Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump org.springframework.version from 3.2.4.RELEASE to 5.2.5.RELEASE in /temp-projects/webgoat/contents/opt/owasp/webgoat/.extract/webapps/WebGoat/META-INF/maven/WebGoat/WebGoat #6

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Apr 5, 2020

Bumps org.springframework.version from 3.2.4.RELEASE to 5.2.5.RELEASE.
Updates spring-core from 3.2.4.RELEASE to 5.2.5.RELEASE

Release notes

Sourced from spring-core's releases.

v5.2.5.RELEASE

⭐ New Features

  • Do not cache multipart mime types in MimeTypeUtils LRU cache #24767
  • Declare proxyBeanMethods=false in JmsBootstrapConfiguration #24752
  • Usage of java 14 record throws java.lang.UnsupportedOperationException: This feature requires ASM8_EXPERIMENTAL #24722
  • Non-public Kotlin beans can't be instantiated #24712
  • Avoid ClassCastException for CoyoteInputStream in TomcatHttpHandlerAdapter #24707
  • Avoid unnecessary sorting in AbstractHandlerMethodMapping #24704
  • Improve performance of StringUtils#cleanPath #24674
  • Optimize global advisor registration in ProxyFactoryBean #24669
  • Short circuit check in SynthesizedMergedAnnotationInvocationHandler.isVisible() #24664
  • Ignore empty domain string in ResponseCookie #24663
  • Remove UTF-8 charset parameter from Content-Type in SseEmitter #24632
  • Jaxb2XmlDecoder Does Not Throw Codec Exception For Invalid XML #24622
  • TransactionInterceptor constructors should accept a generic TransactionManager #24612
  • Relax GraalVM checks in DefaultParameterNameDiscoverer #24600
  • Multipart/related support in Spring Webclient #24582
  • Consider supporting PreFlight requests and CORS in Servlet Functional Endpoints #24564
  • Support for byte-range requests in Servlet Functional endpoints #24562
  • Provide a mechanism to configure integration tests with a dynamic property source #24540
  • Improve ConcurrentLruCache performance #24469
  • Reduce Class[] garbage when creating proxies #24221
  • implements checkNotModified for ServerRequest #24173
  • AbstractSockJsSession exception when handling message with closed session #23828

🪲 Bug Fixes

  • Missing nullability declarations for package web.socket.server.jetty #24745
  • MediaTypeNotSupportedStatusException seems unused #24743
  • MessagingRSocket incorrectly tries to release entire input stream on channel interaction #24741
  • MimeTypeUtils performance degradation #24671
  • RSocket MetadataEncoder expands the routes incorrect #24656
  • Spring generates huge callstack for async requests #24652
  • CodecException (from JSON conversion) in RestController is not mapped to 400 but 500 (SB 2.2.5 & Kotlin) #24646
  • addCandidateComponentsFromIndex should create ScannedGenericBeanDefinitions #24638
  • ShallowETagHeaderFilter (still) overwrites ETag and Content-Length #24635
  • Invalid JSON in requests now causes 500 instead of 400 #24630
  • Invalid request results in 500 INTERNAL ERROR instead of 400 BAD REQUEST (with Lombok and Kotlin) #24610
  • Distributions no longer deployed #24605
  • UnknownHttpStatusCodeException is missing the response body #24595
  • Implementing interface in abstract class does not expose parameter annotations #24127

📔 Documentation

  • Clarify name generation responsibility for PropertySourceFactory implementations #24757
  • Improve Javadoc in @Configuration #24753
  • Improve Javadoc in AnnotatedElementUtils #24740
  • Clarify behavior for WebClient statusHandlers #24736
  • Enhance Spring Core documentation, section 1.9.2. Using @Autowired #24711
... (truncated)
Commits

Updates spring-webmvc from 3.2.4.RELEASE to 5.2.5.RELEASE

Release notes

Sourced from spring-webmvc's releases.

