struts icon indicating copy to clipboard operation
struts copied to clipboard
verified publisher icon apache

Bump org.springframework:spring-framework-bom from 6.2.12 to 7.0.1

Open dependabot[bot] opened this issue 3 weeks ago • 1 comments

Bumps org.springframework:spring-framework-bom from 6.2.12 to 7.0.1.

Release notes

Sourced from org.springframework:spring-framework-bom's releases.

v7.0.1

:star: New Features

  • Align RestOperations Kotlin extensions nullability with Java one #35852
  • Add resetCaches() method to Caffeine/ConcurrentMapCacheManager #35840
  • Fix single-check idiom in UnmodifiableMultiValueMap #35822
  • Fix Spliterator characteristics in ConcurrentReferenceHashMap #35817
  • RestTestClient does not configure JsonPathAssertions in the same way as WebTestClient #35793

:lady_beetle: Bug Fixes

  • Fix JdbcOperations Kotlin extensions #35846
  • Fix getCacheNames() concurrent access in NoOpCacheManager #35842
  • Annotation discovery regression for interfaces extending BeanNameAware and co. #35835
  • MissingPathVariableException produces wrong status code in ProblemDetail #35829
  • Refine ParameterizedPreparedStatementSetter nullability #35749
  • Fix HtmlUtils unescape for supplementary chars #35477

:notebook_with_decorative_cover: Documentation

  • Fix cross-reference links in HtmlUnit sections #35853
  • Remove @see Javadoc references to deprecated PropertiesBeanDefinitionReader #35836
  • Replace kotlin-issues attribute reference #35820
  • Document semantics and behavior of SpringExtension.getApplicationContext() #35764

:heart: Contributors

Thank you to all the contributors who worked on this release:

@​juntae6942, @​kilink, @​ngocnhan-tran1996, and @​quaff

v7.0.0

🍃 Please read the official release notes and upgrade guide

:star: New Features

  • Make SessionHolder publicly accessible for external resource management #35799
  • RouterFunctions Builders do not support ServerResponse subtypes #35791
  • Configure Jackson CBOR codecs by default if present #35787
  • Rename maxAttempts to maxRetries in @Retryable and RetryPolicy #35772
  • Prevent Kotlin Serialization side effects #35761
  • Add default API version to the list of supported versions #35755
  • Improve user check in TransportHandlingSockJsService #35753
  • Update ApiVersionDeprecationHandler to provide access to handler #35750
  • Use dedicated classes for ApiVersionResolver implementations #35747
  • Provide AOT support for @Nested classes in a @ParameterizedClass #35744
  • AssertJ support for WebTestClient #35737
  • Reject attempt to use @MockitoSpyBean with a scoped proxy #35722
  • Provide a way to supply the client builder for an HttpServiceGroup #35707
  • Review HttpMessageConverters.Builder to improve readability of code using the API #35704

... (truncated)

Commits
  • b038beb Release v7.0.1
  • abec289 Stop mentioning non-existent NestedServletException
  • 3026f0a Lazily initialize ProblemDetail for picking up actual status code
  • 9fe4e77 Fix link to MockMvc test in HtmlUnit section
  • d178930 Polishing
  • 91d2a51 Fix cross-reference links in HtmlUnit sections
  • f456674 Polishing
  • 35b8fbf Remove javadoc references to deprecated PropertiesBeanDefinitionReader
  • 1d1851f Refine RestOperations Kotlin extensions nullability
  • 23f0cfb Fix JdbcOperations Kotlin extensions
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

dependabot[bot] avatar Dec 11 '25 10:12 dependabot[bot]

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

sonarqubecloud[bot] avatar Dec 14 '25 19:12 sonarqubecloud[bot]