Title: Bump the gradle-version-updates group across 1 directory with 3 updates by dependabot[bot] · Pull Request #2868 · secureCodeBox/secureCodeBox · GitHub
Open Graph Title: Bump the gradle-version-updates group across 1 directory with 3 updates by dependabot[bot] · Pull Request #2868 · secureCodeBox/secureCodeBox
X Title: Bump the gradle-version-updates group across 1 directory with 3 updates by dependabot[bot] · Pull Request #2868 · secureCodeBox/secureCodeBox
Description: Bumps the gradle-version-updates group with 3 updates in the /hooks/persistence-defectdojo/hook directory: org.springframework:spring-web, io.freefair.lombok and com.github.ben-manes.versions.
Updates org.springframework:spring-web from 6.2.1 to 6.2.2
Release notes
Sourced from org.springframework:spring-web's releases.
v6.2.2
⭐ New Features
Track only qualifier annotations in BeanOverrideHandler #34260
Remove @FunctionalInterface declaration from BeanOverrideProcessor #34259
Refine default filtered headers for web data binding #34182
Improve query params in uri KeyValue with HTTP interface client #34176
Refine location checks for PathResource #34167
Avoid virtual thread pinning in procedure calling #34133
Type-level constraint violation should result in ParameterErrors #34105
Avoid logger serialization behind shared EntityManager proxy #34084
Improve PathMatcher to PathPatternParser migration in mvc XML configuration #34064
Support @MockitoBean at the type level on test classes #33925
🐞 Bug Fixes
HttpHeadersAssert#doesNotContainsHeaders has a typo #34263
Deadlock with background EntityManager bootstrap due to locking in getSingletonFactoryBeanForTypeCheck #34247
ApplicationListener no longer invoked for double generic ApplicationEvent with 6.2.1 #34234
Nested transaction savepoints are broken in SQL Server #34233
Error handling override in DefaultResponseErrorHandler ignored after upgrade to 6.2.0 #34231
FileNotFoundException is thrown when using ConfigurationPropertiesScan with Spring Context 6.2.1 #34216
BindException declared but not handled by ExceptionHandler #34214
@TestBean factory method resolution is incorrect within class hierarchy #34204
Bean Override in superclass takes precedence over Bean Override in subclass #34194
Ensure AsyncListener#onError does not return until dispatch completes #34192
BeanNotOfRequiredTypeException during transaction qualifier resolution in 6.2.1 #34187
BeanCurrentlyInCreationException is thrown when multiple threads simultaneously try to create bean #34186
DataBinder throws IndexOutOfBoundsException when indexed parameter uses nonconsecutive indices #34145
NullPointerException is thrown if WebClient is used with Apache Httpclient and cookies are disabled #34132
Wrong parentId tracking in FlightRecorderApplicationStartup #34128
PathMatchingResourcePatternResolver is not able to resolve file in SpringBoot Packaged JAR #34126
Placeholder resolution no longer considers exact match before resolving the placeholder key #34124
DataBinder throws StringIndexOutOfBoundsException for indexed property without nested property path #34121
Dependency injection matches wildcards too leniently with 6.2.1 #34119
PathMatchingResourcePatternResolver throws FileNotFoundException caused by wrong cache path #34111
SpEL fails to invoke MethodHandle function reference accepting only varargs #34109
Generic with a base type is no longer resolved to its base if the generic is unresolved #34086
DataBinder throws StringIndexOutOfBoundsException for map property without nested property path #34043
Fix implicit variable resolution in JSP EvalTag #33945
📔 Documentation
Fix inaccuracy in RequestHeaderArgumentResolver Javadoc #34230
Document that http.client.requests measure the entire HTTP exchange #34201
Misuse of em dash in "Basic Concept" section #34165
Fix typo in link #34149
Broken syntax in xml sample of "Reference to Other Beans" section #34148
Fix minor typo in reference documentation for Kotlin annotations #34134
Clarify documentation for the default uri client request observation metric #34116
... (truncated)
Commits
d5da602 Release v6.2.2
384d274 Polishing in HttpServiceMethod
5150a9a Polishing contribution
a8c5885 Fix wrong document about RequestHeaderArgumentResolver
7d84427 Upgrade to Jetty 12.0.16, Netty 4.1.117, Protobuf 4.29.3, Checkstyle 10.21.1
70ceb3a Refer to local Consumer type instead of Kotlin test type
9181cce Support @MockitoBean at the type level on test classes
8b6523a Cross reference @NestedTestConfiguration for Bean Overrides
e7f3493 Merge pull request #34086 from rPraml
fe5f5d5 Polish "Resolve base type in parameterized type if necessary"
Additional commits viewable in compare view
Updates io.freefair.lombok from 8.11 to 8.12
Release notes
Sourced from io.freefair.lombok's releases.
