my-spring-boot-experiments icon indicating copy to clipboard operation
my-spring-boot-experiments copied to clipboard

Published 20 hours ago verified publisher icon rajadilipkolli

fix(deps): update dependency org.springframework.boot:spring-boot-starter-parent to v3.5.0

Open renovate[bot] opened this issue 6 months ago • 1 comments

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
org.springframework.boot:spring-boot-starter-parent (source) 3.3.12 -> 3.5.0 age adoption passing confidence
org.springframework.boot:spring-boot-starter-parent (source) 3.4.6 -> 3.5.0 age adoption passing confidence

Release Notes

spring-projects/spring-boot (org.springframework.boot:spring-boot-starter-parent)

v3.5.0

Compare Source

v3.4.6

Compare Source

v3.4.5

Compare Source

:lady_beetle: Bug Fixes

  • Spring Boot with native image container image build fails on podman due to directory permissions #​45256
  • Neo4jReactiveDataAutoConfiguration assumes that certain beans are available #​45235
  • Wrong jOOQ exception translator with empty db name #​45219
  • MessageSourceMessageInterpolator does not replace a parameter when the message matches its code #​45213
  • IntegrationMbeanExporter is not eligible for getting processed by all BeanPostProcessors warnings are shown when using JMX #​45194
  • OAuth2AuthorizationServerJwtAutoConfiguration uses @ConditionalOnClass incorrectly #​45178
  • MongoDB's dependency management is missing Kotlin coroutine driver modules #​45159
  • ImagePlatform can cause "OS must not be empty" IllegalArgumentException #​45153
  • TypeUtils does not handle generics with identical names in different positions #​45039
  • HttpClient5 5.4.3 breaks local Docker transport #​45028
  • spring.datasource.hikari.data-source-class-name cannot be used as a driver class name is always required and Hikari does not accept both #​45002
  • Post-processing to apply custom JdbcConnectionDetails triggers an NPE in Hikari if the JDBC URL is for an unknown driver #​44998
  • DataSourceBuilder triggers an NPE in Hikari when trying to build a DataSource with a JDBC URL for an unknown driver #​44995
  • SSL config does not watch for symlink file changes #​44887
  • EmbeddedLdapAutoConfiguration should not rely on PreDestroy #​44874
  • DataSourceTransactionManagerAutoConfiguration should run after DataSourceAutoConfiguration #​44819
  • JsonValueWriter can throw StackOverflowError on deeply nested items #​44627
  • In a reactive web app, SslBundle can no longer open store file locations without using a 'file:' prefix #​44535
  • Logging a Path object using structured logging throws StackOverflowError #​44507

:notebook_with_decorative_cover: Documentation

  • Make @Component a javadoc link #​45258
  • Fix documentation links to buildpacks.io #​45241
  • Clarify the use of multiple profile expressions with "spring.config.activate.on-profile" #​45224
  • Show the use of token properties in authorization server clients configuration example #​45176
  • Add details of the purpose of the metrics endpoint #​45047
  • Escape the asterisk in spring-application.adoc #​45033
  • Add reference to Styra (OPA) Spring Boot SDK #​44976
  • Update CDS documentation to cover AOTCache #​44970
  • WebFlux security documentation incorrectly links to servlet classes #​44966
  • Replace mentions of deprecated MockBean annotation #​44947
  • TaskExecution documentation should describe what happens when multiple Executor beans are present #​44908
  • Documentation lists coordinates for some dependencies that are not actually managed #​44879
  • Polish javadoc of SpringProfileAction #​44826

:hammer: Dependency Upgrades

:heart: Contributors

Thank you to all the contributors who worked on this release:

@​EvaristeGalois11, @​MelleD, @​aahlenst, @​ali-jalaal, @​erichaagdev, @​florgust, @​geniusYoo, @​izeye, @​jonatan-ivanov, @​nenros, @​nevenc, @​ngocnhan-tran1996, @​nosan, @​quaff, and @​rainboyan

v3.4.4

Compare Source

❗ Noteworthy Changes

Tomcat APR support is now disabled by default if you are using Java 24 or higher. This change has been made to prevent JDK from issuing warnings.

Please see the updated release notes for details.

:lady_beetle: Bug Fixes

  • Actuator throws an exception when using prototype scoped DataSource bean #​44706
  • Docker API error message is missing in some cases #​44630
  • DefaultJmsListenerContainerFactoryConfigurer#setObservationRegistry should not be public #​44585
  • When an application contains multiple DataSource beans, EntityManagerFactoryBuilder will default ddl-auto to a value that may only be appropriate for the primary DataSource #​44516
  • When the main class is not proxied, native testing that uses the application's main method does not work #​44481
  • When loading configuration from a Resource, Log4J2LoggingSystem may not close the InputStream #​44473
  • When loading from a resource, PemContent does not close the InputStream #​44454
  • ResourceBanner does not close the InputStream used to read the banner #​44452
  • ConfigDataLocationResolvers and PropertySourceLoaders are loaded using a potentially different class loader #​44450
  • Kafka message sending fails with 'class SslBundleSslEngineFactory could not be found' #​44437
  • Kafka in native-image fails when using SSL bundles #​44436
  • Nested test classes don't inherit properties from @DataJpaTest on enclosing class #​44407
  • Failure diagnostics are poor when trying to use an image platform that is not supported by the builder #​44059
  • Checking if APR is available logs a warning on Java 24 #​44033

:notebook_with_decorative_cover: Documentation

  • Multiline properties in documentation are missing backslashes #​44790
  • Polish javadoc of SqlR2dbcScriptDatabaseInitializer #​44764
  • Document support for Java 24 #​44754
  • Remove OpenShift link that 404s #​44748
  • Fix link to javadoc for JavaExec.setArgsString #​44536
  • Fix typo in documentation #​44523
  • Update descriptions of properties that no longer require Flyway Teams #​44483
  • Fix typo in javadoc of CommonStructuredLogFormat#ELASTIC_COMMON_SCHEMA #​44469
  • Samples for metadata annotation processers have invalid fold attribute #​44420
  • Clarify which Mongo properties are ignored when URI property is set #​44404
  • Adapt Javadoc reference of JooqExceptionTranslator to use ExceptionTranslatorExecuteListener #​44402

:hammer: Dependency Upgrades

:heart: Contributors

Thank you to all the contributors who worked on this release:

@​KmYgJn, @​bekoenig, @​bernie-schelberg-invicara, @​dmitrysulman, @​izeye, @​metters, @​ngocnhan-tran1996, @​nosan, and @​quaff

v3.4.3

Compare Source

:warning: Noteworthy

:star: New Features

  • Add TWENTY_FOUR to JavaVersion enum #​44209

:lady_beetle: Bug Fixes

  • Console output may be lost when using Log4j2 with something that replaces System.out #​44380
  • Maven plugin does not consistently use ArgFile for classpath argument on Windows #​44328
  • Reactive Jetty web server does not fail fast when configured to use a server name bundle which Jetty does not support #​44319
  • When web server application context refresh fails, the original failure is lost if stopping or destroying the web server throws an exception #​44317
  • View resolver for Thymeleaf should back off if spring-webmvc is not present #​44296
  • WebServer is not destroyed when ReactiveWebServerApplicationContext refresh fails #​44294
  • Non-default DataSource candidates are not considered in H2ConsoleAutoConfiguration #​44293
  • Banner placeholder and defaults do not work during development #​44255
  • Mustache templates return with ISO-8859-1 charset rather than UTF-8 in Content-Type response header #​44193
  • Servlet EndpointRequest doesn't match web server namespace correctly #​44188
  • java.lang.ClassCastException when using default management security with WebFlux and health probes enabled #​44052
  • Logback configuration that relies on inner-classes does not work in a native image #​44025
  • IllegalStateException: Unable to register SSL bundle after 3.3.8 or 3.4.2 #​43989
  • Metrics and health do not include non-default candidate beans #​43481

