Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump spring-webflux from 5.3.25 to 5.3.28 #404

Closed
wants to merge 1 commit into from
Closed

Bump spring-webflux from 5.3.25 to 5.3.28 #404

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jun 16, 2023

Bumps spring-webflux from 5.3.25 to 5.3.28.

Release notes

Sourced from spring-webflux's releases.

v5.3.28

⭐ New Features

  • ClassLoader can be null in DeserializingConverter and should be annotated with @Nullable #30672
  • Performance optimization in AbstractBeanFactoryBasedTargetSource.hashCode() #30585
  • Consistent support for MultiValueMap and common Map implementations in CollectionFactory #30441
  • Reject null and empty SpEL expressions #30373
  • Introduce Environment.matchesProfiles() for profile expressions #30226

🐞 Bug Fixes

  • Change of behaviour for UUID in bean validation output in v5.3.27 #30662
  • Spring Framework 5.3.27 appears to cause issues in OSGi environment #30637
  • Inconsistent ProxyCallbackFilter#equals/hashCode methods in CglibAopProxy #30616
  • EclipseLinkJpaDialect: Unexpected default isolation levels #30589
  • ThreadLocalTargetSource does not include actual target bean name in NamedThreadLocal #30586
  • ApplicationListenerMethodAdapter inconsistently publishes events from CompletableFuture #30584
  • For @Bean method that returns null, @Autowired injects NullBean instead of null for cached arguments #30551
  • Make maximum SpEL expression length configurable #30446
  • Respect TaskDecorator configuration on DefaultManagedTaskExecutor #30443

📔 Documentation

  • Document which @Scheduled attributes support SpEL expressions #30642
  • FileSystemUtils::deleteRecursively Javadoc refers to File instead of Path #30555

🔨 Dependency Upgrades

  • Upgrade to Reactor 2020.0.33 #30656

v5.3.27

⭐ New Features

  • Limit string concatenation in SpEL expressions #30331
  • Limit SpEL expression length #30329
  • Disable variable assignment in SimpleEvaluationContext #30327
  • Introduce StringUtils.truncate() #30291
  • Introduce ObjectUtils.nullSafeConciseToString() #30287
  • Make HttpComponentsHeadersAdapter#getFirst nullable #30269

🐞 Bug Fixes

  • Fix regression in ReactorServerHttpRequest related to IPV6 Zone id with "%" #30314
  • SSE breaks with indenting serializer in WebMvc.fn #30302
  • Increase max regex length in SpEL expressions #30298
  • NullPointerException on timeout in HttpComponentsClientHttpConnector when using Apache HttpComponents #30246
  • Wrong MockRestRequestMatchers.header() method in spring-test being invoked (JDK issue?) #30235
  • TypeNotPresentException: org/springframework/cglib/proxy/NoOp not present on Java 17 #30228
  • Refine generic type management in AbstractMessageWriterResultHandler #30215
  • MvcUriComponentsBuilder.fromMethodCall breaks for controller with CharSequence return type #30212

... (truncated)

Commits
  • b02f4a0 Release v5.3.28
  • 99ae6e7 Declare ClassLoader for DeserializingConverter constructor as nullable
  • c2cc55e Consider UUID as simple value type with concise toString output
  • 9cff2ac Upgrade to Reactor 2020.0.33
  • 3c2590d Document limited isolation level support for concurrent transactions
  • 4b55333 Document which @​Scheduled attributes support SpEL expressions
  • c27acad Specific check for parent of MethodInvocationInfo ClassLoader
  • 70be9af Reuse method cache from original proxy factory (aligned with 6.0.x)
  • d4450a8 Specific check for parent of spring-aop ClassLoader
  • 210e47d Polishing
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump spring-webflux from 5.3.25 to 5.3.28
d05c153 
Bumps [spring-webflux](https://github.com/spring-projects/spring-framework) from 5.3.25 to 5.3.28.
- [Release notes](https://github.com/spring-projects/spring-framework/releases)
- [Commits](spring-projects/spring-framework@v5.3.25...v5.3.28)

---
updated-dependencies:
- dependency-name: org.springframework:spring-webflux
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Jun 16, 2023
@dependabot dependabot bot mentioned this pull request Jun 16, 2023
Closed
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Jul 14, 2023

Superseded by #411.

@dependabot dependabot bot closed this Jul 14, 2023
@dependabot dependabot bot deleted the dependabot/maven/org.springframework-spring-webflux-5.3.28 branch July 14, 2023 04:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
0 participants