dependabot[bot] opened a new pull request #727: URL: https://github.com/apache/isis/pull/727
Bumps [spring-boot-starter-parent](https://github.com/spring-projects/spring-boot) from 2.5.3 to 2.5.4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/spring-projects/spring-boot/releases";>spring-boot-starter-parent's releases</a>.</em></p> <blockquote> <h2>v2.5.4</h2> <h2>:lady_beetle: Bug Fixes</h2> <ul> <li>spring-boot-configuration-metadata leaks enforced dependency constraints into consuming builds <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27730";>#27730</a></li> <li>Potential NPE in <code>TomcatMetricsBinder.findContext()</code> <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27616";>#27616</a></li> <li>Cyclic bean definition when a Spring Data repository is a dependency of a MeterBinder <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27591";>#27591</a></li> <li>spring-boot:build-image hangs when exceptions are thrown during upload <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27535";>#27535</a></li> <li>WebTestClientContextCustomizerFactory causes an IllegalStateException when WebClient is on the classpath without a supported HTTP client <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27527";>#27527</a></li> <li>spring.security.dispatcher-types is not applied to Spring Security's filter when running in a separate management context <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27505";>#27505</a></li> <li>A URI with non-alpha characters in its scheme is not sanitized <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27488";>#27488</a></li> </ul> <h2>:notebook_with_decorative_cover: Documentation</h2> <ul> <li>Mention productionRuntimeClasspath in Gradle plugin's documentation <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27620";>#27620</a></li> <li>Fix typo in javadoc <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27618";>#27618</a></li> </ul> <h2>:hammer: Dependency Upgrades</h2> <ul> <li>Upgrade to ActiveMQ 5.16.3 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27742";>#27742</a></li> <li>Upgrade to AppEngine SDK 1.9.91 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27743";>#27743</a></li> <li>Upgrade to Cassandra Driver 4.11.3 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27674";>#27674</a></li> <li>Upgrade to Couchbase Client 3.1.7 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27675";>#27675</a></li> <li>Upgrade to Ehcache3 3.9.5 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27676";>#27676</a></li> <li>Upgrade to Glassfish JAXB 2.3.5 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27677";>#27677</a></li> <li>Upgrade to Hazelcast 4.1.5 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27744";>#27744</a></li> <li>Upgrade to Hazelcast Hibernate5 2.2.1 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27678";>#27678</a></li> <li>Upgrade to Janino 3.1.6 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27679";>#27679</a></li> <li>Upgrade to Logback 1.2.5 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27680";>#27680</a></li> <li>Upgrade to MariaDB 2.7.4 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27681";>#27681</a></li> <li>Upgrade to Maven Enforcer Plugin 3.0.0 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27682";>#27682</a></li> <li>Upgrade to Micrometer 1.7.3 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27601";>#27601</a></li> <li>Upgrade to MIMEPull 1.9.15 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27683";>#27683</a></li> <li>Upgrade to Netty 4.1.67.Final <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27745";>#27745</a></li> <li>Upgrade to Nimbus JOSE JWT 9.10.1 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27701";>#27701</a></li> <li>Upgrade to OAuth2 OIDC SDK 9.9.1 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27700";>#27700</a></li> <li>Upgrade to Reactor 2020.0.10 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27600";>#27600</a></li> <li>Upgrade to SendGrid 4.7.4 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27684";>#27684</a></li> <li>Upgrade to Spring Data 2021.0.4 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27633";>#27633</a></li> <li>Upgrade to Spring Integration 5.5.3 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27604";>#27604</a></li> <li>Upgrade to Spring Kafka 2.7.6 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27602";>#27602</a></li> <li>Upgrade to Spring Security 5.5.2 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27603";>#27603</a></li> <li>Upgrade to Spring Session 2021.0.2 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27605";>#27605</a></li> <li>Upgrade to Tomcat 9.0.52 <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27685";>#27685</a></li> <li>Upgrade to Undertow 2.2.10.Final <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27686";>#27686</a></li> </ul> <h2>:heart: Contributors</h2> <p>We'd like to thank all the contributors who worked on this release!</p> <ul> <li><a href="https://github.com/billyto";><code>@​billyto</code></a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/spring-projects/spring-boot/commit/4c8115214210b5e7074649180c1e31c024c388b6";><code>4c81152</code></a> Release v2.5.4</li> <li><a href="https://github.com/spring-projects/spring-boot/commit/a5bd4e963f3813b6557e1f427f6b2b6fb01526e6";><code>a5bd4e9</code></a> Merge branch '2.4.x' into 2.5.x</li> <li><a href="https://github.com/spring-projects/spring-boot/commit/6be27e2212fc9b6d8bf3832804c21a5610782dda";><code>6be27e2</code></a> Download artifacts for the publish_gradle_plugin task</li> <li><a href="https://github.com/spring-projects/spring-boot/commit/29ccbddaf4ecb7b2f10a0a269a47533e73111a12";><code>29ccbdd</code></a> Merge branch '2.4.x' into 2.5.x</li> <li><a href="https://github.com/spring-projects/spring-boot/commit/f2b7092073750b059669051dd61ba6392c2f6974";><code>f2b7092</code></a> Use token for GitHub authentication consistently</li> <li><a href="https://github.com/spring-projects/spring-boot/commit/e28115e7a26b2f9a9600443ed97fce2dcd93e738";><code>e28115e</code></a> Next development version (v2.4.11-SNAPSHOT)</li> <li><a href="https://github.com/spring-projects/spring-boot/commit/2c18f26b4c976f651e0c81fe22855ee2eb837f3b";><code>2c18f26</code></a> Merge branch '2.4.x' into 2.5.x</li> <li><a href="https://github.com/spring-projects/spring-boot/commit/ea95c99b776c8eb584827936786a5de8e19befa1";><code>ea95c99</code></a> Update email address used for release commit</li> <li><a href="https://github.com/spring-projects/spring-boot/commit/6d8ba3e8b1cc1401830d7140b858206febe215bd";><code>6d8ba3e</code></a> Merge branch '2.4.x' into 2.5.x</li> <li><a href="https://github.com/spring-projects/spring-boot/commit/ea9f8516ce281e3c6e23cc6f61b5802df379e0e0";><code>ea9f851</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/27736";>#27736</a> from izeye</li> <li>Additional commits viewable in <a href="https://github.com/spring-projects/spring-boot/compare/v2.5.3...v2.5.4";>compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