8.12
What's Changed
Bump de.larsgrefer.sass:sass-embedded-host from 3.7.2 to 3.7.3 by @dependabot in freefair/gradle-plugins#1246
Bump io.freefair.settings.plugin-versions from 8.10.2 to 8.11 by @dependabot in freefair/gradle-plugins#1245
Remove usage of Gradle internal JavaExecHandleBuilder by @asodja in freefair/gradle-plugins#1247
Bump org.graalvm.buildtools.native from 0.10.2 to 0.10.4 in /examples by @dependabot in freefair/gradle-plugins#1257
Bump org.sonarsource.scanner.gradle:sonarqube-gradle-plugin from 5.1.0.4882 to 6.0.1.5171 by @dependabot in freefair/gradle-plugins#1254
Bump org.junit:junit-bom from 5.11.3 to 5.11.4 by @dependabot in freefair/gradle-plugins#1263
Bump com.gradle.develocity from 3.18.2 to 3.19 by @dependabot in freefair/gradle-plugins#1260
Bump org.assertj:assertj-core from 3.26.3 to 3.27.0 by @dependabot in freefair/gradle-plugins#1264
Bump org.asciidoctor.jvm.convert from 4.0.3 to 4.0.4 by @dependabot in freefair/gradle-plugins#1269
Bump org.assertj:assertj-core from 3.27.0 to 3.27.1 by @dependabot in freefair/gradle-plugins#1270
Bump com.github.spotbugs from 6.0.26 to 6.0.27 in /examples by @dependabot in freefair/gradle-plugins#1268
Bump org.mockito:mockito-core from 5.14.2 to 5.15.2 by @dependabot in freefair/gradle-plugins#1272
Bump org.assertj:assertj-core from 3.27.1 to 3.27.2 by @dependabot in freefair/gradle-plugins#1274
Bump org.springframework.boot from 3.3.5 to 3.4.1 in /examples by @dependabot in freefair/gradle-plugins#1267
Bump org.assertj:assertj-core from 3.26.3 to 3.27.2 in /examples by @dependabot in freefair/gradle-plugins#1273
Bump de.larsgrefer.sass:sass-embedded-host from 3.7.3 to 4.0.0 by @dependabot in freefair/gradle-plugins#1278
Bump org.junit:junit-bom from 5.11.3 to 5.11.4 in /examples by @dependabot in freefair/gradle-plugins#1275
Bump org.springframework.boot:spring-boot-starter from 3.3.5 to 3.4.1 in /examples by @dependabot in freefair/gradle-plugins#1265
Full Changelog: freefair/gradle-plugins@8.11...8.12
Commits
9e84f31 polish
533e059 Merge pull request #1265 from freefair/dependabot/gradle/examples/org.springf...
fd6b2b0 Update to SpotBugs 6.1.2
be85cba Update to Spring Boot 3.4.0
38bacbb Update to PlantUML '1.2025.0
8a87d18 Merge pull request #1275 from freefair/dependabot/gradle/examples/org.junit-j...
d030038 Merge pull request #1278 from freefair/dependabot/gradle/de.larsgrefer.sass-s...
85aec5f Bump de.larsgrefer.sass:sass-embedded-host from 3.7.3 to 4.0.0
4d80ef7 Bump org.junit:junit-bom from 5.11.3 to 5.11.4 in /examples
4a9f546 Merge pull request #1273 from freefair/dependabot/gradle/examples/org.assertj...
