Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump spring-framework-bom from 5.3.27 to 5.3.29 #3858

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jul 15, 2023

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.


Bumps spring-framework-bom from 5.3.27 to 5.3.29.

Release notes

Sourced from spring-framework-bom's releases.

v5.3.29

⭐ New Features

  • Avoid illegal reflective access in ContextOverridingClassLoader.isEligibleForOverriding #30868
  • Improve diagnostics for CGLIB ClassLoader issues with shared classes in parent ClassLoader #30866
  • JdbcTemplate does not call handleWarnings in case of exception #30852
  • Tolerate AnnotationUtils.isCandidateClass call with null as annotation type #30843
  • Simplify DefaultSingletonBeanRegistry.isDependent() #30841
  • Provide explicit support for collections, maps, and arrays in ObjectUtils.nullSafeConciseToString() #30811
  • Extend list of supported types in ObjectUtils.nullSafeConciseToString() #30806
  • Align ConcurrentMapCacheManager locking behavior with CaffeineCacheManager #30781
  • ResolvableType.hasUnresolvableGenerics() should cache its result #30715
  • Ensure Spring LogFactory contains all public methods from Apache LogFactory #30711
  • Translate SQL Exception with State S0001 and Vendor Code 2628 to a Spring Exception in MSSQL 2019 #30682

🐞 Bug Fixes

  • For a prototype bean, if first-time rejected value is null, subsequent value will wrongly be null always #30809
  • Revert changes to toString() in FieldError #30800
  • Fix log level on error with @TransactionalEventListener #30784
  • SerializableTypeWrapper does not consistently catch InvocationTargetException #30767
  • NPE in MvcUriComponentsBuilder with no-arg target method on interface #30757
  • Jackson2ObjectMapperBuilder breaks when modules customizer follows modulesToInstall #30752
  • Spring ORM SpringBeanContainer when trying to create a bean fails with not found bean definition, and fallbacks to default hibernate bean creation #30685

📔 Documentation

  • ResultSet holdability into the View layer broken by Hibernate 5 #30863
  • Clarify ReactiveTransactionManager exception declarations #30819
  • Doc: JdbcTransactionManager vs DataSourceTransactionManager #30814

🔨 Dependency Upgrades

  • Upgrade to Reactor 2020.0.34 #30873

v5.3.28

⭐ New Features

  • ClassLoader can be null in DeserializingConverter and should be annotated with @Nullable #30672
  • Performance optimization in AbstractBeanFactoryBasedTargetSource.hashCode() #30585
  • Consistent support for MultiValueMap and common Map implementations in CollectionFactory #30441
  • Reject null and empty SpEL expressions #30373
  • Introduce Environment.matchesProfiles() for profile expressions #30226

🐞 Bug Fixes

  • Change of behaviour for UUID in bean validation output in v5.3.27 #30662
  • Spring Framework 5.3.27 appears to cause issues in OSGi environment #30637
  • Inconsistent ProxyCallbackFilter#equals/hashCode methods in CglibAopProxy #30616
  • EclipseLinkJpaDialect: Unexpected default isolation levels #30589

... (truncated)

Commits
  • 13b31c7 Release v5.3.29
  • 5331938 Polishing
  • e1e7fa4 Upgrade to Reactor 2020.0.34 (and Tomcat 9.0.78)
  • e1351a5 Update OS version in CI image
  • ac94d2b Polishing
  • 16fd70a Avoid illegal reflective access in ContextOverridingClassLoader
  • c1bf099 Improve diagnostics for LinkageError in case of ClassLoader mismatch
  • 9e7ee0c Deprecate setAllowResultAccessAfterCompletion and document it as broken
  • 1cd994d Encapsulate full path initialization
  • 3d28c02 Handle JDBC warnings in case of a statement exception as well
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [spring-framework-bom](https://github.com/spring-projects/spring-framework) from 5.3.27 to 5.3.29.
- [Release notes](https://github.com/spring-projects/spring-framework/releases)
- [Commits](spring-projects/spring-framework@v5.3.27...v5.3.29)

---
updated-dependencies:
- dependency-name: org.springframework:spring-framework-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Jul 15, 2023
@codecov-commenter
Copy link

Codecov Report

Merging #3858 (ca23614) into master (0beeaf7) will decrease coverage by 0.09%.
The diff coverage is n/a.

❗ Current head ca23614 differs from pull request most recent head 4ca34fe. Consider uploading reports for the commit 4ca34fe to get more accurate results

@@             Coverage Diff              @@
##             master    #3858      +/-   ##
============================================
- Coverage     43.97%   43.88%   -0.09%     
+ Complexity     6087     6075      -12     
============================================
  Files          1557     1557              
  Lines         38278    38278              
  Branches       3512     3512              
============================================
- Hits          16834    16800      -34     
- Misses        20133    20174      +41     
+ Partials       1311     1304       -7     

see 16 files with indirect coverage changes

📣 We’re building smart automated test selection to slash your CI/CD build times. Learn more

@liubao68 liubao68 closed this Jul 25, 2023
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Jul 25, 2023

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@dependabot dependabot bot deleted the dependabot/maven/org.springframework-spring-framework-bom-5.3.29 branch July 25, 2023 08:42
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file java Pull requests that update Java code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants