Update dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
org.apache.maven.plugins:maven-compiler-plugin	3.10.1 -> 3.11.0
commons-io:commons-io (source)	2.11.0 -> 2.13.0
org.jacoco:jacoco-maven-plugin (source)	0.8.8 -> 0.8.10
org.springframework.cloud:spring-cloud-sleuth (source)	3.1.6 -> 3.1.9
org.springframework.boot:spring-boot-maven-plugin (source)	2.7.8 -> 2.7.15
org.springframework.boot:spring-boot-dependencies (source)	2.7.8 -> 2.7.15

---

⚠ Dependency Lookup Warnings ⚠

Warnings were logged while processing this repo. Please check the Dependency Dashboard for more information.

---

Release Notes

jacoco/jacoco (org.jacoco:jacoco-maven-plugin)

v0.8.10: 0.8.10

Compare Source

Fixed bugs

• Agent should not require configuration of permissions for SecurityManager outside of its codeBase (GitHub #​1425).

v0.8.9: 0.8.9

Compare Source

New Features

• JaCoCo now officially supports Java 19 and 20 (GitHub #​1371, #​1386).
• Experimental support for Java 21 class files (GitHub #​1386).
• Add parameter to include the current project in the report-aggregate Maven goal (GitHub #​1007).
• Component accessors generated by the Java compilers for records are filtered out during generation of report. Contributed by Tesla Zhang (GitHub #​1393).

Fixed bugs

• Agent should not open java.lang package to unnamed module of the application class loader (GitHub #​1334).

Non-functional Changes

• JaCoCo now depends on ASM 9.5 (GitHub #​1299, #​1368, #​1416).
• JaCoCo build now requires JDK 11 (GitHub #​1413).

spring-cloud/spring-cloud-sleuth (org.springframework.cloud:spring-cloud-sleuth)

v3.1.9: 3.1.9

Compare Source

⭐ New Features

• Adds support for Reactor Netty Brave additional logging #​2295

🐞 Bug Fixes

• Autoconfigurable correlationScopeDecorator doesn't use builder from Spring Context #​2284

📔 Documentation

• HandlerInterceptor section in document is outdated. TraceHandlerInterceptor disappeared. #​2287

❤️ Contributors

We'd like to thank all the contributors who worked on this release!

• @​marcingrzejszczak

v3.1.8: 3.1.8

Compare Source

⭐ New Features

• Continue PendingSpan in ScopePassingSpanSubscriber #​2282

🐞 Bug Fixes

• Properly clears the scopes #​2280
• cannot access a member of class org.springframework.cloud.sleuth.instrument.session.TraceSessionRepository #​2267

❤️ Contributors

We'd like to thank all the contributors who worked on this release!

• @​marcingrzejszczak

v3.1.7: 3.1.7

Compare Source

⭐ New Features

• TraceRunnable does not let you to get delegate and extract context data. #​2261

🐞 Bug Fixes

• trace information lost after spring cloud 2021.0.6 update #​2270
• New instrumentation for reactive kafka clients #​2268
• Netty reports LEAK while using reactor (Rsocket) with Sleuth #​2256
• TraceSessionRepositoryAspect#callMethodOnWrappedObject does not handle InvocationTargetException #​2246

❤️ Contributors

We'd like to thank all the contributors who worked on this release!

• @​maciej-gromul

spring-projects/spring-boot (org.springframework.boot:spring-boot-maven-plugin)

v2.7.15

Compare Source

🐞 Bug Fixes

• Artemis ConnectionFactory is not configured when CachingConnectionFactory is missing and enabled properties are false #​36767
• server.max-http-request-header-size doesn't affect Netty server with http2 enabled #​36766
• LogbackLoggingSystem does not report suppressed exception details #​36645
• RabbitMQ smoke test is missing a test #​36610
• Tomcat warns about a missing +/- prefix when enabling multiple protocols through server.ssl.enabled-protocols #​36572
• Descriptions of started and ready time metrics contain time units but the unit may change when the metrics are exported #​36507
• management.metrics.export.wavefront properties are incomplete #​36498
• management.metrics.export.signalfx properties are incomplete #​36497
• management.metrics.export.atlas properties are incomplete #​36496
• Script-based database initialization fails with an unhelpful error message when configured with a resource that points to a directory #​36386
• JobLauncherApplicationRunner returns a success exit code even when no jobs have been run #​36060
• DatabaseDriver swallows real exception #​34728
• Application Context initialized twice during test when exception thrown during initialization #​24888

📔 Documentation

• Maven plugin docs contain invalid parameter for image building #​37048
• Align javadoc of AbstractFilterRegistrationBean#setDispatcherTypes #​36965
• Update RestTemplateBuilder#defaultHeader javadoc to reference correct client-side HTTP request class #​36614
• @since is missing from javadoc of values added to JavaVersion since its introduction #​36608
• Document that server.forward-headers-strategy property defaults to native when running on Kubernetes #​36564
• Clarify the effect of using @EnableWebMvc #​36506
• Documentation of spring.redis.url incorrectly states that it does not override spring.redis.user #​36477
• Improve documentation to describe how @EntityScan and @Enable?Repositories can be used to tune scanning #​36282
• Document that scripts for database initialization are optional by default and how they can be made mandatory #​36176
• Document @DataR2dbcTest support #​35014
• Update expected size of the jar file in the first application getting started documentation #​34514
• Improve documentation of spring.cache.type=none #​33694
• Clarify that spring.security.filter properties only apply to servlet-based web apps #​33551
• Describe quirks of JUL and Log4j2 in the javadoc of OutputCaptureExtension #​32562
• Documentation describes how to opt in to using the path pattern parser but it's now the default #​32557
• Clarify table that shows how logging properties are transferred to system properties #​32160
• Rework Working with NoSQL Technologies to clarify which stores are supported by Spring Data #​29694
• Clarify how nested directories are treated for configtree with wildcards #​28203
• Document defaults for spring.mvc.format.* and spring.webflux.format.* properties #​30041

🔨 Dependency Upgrades

• Upgrade to Elasticsearch 7.17.12 #​36870
• Upgrade to Groovy 3.0.19 #​37055
• Upgrade to MariaDB 3.1.4 #​36394
• Upgrade to Micrometer 1.9.14 #​36824
• Upgrade to Netty 4.1.97.Final #​37085
• Upgrade to Reactor Bom 2020.0.35 #​36825
• Upgrade to Spring AMQP 2.4.15 #​36826
• Upgrade to Spring Batch 4.3.9 #​36827
• Upgrade to Spring Data Bom 2021.2.15 #​36828
• Upgrade to Tomcat 9.0.79 #​36992
• Upgrade to Undertow 2.2.26.Final #​37029

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​MahatmaFatalError, @​NersesAM, @​chicobento, @​dependabot[bot], @​dreis2211, @​eddumelendez, @​elevne, @​fzyzcjy, @​itsAkshayDubey, @​izeye, @​msobeck, @​rob-valor, @​spa-abaudat, and @​vpavic

v2.7.14

Compare Source

🐞 Bug Fixes

• Only one health group can be exposed using management.endpoint.health.group.xxx.additional-path=server:/newpath when using Jersey #​36250
• MockitoPostProcessor doesn't check FactoryBean.OBJECT_TYPE_ATTRIBUTE correctly #​36224
• ConfigurationPropertiesReportEndpoint does not display primitive wrapper types #​36076
• When using Flyway 9.20.0, auto-configuration fails with a NoSuchMethodError due to the removal of Oracle-related methods from FluentConfiguration #​36029
• Saml2RelyingPartyRegistrationConfiguration can choose the wrong RelyingPartyRegistration.Builder when using a metadata file with multiple providers #​35902
• ImportsContextCustomizer does not support AliasFor #​34917
• ConfigurationPropertyName#equals is not symmetric when element has trailing dashes #​34804

📔 Documentation

• Add Javadoc since to ImageReference.inTaglessForm() #​36048
• Polish Kafka Properties Docs #​36032
• Fix typo in the Using R2DBC section of the reference documentation #​36019
• Improve Kubernetes liveness and readiness probes customization documentation #​34978
• Document auto-configuration of underlying HTTP client when using WebClient or RestTemplate #​34136

