Sourced from org.springframework.boot:spring-boot-dependencies's releases.
v4.0.6
:lady_beetle: Bug Fixes
- Default security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not #50188
- Elasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client #50187
- ApplicationPidFileWriter does not handle symlinks correctly #50185
- RandomValuePropertySource is not suitable for secrets #50183
- Cassandra auto-configuration misconfigures CqlSessionBuilder #50180
- ApplicationTemp does not handle symlinks correctly #50178
- Remote DevTools performs comparison incorrectly #50176
- spring.rabbitmq.ssl.verify-hostname is applied inconsistently #50174
- Whole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter #50077
- Classic starters are missing several modules #50071
- Module spring-boot-resttestclient is missing from spring-boot-starter-test-classic #50069
- Annotations like
@Ssldon't work on@Beanmethods when using@ServiceConnection#50064- EnversRevisionRepositoriesRegistrar should reuse
@EnableEnversRepositoriesrather than configuring the JPA counterpart #50039- WebFlux Cloud Foundry links endpoint includes query string from received request in resolved links #50017
- Imports on a containing test class are ignored when a nested class has imports #50012
- With spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled #49951
- 500 response from env endpoint when supplied pattern is invalid #49946
- Reactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver #49945
- HTTP method is lost when configuring excludes in EndpointRequest #49943
- Honor HttpMethod for reactive additional endpoint paths #49880
- Docker Compose support doesn't work with apache/artemis image #49869
- Docker Compose support doesn't work with apache/activemq image #49866
- Spring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test #49854
- API versioning path strategy should be applied path last as it is not meant to yield #49800
:notebook_with_decorative_cover: Documentation
- Update docs to encourage Java fundamentals for beginners that prefer to learn that way #50146
- HTTP Service Interface Clients still document that API versioning can be configured via properties #50126
- Link to the observability section of the Lettuce documentation is broken #50097
- Javadoc for StaticResourceLocation.FAVICON doesn't describe icons location #50085
- MySamlRelyingPartyConfiguration is missing a Kotlin sample #50024
- Incorrect default value for management.httpexchanges.recording.include in configuration metadata #50019
- Link to the Kubernetes documentation when discussing startup probes #50015
- Typo in JdbcSessionAutoConfiguration Javadoc #49873
- Clarify that configuration property default values are not available through the Environment #49851
- Document the need for Liquibase and Flyway starters #49839
- Kafka documentation refers to deprecated JSON serializer and deserializer classes #49826
:hammer: Dependency Upgrades
- Upgrade to Elasticsearch Client 9.2.8 #50027
- Upgrade to Groovy 5.0.5 #49911
- Upgrade to Hibernate 7.2.12.Final #50134
- Upgrade to Jackson Bom 3.1.2 #50051
- Upgrade to Jaxen 2.0.1 #50104
- Upgrade to Jaybird 6.0.5 #49914
... (truncated)
8821ad2
Release v4.0.69e4048a
Merge branch '3.5.x' into 4.0.x20bb11c
Next development version (v3.5.15-SNAPSHOT)98daa8e
Merge branch '3.5.x' into 4.0.x9dc5aa2
Polish874f629
Fix default security with actuator but without healthe41b3bf
Enable hostname verification for SSL connections to Elasticsearchef8527b
Merge branch '3.5.x' into 4.0.xf533a45
Do not follow symlinks when writing PID file4a7bd33
Merge branch '3.5.x' into 4.0.x