Skip to content

chore(deps): bump org.springframework.boot from 2.2.6.RELEASE to 2.2.7.RELEASE

Ryan Wang请求将dependabot/gradle/org.springframework.boot-2.2.7.RELEASE合并到master

Created by: dependabot-preview[bot]

Bumps org.springframework.boot from 2.2.6.RELEASE to 2.2.7.RELEASE.

Release notes

Sourced from org.springframework.boot's releases.

v2.2.7.RELEASE

New Features

  • Throw exception if spring.config.location uses classpath*: #21174
  • Deprecate PushRegistryConfig#numThreads #20835

🐞 Bug Fixes

  • Classpath wildcards cannot be used with Java 11 or above #21320
  • When a request is active, Undertow prevents the JVM from exiting #21319
  • Binder @DefaultValue does not work with PropertyEditor converters #21264
  • JarFiles are being left open #21126
  • PortInUseException can be thrown when server address is wrong #21101
  • Fat jars cause classloading problems with JDK11 and Security Manager #21073
  • WelcomePageHandlerMapping does not honor CORS #21070
  • PortInUseException thrown when Netty does not have the right to use configured port #21052
  • ConditionalOnAvailableEndpoint does not deal with dashed IDs #21044
  • Endpoint exposure patterns do not work with dashed IDs #21022
  • Embedded database initial failed for setting empty spring.database.url #21003
  • UndertowCompressionConfigurer fails on invalid Media Types #20955
  • Default for spring.kafka.listener.missing-topics-fatal is no longer aligned with Spring Kafka's default #20917
  • Test classes annotated with @SpringBootTest with different args attributes share a context when they should not #20866
  • Unclear default for 'server.tomcat.use-relative-redirects' #20796
  • CreateBootStartScripts causes a warning to be logged with Gradle 6.4 #20759
  • spring.config.additional-location is ignored when spring.config.location is configured #20745
  • Cassandra health indicator never report version attribute #20725
  • ReactiveCassandraHealthIndicator runs a query that fails on some Consistency Levels #20717
  • CassandraHealthIndicator runs a query that fails on some Consistency Levels #20711
  • spring.security.oauth2.resourceserver.jwt.jws-algorithm is ignored when auto-configuring ReactiveJwtDecoder #20681
  • MockitoPostProcessor can trigger early initialization of factory beans #20665
  • Nested object is not initialized if no matching property is defined with constructor binding #18917
  • When using log4j2 log4j2-test.* files are not detected #17001

📔 Documentation

  • Improve documentation around relaxed binding, @Value, and the canonical form of properties #21106
  • Add "Health as Gauge" how-to documentation #21091
  • Enhance Database initialization how to guide #21077
  • Document relaxed binding from environment variables #21027
  • Document devtool property file profile restrictions #21025
  • Make it more obvious that Jolokia does not work with a WebFlux app #20963
  • Fix typo in Adding Active Profiles #20907
  • Relocate section on configuring DevTools' file system watcher as it isn't specific to remote applications #20895
  • Deprecate getters and setters for deprecated configuration properties consistently #20812
  • Update documentation about endpoint enablement to reflect behaviour of @ConditionalOnAvailableEndpoint #20799
  • Clarify the type to which connection-pool-specific spring.datasource properties are bound #20727
  • Update system requirements to reflect support for Java 14 #20689
  • Make it more obvious that Jolokia does not work with a WebFlux app #20623

🔨 Dependency Upgrades

... (truncated)
Commits
  • ac70ee5 Release v2.2.7.RELEASE
  • 31f9a96 Merge branch '2.1.x' into 2.2.x
  • 1a4f6df Upgrade to Spring Ldap 2.3.3.RELEASE
  • 55a1cd4 Upgrade to Spring Security 5.2.4.RELEASE
  • c56a113 Merge branch '2.1.x' into 2.2.x
  • 66afe28 Upgrade to Spring Security 5.1.10.RELEASE
  • 5583f64 Add tests to verify Jetty's thread pool defaults match server defaults
  • f29bce6 Harmonize default for server.tomcat.use-relative-redirects
  • 386d678 Use Gradle's CreateStartScripts task with 6.4 and later
  • addaf5f Upgrade to Jetty El 8.5.54
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

合并请求报告