🔨 Dependency Upgrades

• Upgrade to Elasticsearch 7.17.11 #​36311
• Upgrade to Groovy 3.0.18 #​36312
• Upgrade to Janino 3.1.10 #​36313
• Upgrade to Johnzon 1.2.21 #​36314
• Upgrade to Micrometer 1.9.13 #​36171
• Upgrade to Neo4j Java Driver 4.4.12 #​36315
• Upgrade to Rabbit AMQP Client 5.14.3 #​36316
• Upgrade to Reactor Bom 2020.0.34 #​36172
• Upgrade to Spring AMQP 2.4.14 #​36399
• Upgrade to Spring Data Bom 2021.2.14 #​36173
• Upgrade to Spring Framework 5.3.29 #​36174
• Upgrade to Spring HATEOAS 1.5.5 #​36413
• Upgrade to Spring Security 5.7.10 #​36295
• Upgrade to Tomcat 9.0.78 #​36317

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​ThomazPassarelli, @​bbulgarelli, @​bedla, @​dependabot[bot], @​dkswnkk, @​eydunn, @​garyrussell, @​izeye, @​lasselindqvist, @​lmartelli, and @​quaff

v2.7.13

Compare Source

🐞 Bug Fixes

• Spring Boot properties migrator can create circular references #​35919
• Devtools does not support package-private main classes #​35858
• Java 20 is supported but there's no value for it in the JavaVersion enum #​35758
• Processing of @EndpointCloudFoundryExtension logs a warnings as it does not use @AliasFor on its override of the endpoint attribute #​35716
• Actuator loggers list endpoint throws exception on Log4J2 loggers with custom log levels #​35227
• Validation is not applied for ConfigurationProperties that implement Validator and use @ConstructorBinding #​33669

📔 Documentation

• Description of spring.data.mongodb.uri property incorrectly states that it overrides spring.data.mongodb.database #​35686
• Update description of spring-boot-starter-data-rest to clarify that it uses Spring MVC #​35678
• Move property notes up to external configuration section #​35662
• Document audience support in OAuth2 resource server #​35286
• Add @DynamicPropertySource to documented list of property source ordering #​32901

🔨 Dependency Upgrades

• Upgrade to Dropwizard Metrics 4.2.19 #​35794
• Upgrade to Hazelcast 5.1.7 #​35987
• Upgrade to Infinispan 13.0.18.Final #​35795
• Upgrade to Lombok 1.18.28 #​35796
• Upgrade to Micrometer 1.9.12 #​35725
• Upgrade to Netty 4.1.94.Final #​35988
• Upgrade to Reactor Bom 2020.0.33 #​35726
• Upgrade to Spring AMQP 2.4.13 #​35727
• Upgrade to Spring Data Bom 2021.2.13 #​35728
• Upgrade to Spring Framework 5.3.28 #​35729
• Upgrade to Spring Security 5.7.9 #​35730
• Upgrade to Spring Session Bom 2021.2.2 #​35731
• Upgrade to Tomcat 9.0.76 #​35799
• Upgrade to UnboundID LDAPSDK 6.0.9 #​35800
• Upgrade to Undertow 2.2.25.Final #​35801

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​bbulgarelli, @​bikash30851, and @​twobiers

v2.7.12

Compare Source

🐞 Bug Fixes

• Welcome page may return a 404 when an acceptable response cannot be produced #​35552
• Invalid reference format error when tagging images using Podman #​35358
• FactoryBean.getObject for non-singleton executed when resetting mocks #​35324
• Can't use PEM encoded PKCS#8 EC keys with server.ssl.certificate-private-key #​35322
• Webflux server gracefulshutdown throws NullPointerException #​35264
• Health actuator mail details shows the port as -1 when using the default port #​35247
• SessionRepositoryFilterConfiguration can cause early initialization of SessionRepository beans including Redis #​35240
• Devtools main method search algorithm can find incorrect main method #​35214
• When a WebFlux app is deployed to Cloud Foundry some metrics are lost and numerous beans are ineligible for post-processing #​35163
• Liveness and readiness probes return down when lazy initialization is enabled #​35161
• Treating a null Flyway-specific password as an empty string prevents the use of PGPASS for authentication #​35110
• WebClient auto-configuration tries to use HttpComponentsClientHttpConnector when all required classes are not present #​34964
• MinIdle and MaxValidationTime properties missing for R2DBC pools #​34724

📔 Documentation

• Polish formatting of permitAll() endpoint security Kotlin example #​35454
• Wrong anchors in Maven plugin documentation #​35371
• Correct list of annotations that are equivalent to @SpringBootApplication #​35180
• Harmonize references to application.yaml files in reference docs #​34628

🔨 Dependency Upgrades

• Upgrade to Elasticsearch 7.17.10 #​35339
• Upgrade to Hazelcast 5.1.6 #​35440
• Upgrade to Johnzon 1.2.20 #​35340
• Upgrade to Json-smart 2.4.11 #​35549
• Upgrade to Micrometer 1.9.11 #​35290
• Upgrade to Netty 4.1.92.Final #​35441
• Upgrade to Reactor Bom 2020.0.32 #​35291
• Upgrade to Spring Data Bom 2021.2.12 #​35292
• Upgrade to Spring Integration 5.5.18 #​35294
• Upgrade to Tomcat 9.0.75 #​35442

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​JunJaBoy, @​aasaru, @​davin111, and @​ivandimitrov8080

v2.7.11

Compare Source

🐞 Bug Fixes

• CloudFoundry integration does not use endpoint path mappings #​35085
• Gradle Spring Boot plugin with Kotlin DSL does not support includeProjectDependencies in bootJar > layered > dependencies configuration #​35033
• Banner placeholders use default values too soon #​34764
• Cassandra default configuration substitutions don't resolve against configuration derived from spring.data.cassandra properties #​34643
• ApplicationAvailability bean is auto-configured even if a custom one is already present #​34347
• Nested test classes don't inherit properties from slice test annotations on enclosing class #​33317

📔 Documentation

• Use current Neo4j version in Testcontainers-based examples #​34775
• Clarify servlet container compatibility #​34697
• Document that optional dependencies are included by default in fat jars built with Maven #​34636

🔨 Dependency Upgrades

• Upgrade to DB2 JDBC 11.5.8.0 #​34906
• Upgrade to GraphQL Java 18.5 #​34995
• Upgrade to Groovy 3.0.17 #​34907
• Upgrade to Logback 1.2.12 #​34908
• Upgrade to Micrometer 1.9.10 #​34855
• Upgrade to MySQL 8.0.33 #​35057
• Upgrade to Netty 4.1.91.Final #​34909
• Upgrade to Reactor Bom 2020.0.31 #​34856
• Upgrade to Spring AMQP 2.4.12 #​34947
• Upgrade to Spring Data Bom 2021.2.11 #​34902
• Upgrade to Spring Framework 5.3.27 #​34857
• Upgrade to Spring Security 5.7.8 #​34948
• Upgrade to Spring WS 3.1.6 #​34949
• Upgrade to Tomcat 9.0.74 #​35058
• Upgrade to Undertow 2.2.24.Final #​34910

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​SeasonPanPan, @​acktsap, @​dreis2211, @​jgslima, @​krzyk, and @​meistermeier

v2.7.10

Compare Source

🐞 Bug Fixes

• Some of the deprecated spring.security.saml2.relyingparty.registration.*.identityprovider.* properties are ignored #​34525
• Maven plugin uses timezone-local timestamps when outputTimestamp is used #​34424
• Loading application.yml fails with NoSuchMethodError when using SnakeYAML 2.0 #​34405
• EmbeddedWebServerFactoryCustomizerAutoConfiguration should not run when embedded web server is not configured #​34332
• Image builds with podman fail when image buildpacks are configured #​34324
• org.springframework.boot.web.embedded.jetty.GracefulShutdown uses the wrong class to create its logger #​34220
• StandardConfigDataResource can import the same file twice if the classpath includes '.' #​34212

📔 Documentation

• Document support for Java 20 #​34642
• Update two references to old APIs #​34567
• Clarify conventions for custom error pages in WebFlux #​34534
• Add documentation tip showing how to configure publishRegistry Maven properties from the command line #​34517
• Document support for Gradle 8 #​34458
• Document how to get socket location for image building configuration with podman #​34435
• Fix typo in Encrypting Properties #​34386
• Use plugins DSL consistently in Spring Boot Gradle Plugin docs #​34048
• Add link to Failover starter #​32943