v5.2.5.RELEASE

⭐ New Features

  • Do not cache multipart mime types in MimeTypeUtils LRU cache #24767
  • Declare proxyBeanMethods=false in JmsBootstrapConfiguration #24752
  • Usage of java 14 record throws java.lang.UnsupportedOperationException: This feature requires ASM8_EXPERIMENTAL #24722
  • Non-public Kotlin beans can't be instantiated #24712
  • Avoid ClassCastException for CoyoteInputStream in TomcatHttpHandlerAdapter #24707
  • Avoid unnecessary sorting in AbstractHandlerMethodMapping #24704
  • Improve performance of StringUtils#cleanPath #24674
  • Optimize global advisor registration in ProxyFactoryBean #24669
  • Short circuit check in SynthesizedMergedAnnotationInvocationHandler.isVisible() #24664
  • Ignore empty domain string in ResponseCookie #24663
  • Remove UTF-8 charset parameter from Content-Type in SseEmitter #24632
  • Jaxb2XmlDecoder Does Not Throw Codec Exception For Invalid XML #24622
  • TransactionInterceptor constructors should accept a generic TransactionManager #24612
  • Relax GraalVM checks in DefaultParameterNameDiscoverer #24600
  • Multipart/related support in Spring Webclient #24582
  • Consider supporting PreFlight requests and CORS in Servlet Functional Endpoints #24564
  • Support for byte-range requests in Servlet Functional endpoints #24562
  • Provide a mechanism to configure integration tests with a dynamic property source #24540
  • Improve ConcurrentLruCache performance #24469
  • Reduce Class[] garbage when creating proxies #24221
  • implements checkNotModified for ServerRequest #24173
  • AbstractSockJsSession exception when handling message with closed session #23828

🪲 Bug Fixes

  • Missing nullability declarations for package web.socket.server.jetty #24745
  • MediaTypeNotSupportedStatusException seems unused #24743
  • MessagingRSocket incorrectly tries to release entire input stream on channel interaction #24741
  • MimeTypeUtils performance degradation #24671
  • RSocket MetadataEncoder expands the routes incorrect #24656
  • Spring generates huge callstack for async requests #24652
  • CodecException (from JSON conversion) in RestController is not mapped to 400 but 500 (SB 2.2.5 & Kotlin) #24646
  • addCandidateComponentsFromIndex should create ScannedGenericBeanDefinitions #24638
  • ShallowETagHeaderFilter (still) overwrites ETag and Content-Length #24635
  • Invalid JSON in requests now causes 500 instead of 400 #24630
  • Invalid request results in 500 INTERNAL ERROR instead of 400 BAD REQUEST (with Lombok and Kotlin) #24610
  • Distributions no longer deployed #24605
  • UnknownHttpStatusCodeException is missing the response body #24595
  • Implementing interface in abstract class does not expose parameter annotations #24127

📔 Documentation

  • Clarify name generation responsibility for PropertySourceFactory implementations #24757
  • Improve Javadoc in @Configuration #24753
  • Improve Javadoc in AnnotatedElementUtils #24740
  • Clarify behavior for WebClient statusHandlers #24736
  • Enhance Spring Core documentation, section 1.9.2. Using @Autowired #24711
... (truncated)
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps `org.springframework.version` from 3.2.4.RELEASE to 5.2.5.RELEASE.

Updates `spring-core` from 3.2.4.RELEASE to 5.2.5.RELEASE
- [Release notes](https://github.com/spring-projects/spring-framework/releases)
- [Commits](spring-projects/spring-framework@v3.2.4.RELEASE...v5.2.5.RELEASE)

Updates `spring-webmvc` from 3.2.4.RELEASE to 5.2.5.RELEASE
- [Release notes](https://github.com/spring-projects/spring-framework/releases)
- [Commits](spring-projects/spring-framework@v3.2.4.RELEASE...v5.2.5.RELEASE)

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Apr 5, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants