{"id":1584,"name":"org.springframework.boot:spring-boot-maven-plugin","ecosystem":"maven","repository_url":"https://github.com/spring-projects/spring-boot","issues_count":859,"created_at":"2025-06-06T15:01:46.598Z","updated_at":"2025-06-06T15:01:46.598Z","purl":"pkg:maven/org.springframework.boot:spring-boot-maven-plugin","metadata":{"id":5108462,"name":"org.springframework.boot:spring-boot-maven-plugin","ecosystem":"maven","description":"Spring Boot Maven Plugin","homepage":"https://spring.io/projects/spring-boot","licenses":"Apache License, Version 2.0","normalized_licenses":["Apache-2.0"],"repository_url":"https://github.com/spring-projects/spring-boot","keywords_array":[],"namespace":"org.springframework.boot","versions_count":247,"first_release_published_at":"2014-04-01T12:59:34.000Z","latest_release_published_at":"2025-05-22T21:49:36.000Z","latest_release_number":"3.5.0","last_synced_at":"2025-06-06T00:35:06.532Z","created_at":"2022-07-30T09:49:17.133Z","updated_at":"2025-06-06T00:35:06.532Z","registry_url":"https://central.sonatype.com/artifact/org.springframework.boot/spring-boot-maven-plugin/","install_command":null,"documentation_url":"https://appdoc.app/artifact/org.springframework.boot/spring-boot-maven-plugin/","metadata":{},"repo_metadata":{"uuid":"6296790","full_name":"spring-projects/spring-boot","owner":"spring-projects","description":"Spring Boot","archived":false,"fork":false,"pushed_at":"2023-03-22T03:54:08.000Z","size":164832,"stargazers_count":66185,"open_issues_count":610,"forks_count":38217,"subscribers_count":3380,"default_branch":"main","last_synced_at":"2023-03-22T06:15:29.781Z","etag":null,"topics":["framework","java","spring","spring-boot"],"latest_commit_sha":null,"homepage":"https://spring.io/projects/spring-boot","language":"Java","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":"shama/nodewebkit","license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"logo_url":null,"metadata":{"files":{"readme":"README.adoc","changelog":null,"contributing":"CONTRIBUTING.adoc","funding":null,"license":"LICENSE.txt","code_of_conduct":"CODE_OF_CONDUCT.adoc","threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2012-10-19T15:02:57.000Z","updated_at":"2023-03-22T06:05:17.000Z","dependencies_parsed_at":"2023-01-16T21:00:56.293Z","dependency_job_id":null,"html_url":"https://github.com/spring-projects/spring-boot","commit_stats":null,"repository_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/spring-projects%2Fspring-boot","tags_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/spring-projects%2Fspring-boot/tags","manifests_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/spring-projects%2Fspring-boot/manifests","owner_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/spring-projects","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":108921946,"host_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names"}},"repo_metadata_updated_at":"2023-03-22T06:55:55.565Z","dependent_packages_count":27,"downloads":null,"downloads_period":null,"dependent_repos_count":834,"rankings":{"downloads":null,"dependent_repos_count":0.4305922898132564,"dependent_packages_count":2.3591408191071572,"stargazers_count":0.06271539632924582,"forks_count":0.031658251182175204,"docker_downloads_count":0.9723891961208623,"average":0.7712991905105394},"purl":"pkg:maven/org.springframework.boot/spring-boot-maven-plugin","advisories":[],"docker_usage_url":"https://docker.ecosyste.ms/usage/maven/org.springframework.boot:spring-boot-maven-plugin","docker_dependents_count":359,"docker_downloads_count":9007627,"usage_url":"https://repos.ecosyste.ms/usage/maven/org.springframework.boot:spring-boot-maven-plugin","dependent_repositories_url":"https://repos.ecosyste.ms/api/v1/usage/maven/org.springframework.boot:spring-boot-maven-plugin/dependencies","status":null,"funding_links":[],"critical":null,"versions_url":"https://packages.ecosyste.ms/api/v1/registries/repo1.maven.org/packages/org.springframework.boot:spring-boot-maven-plugin/versions","version_numbers_url":"https://packages.ecosyste.ms/api/v1/registries/repo1.maven.org/packages/org.springframework.boot:spring-boot-maven-plugin/version_numbers","dependent_packages_url":"https://packages.ecosyste.ms/api/v1/registries/repo1.maven.org/packages/org.springframework.boot:spring-boot-maven-plugin/dependent_packages","related_packages_url":"https://packages.ecosyste.ms/api/v1/registries/repo1.maven.org/packages/org.springframework.boot:spring-boot-maven-plugin/related_packages","maintainers":[],"registry":{"name":"repo1.maven.org","url":"https://repo.maven.apache.org/maven2","ecosystem":"maven","default":true,"packages_count":517647,"maintainers_count":0,"namespaces_count":68787,"keywords_count":32037,"github":"maven-central","metadata":{"funded_packages_count":24975},"icon_url":"https://github.com/maven-central.png","created_at":"2022-07-21T16:40:13.074Z","updated_at":"2025-06-06T05:59:03.422Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/repo1.maven.org/packages","maintainers_url":"https://packages.ecosyste.ms/api/v1/registries/repo1.maven.org/maintainers","namespaces_url":"https://packages.ecosyste.ms/api/v1/registries/repo1.maven.org/namespaces"}},"unique_repositories_count":209,"unique_repositories_count_past_30_days":2,"recent_issues":[{"uuid":"4635895149","node_id":"PR_kwDOP5kYpc7lFp7e","number":96,"state":"open","title":"Bump the minor-and-patch group across 1 directory with 7 updates","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-06-10T23:44:11.000Z","updated_at":"2026-06-10T23:44:43.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"minor-and-patch","update_count":7,"packages":[{"name":"org.springframework.boot:spring-boot-dependencies","old_version":"4.0.6","new_version":"4.1.0","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.6","new_version":"4.1.0","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"io.jsonwebtoken:jjwt-api","old_version":"0.11.5","new_version":"0.13.0","repository_url":"https://github.com/jwtk/jjwt"},{"name":"io.jsonwebtoken:jjwt-impl","old_version":"0.11.5","new_version":"0.13.0","repository_url":"https://github.com/jwtk/jjwt"},{"name":"io.jsonwebtoken:jjwt-jackson","old_version":"0.11.5","new_version":"0.13.0"},{"name":"org.apache.maven.plugins:maven-compiler-plugin","old_version":"3.13.0","new_version":"3.15.0","repository_url":"https://github.com/apache/maven-compiler-plugin"},{"name":"org.jacoco:jacoco-maven-plugin","old_version":"0.8.14","new_version":"0.8.15","repository_url":"https://github.com/jacoco/jacoco"}],"path":null,"ecosystem":"maven"},"body":"Bumps the minor-and-patch group with 7 updates in the /Backend directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot) | `4.0.6` | `4.1.0` |\n| [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) | `4.0.6` | `4.1.0` |\n| [io.jsonwebtoken:jjwt-api](https://github.com/jwtk/jjwt) | `0.11.5` | `0.13.0` |\n| [io.jsonwebtoken:jjwt-impl](https://github.com/jwtk/jjwt) | `0.11.5` | `0.13.0` |\n| io.jsonwebtoken:jjwt-jackson | `0.11.5` | `0.13.0` |\n| [org.apache.maven.plugins:maven-compiler-plugin](https://github.com/apache/maven-compiler-plugin) | `3.13.0` | `3.15.0` |\n| [org.jacoco:jacoco-maven-plugin](https://github.com/jacoco/jacoco) | `0.8.14` | `0.8.15` |\n\n\nUpdates `org.springframework.boot:spring-boot-dependencies` from 4.0.6 to 4.1.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cp\u003eFull \u003ca href=\"https://github.com/spring-projects/spring-boot/wiki/Spring-Boot-4.1-Release-Notes\"\u003erelease notes for Spring Boot 4.1\u003c/a\u003e are available on the wiki.\u003c/p\u003e\n\u003ch2\u003e:star: New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd public constructor to InvalidConfigurationPropertyValueException that accepts a cause \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50211\"\u003e#50211\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReduce memory consumption when repeatedly calling WritableJson.toByteArray \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49428\"\u003e#49428\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMailSender auto-configuration does not enable hostname verification \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50747\"\u003e#50747\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eArtemis auto-configuration uses a predictable default location for the embedded broker's data \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50745\"\u003e#50745\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEmbedded LDAP SSL should not be enabled when its bundle is empty \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50700\"\u003e#50700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eInetAddressFilter.externalAddresses does not exclude special purpose addresses from RFC 6890 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50668\"\u003e#50668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNullPointerException in reactor-netty SniProvider and unmapped SSL bundle with RSocket \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50645\"\u003e#50645\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSSL should not be enabled when a SSL bundle is overridden to an empty string \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50635\"\u003e#50635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTest auto-configuration no longer integrates Spring Security with HtmlUnitDriver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50633\"\u003e#50633\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eConfiguration property metadata includes incorrect class references \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50632\"\u003e#50632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support does not restore thread interrupt flag when catching InterruptedException \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50618\"\u003e#50618\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRabbitProperties enables SSL even when spring.rabbitmq.ssl.bundle is overridden to an empty string \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50612\"\u003e#50612\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNullPointerException in reactor-netty SniProvider when SSL bundle uses client-auth or server truststore without server-name-bundles \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50610\"\u003e#50610\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpringJtaPlatform should have been deprecated since 4.1.0-M3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50592\"\u003e#50592\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLayer written outside the output location of '//' exception is thrown when using extract layers in root directory \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50510\"\u003e#50510\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eConfigurationPropertiesReportEndpoint exposes AOP proxy internals \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50417\"\u003e#50417\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCreated StackTracePrinter instances have no access to the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50414\"\u003e#50414\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMappingsEndpoint reports the context's own ID as parentId when a parent exists \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50412\"\u003e#50412\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBuildpack module does not validate long-to-int casts \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50410\"\u003e#50410\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGradle gRPC support fails if protobuf-java dependency is used instead of protobuf-java-util \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50405\"\u003e#50405\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGraphQL WebSocket support does not configure allowed origins \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50394\"\u003e#50394\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Boot Loader Does Not Support RSA and EC Signed Jars \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50298\"\u003e#50298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMeter registries are not removed from the global registry when the context is closed \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50287\"\u003e#50287\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDataSourceBuilder cannot derive a DataSource from a lazy connection proxy \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50271\"\u003e#50271\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNullable annotations from AbstractErrorController.getErrorAttributes are not aligned with implementation \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50266\"\u003e#50266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBean definitions can be added with an initializer before setAllowBeanDefinitionOverriding is called \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50264\"\u003e#50264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEndpointRequest links matcher unnecessarily matches HTTP methods other than GET  \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50261\"\u003e#50261\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eActuator's '/cloudfoundryapplication' endpoint does not work if restrictive CORS configuration is provided using a bean named corsConfigurationSource \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50258\"\u003e#50258\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThreadPoolTaskScheduleBuilder unnecessarily loses precision when configuring await termination time \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50234\"\u003e#50234\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNimbusJwtDecoder silently accepts unknown values for spring.security.oauth2.resourceserver.jwt.jws-algorithms \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50228\"\u003e#50228\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMissing dependency management for spring-boot-web-server-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50224\"\u003e#50224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Batch support for MongoDB modules are not included in dependency management \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50223\"\u003e#50223\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApply HTML escaping to timestamp attribute in Whitelabel error page \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50216\"\u003e#50216\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGrpcServerHealthScheduler is not started in servlet environments \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50209\"\u003e#50209\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSetting server.servlet.session.cookie.partitioned=true has no effect when using Tomcat \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50204\"\u003e#50204\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix reference to Gradle documentation for module replacement \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50647\"\u003e#50647\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument SSL reloading with Let's Encrypt \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50630\"\u003e#50630\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove the use of Optional from Data Neo4j repository examples \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50622\"\u003e#50622\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix typos in documentation \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50620\"\u003e#50620\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ac2cfe03538b87a0dc9d2619ed52a4c901eaea54\"\u003e\u003ccode\u003eac2cfe0\u003c/code\u003e\u003c/a\u003e Release v4.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/1a5815cf3183a0c9493cece8ba550a6e8b125d67\"\u003e\u003ccode\u003e1a5815c\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Batch 6.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/a8364ff9c2a0ca88541cc153f032089e063b797c\"\u003e\u003ccode\u003ea8364ff\u003c/code\u003e\u003c/a\u003e Merge branch '4.0.x'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9755ff29e7ce3a8ac4574e5b452bdfe1053718b1\"\u003e\u003ccode\u003e9755ff2\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Batch 6.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/6a6dedc4354cbafadaf8aab2803fc3acd7e6b8de\"\u003e\u003ccode\u003e6a6dedc\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Integration 7.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/db7b2b9fb0b3c623d707f2627f832b4dd5f2eb8c\"\u003e\u003ccode\u003edb7b2b9\u003c/code\u003e\u003c/a\u003e Merge branch '4.0.x'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/d549d077c03add0421464fcd0248bd8b76b41973\"\u003e\u003ccode\u003ed549d07\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Integration 7.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4d9e463dc3fefea2b73dcfbb15b4ced6b69dbaf9\"\u003e\u003ccode\u003e4d9e463\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/b0686478a71cceb977dc1ff5b4e69ef5eb052fcf\"\u003e\u003ccode\u003eb068647\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Integration 6.5.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/198af995dc03a09583c61bcd0b8ffda341055feb\"\u003e\u003ccode\u003e198af99\u003c/code\u003e\u003c/a\u003e Merge branch '4.0.x'\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.6...v4.1.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 4.0.6 to 4.1.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cp\u003eFull \u003ca href=\"https://github.com/spring-projects/spring-boot/wiki/Spring-Boot-4.1-Release-Notes\"\u003erelease notes for Spring Boot 4.1\u003c/a\u003e are available on the wiki.\u003c/p\u003e\n\u003ch2\u003e:star: New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd public constructor to InvalidConfigurationPropertyValueException that accepts a cause \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50211\"\u003e#50211\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReduce memory consumption when repeatedly calling WritableJson.toByteArray \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49428\"\u003e#49428\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMailSender auto-configuration does not enable hostname verification \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50747\"\u003e#50747\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eArtemis auto-configuration uses a predictable default location for the embedded broker's data \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50745\"\u003e#50745\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEmbedded LDAP SSL should not be enabled when its bundle is empty \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50700\"\u003e#50700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eInetAddressFilter.externalAddresses does not exclude special purpose addresses from RFC 6890 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50668\"\u003e#50668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNullPointerException in reactor-netty SniProvider and unmapped SSL bundle with RSocket \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50645\"\u003e#50645\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSSL should not be enabled when a SSL bundle is overridden to an empty string \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50635\"\u003e#50635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTest auto-configuration no longer integrates Spring Security with HtmlUnitDriver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50633\"\u003e#50633\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eConfiguration property metadata includes incorrect class references \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50632\"\u003e#50632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support does not restore thread interrupt flag when catching InterruptedException \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50618\"\u003e#50618\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRabbitProperties enables SSL even when spring.rabbitmq.ssl.bundle is overridden to an empty string \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50612\"\u003e#50612\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNullPointerException in reactor-netty SniProvider when SSL bundle uses client-auth or server truststore without server-name-bundles \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50610\"\u003e#50610\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpringJtaPlatform should have been deprecated since 4.1.0-M3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50592\"\u003e#50592\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLayer written outside the output location of '//' exception is thrown when using extract layers in root directory \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50510\"\u003e#50510\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eConfigurationPropertiesReportEndpoint exposes AOP proxy internals \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50417\"\u003e#50417\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCreated StackTracePrinter instances have no access to the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50414\"\u003e#50414\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMappingsEndpoint reports the context's own ID as parentId when a parent exists \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50412\"\u003e#50412\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBuildpack module does not validate long-to-int casts \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50410\"\u003e#50410\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGradle gRPC support fails if protobuf-java dependency is used instead of protobuf-java-util \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50405\"\u003e#50405\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGraphQL WebSocket support does not configure allowed origins \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50394\"\u003e#50394\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Boot Loader Does Not Support RSA and EC Signed Jars \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50298\"\u003e#50298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMeter registries are not removed from the global registry when the context is closed \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50287\"\u003e#50287\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDataSourceBuilder cannot derive a DataSource from a lazy connection proxy \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50271\"\u003e#50271\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNullable annotations from AbstractErrorController.getErrorAttributes are not aligned with implementation \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50266\"\u003e#50266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBean definitions can be added with an initializer before