Additional commits viewable in compare view
Updates com.github.ben-manes.versions from 0.51.0 to 0.52.0
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show
Open Graph Description: Bumps the gradle-version-updates group with 3 updates in the /hooks/persistence-defectdojo/hook directory: org.springframework:spring-web, io.freefair.lombok and com.github.ben-manes.versions. Upda...
X Description: Bumps the gradle-version-updates group with 3 updates in the /hooks/persistence-defectdojo/hook directory: org.springframework:spring-web, io.freefair.lombok and com.github.ben-manes.versions. Upda...
Opengraph URL: https://github.com/secureCodeBox/secureCodeBox/pull/2868
X: @github
Domain: github.com
| route-pattern | /:user_id/:repository/pull/:id/checks(.:format) |
| route-controller | pull_requests |
| route-action | checks |
| fetch-nonce | v2:4e48b48f-f0cd-4bd1-722a-d48dfeea0884 |
| current-catalog-service-hash | 87dc3bc62d9b466312751bfd5f889726f4f1337bdff4e8be7da7c93d6c00a25a |
| request-id | C4CA:1074E3:2EB2BC:3C443F:69904007 |
| html-safe-nonce | 6fc6f031bc1685ace39361082261655e10314ff0a43917afd13987db2d3fbbe4 |
| visitor-payload | eyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiJDNENBOjEwNzRFMzoyRUIyQkM6M0M0NDNGOjY5OTA0MDA3IiwidmlzaXRvcl9pZCI6IjU3NTI5NDMxODM5MDMzNDI1OTkiLCJyZWdpb25fZWRnZSI6ImlhZCIsInJlZ2lvbl9yZW5kZXIiOiJpYWQifQ== |
| visitor-hmac | be413f4ab0edc14cc62ea9ac3221cdf370cb33a1a9c762cc57382e43d45877a7 |
| hovercard-subject-tag | pull_request:2299493753 |
| github-keyboard-shortcuts | repository,pull-request-list,pull-request-conversation,pull-request-files-changed,checks,copilot |
| google-site-verification | Apib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I |
| octolytics-url | https://collector.github.com/github/collect |
| analytics-location | / |
| fb:app_id | 1401488693436528 |
| apple-itunes-app | app-id=1477376905, app-argument=https://github.com/secureCodeBox/secureCodeBox/pull/2868/checks |
| twitter:image | https://avatars.githubusercontent.com/in/29110?s=400&v=4 |
| twitter:card | summary_large_image |
| og:image | https://avatars.githubusercontent.com/in/29110?s=400&v=4 |
| og:image:alt | Bumps the gradle-version-updates group with 3 updates in the /hooks/persistence-defectdojo/hook directory: org.springframework:spring-web, io.freefair.lombok and com.github.ben-manes.versions. Upda... |
| og:site_name | GitHub |
| og:type | object |
| hostname | github.com |
| expected-hostname | github.com |
| None | 42c603b9d642c4a9065a51770f75e5e27132fef0e858607f5c9cb7e422831a7b |
| turbo-cache-control | no-preview |
| go-import | github.com/secureCodeBox/secureCodeBox git https://github.com/secureCodeBox/secureCodeBox.git |
| octolytics-dimension-user_id | 34573705 |
| octolytics-dimension-user_login | secureCodeBox |
| octolytics-dimension-repository_id | 80711933 |
| octolytics-dimension-repository_nwo | secureCodeBox/secureCodeBox |
| octolytics-dimension-repository_public | true |
| octolytics-dimension-repository_is_fork | false |
| octolytics-dimension-repository_network_root_id | 80711933 |
| octolytics-dimension-repository_network_root_nwo | secureCodeBox/secureCodeBox |
| turbo-body-classes | logged-out env-production page-responsive full-width full-width-p-0 |
| disable-turbo | false |
| browser-stats-url | https://api.github.com/_private/browser/stats |
| browser-errors-url | https://api.github.com/_private/browser/errors |
| release | 3b33c5aedc9808f45bc5fcf0b1e4404cf749dac7 |
| ui-target | full |
| theme-color | #1e2327 |
| color-scheme | light dark |
Links:
Viewport: width=device-width