Skip to content

chore(deps): bump org.springframework.boot from 2.2.6.RELEASE to 2.3.1.RELEASE

Ryan Wang请求将dependabot/gradle/org.springframework.boot-2.3.1.RELEASE合并到master

Created by: dependabot-preview[bot]

Bumps org.springframework.boot from 2.2.6.RELEASE to 2.3.1.RELEASE.

Release notes

Sourced from org.springframework.boot's releases.

v2.3.1.RELEASE

New Features

  • Provide dependency management for Oracle?s JDBC driver under new com.oracle.database Maven coordinates #21663
  • Spring Cloud's CachedRandomPropertySource is not adapted correctly #21660
  • Restrict use of custom YAML types #21598
  • Improve failure analysis of NoSuchMethodErrors to show where superclasses were loaded from #21587
  • Provide better error message if Docker is not running #21554
  • Optimize SystemEnvironmentPropertyMapper #21523
  • Provide better diagnostics when building an OCI image fails due to a 500 response from Docker #21515
  • Consider configuring UrlPathHelper with alwaysUseFullPath=true #21499
  • Support user info in Elasticsearch URIs #21381
  • Welcome page support in Spring WebFlux #9785

🐞 Bug Fixes

  • Default log levels are inconsistent between log4J2 and logback #21882
  • Actuator 'loggers' endpoint does not return all loggers for log4j #21880
  • Not able to use digest in 'builder' reference #21879
  • Different actuator management server port changes response on errors #21875
  • WebMvcTest does not use the auto-configured ordering for Spring Security's filter #21837
  • Configuring server.* properties in a child context has no effect in Spring Boot 2.3 #21789
  • STOMP does not work with lazy initialization #21786
  • Auto-Configuration for Cassandra does not back off if a custom ReactiveSessionFactory is defined #21769
  • Spring Boot CLI adds classes from current directory to the classpath on Unix-like platforms #21755
  • Unpacked Spring Boot applications don't show version on startup #21705
  • Fix BasicErrorController to use binding error cfg #21702
  • UnsupportedOperationException is thrown from war when shutting down Tomcat #21684
  • Docker calls may hang forever #21672
  • SpringConfigurationPropertySource incorrectly returns ABSENT for sub properties #21655
  • Management security configuration does not back off when SAML is configured #21642
  • Dependency management for Kafka 2.5 on nonexistent org.apache.kafka:kafka_2.11:2.5.0 #21589
  • NoSuchBeanDefinitionException for org.springframework.context.annotation.ConfigurationClassPostProcessor.importRegistry when trying to publish AvailabilityChangeEvent during context close processing after refresh failure #21588
  • Connection and read timeouts are no longer mapped for NewRelic #21578
  • PropertiesLauncher cannot load a resource in jar via URL #21575
  • Period conversion support should not be public #21574
  • Reintroduce RestClientBuilderCustomizer in deprecated form #21572
  • URI tag for WebMvc and WebFlux metrics is empty, rather than "root", when the path pattern is empty #21560
  • Maven plugin help is missing #21556
  • productionRuntimeClasspath fails to resolve multiplatform dependency variants #21549
  • Pulling CNB run image fails when no tag is provided in image name #21532
  • ServletWebServerApplicationContext uses a logger for ContextLoader for some of its logging #21522
  • Dependency version for org.apache.commons:commons-compress is missing from spring-boot-gradle-plugin's pom #21518
  • Scope of some dependencies has changed from compile to runtime #21507
  • Password-based authentication with Cassandra does not work with Spring Boot 2.3.0 #21487
  • Order of map property in application yaml is no longer preserved #21470
  • Fix MustacheEnvironmentCollector to not ignore native fetcher #21060
  • @SpringBootTest not picking @Named classes with a non-public constructor #20929

📔 Documentation

... (truncated)
Commits
  • 8464cfb Release v2.3.1.RELEASE
  • 069d276 Reinstate disabled Reactor Netty test
  • 2a37b2e Refine PropertiesLauncher close logic
  • 1e7da4d Allow digest builder references
  • 8a249da Refactor PropertiesLauncher so jars can be closed
  • 29f5468 Use java 8 compiler
  • 0165fee Merge pull request #21872 from dreis2211
  • 469dfc2 Fix deprecation in NettyRSocketServerFactoryTests
  • fc3c5c8 Merge pull request #21793 from dreis2211
  • 51cdb9b Link complete Slack message to build log
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

合并请求报告