setAllowBeanDefinitionOverriding is called \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50264\"\u003e#50264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEndpointRequest links matcher unnecessarily matches HTTP methods other than GET  \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50261\"\u003e#50261\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eActuator's '/cloudfoundryapplication' endpoint does not work if restrictive CORS configuration is provided using a bean named corsConfigurationSource \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50258\"\u003e#50258\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThreadPoolTaskScheduleBuilder unnecessarily loses precision when configuring await termination time \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50234\"\u003e#50234\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNimbusJwtDecoder silently accepts unknown values for spring.security.oauth2.resourceserver.jwt.jws-algorithms \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50228\"\u003e#50228\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMissing dependency management for spring-boot-web-server-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50224\"\u003e#50224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Batch support for MongoDB modules are not included in dependency management \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50223\"\u003e#50223\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApply HTML escaping to timestamp attribute in Whitelabel error page \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50216\"\u003e#50216\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGrpcServerHealthScheduler is not started in servlet environments \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50209\"\u003e#50209\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSetting server.servlet.session.cookie.partitioned=true has no effect when using Tomcat \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50204\"\u003e#50204\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix reference to Gradle documentation for module replacement \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50647\"\u003e#50647\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument SSL reloading with Let's Encrypt \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50630\"\u003e#50630\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove the use of Optional from Data Neo4j repository examples \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50622\"\u003e#50622\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix typos in documentation \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50620\"\u003e#50620\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ac2cfe03538b87a0dc9d2619ed52a4c901eaea54\"\u003e\u003ccode\u003eac2cfe0\u003c/code\u003e\u003c/a\u003e Release v4.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/1a5815cf3183a0c9493cece8ba550a6e8b125d67\"\u003e\u003ccode\u003e1a5815c\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Batch 6.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/a8364ff9c2a0ca88541cc153f032089e063b797c\"\u003e\u003ccode\u003ea8364ff\u003c/code\u003e\u003c/a\u003e Merge branch '4.0.x'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9755ff29e7ce3a8ac4574e5b452bdfe1053718b1\"\u003e\u003ccode\u003e9755ff2\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Batch 6.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/6a6dedc4354cbafadaf8aab2803fc3acd7e6b8de\"\u003e\u003ccode\u003e6a6dedc\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Integration 7.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/db7b2b9fb0b3c623d707f2627f832b4dd5f2eb8c\"\u003e\u003ccode\u003edb7b2b9\u003c/code\u003e\u003c/a\u003e Merge branch '4.0.x'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/d549d077c03add0421464fcd0248bd8b76b41973\"\u003e\u003ccode\u003ed549d07\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Integration 7.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4d9e463dc3fefea2b73dcfbb15b4ced6b69dbaf9\"\u003e\u003ccode\u003e4d9e463\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/b0686478a71cceb977dc1ff5b4e69ef5eb052fcf\"\u003e\u003ccode\u003eb068647\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Integration 6.5.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/198af995dc03a09583c61bcd0b8ffda341055feb\"\u003e\u003ccode\u003e198af99\u003c/code\u003e\u003c/a\u003e Merge branch '4.0.x'\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.6...v4.1.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `io.jsonwebtoken:jjwt-api` from 0.11.5 to 0.13.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jwtk/jjwt/releases\"\u003eio.jsonwebtoken:jjwt-api's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.13.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eThis is the last minor JJWT release branch that will support Java 7\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eAny necessary emergency bug fixes will be fixed in subsequent \u003ccode\u003e0.13.x\u003c/code\u003e patch releases, but all new development, including \u003ca href=\"https://github.com/jwtk/jjwt/issues?q=is%3Aissue%20label%3Ajdk8\"\u003eJava 8 compatible changes\u003c/a\u003e, will be in the next minor (\u003ccode\u003e0.14.0\u003c/code\u003e) release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eAll future JJWT major and minor versions (  \u003ccode\u003e0.14.0\u003c/code\u003e and later) will require Java 8 or later.\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eThis release contains a single change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe previously private \u003ccode\u003eJacksonDeserializer(ObjectMapper objectMapper, Map\u0026lt;String, Class\u0026lt;?\u0026gt;\u0026gt; claimTypeMap)\u003c/code\u003e constructor is now \u003ccode\u003epublic\u003c/code\u003e for those that want register a claims  type converter on their own specified \u003ccode\u003eObjectMapper\u003c/code\u003e instance. Thank you to \u003ca href=\"https://github.com/kesrishubham2510\"\u003e\u003ccode\u003e@​kesrishubham2510\u003c/code\u003e\u003c/a\u003e for PR \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/972\"\u003e#972\u003c/a\u003e. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/914\"\u003eIssue 914\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.12.7...0.13.0\"\u003ehttps://github.com/jwtk/jjwt/compare/0.12.7...0.13.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.12.7\u003c/h2\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdds a new Maven BOM! This is useful for multi-module projects. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/967\"\u003eIssue 967\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAllows the \u003ccode\u003eJwtParserBuilder\u003c/code\u003e to have empty nested algorithm collections, effectively disabling the parser's associated feature:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEmptying the \u003ccode\u003ezip()\u003c/code\u003e nested collection disables JWT decompression.\u003c/li\u003e\n\u003cli\u003eEmptying the \u003ccode\u003esig()\u003c/code\u003e nested collection disables JWS mac/signature verification (i.e. all JWSs will be unsupported/rejected).\u003c/li\u003e\n\u003cli\u003eEmptying either the \u003ccode\u003eenc()\u003c/code\u003e or \u003ccode\u003ekey()\u003c/code\u003e nested collections disables JWE decryption (i.e. all JWEs will be unsupported/rejected)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/996\"\u003eIssue 996\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixes \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/961\"\u003ebug 961\u003c/a\u003e where \u003ccode\u003eJwtParserBuilder\u003c/code\u003e nested collection builders were not correctly replacing algorithms with the same id.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eEnsures a \u003ccode\u003eJwkSet\u003c/code\u003e's \u003ccode\u003ekeys\u003c/code\u003e collection is no longer entirely secret/redacted by default.  This was an overzealous default that was unnecessarily restrictive; the \u003ccode\u003ekeys\u003c/code\u003e collection itself should always be public, and each individual key within should determine which fields should be redacted when printed. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/976\"\u003eIssue 976\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImproves performance slightly by ensuring all \u003ccode\u003ejjwt-api\u003c/code\u003e utility methods that create \u003ccode\u003e*Builder\u003c/code\u003e instances (\u003ccode\u003eJwts.builder()\u003c/code\u003e, \u003ccode\u003eJwts.parserBuilder()\u003c/code\u003e, \u003ccode\u003eJwks.builder()\u003c/code\u003e, etc) no longer use reflection.\u003c/p\u003e\n\u003cp\u003eInstead,\u003ccode\u003estatic\u003c/code\u003e factories are created via reflection only once during initial \u003ccode\u003ejjwt-api\u003c/code\u003e classloading, and then \u003ccode\u003e*Builder\u003c/code\u003es are created via standard instantiation using the \u003ccode\u003enew\u003c/code\u003e operator thereafter.  This also benefits certain environments that may not have ideal \u003ccode\u003eClassLoader\u003c/code\u003e implementations (e.g. Tomcat in some cases).\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNOTE: because this changes which classes are loaded via reflection, any environments that must explicitly reference reflective class names (e.g. GraalVM applications) will need to be updated to reflect the new factory class names\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/988\"\u003eIssue 988\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the Gson dependency to \u003ccode\u003e2.11.0\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the BouncyCastle dependency to \u003ccode\u003e1.78.1\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigpwned\"\u003e\u003ccode\u003e@​sigpwned\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/968\"\u003ejwtk/jjwt#968\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TheMrMilchmann\"\u003e\u003ccode\u003e@​TheMrMilchmann\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/979\"\u003ejwtk/jjwt#979\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/atanasg\"\u003e\u003ccode\u003e@​atanasg\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/974\"\u003ejwtk/jjwt#974\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.12.6...0.12.7\"\u003ehttps://github.com/jwtk/jjwt/compare/0.12.6...0.12.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.12.6\u003c/h2\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEnsures that after successful JWS signature verification, an application-configured Base64Url \u003ccode\u003eDecoder\u003c/code\u003e output is\nused to construct a \u003ccode\u003eJws\u003c/code\u003e instance (instead of JJWT's default decoder). See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/947\"\u003ejwtk/jjwt#947\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jwtk/jjwt/blob/main/CHANGELOG.md\"\u003eio.jsonwebtoken:jjwt-api's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e0.13.0\u003c/h3\u003e\n\u003cp\u003eThis is the last minor JJWT release branch that will support Java 7. Any necessary emergency bug fixes will be fixed in subsequent \u003ccode\u003e0.13.x\u003c/code\u003e patch releases, but all new development, including Java 8 compatible changes, will be in the next minor (\u003ccode\u003e0.14.0\u003c/code\u003e) release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eAll future JJWT major and minor versions (  \u003ccode\u003e0.14.0\u003c/code\u003e and later) will require Java 8 or later.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eThis \u003ccode\u003e0.13.0\u003c/code\u003e minor release has only one change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe previously private \u003ccode\u003eJacksonDeserializer(ObjectMapper objectMapper, Map\u0026lt;String, Class\u0026lt;?\u0026gt;\u0026gt; claimTypeMap)\u003c/code\u003e constructor is now \u003ccode\u003epublic\u003c/code\u003e for those that want register a claims\ntype converter on their own specified \u003ccode\u003eObjectMapper\u003c/code\u003e instance.  See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/914\"\u003eIssue 914\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e0.12.7\u003c/h3\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdds a new Maven BOM, useful for multi-module projects. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/967\"\u003eIssue 967\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAllows the \u003ccode\u003eJwtParserBuilder\u003c/code\u003e to have empty nested algorithm collections, effectively disabling the parser's associated feature:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEmptying the \u003ccode\u003ezip()\u003c/code\u003e nested collection disables JWT decompression.\u003c/li\u003e\n\u003cli\u003eEmptying the \u003ccode\u003esig()\u003c/code\u003e nested collection disables JWS mac/signature verification (i.e. all JWSs will be unsupported/rejected).\u003c/li\u003e\n\u003cli\u003eEmptying either the \u003ccode\u003eenc()\u003c/code\u003e or \u003ccode\u003ekey()\u003c/code\u003e nested collections disables JWE decryption (i.e. all JWEs will be unsupported/rejected)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/996\"\u003eIssue 996\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixes \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/961\"\u003ebug 961\u003c/a\u003e where \u003ccode\u003eJwtParserBuilder\u003c/code\u003e nested collection builders were not correctly replacing algorithms with the same id.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eEnsures a \u003ccode\u003eJwkSet\u003c/code\u003e's \u003ccode\u003ekeys\u003c/code\u003e collection is no longer entirely secret/redacted by default.  This was an overzealous default that was unnecessarily restrictive; the \u003ccode\u003ekeys\u003c/code\u003e collection itself should always be public, and each individual key within should determine which fields should be redacted when printed. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/976\"\u003eIssue 976\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImproves performance slightly by ensuring all \u003ccode\u003ejjwt-api\u003c/code\u003e utility methods that create \u003ccode\u003e*Builder\u003c/code\u003e instances (\u003ccode\u003eJwts.builder()\u003c/code\u003e, \u003ccode\u003eJwts.parserBuilder()\u003c/code\u003e, \u003ccode\u003eJwks.builder()\u003c/code\u003e, etc) no longer use reflection.\u003c/p\u003e\n\u003cp\u003eInstead,\u003ccode\u003estatic\u003c/code\u003e factories are created via reflection only once during initial \u003ccode\u003ejjwt-api\u003c/code\u003e classloading, and then \u003ccode\u003e*Builder\u003c/code\u003es are created via standard instantiation using the \u003ccode\u003enew\u003c/code\u003e operator thereafter.  This also benefits certain environments that may not have ideal \u003ccode\u003eClassLoader\u003c/code\u003e implementations (e.g. Tomcat in some cases).\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNOTE: because this changes which classes are loaded via reflection, any environments that must explicitly reference reflective class names (e.g. GraalVM applications) will need to be updated to reflect the new factory class names\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/988\"\u003eIssue 988\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the Gson dependency to \u003ccode\u003e2.11.0\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the BouncyCastle dependency to \u003ccode\u003e1.78.1\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e0.12.6\u003c/h3\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEnsures that after successful JWS signature verification, an application-configured Base64Url \u003ccode\u003eDecoder\u003c/code\u003e output is\nused to construct a \u003ccode\u003eJws\u003c/code\u003e instance (instead of JJWT's default decoder). See\n\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/947\"\u003eIssue 947\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eFixes a decompression memory leak in concurrent/multi-threaded environments introduced in 0.12.0 when decompressing JWTs with a \u003ccode\u003ezip\u003c/code\u003e header of \u003ccode\u003eGZIP\u003c/code\u003e. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/949\"\u003eIssue 949\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eUpgrades BouncyCastle to 1.78 via \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/941\"\u003ePR 941\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eEnsures that a \u003ccode\u003eJwkSet\u003c/code\u003e's \u003ccode\u003ekeys\u003c/code\u003e list member is no longer considered secret and is not redacted by default. However, each individual JWK element within the \u003ccode\u003ekeys\u003c/code\u003e list may still have \u003ca href=\"https://github.com/jwtk/jjwt?tab=readme-ov-file#jwk-tostring-safety\"\u003eredacted private or secret members\u003c/a\u003e as expected. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/976\"\u003eIssue 976\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e0.12.5\u003c/h3\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEnsures that builders' \u003ccode\u003eNestedCollection\u003c/code\u003e changes are applied to the collection immediately as mutation methods are called, no longer\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/a757addce04f6b6d8086beeee8dafcf670550a5b\"\u003e\u003ccode\u003ea757add\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare release 0.13.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/e357463c59cf62c1f70503ac0102d10efcdfc37d\"\u003e\u003ccode\u003ee357463\u003c/code\u003e\u003c/a\u003e Preparing for the 0.13.0 release.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/b6f8cb82a9c2e9817d842bfe72d2c8fb03124342\"\u003e\u003ccode\u003eb6f8cb8\u003c/code\u003e\u003c/a\u003e Made constructor public to allow users their own objectMapper instance (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/972\"\u003e#972\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/03f088a4eb774bae2403c428aa885a12d3afde14\"\u003e\u003ccode\u003e03f088a\u003c/code\u003e\u003c/a\u003e Bumping development version to 0.13.0-SNAPSHOT (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1014\"\u003e#1014\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/3f2697f854bedebe63e9eddb8c596f76086d11ca\"\u003e\u003ccode\u003e3f2697f\u003c/code\u003e\u003c/a\u003e Release 0.12.7 (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1012\"\u003e#1012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/efed1cf56f9b9715e60eaac7fda6b2c4b62410b9\"\u003e\u003ccode\u003eefed1cf\u003c/code\u003e\u003c/a\u003e Updated 0.12.7 change list\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/ca27b122b7f44f3bdd4cd4f636d084f38cc3b3c8\"\u003e\u003ccode\u003eca27b12\u003c/code\u003e\u003c/a\u003e Resolves \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1010\"\u003e#1010\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1011\"\u003e#1011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/55c7b9adef88328f59534f232060830c34f25478\"\u003e\u003ccode\u003e55c7b9a\u003c/code\u003e\u003c/a\u003e Resolves \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/771\"\u003e#771\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1009\"\u003e#1009\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/6e9c6a5a825c5ec38f90006f48cc1f8640a6d82e\"\u003e\u003ccode\u003e6e9c6a5\u003c/code\u003e\u003c/a\u003e Bump org.bouncycastle:bcpkix-jdk18on from 1.78 to 1.78.1 (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1008\"\u003e#1008\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/7ec7dd1a19a38a1829903f88b9512697bfb7be3c\"\u003e\u003ccode\u003e7ec7dd1\u003c/code\u003e\u003c/a\u003e Enable JwtParser empty nested algorithm collections. (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1007\"\u003e#1007\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.11.5...0.13.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `io.jsonwebtoken:jjwt-impl` from 0.11.5 to 0.13.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jwtk/jjwt/releases\"\u003eio.jsonwebtoken:jjwt-impl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.13.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eThis is the last minor JJWT release branch that will support Java 7\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eAny necessary emergency bug fixes will be fixed in subsequent \u003ccode\u003e0.13.x\u003c/code\u003e patch releases, but all new development, including \u003ca href=\"https://github.com/jwtk/jjwt/issues?q=is%3Aissue%20label%3Ajdk8\"\u003eJava 8 compatible changes\u003c/a\u003e, will be in the next minor (\u003ccode\u003e0.14.0\u003c/code\u003e) release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eAll future JJWT major and minor versions (  \u003ccode\u003e0.14.0\u003c/code\u003e and later) will require Java 8 or later.\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eThis release contains a single change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe previously private \u003ccode\u003eJacksonDeserializer(ObjectMapper objectMapper, Map\u0026lt;String, Class\u0026lt;?\u0026gt;\u0026gt; claimTypeMap)\u003c/code\u003e constructor is now \u003ccode\u003epublic\u003c/code\u003e for those that want register a claims  type converter on their own specified \u003ccode\u003eObjectMapper\u003c/code\u003e instance. Thank you to \u003ca href=\"https://github.com/kesrishubham2510\"\u003e\u003ccode\u003e@​kesrishubham2510\u003c/code\u003e\u003c/a\u003e for PR \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/972\"\u003e#972\u003c/a\u003e. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/914\"\u003eIssue 914\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.12.7...0.13.0\"\u003ehttps://github.com/jwtk/jjwt/compare/0.12.7...0.13.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.12.7\u003c/h2\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdds a new Maven BOM! This is useful for multi-module projects. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/967\"\u003eIssue 967\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAllows the \u003ccode\u003eJwtParserBuilder\u003c/code\u003e to have empty nested algorithm collections, effectively disabling the parser's associated feature:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEmptying the \u003ccode\u003ezip()\u003c/code\u003e nested collection disables JWT decompression.\u003c/li\u003e\n\u003cli\u003eEmptying the \u003ccode\u003esig()\u003c/code\u003e nested collection disables JWS mac/signature verification (i.e. all JWSs will be unsupported/rejected).\u003c/li\u003e\n\u003cli\u003eEmptying either the \u003ccode\u003eenc()\u003c/code\u003e or \u003ccode\u003ekey()\u003c/code\u003e nested collections disables JWE decryption (i.e. all JWEs will be unsupported/rejected)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/996\"\u003eIssue 996\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixes \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/961\"\u003ebug 961\u003c/a\u003e where \u003ccode\u003eJwtParserBuilder\u003c/code\u003e nested collection builders were not correctly replacing algorithms with the same id.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eEnsures a \u003ccode\u003eJwkSet\u003c/code\u003e's \u003ccode\u003ekeys\u003c/code\u003e collection is no longer entirely secret/redacted by default.  This was an overzealous default that was unnecessarily restrictive; the \u003ccode\u003ekeys\u003c/code\u003e collection itself should always be public, and each individual key within should determine which fields should be redacted when printed. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/976\"\u003eIssue 976\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImproves performance slightly by ensuring all \u003ccode\u003ejjwt-api\u003c/code\u003e utility methods that create \u003ccode\u003e*Builder\u003c/code\u003e instances (\u003ccode\u003eJwts.builder()\u003c/code\u003e, \u003ccode\u003eJwts.parserBuilder()\u003c/code\u003e, \u003ccode\u003eJwks.builder()\u003c/code\u003e, etc) no longer use reflection.\u003c/p\u003e\n\u003cp\u003eInstead,\u003ccode\u003estatic\u003c/code\u003e factories are created via reflection only once during initial \u003ccode\u003ejjwt-api\u003c/code\u003e classloading, and then \u003ccode\u003e*Builder\u003c/code\u003es are created via standard instantiation using the \u003ccode\u003enew\u003c/code\u003e operator thereafter.  This also benefits certain environments that may not have ideal \u003ccode\u003eClassLoader\u003c/code\u003e implementations (e.g. Tomcat in some cases).\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNOTE: because this changes which classes are loaded via reflection, any environments that must explicitly reference reflective class names (e.g. GraalVM applications) will need to be updated to reflect the new factory class names\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/988\"\u003eIssue 988\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the Gson dependency to \u003ccode\u003e2.11.0\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the BouncyCastle dependency to \u003ccode\u003e1.78.1\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigpwned\"\u003e\u003ccode\u003e@​sigpwned\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/968\"\u003ejwtk/jjwt#968\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TheMrMilchmann\"\u003e\u003ccode\u003e@​TheMrMilchmann\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/979\"\u003ejwtk/jjwt#979\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/atanasg\"\u003e\u003ccode\u003e@​atanasg\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/974\"\u003ejwtk/jjwt#974\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.12.6...0.12.7\"\u003ehttps://github.com/jwtk/jjwt/compare/0.12.6...0.12.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.12.6\u003c/h2\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEnsures that after successful JWS signature verification, an application-configured Base64Url \u003ccode\u003eDecoder\u003c/code\u003e output is\nused to construct a \u003ccode\u003eJws\u003c/code\u003e instance (instead of JJWT's default decoder). See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/947\"\u003ejwtk/jjwt#947\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jwtk/jjwt/blob/main/CHANGELOG.md\"\u003eio.jsonwebtoken:jjwt-impl's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e0.13.0\u003c/h3\u003e\n\u003cp\u003eThis is the last minor JJWT release branch that will support Java 7. Any necessary emergency bug fixes will be fixed in subsequent \u003ccode\u003e0.13.x\u003c/code\u003e patch releases, but all new development, including Java 8 compatible changes, will be in the next minor (\u003ccode\u003e0.14.0\u003c/code\u003e) release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eAll future JJWT major and minor versions (  \u003ccode\u003e0.14.0\u003c/code\u003e and later) will require Java 8 or later.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eThis \u003ccode\u003e0.13.0\u003c/code\u003e minor release has only one change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe previously private \u003ccode\u003eJacksonDeserializer(ObjectMapper objectMapper, Map\u0026lt;String, Class\u0026lt;?\u0026gt;\u0026gt; claimTypeMap)\u003c/code\u003e constructor is now \u003ccode\u003epublic\u003c/code\u003e for those that want register a claims\ntype converter on their own specified \u003ccode\u003eObjectMapper\u003c/code\u003e instance.  See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/914\"\u003eIssue 914\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e0.12.7\u003c/h3\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdds a new Maven BOM, useful for multi-module projects. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/967\"\u003eIssue 967\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAllows the \u003ccode\u003eJwtParserBuilder\u003c/code\u003e to have empty nested algorithm collections, effectively disabling the parser's associated feature:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEmptying the \u003ccode\u003ezip()\u003c/code\u003e nested collection disables JWT decompression.\u003c/li\u003e\n\u003cli\u003eEmptying the \u003ccode\u003esig()\u003c/code\u003e nested collection disables JWS mac/signature verification (i.e. all JWSs will be unsupported/rejected).\u003c/li\u003e\n\u003cli\u003eEmptying either the \u003ccode\u003eenc()\u003c/code\u003e or \u003ccode\u003ekey()\u003c/code\u003e nested collections disables JWE decryption (i.e. all JWEs will be unsupported/rejected)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/996\"\u003eIssue 996\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixes \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/961\"\u003ebug 961\u003c/a\u003e where \u003ccode\u003eJwtParserBuilder\u003c/code\u003e nested collection builders were not correctly replacing algorithms with the same id.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eEnsures a \u003ccode\u003eJwkSet\u003c/code\u003e's \u003ccode\u003ekeys\u003c/code\u003e collection is no longer entirely secret/redacted by default.  This was an overzealous default that was unnecessarily restrictive; the \u003ccode\u003ekeys\u003c/code\u003e collection itself should always be public, and each individual key within should determine which fields should be redacted when printed. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/976\"\u003eIssue 976\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImproves performance slightly by ensuring all \u003ccode\u003ejjwt-api\u003c/code\u003e utility methods that create \u003ccode\u003e*Builder\u003c/code\u003e instances (\u003ccode\u003eJwts.builder()\u003c/code\u003e, \u003ccode\u003eJwts.parserBuilder()\u003c/code\u003e, \u003ccode\u003eJwks.builder()\u003c/code\u003e, etc) no longer use reflection.\u003c/p\u003e\n\u003cp\u003eInstead,\u003ccode\u003estatic\u003c/code\u003e factories are created via reflection only once during initial \u003ccode\u003ejjwt-api\u003c/code\u003e classloading, and then \u003ccode\u003e*Builder\u003c/code\u003es are created via standard instantiation using the \u003ccode\u003enew\u003c/code\u003e operator thereafter.  This also benefits certain environments that may not have ideal \u003ccode\u003eClassLoader\u003c/code\u003e implementations (e.g. Tomcat in some cases).\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNOTE: because this changes which classes are loaded via reflection, any environments that must explicitly reference reflective class names (e.g. GraalVM applications) will need to be updated to reflect the new factory class names\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/988\"\u003eIssue 988\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the Gson dependency to \u003ccode\u003e2.11.0\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the BouncyCastle dependency to \u003ccode\u003e1.78.1\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e0.12.6\u003c/h3\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEnsures that after successful JWS signature verification, an application-configured Base64Url \u003ccode\u003eDecoder\u003c/code\u003e output is\nused to construct a \u003ccode\u003eJws\u003c/code\u003e instance (instead of JJWT's default decoder). See\n\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/947\"\u003eIssue 947\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eFixes a decompression memory leak in concurrent/multi-threaded environments introduced in 0.12.0 when decompressing JWTs with a \u003ccode\u003ezip\u003c/code\u003e header of \u003ccode\u003eGZIP\u003c/code\u003e. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/949\"\u003eIssue 949\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eUpgrades BouncyCastle to 1.78 via \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/941\"\u003ePR 941\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eEnsures that a \u003ccode\u003eJwkSet\u003c/code\u003e's \u003ccode\u003ekeys\u003c/code\u003e list member is no longer considered secret and is not redacted by default. However, each individual JWK element within the \u003ccode\u003ekeys\u003c/code\u003e list may still have \u003ca href=\"https://github.com/jwtk/jjwt?tab=readme-ov-file#jwk-tostring-safety\"\u003eredacted private or secret members\u003c/a\u003e as expected. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/976\"\u003eIssue 976\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e0.12.5\u003c/h3\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEnsures that builders' \u003ccode\u003eNestedCollection\u003c/code\u003e changes are applied to the collection immediately as mutation methods are called, no longer\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/a757addce04f6b6d8086beeee8dafcf670550a5b\"\u003e\u003ccode\u003ea757add\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare release 0.13.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/e357463c59cf62c1f70503ac0102d10efcdfc37d\"\u003e\u003ccode\u003ee357463\u003c/code\u003e\u003c/a\u003e Preparing for the 0.13.0 release.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/b6f8cb82a9c2e9817d842bfe72d2c8fb03124342\"\u003e\u003ccode\u003eb6f8cb8\u003c/code\u003e\u003c/a\u003e Made constructor public to allow users their own objectMapper instance (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/972\"\u003e#972\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/03f088a4eb774bae2403c428aa885a12d3afde14\"\u003e\u003ccode\u003e03f088a\u003c/code\u003e\u003c/a\u003e Bumping development version to 0.13.0-SNAPSHOT (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1014\"\u003e#1014\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/3f2697f854bedebe63e9eddb8c596f76086d11ca\"\u003e\u003ccode\u003e3f2697f\u003c/code\u003e\u003c/a\u003e Release 0.12.7 (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1012\"\u003e#1012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/efed1cf56f9b9715e60eaac7fda6b2c4b62410b9\"\u003e\u003ccode\u003eefed1cf\u003c/code\u003e\u003c/a\u003e Updated 0.12.7 change list\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/ca27b122b7f44f3bdd4cd4f636d084f38cc3b3c8\"\u003e\u003ccode\u003eca27b12\u003c/code\u003e\u003c/a\u003e Resolves \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1010\"\u003e#1010\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1011\"\u003e#1011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/55c7b9adef88328f59534f232060830c34f25478\"\u003e\u003ccode\u003e55c7b9a\u003c/code\u003e\u003c/a\u003e Resolves \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/771\"\u003e#771\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1009\"\u003e#1009\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/6e9c6a5a825c5ec38f90006f48cc1f8640a6d82e\"\u003e\u003ccode\u003e6e9c6a5\u003c/code\u003e\u003c/a\u003e Bump org.bouncycastle:bcpkix-jdk18on from 1.78 to 1.78.1 (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1008\"\u003e#1008\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/7ec7dd1a19a38a1829903f88b9512697bfb7be3c\"\u003e\u003ccode\u003e7ec7dd1\u003c/code\u003e\u003c/a\u003e Enable JwtParser empty nested algorithm collections. (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1007\"\u003e#1007\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.11.5...0.13.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `io.jsonwebtoken:jjwt-jackson` from 0.11.5 to 0.13.0\n\nUpdates `org.apache.maven.plugins:maven-compiler-plugin` from 3.13.0 to 3.15.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/apache/maven-compiler-plugin/releases\"\u003eorg.apache.maven.plugins:maven-compiler-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.15.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix Java 25 compatibility during integration tests (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/1020\"\u003e#1020\u003c/a\u003e) \u003ca href=\"https://github.com/desruisseaux\"\u003e\u003ccode\u003e@​desruisseaux\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://issues.apache.org/jira/browse/MCOMPILER-540\"\u003e[MCOMPILER-540]\u003c/a\u003e - useIncrementalCompilation=false may add generated sources to the sources list (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/192\"\u003e#192\u003c/a\u003e) \u003ca href=\"https://github.com/mensinda\"\u003e\u003ccode\u003e@​mensinda\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e👻 Maintenance\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump org.apache.maven.plugins:maven-plugins from 45 to 46 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/1015\"\u003e#1015\u003c/a\u003e) \u003ca href=\"https://github.com/slachiewicz\"\u003e\u003ccode\u003e@​slachiewicz\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove declaration of \u0026quot;plexus-snapshots\u0026quot; repository (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/1010\"\u003e#1010\u003c/a\u003e) \u003ca href=\"https://github.com/desruisseaux\"\u003e\u003ccode\u003e@​desruisseaux\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWorks only with Maven 4.0.0 rc4 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/996\"\u003e#996\u003c/a\u003e) \u003ca href=\"https://github.com/slachiewicz\"\u003e\u003ccode\u003e@​slachiewicz\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable Java 25 and Maven 4 in CI (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/975\"\u003e#975\u003c/a\u003e) \u003ca href=\"https://github.com/slachiewicz\"\u003e\u003ccode\u003e@​slachiewicz\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Dependency updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.4.0 to 3.5.0 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/1016\"\u003e#1016\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump plexusCompilerVersion from 2.16.1 to 2.16.2 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/1021\"\u003e#1021\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven.plugins:maven-plugins from 46 to 47 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/1019\"\u003e#1019\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.plexus:plexus-java from 1.5.1 to 1.5.2 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/1008\"\u003e#1008\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.ow2.asm:asm from 9.9 to 9.9.1 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/1005\"\u003e#1005\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mavenVersion from 3.9.11 to 3.9.12 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/1007\"\u003e#1007\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump maven-plugin-testing-harness to 3.4.0 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/1001\"\u003e#1001\u003c/a\u003e) \u003ca href=\"https://github.com/slawekjaranowski\"\u003e\u003ccode\u003e@​slawekjaranowski\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump plexusCompilerVersion from 2.16.0 to 2.16.1 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/999\"\u003e#999\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.plexus:plexus-java from 1.5.0 to 1.5.1 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/993\"\u003e#993\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump plexusCompilerVersion from 2.15.0 to 2.16.0 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/992\"\u003e#992\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.ow2.asm:asm from 9.8 to 9.9 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/981\"\u003e#981\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.14.1\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e🚀 New features and improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImprove DeltaList behavior for large projects (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/335\"\u003e#335\u003c/a\u003e) \u003ca href=\"https://github.com/gsmet\"\u003e\u003ccode\u003e@​gsmet\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAllow to not use --module-version for the Java compiler (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/331\"\u003e#331\u003c/a\u003e) \u003ca href=\"https://github.com/pzygielo\"\u003e\u003ccode\u003e@​pzygielo\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd generatedSourcesPath back to the maven project (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/312\"\u003e#312\u003c/a\u003e) \u003ca href=\"https://github.com/mensinda\"\u003e\u003ccode\u003e@​mensinda\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://issues.apache.org/jira/browse/MCOMPILER-538\"\u003e[MCOMPILER-538]\u003c/a\u003e - Do not add target/generated-sources/annotations to the source roots (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/191\"\u003e#191\u003c/a\u003e) \u003ca href=\"https://github.com/mensinda\"\u003e\u003ccode\u003e@​mensinda\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Dependency updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEnforce asm version used here, to not depend on brittle transitive (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/964\"\u003e#964\u003c/a\u003e) \u003ca href=\"https://github.com/olamy\"\u003e\u003ccode\u003e@​olamy\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mavenVersion from 3.9.10 to 3.9.11 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/952\"\u003e#952\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven.plugins:maven-plugins from 44 to 45 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/935\"\u003e#935\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mavenVersion from 3.9.9 to 3.9.10 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/336\"\u003e#336\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.plexus:plexus-java from 1.4.0 to 1.5.0 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/324\"\u003e#324\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven.plugins:maven-plugins from 43 to 44 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/316\"\u003e#316\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.14.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-compiler-plugin/commit/9290cb337f199673e02b6beac0fba37d8066d72c\"\u003e\u003ccode\u003e9290cb3\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare release maven-compiler-plugin-3.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-compiler-plugin/commit/3657d40307e88d760e00bce785ad9ec70db33f95\"\u003e\u003ccode\u003e3657d40\u003c/code\u003e\u003c/a\u003e Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-compiler-plugin/commit/7bbf805c330756ea2f79c467657e42b0d27503e2\"\u003e\u003ccode\u003e7bbf805\u003c/code\u003e\u003c/a\u003e Bump plexusCompilerVersion from 2.16.1 to 2.16.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-compiler-plugin/commit/57fa93829b58ea293e978d1233c2f4b3cda83c17\"\u003e\u003ccode\u003e57fa938\u003c/code\u003e\u003c/a\u003e Bump org.apache.maven.plugins:maven-plugins from 46 to 47\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-compiler-plugin/commit/385e3f2809802c6908a36e8c17ef35ed7c869168\"\u003e\u003ccode\u003e385e3f2\u003c/code\u003e\u003c/a\u003e Fix Java 25 compatibility during integration tests (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/issues/1020\"\u003e#1020\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-compiler-plugin/commit/6b34423a7f1ad7db000fc5d64aa54052d5d88aa2\"\u003e\u003ccode\u003e6b34423\u003c/code\u003e\u003c/a\u003e Bump org.apache.maven.plugins:maven-plugins from 45 to 46\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-compiler-plugin/commit/aaeb9c6079c6ed012d71e660465d99ee1806a12b\"\u003e\u003ccode\u003eaaeb9c6\u003c/code\u003e\u003c/a\u003e [MCOMPILER-540] useIncrementalCompilation=false may add generated sources to ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-compiler-plugin/commit/6e3db9d2c13c7309f12e9dadc8eac985b4426554\"\u003e\u003ccode\u003e6e3db9d\u003c/code\u003e\u003c/a\u003e Bump org.codehaus.plexus:plexus-java from 1.5.1 to 1.5.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-compiler-plugin/commit/0fe9b843f9065fc40eebfddc7f5e0a479cc76c6d\"\u003e\u003ccode\u003e0fe9b84\u003c/code\u003e\u003c/a\u003e Remove declaration of \u0026quot;plexus-snapshots\u0026quot; repository (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/issues/1010\"\u003e#1010\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-compiler-plugin/commit/35f68008c4025f7b7eb669303d315197b03cd5b4\"\u003e\u003ccode\u003e35f6800\u003c/code\u003e\u003c/a\u003e Bump org.ow2.asm:asm from 9.9 to 9.9.1\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/apache/maven-compiler-plugin/compare/maven-compiler-plugin-3.13.0...maven-compiler-plugin-3.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 4.0.6 to 4.1.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cp\u003eFull \u003ca href=\"https://github.com/spring-projects/spring-boot/wiki/Spring-Boot-4.1-Release-Notes\"\u003erelease notes for Spring Boot 4.1\u003c/a\u003e are available on the wiki.