Skip to content

Update Spring Upgrade - Non Major #899

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Sep 2, 2025
Merged

Update Spring Upgrade - Non Major #899

merged 1 commit into from
Sep 2, 2025

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Jul 31, 2025
edited
Loading

This PR contains the following updates:

Package Change Age Confidence
org.springframework.security:spring-security-web (source) 6.5.1 -> 6.5.3 age confidence
org.springframework.security:spring-security-test (source) 6.5.1 -> 6.5.3 age confidence
org.springframework.security:spring-security-taglibs (source) 6.5.1 -> 6.5.3 age confidence
org.springframework.security:spring-security-saml2-service-provider (source) 6.5.1 -> 6.5.3 age confidence
org.springframework.security:spring-security-rsocket (source) 6.5.1 -> 6.5.3 age confidence
org.springframework.security:spring-security-oauth2-resource-server (source) 6.5.1 -> 6.5.3 age confidence
org.springframework.security:spring-security-oauth2-jose (source) 6.5.1 -> 6.5.3 age confidence
org.springframework.security:spring-security-oauth2-core (source) 6.5.1 -> 6.5.3 age confidence
org.springframework.security:spring-security-oauth2-client (source) 6.5.1 -> 6.5.3 age confidence
org.springframework.security:spring-security-messaging (source) 6.5.1 -> 6.5.3 age confidence
org.springframework.security:spring-security-ldap (source) 6.5.1 -> 6.5.3 age confidence
org.springframework.security:spring-security-data (source) 6.5.1 -> 6.5.3 age confidence
org.springframework.security:spring-security-crypto (source) 6.5.1 -> 6.5.3 age confidence
org.springframework.security:spring-security-config (source) 6.5.1 -> 6.5.3 age confidence
org.springframework.security:spring-security-cas (source) 6.5.1 -> 6.5.3 age confidence
org.springframework.security:spring-security-aspects (source) 6.5.1 -> 6.5.3 age confidence
org.springframework.security:spring-security-acl (source) 6.5.1 -> 6.5.3 age confidence
org.springframework.security:spring-security-core (source) 6.5.1 -> 6.5.3 age confidence
org.springframework.boot 3.5.3 -> 3.5.5 age confidence

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

Release Notes

spring-projects/spring-security (org.springframework.security:spring-security-web)

v6.5.3

Compare Source

⭐ New Features

  • Add META-INF/LICENSE.txt to published jars #​17639
  • Update Angular documentation links in csrf.adoc #​17653
  • Update Shibboleth Repository URL #​17637
  • Use 2004-present Copyright #​17634

🪲 Bug Fixes

  • Add Missing Navigation in Preparing for 7.0 Guide #​17731
  • DPoP authentication throws JwtDecoderFactory ClassNotFoundException #​17249
  • OpenSamlAssertingPartyDetails Should Be Serializable #​17727
  • Use final values in equals and hashCode #​17621

🔨 Dependency Upgrades

  • Bump com.webauthn4j:webauthn4j-core from 0.29.4.RELEASE to 0.29.5.RELEASE #​17739
  • Bump com.webauthn4j:webauthn4j-core from 0.29.4.RELEASE to 0.29.5.RELEASE #​17690
  • Bump com.webauthn4j:webauthn4j-core from 0.29.4.RELEASE to 0.29.5.RELEASE #​17684
  • Bump com.webauthn4j:webauthn4j-core from 0.29.4.RELEASE to 0.29.5.RELEASE #​17661
  • Bump io.micrometer:micrometer-observation from 1.14.8 to 1.14.9 #​17615
  • Bump io.micrometer:micrometer-observation from 1.14.8 to 1.14.9 #​17599
  • Bump io.micrometer:micrometer-observation from 1.14.9 to 1.14.10 #​17737
  • Bump io.micrometer:micrometer-observation from 1.14.9 to 1.14.10 #​17701
  • Bump io.mockk:mockk from 1.14.4 to 1.14.5 #​17614
  • Bump io.spring.develocity.conventions from 0.0.23 to 0.0.24 #​17647
  • Bump io.spring.gradle:spring-security-release-plugin from 1.0.10 to 1.0.11 #​17733
  • Bump io.spring.gradle:spring-security-release-plugin from 1.0.10 to 1.0.11 #​17711
  • Bump io.spring.gradle:spring-security-release-plugin from 1.0.6 to 1.0.10 #​17612
  • Bump io.spring.gradle:spring-security-release-plugin from 1.0.6 to 1.0.10 #​17598
  • Bump org-eclipse-jetty from 11.0.25 to 11.0.26 #​17742
  • Bump org.apache.maven:maven-resolver-provider from 3.9.10 to 3.9.11 #​17613
  • Bump org.apache.maven:maven-resolver-provider from 3.9.10 to 3.9.11 #​17595
  • Bump org.assertj:assertj-core from 3.27.3 to 3.27.4 #​17760
  • Bump org.assertj:assertj-core from 3.27.3 to 3.27.4 #​17692
  • Bump org.assertj:assertj-core from 3.27.3 to 3.27.4 #​17683
  • Bump org.assertj:assertj-core from 3.27.3 to 3.27.4 #​17671
  • Bump org.gretty:gretty from 4.1.6 to 4.1.7 #​17616
  • Bump org.gretty:gretty from 4.1.6 to 4.1.7 #​17597
  • Bump org.hibernate.orm:hibernate-core from 6.6.20.Final to 6.6.23.Final #​17646
  • Bump org.hibernate.orm:hibernate-core from 6.6.23.Final to 6.6.24.Final #​17660
  • Bump org.hibernate.orm:hibernate-core from 6.6.23.Final to 6.6.25.Final #​17694
  • Bump org.hibernate.orm:hibernate-core from 6.6.23.Final to 6.6.25.Final #​17685
  • Bump org.jfrog.buildinfo:build-info-extractor-gradle from 4.34.1 to 4.34.2 #​17650
  • Bump org.springframework.data:spring-data-bom from 2024.1.7 to 2024.1.8 #​17645
  • Bump org.springframework.ldap:spring-ldap-core from 3.2.13 to 3.2.14 #​17757
  • Bump org.springframework:spring-framework-bom from 6.2.8 to 6.2.9 #​17651
  • Bump org.springframework:spring-framework-bom from 6.2.8 to 6.2.9 #​17596
  • Bump org.springframework:spring-framework-bom from 6.2.9 to 6.2.10 #​17735