:notebook_with_decorative_cover: Documentation

  • Document that auto-configuration classes should be identified using their binary names #​44303
  • Correct typo in MVC security when explaining when UserDetailsService auto-configuration will back off #​44301
  • Link to JarLauncher's javadoc #​44170
  • When using observability annotations, recommend that care is taken to avoid double instrumentation #​44145
  • Fix typo in Running Your Application #​44035
  • Document Kubernetes preStop handler when using a Docker image without a shell #​44022
  • Source snippet in Developing Your First Spring Boot Application section uses the root package #​43983
  • Correct the location of MyApplication.java in "Developing Your First Spring Boot Application" #​43975
  • Add links to Jackson Javadoc #​43971
  • Warn that some Quartz database schema scripts must be modified before use #​43958

:hammer: Dependency Upgrades

:heart: Contributors

Thank you to all the contributors who worked on this release:

@​Ru311, @​ashishkujoy, @​izeye, @​jearton, @​ngocnhan-tran1996, @​nosan, @​quaff, and @​timotheeandres

v3.4.2

Compare Source

:lady_beetle: Bug Fixes

  • Property metadata for "logging.structured.json.customizer" has incorrect type #​43916
  • GraylogExtendedLogFormatProperties throws NullPointerException when only 'logging.structured.gelf.host' is specified #​43863
  • Structured logging properties have no effect in a native image #​43862
  • Docker Compose support for ClickHouse does not allow an empty password when ALLOW_EMPTY_PASSWORD=yes #​43790
  • docker compose ps now fails due to unknown --orphans flag with 2.23 or earlier #​43717
  • Build info timestamp is truncated to seconds #​43617
  • FileWatcher used for SSL reload does not support symlinks #​43604
  • BindableRuntimeHintsRegistrar should handle TypeNotPresentException #​43600
  • CapturedOutput is empty when using Log4J2 StatusLogger #​43578
  • Spring Boot 3.4 is not compatible with Gson 2.10 #​43442
  • NoClassDefFoundError when using JUnit to test a Gradle 7.6.x app that depends on spring-boot-actuator-autoconfigure but not on org.junit.platform:junit-platform-launcher #​43340

:notebook_with_decorative_cover: Documentation

  • Document that the @ConfigurationProperties annotation processor cannot generate description and defaultValue metadata for external types #​43929
  • Fix description of management.metrics.graphql.autotime.enabled #​43905
  • Document 'base64:' prefix support #​43835
  • Document handling of @Fallback beans in ConditionalOnSingleCandidate's javadoc #​43826
  • Javadoc of DataSourceBuilder does not reference all supported types #​43732
  • Update OpenTelemetry section in Supported Monitoring Systems to refer to OTLP instead #​43729
  • Consistently document the minimum supported versions of Gradle #​43725
  • Document that system libraries are a reason to customize the builder and switch away from builder-jammy-java-tiny #​43716
  • Links to the Javadoc of Jakarta Messaging are invalid #​43662
  • Paragraph HTML tags are rendered as-is in Maven Plugin reference documentation #​43623
  • Javadoc link for jakarta.xml.bind is invalid #​43607
  • Documentation still has references to 'layertools' #​43605
  • Javadoc of ConstructorBinding should not use markdown formatting #​43599
  • Managed Dependency Coordinates lists Spock and OkHttp dependencies that are not managed #​43584

:hammer: Dependency Upgrades

:heart: Contributors

Thank you to all the contributors who worked on this release:

@​arefbehboudi, @​dreis2211, @​gavarava, @​hezean, @​izeye, @​jxblum, @​ngocnhan-tran1996, @​nosan, @​quaff, and @​tmaciejewski

