></li> <li>Upgrade to <a href="https://github.com/micrometer-metrics/micrometer/releases/tag/v1.15.11";>Micrometer 1.15.11</a> <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49961";>#49961</a></li> <li>Upgrade to <a href="https://github.com/micrometer-metrics/tracing/releases/tag/v1.5.11";>Micrometer Tracing 1.5.11</a> <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49962";>#49962</a></li> <li>Upgrade to <a href="https://dev.mysql.com/doc/relnotes/connector-j/en/news-9-7-0.html";>MySQL 9.7.0</a> <a href="https://redirect.github.com/spring-projects/spring-boot/issues/50161";>#50161</a></li> <li>Upgrade to Neo4j Java Driver 5.28.13 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/50074";>#50074</a></li> <li>Upgrade to <a href="https://github.com/reactor/reactor/releases/tag/2024.0.17";>Reactor Bom 2024.0.17</a> <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49963";>#49963</a></li> <li>Upgrade to <a href="https://github.com/spring-projects/spring-amqp/releases/tag/v3.2.10";>Spring AMQP 3.2.10</a> <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49964";>#49964</a></li> <li>Upgrade to <a href="https://github.com/spring-projects/spring-authorization-server/releases/tag/1.5.7";>Spring Authorization Server 1.5.7</a> <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49965";>#49965</a></li> <li>Upgrade to <a href="https://github.com/spring-projects/spring-data-bom/releases/tag/2025.0.11";>Spring Data Bom 2025.0.11</a> <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49966";>#49966</a></li> <li>Upgrade to <a href="https://github.com/spring-projects/spring-framework/releases/tag/v6.2.18";>Spring Framework 6.2.18</a> <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49967";>#49967</a></li> <li>Upgrade to <a href="https://github.com/spring-projects/spring-kafka/releases/tag/v3.3.15";>Spring Kafka 3.3.15</a> <a href="https://redirect.github.com/spring-projects/spring-boot/issues/50129";>#50129</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/spring-projects/spring-boot/commit/7d7b3ac12735161f9c096ce6cb415bdd9fc4a0f4";><code>7d7b3ac</code></a> Release v3.5.14</li> <li><a href="https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7";><code>9dc5aa2</code></a> Polish</li> <li><a href="https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d";><code>f533a45</code></a> Do not follow symlinks when writing PID file</li> <li><a href="https://github.com/spring-projects/spring-boot/commit/f3b8eb0f2cd989dffe5dceefce80bde165328b31";><code>f3b8eb0</code></a> Use SecureRandom in RandomValuePropertySource</li> <li><a href="https://github.com/spring-projects/spring-boot/commit/e22083a5684c3c65bcf2a9a90adcdecee6e85d50";><code>e22083a</code></a> Enable hostname verification for SSL connections to Cassandra</li> <li><a href="https://github.com/spring-projects/spring-boot/commit/5ceb1a228932e35cc803d1c1fea68f0f984aaa90";><code>5ceb1a2</code></a> Improve ApplicationTemp's temporary directory creation</li> <li><a href="https://github.com/spring-projects/spring-boot/commit/4b0862cc00815a47b22339d7eac7ddc3b6645bd4";><code>4b0862c</code></a> Use constant-time comparison for remote DevTools secret</li> <li><a href="https://github.com/spring-projects/spring-boot/commit/e4febe2015d340ea9135437ee0659ea0f2260c31";><code>e4febe2</code></a> Apply verify-hostname consistently</li> <li><a href="https://github.com/spring-projects/spring-boot/commit/2c2ffe51c415f464fde6368fdd144b9551c3458c";><code>2c2ffe5</code></a> Fix Windows test failure</li> <li><a href="https://github.com/spring-projects/spring-boot/commit/0046a442f9ac5ae186359df575e68fab17d01646";><code>0046a44</code></a> Protect against corrupt buildpack archives</li> <li>Additional commits viewable in <a href="https://github.com/spring-projects/spring-boot/compare/v3.5.13...v3.5.14";>compare view</a></li> </ul> </details> <br /> <details> <summary>Most Recent Ignore Conditions Applied to This Pull Request</summary> | Dependency Name | Ignore Conditions | | --- | --- | | org.springframework.boot:spring-boot-maven-plugin | [>= 4.a0, < 5] | </details> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