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​codingtim

v6.5.2

Compare Source

🪲 Bug Fixes
  • <websocket-message-broker> should pick up a bean named csrfChannelInterceptor #​17495
  • Add 7.0 Migration Steps for Messaging PathPattern Usage #​17509
  • EnableReactiveMethodSecurity should not import Servlet configuration #​17545
  • Fix equals and hashCode in PathPatternRequestMatcher to include HTTP method #​17337
  • Fix securityContextRepository() initialization in oauth2Login() DSL #​17557
  • OAuth2Login DSL should support post-processing AuthenticationProvider implementations #​17176
  • Websocket XML config should pick up PathPatternMessageMatcher.Builder #​17508
🔨 Dependency Upgrades
❤️ Contributors

Thank you to all the contributors who worked on this release:

@​fkowal and @​therepanic

Configuration

📅 Schedule: Branch creation - "after 7am and before 11am every weekday" in timezone Europe/London, Automerge - "after 8am and before 11am every Tuesday" in timezone Europe/London.

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot added the dependencies Pull requests that update a dependency file label Jul 31, 2025
@renovate renovate bot force-pushed the renovate/spring-upgrade-non-major branch from 6a77270 to b6960ff Compare August 6, 2025 07:26
@renovate renovate bot force-pushed the renovate/spring-upgrade-non-major branch from b6960ff to b26f394 Compare August 6, 2025 10:11
@renovate renovate bot force-pushed the renovate/spring-upgrade-non-major branch from b26f394 to cb9a506 Compare August 7, 2025 08:07
@renovate renovate bot force-pushed the renovate/spring-upgrade-non-major branch from cb9a506 to 3a10c71 Compare August 7, 2025 08:50
@renovate renovate bot force-pushed the renovate/spring-upgrade-non-major branch from 3a10c71 to 885fbfa Compare August 11, 2025 13:07
@renovate renovate bot force-pushed the renovate/spring-upgrade-non-major branch from 885fbfa to 0891c94 Compare August 18, 2025 19:52
@renovate renovate bot force-pushed the renovate/spring-upgrade-non-major branch from 0891c94 to 0092ccb Compare August 21, 2025 21:56
@renovate renovate bot force-pushed the renovate/spring-upgrade-non-major branch from 0092ccb to 08702ff Compare August 26, 2025 14:07
@renovate renovate bot force-pushed the renovate/spring-upgrade-non-major branch from 08702ff to 95d0660 Compare August 26, 2025 14:29
@renovate renovate bot force-pushed the renovate/spring-upgrade-non-major branch from 95d0660 to e6cdd51 Compare August 26, 2025 14:51
@renovate renovate bot force-pushed the renovate/spring-upgrade-non-major branch from e6cdd51 to ef45a6d Compare August 26, 2025 15:11
@renovate renovate bot force-pushed the renovate/spring-upgrade-non-major branch from ef45a6d to e29391b Compare August 26, 2025 15:33
@renovate renovate bot force-pushed the renovate/spring-upgrade-non-major branch from e29391b to cfe1cb4 Compare August 27, 2025 07:30
@renovate renovate bot force-pushed the renovate/spring-upgrade-non-major branch from cfe1cb4 to 66bfe2c Compare August 27, 2025 08:05
@renovate renovate bot force-pushed the renovate/spring-upgrade-non-major branch from 66bfe2c to 82e13e4 Compare August 27, 2025 10:42
@renovate renovate bot force-pushed the renovate/spring-upgrade-non-major branch from 82e13e4 to d6d1b7a Compare August 27, 2025 11:15
@renovate renovate bot force-pushed the renovate/spring-upgrade-non-major branch from d6d1b7a to 3aa6e0a Compare August 28, 2025 08:18
@renovate renovate bot force-pushed the renovate/spring-upgrade-non-major branch from 3aa6e0a to d0bce97 Compare September 2, 2025 13:20
@renovate renovate bot force-pushed the renovate/spring-upgrade-non-major branch from d0bce97 to b77242d Compare September 2, 2025 13:43
@larslnde larslnde merged commit 79c60e2 into master Sep 2, 2025
7 checks passed
@larslnde larslnde deleted the renovate/spring-upgrade-non-major branch September 2, 2025 14:21
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@larslnde larslnde larslnde approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file ns:wa prd:wa rel:wa-workflow-api-pr-899
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@larslnde