🔨 Dependency Upgrades

• Upgrade to Dropwizard Metrics 4.2.18 #​34648
• Upgrade to GraphQL Java 18.4 #​34717
• Upgrade to Groovy 3.0.16 #​34649
• Upgrade to Jetty 9.4.51.v20230217 #​34651
• Upgrade to Jetty Reactive HTTPClient 1.1.14 #​34650
• Upgrade to Json-smart 2.4.10 #​34652
• Upgrade to Micrometer 1.9.9 #​34528
• Upgrade to Netty 4.1.90.Final #​34653
• Upgrade to Reactor Bom 2020.0.30 #​34529
• Upgrade to Spring AMQP 2.4.11 #​34607
• Upgrade to Spring Data Bom 2021.2.10 #​34530
• Upgrade to Spring Framework 5.3.26 #​34531
• Upgrade to Spring GraphQL 1.0.4 #​34532
• Upgrade to Spring HATEOAS 1.5.4 #​34654
• Upgrade to Spring Integration 5.5.17 #​34722
• Upgrade to Spring Session Bom 2021.2.1 #​34533
• Upgrade to Tomcat 9.0.73 #​34655
• Upgrade to UnboundID LDAPSDK 6.0.8 #​34656

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​1993heqiang, @​anandmnair, @​anthonydahanne, @​dsyer, @​izeye, @​jongwooo, and @​terminux

v2.7.9

Compare Source

🐞 Bug Fixes

• Maven Plugin's PropertiesMergingResourceTransformer closes InputStream when it should not do so #​34063
• Actuator Health web endpoint broken with Gson and Java 17 #​34030
• Dependency management for Mongo's Java Driver is incomplete #​33941
• Using devtools with Reactive application results in slower restarts #​33855
• Spies are not reset after test execution when using @SpyBean #​33830
• Properties Migrator does not detect properties of Map type that are marked as deprecated #​27854

📔 Documentation

• Updated documentation for @ConfigurationProperties bean naming rules #​34029
• Restore "Use Jedis Instead of Lettuce" how-to documentation #​33994
• Add Redis application properties example #​33965
• Use Maven Central for release downloads in CLI installation documentation #​33962
• Actuator section is missing from documentation overview #​33932
• Add Javadoc since to OperationParameter.getAnnotation() #​33914
• Document additional configuration that is required for spring.mvc.throw-exception-if-no-handler-found=true to be effective #​31660

🔨 Dependency Upgrades

• Upgrade to ActiveMQ 5.16.6 #​34238
• Upgrade to Byte Buddy 1.12.23 #​34239
• Upgrade to Dropwizard Metrics 4.2.16 #​34240
• Upgrade to Elasticsearch 7.17.9 #​34241
• Upgrade to Glassfish JAXB 2.3.8 #​34242
• Upgrade to Groovy 3.0.15 #​34243
• Upgrade to Hibernate 5.6.15.Final #​34244
• Upgrade to Jackson Bom 2.13.5 #​34245
• Upgrade to Jaybird 4.0.9.java8 #​34246
• Upgrade to Lombok 1.18.26 #​34247
• Upgrade to Micrometer 1.9.8 #​34141
• Upgrade to Netty 4.1.89.Final #​34248
• Upgrade to Reactor Bom 2020.0.28 #​34142
• Upgrade to Spring AMQP 2.4.10 #​34321
• Upgrade to Spring Batch 4.3.8 #​34143
• Upgrade to Spring Data Bom 2021.2.8 #​34144
• Upgrade to Spring HATEOAS 1.5.3 #​34249
• Upgrade to Spring Security 5.7.7 #​34145
• Upgrade to Undertow 2.2.23.Final #​34250

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​Anubhav-2000, @​enimiste, @​izeye, @​jprinet, @​marcel-wollschlaeger, @​mhalbritter, @​michaldo, and @​sannanansari

---

Configuration

📅 Schedule: Branch creation - "before 3am on the first day of the month" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.

[sonarcloud]

Kudos, SonarCloud Quality Gate passed!   

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

No Coverage information
0.0% Duplication