v3.4.1

Compare Source

:lady_beetle: Bug Fixes

  • KafkaProperties fail to build SSL properties when the bundle name is an empty string #​43563
  • Diagnostics are poor when property resolution throws a ConversionFailedException #​43559
  • SpringApplicationShutdownHandlers do not run in deterministic order #​43536
  • Unable to find a @SpringBootConfiguration results in misleading error message #​43507
  • With multiple ResourceHandlerRegistrationCustomizer beans in the context, only one of them is used #​43497
  • Unable to use Docker Compose support when mixing dedicated and shared services #​43472
  • Kafka dependency management does not include the kafka-server module #​43454
  • Docker API version is incorrectly reported when '/_ping` calls fail and version should be fixed #​43452
  • Methods to build producer / consumer properties from KafkaProperties are inconvienenent to use without an SSL bundle #​43448
  • Failures in -Djarmode=tools do not consistently return a non-zero exit #​43436
  • HttpComponentsClientHttpRequestFactoryBuilder replaces the existing defaultRequestConfigCustomizer rather than adding to it #​43429
  • spring-boot-maven-plugin sets imagePlatform even if it's empty #​43424
  • OnBeanCondition fails to match on annotations when using Scoped Proxies #​43423
  • Failure analysis for InvalidConfigurationPropertyValueException doesn't correctly handle fuzzy matching of environment variables #​43382
  • H2ConsoleAutoConfiguration causes early initialization of DataSource beans #​43359
  • Accept progress on numbers >2GB #​43356
  • Servlet-based UserDetailsServiceAutoConfiguration is active in a reactive app #​43334
  • StructuredLoggingJsonMembersCustomizer implementations declared in spring.factories with a generic type more specific than Object are not called #​43312
  • Overriding log level with an environment variable does not work when using an environment prefix #​43307
  • Management endpoint access and enabled properties are ignored unless the endpoint ID is an exact match #​43302
  • UnsupportedOperationException when starting a Maven shaded application on Java 21 with virtual threads enabled #​43291
  • JmsListener failing with Narayana (pooled ConnectionFactory) since 3.4.0 #​43277
  • SslBundle can no longer open store file locations without using a 'file:' prefix #​43274
  • TestRestTemplate does not allow redirects to be customized #​43258
  • Testcontainers start() methods may be started multiple times #​43253

:notebook_with_decorative_cover: Documentation

  • Fix typo in documentation #​43558
  • Document that server.ssl.cipher and server.ssl.enabled-protocols are not fallbacks used with SSL bundles #​43552
  • Use <annotationProcessorPaths> in Maven examples for configuring an annotation processor #​43544
  • Fix typo #​43519
  • Links to logback javadoc are incorrect #​43456
  • Fix JUnit javadoc links #​43428
  • Reference documentation incorrectly uses 'disabled' rather than 'none' for access restrictions #​43351
  • Restore System property in Logging section of the reference documentation #​43342
  • Fix link to proxyBeanMethods in @AutoConfiguration javadoc #​43325
  • Fix links to Servlet and JPA javadoc #​43324
  • Link to @EnableMethodSecurity instead of the deprecated @EnableGlobalMethodSecurity #​43315
  • Document that StructuredLoggingJsonMembersCustomizer implementations may optionally take constructor parameters #​43314
  • Update javadoc of StructuredLoggingJsonMembersCustomizer to note that implementations can registered through spring.factories #​43313
  • Fix Javadoc link for Hikari #​43311
  • Document how to use structured logging with custom log configuration #​43301
  • Update Javadoc since for OtlpMetricsProperties and OtlpTracingProperties #​43249

:hammer: Dependency Upgrades

:heart: Contributors

Thank you to all the contributors who worked on this release:

@​BenchmarkingBuffalo, @​Jae-Young98, @​arefbehboudi, @​izeye, @​kgb-financial-com, @​minwoo1999, @​ngocnhan-tran1996, @​nosan, @​onobc, @​quaff, @​scordio, @​sobychacko, and @​vonZeppelin

v3.4.0

Compare Source

:star: New Features

  • Add withDefaultRequestConfigCustomizer method to HttpComponentsClientHttpRequestFactoryBuilder #​43139
  • Fail JsonWriter if duplicate names are detected #​43041
  • Add JsonObjectDeserializer.nullSafeValue method that accepts a mapper Function #​42972
  • Support timeout property for GraphQL over SSE #​42966
  • Improve performance of ConfigurationPropertiesBinder by storing bind handlers on first access #​42950
  • Improve performance of ConcurrentReferenceCachingMetadataReaderFactory #​42949
  • Log warning in HikariCheckpointRestoreLifecycle if pool suspension isn't configured #​42937
  • Remove spring-boot-starter-aop dependency from spring-boot-starter-data-jpa and spring-boot-starter-integration #​42934

:lady_beetle: Bug Fixes

  • Jersey body handling is inconsistent with Spring Webflux and Spring MVC #​43209
  • Classes are accidentally named "structure logging" instead of "structured logging" #​43203
  • StructuredLoggingJsonProperties customizer should be a Class reference rather than a String #​43202
  • Cannot package OCI image when 'docker.io/paketobuildpacks/new-relic' is provided as a buildpack #​43171
  • Incorrect Type for 'management.endpoints.access.default' defined in additional-spring-configuration-metadata.json #​43154
  • WebServerPortFileWriter fails when using a portfile without extension #​43117
  • SslOptions.isSpecified() only returns true if ciphers and enabled protocols are set #​43084
  • SslHealthIndicator throws NullPointerException when using SslBundle with SslStoreBundle.NONE #​43078
  • JdkClientHttpRequestFactoryBuilder and JettyClientHttpRequestFactoryBuilder do not set Ciphers or Enabled Protocols #​43077
  • Root cause of errors is hidden when loading images from archive #​43070
  • mvn spring-boot:run fails on Windows with "Could Not Find or Load Main Class" when path contains non-ASCII characters #​43062
  • A @SpyBean on the output of a FactoryBean is not reset #​43053
  • Logback logging system does not process URLs with paths not ending in .xml #​42990
  • Bean-based conditions do not consider factory beans correctly when determining if they are a candidate #​42970
  • NPE in bootBuildImage when setting DOCKER_CONTEXT=default #​42960
  • Warning due to duplicate MockResolver extensions #​42957
  • HttpHostConnectException is thrown when using buildpacks with Gradle or Maven on Windows #​42952
  • build-info doesn't support seconds since the epoch from project.build.outputTimestamp #​42936
  • NPE in OnClassCondition.resolveOutcomesThreaded following thread interruption because firstHalf is null #​42926
  • Default WebSocketMessageBrokerConfigurer is always overriding custom channel executor #​42924
  • X-Registry-Auth header sent to Docker Engine API contains field "authHeader" #​42915
  • ApplicationContextRunner has inconsistent behaviour with duplicate auto-configuration class names #​17963

:notebook_with_decorative_cover: Documentation

  • Migrate class references to full javadoc links #​43239
  • Documentation for 'spring.datasource.type' is misleading #​43199
  • Update "Upgrading From" section to use "2.x" #​43160
  • Include spring-boot-loader in API documentation #​43153
  • Document how and where to add custom GraalVM configuration files #​43074
  • Rework DataSource configuration examples to separate defining an additional DataSource and defining a DataSource of a different type #​43059
  • Location of the layers schema is incorrect in the Maven Plugin's examples #​43033
  • Link to Eclipse

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled because a matching PR was automerged previously.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about these updates again.

  • [ ] If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

renovate[bot] avatar May 23 '25 12:05 renovate[bot]

[!IMPORTANT]

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

  • Review comments: Directly reply to a review comment made by CodeRabbit. Example:
    • I pushed a fix in commit <commit_id>, please review it.
    • Explain this complex logic.
    • Open a follow-up GitHub issue for this discussion.
  • Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
    • @coderabbitai explain this code block.
    • @coderabbitai modularize this function.
  • PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
    • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
    • @coderabbitai read src/utils.ts and explain its main purpose.
    • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
    • @coderabbitai help me debug CodeRabbit configuration file.

Support

Need help? Join our Discord community for assistance with any issues or questions.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

  • @coderabbitai pause to pause the reviews on a PR.
  • @coderabbitai resume to resume the paused reviews.
  • @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
  • @coderabbitai full review to do a full review from scratch and review all the files again.
  • @coderabbitai summary to regenerate the summary of the PR.
  • @coderabbitai generate sequence diagram to generate a sequence diagram of the changes in this PR.
  • @coderabbitai resolve resolve all the CodeRabbit review comments.
  • @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
  • @coderabbitai help to get help.

Other keywords and placeholders

  • Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
  • Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
  • Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

  • You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
  • Please see the configuration documentation for more information.
  • If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

  • Visit our Documentation for detailed information on how to use CodeRabbit.
  • Join our Discord Community to get help, request features, and share feedback.
  • Follow us on X/Twitter for updates and announcements.

coderabbitai[bot] avatar May 23 '25 12:05 coderabbitai[bot]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.

renovate[bot] avatar Jun 20 '25 14:06 renovate[bot]