\u003c/p\u003e\n\u003ch2\u003e:star: New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd public constructor to InvalidConfigurationPropertyValueException that accepts a cause \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50211\"\u003e#50211\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReduce memory consumption when repeatedly calling WritableJson.toByteArray \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49428\"\u003e#49428\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMailSender auto-configuration does not enable hostname verification \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50747\"\u003e#50747\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eArtemis auto-configuration uses a predictable default location for the embedded broker's data \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50745\"\u003e#50745\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEmbedded LDAP SSL should not be enabled when its bundle is empty \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50700\"\u003e#50700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eInetAddressFilter.externalAddresses does not exclude special purpose addresses from RFC 6890 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50668\"\u003e#50668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNullPointerException in reactor-netty SniProvider and unmapped SSL bundle with RSocket \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50645\"\u003e#50645\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSSL should not be enabled when a SSL bundle is overridden to an empty string \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50635\"\u003e#50635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTest auto-configuration no longer integrates Spring Security with HtmlUnitDriver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50633\"\u003e#50633\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eConfiguration property metadata includes incorrect class references \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50632\"\u003e#50632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support does not restore thread interrupt flag when catching InterruptedException \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50618\"\u003e#50618\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRabbitProperties enables SSL even when spring.rabbitmq.ssl.bundle is overridden to an empty string \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50612\"\u003e#50612\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNullPointerException in reactor-netty SniProvider when SSL bundle uses client-auth or server truststore without server-name-bundles \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50610\"\u003e#50610\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpringJtaPlatform should have been deprecated since 4.1.0-M3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50592\"\u003e#50592\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLayer written outside the output location of '//' exception is thrown when using extract layers in root directory \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50510\"\u003e#50510\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eConfigurationPropertiesReportEndpoint exposes AOP proxy internals \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50417\"\u003e#50417\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCreated StackTracePrinter instances have no access to the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50414\"\u003e#50414\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMappingsEndpoint reports the context's own ID as parentId when a parent exists \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50412\"\u003e#50412\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBuildpack module does not validate long-to-int casts \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50410\"\u003e#50410\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGradle gRPC support fails if protobuf-java dependency is used instead of protobuf-java-util \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50405\"\u003e#50405\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGraphQL WebSocket support does not configure allowed origins \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50394\"\u003e#50394\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Boot Loader Does Not Support RSA and EC Signed Jars \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50298\"\u003e#50298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMeter registries are not removed from the global registry when the context is closed \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50287\"\u003e#50287\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDataSourceBuilder cannot derive a DataSource from a lazy connection proxy \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50271\"\u003e#50271\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNullable annotations from AbstractErrorController.getErrorAttributes are not aligned with implementation \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50266\"\u003e#50266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBean definitions can be added with an initializer before setAllowBeanDefinitionOverriding is called \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50264\"\u003e#50264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEndpointRequest links matcher unnecessarily matches HTTP methods other than GET  \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50261\"\u003e#50261\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eActuator's '/cloudfoundryapplication' endpoint does not work if restrictive CORS configuration is provided using a bean named corsConfigurationSource \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50258\"\u003e#50258\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThreadPoolTaskScheduleBuilder unnecessarily loses precision when configuring await termination time \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50234\"\u003e#50234\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNimbusJwtDecoder silently accepts unknown values for spring.security.oauth2.resourceserver.jwt.jws-algorithms \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50228\"\u003e#50228\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMissing dependency management for spring-boot-web-server-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50224\"\u003e#50224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Batch support for MongoDB modules are not included in dependency management \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50223\"\u003e#50223\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApply HTML escaping to timestamp attribute in Whitelabel error page \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50216\"\u003e#50216\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGrpcServerHealthScheduler is not started in servlet environments \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50209\"\u003e#50209\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSetting server.servlet.session.cookie.partitioned=true has no effect when using Tomcat \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50204\"\u003e#50204\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix reference to Gradle documentation for module replacement \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50647\"\u003e#50647\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument SSL reloading with Let's Encrypt \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50630\"\u003e#50630\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove the use of Optional from Data Neo4j repository examples \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50622\"\u003e#50622\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix typos in documentation \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50620\"\u003e#50620\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ac2cfe03538b87a0dc9d2619ed52a4c901eaea54\"\u003e\u003ccode\u003eac2cfe0\u003c/code\u003e\u003c/a\u003e Release v4.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/1a5815cf3183a0c9493cece8ba550a6e8b125d67\"\u003e\u003ccode\u003e1a5815c\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Batch 6.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/a8364ff9c2a0ca88541cc153f032089e063b797c\"\u003e\u003ccode\u003ea8364ff\u003c/code\u003e\u003c/a\u003e Merge branch '4.0.x'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9755ff29e7ce3a8ac4574e5b452bdfe1053718b1\"\u003e\u003ccode\u003e9755ff2\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Batch 6.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/6a6dedc4354cbafadaf8aab2803fc3acd7e6b8de\"\u003e\u003ccode\u003e6a6dedc\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Integration 7.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/db7b2b9fb0b3c623d707f2627f832b4dd5f2eb8c\"\u003e\u003ccode\u003edb7b2b9\u003c/code\u003e\u003c/a\u003e Merge branch '4.0.x'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/d549d077c03add0421464fcd0248bd8b76b41973\"\u003e\u003ccode\u003ed549d07\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Integration 7.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4d9e463dc3fefea2b73dcfbb15b4ced6b69dbaf9\"\u003e\u003ccode\u003e4d9e463\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/b0686478a71cceb977dc1ff5b4e69ef5eb052fcf\"\u003e\u003ccode\u003eb068647\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Integration 6.5.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/198af995dc03a09583c61bcd0b8ffda341055feb\"\u003e\u003ccode\u003e198af99\u003c/code\u003e\u003c/a\u003e Merge branch '4.0.x'\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.6...v4.1.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.jacoco:jacoco-maven-plugin` from 0.8.14 to 0.8.15\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jacoco/jacoco/releases\"\u003eorg.jacoco:jacoco-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.8.15\u003c/h2\u003e\n\u003ch2\u003eNew Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eJaCoCo now officially supports Java 26 (GitHub \u003ca href=\"https://redirect.github.com/jacoco/jacoco/issues/2076\"\u003e#2076\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eExperimental support for Java 27 class files (GitHub \u003ca href=\"https://redirect.github.com/jacoco/jacoco/issues/2004\"\u003e#2004\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eCompatibility methods generated by Kotlin compiler for functions defined in interfaces are filtered out during generation of report (GitHub \u003ca href=\"https://redirect.github.com/jacoco/jacoco/issues/1905\"\u003e#1905\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eCompatibility methods generated by Kotlin compiler for exposed b...\n\n_Description has been truncated_","html_url":"https://github.com/dhbw-softwareengineering/caesars-gambit/pull/96","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/dhbw-softwareengineering%2Fcaesars-gambit/issues/96","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/96/packages"},{"uuid":"4474783958","node_id":"PR_kwDOP91PzM7c72u6","number":39,"state":"closed","title":"Bump the all-maven-dependencies group across 2 directories with 7 updates","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-20T07:21:47.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-19T05:53:56.000Z","updated_at":"2026-05-20T07:21:49.000Z","time_to_close":91671,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"all-maven-dependencies","update_count":7,"packages":[{"name":"com.sap.cds:cds-services-bom","old_version":"4.8.0","new_version":"4.9.0"},{"name":"com.sap.cds:cds-maven-plugin","old_version":"4.8.0","new_version":"4.9.0"},{"name":"org.springframework.boot:spring-boot-dependencies","old_version":"3.5.11","new_version":"3.5.14","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"3.5.11","new_version":"3.5.14","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"com.sap.cloud.security:java-bom","old_version":"3.6.8","new_version":"4.0.5","repository_url":"https://github.com/SAP/cloud-security-xsuaa-integration"},{"name":"org.apache.maven.plugins:maven-enforcer-plugin","old_version":"3.6.2","new_version":"3.6.3","repository_url":"https://github.com/apache/maven-enforcer"},{"name":"com.diffplug.spotless:spotless-maven-plugin","old_version":"3.3.0","new_version":"3.5.1","repository_url":"https://github.com/diffplug/spotless"}],"path":null,"ecosystem":"maven"},"body":"Bumps the all-maven-dependencies group with 7 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| com.sap.cds:cds-services-bom | `4.8.0` | `4.9.0` |\n| com.sap.cds:cds-maven-plugin | `4.8.0` | `4.9.0` |\n| [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot) | `3.5.11` | `3.5.14` |\n| [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) | `3.5.11` | `3.5.14` |\n| [com.sap.cloud.security:java-bom](https://github.com/SAP/cloud-security-xsuaa-integration) | `3.6.8` | `4.0.5` |\n| [org.apache.maven.plugins:maven-enforcer-plugin](https://github.com/apache/maven-enforcer) | `3.6.2` | `3.6.3` |\n| [com.diffplug.spotless:spotless-maven-plugin](https://github.com/diffplug/spotless) | `3.3.0` | `3.5.1` |\n\nBumps the all-maven-dependencies group with 7 updates in the /srv directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| com.sap.cds:cds-maven-plugin | `4.8.0` | `4.9.0` |\n| com.sap.cds:cds-services-bom | `4.8.0` | `4.9.0` |\n| [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) | `3.5.11` | `3.5.14` |\n| [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot) | `3.5.11` | `3.5.14` |\n| [com.sap.cloud.security:java-bom](https://github.com/SAP/cloud-security-xsuaa-integration) | `3.6.8` | `4.0.5` |\n| [org.apache.maven.plugins:maven-enforcer-plugin](https://github.com/apache/maven-enforcer) | `3.6.2` | `3.6.3` |\n| [com.diffplug.spotless:spotless-maven-plugin](https://github.com/diffplug/spotless) | `3.3.0` | `3.5.1` |\n\n\nUpdates `com.sap.cds:cds-services-bom` from 4.8.0 to 4.9.0\n\nUpdates `com.sap.cds:cds-maven-plugin` from 4.8.0 to 4.9.0\n\nUpdates `org.springframework.boot:spring-boot-dependencies` from 3.5.11 to 3.5.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.14\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50173\"\u003e#50173\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50172\"\u003e#50172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50171\"\u003e#50171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50170\"\u003e#50170\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50169\"\u003e#50169\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50168\"\u003e#50168\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50035\"\u003e#50035\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50033\"\u003e#50033\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50021\"\u003e#50021\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50008\"\u003e#50008\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49942\"\u003e#49942\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49885\"\u003e#49885\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49865\"\u003e#49865\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49864\"\u003e#49864\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49863\"\u003e#49863\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49860\"\u003e#49860\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50092\"\u003e#50092\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50083\"\u003e#50083\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50023\"\u003e#50023\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50010\"\u003e#50010\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50007\"\u003e#50007\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49895\"\u003e#49895\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49835\"\u003e#49835\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Groovy 4.0.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49905\"\u003e#49905\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 6.6.49.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50140\"\u003e#50140\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50109\"\u003e#50109\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49907\"\u003e#49907\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jetty/jetty.project/releases/tag/jetty-12.0.34\"\u003eJetty 12.0.34\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49908\"\u003e#49908\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jOOQ/jOOQ/releases/tag/version-3.19.32\"\u003ejOOQ 3.19.32\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50110\"\u003e#50110\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Lombok 1.18.46 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50148\"\u003e#50148\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://mariadb.com/kb/en/mariadb-connector-j-3-5-8-release-notes\"\u003eMariaDB 3.5.8\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49909\"\u003e#49909\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/micrometer-metrics/micrometer/releases/tag/v1.15.11\"\u003eMicrometer 1.15.11\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49961\"\u003e#49961\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/micrometer-metrics/tracing/releases/tag/v1.5.11\"\u003eMicrometer Tracing 1.5.11\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49962\"\u003e#49962\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://dev.mysql.com/doc/relnotes/connector-j/en/news-9-7-0.html\"\u003eMySQL 9.7.0\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50161\"\u003e#50161\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Neo4j Java Driver 5.28.13 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50074\"\u003e#50074\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/reactor/reactor/releases/tag/2024.0.17\"\u003eReactor Bom 2024.0.17\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49963\"\u003e#49963\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-amqp/releases/tag/v3.2.10\"\u003eSpring AMQP 3.2.10\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49964\"\u003e#49964\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-authorization-server/releases/tag/1.5.7\"\u003eSpring Authorization Server 1.5.7\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49965\"\u003e#49965\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-data-bom/releases/tag/2025.0.11\"\u003eSpring Data Bom 2025.0.11\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49966\"\u003e#49966\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-framework/releases/tag/v6.2.18\"\u003eSpring Framework 6.2.18\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49967\"\u003e#49967\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-kafka/releases/tag/v3.3.15\"\u003eSpring Kafka 3.3.15\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50129\"\u003e#50129\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/7d7b3ac12735161f9c096ce6cb415bdd9fc4a0f4\"\u003e\u003ccode\u003e7d7b3ac\u003c/code\u003e\u003c/a\u003e Release v3.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f3b8eb0f2cd989dffe5dceefce80bde165328b31\"\u003e\u003ccode\u003ef3b8eb0\u003c/code\u003e\u003c/a\u003e Use SecureRandom in RandomValuePropertySource\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e22083a5684c3c65bcf2a9a90adcdecee6e85d50\"\u003e\u003ccode\u003ee22083a\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Cassandra\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/5ceb1a228932e35cc803d1c1fea68f0f984aaa90\"\u003e\u003ccode\u003e5ceb1a2\u003c/code\u003e\u003c/a\u003e Improve ApplicationTemp's temporary directory creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4b0862cc00815a47b22339d7eac7ddc3b6645bd4\"\u003e\u003ccode\u003e4b0862c\u003c/code\u003e\u003c/a\u003e Use constant-time comparison for remote DevTools secret\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e4febe2015d340ea9135437ee0659ea0f2260c31\"\u003e\u003ccode\u003ee4febe2\u003c/code\u003e\u003c/a\u003e Apply verify-hostname consistently\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/2c2ffe51c415f464fde6368fdd144b9551c3458c\"\u003e\u003ccode\u003e2c2ffe5\u003c/code\u003e\u003c/a\u003e Fix Windows test failure\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/0046a442f9ac5ae186359df575e68fab17d01646\"\u003e\u003ccode\u003e0046a44\u003c/code\u003e\u003c/a\u003e Protect against corrupt buildpack archives\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.5.11...v3.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 3.5.11 to 3.5.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.14\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50173\"\u003e#50173\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50172\"\u003e#50172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50171\"\u003e#50171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50170\"\u003e#50170\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50169\"\u003e#50169\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50168\"\u003e#50168\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50035\"\u003e#50035\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50033\"\u003e#50033\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50021\"\u003e#50021\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50008\"\u003e#50008\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49942\"\u003e#49942\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49885\"\u003e#49885\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49865\"\u003e#49865\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49864\"\u003e#49864\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49863\"\u003e#49863\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49860\"\u003e#49860\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50092\"\u003e#50092\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50083\"\u003e#50083\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50023\"\u003e#50023\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50010\"\u003e#50010\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50007\"\u003e#50007\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49895\"\u003e#49895\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49835\"\u003e#49835\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Groovy 4.0.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49905\"\u003e#49905\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 6.6.49.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50140\"\u003e#50140\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50109\"\u003e#50109\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49907\"\u003e#49907\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jetty/jetty.project/releases/tag/jetty-12.0.34\"\u003eJetty 12.0.34\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49908\"\u003e#49908\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jOOQ/jOOQ/releases/tag/version-3.19.32\"\u003ejOOQ 3.19.32\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50110\"\u003e#50110\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Lombok 1.18.46 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50148\"\u003e#50148\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://mariadb.com/kb/en/mariadb-connector-j-3-5-8-release-notes\"\u003eMariaDB 3.5.8\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49909\"\u003e#49909\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/micrometer-metrics/micrometer/releases/tag/v1.15.11\"\u003eMicrometer 1.15.11\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49961\"\u003e#49961\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/micrometer-metrics/tracing/releases/tag/v1.5.11\"\u003eMicrometer Tracing 1.5.11\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49962\"\u003e#49962\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://dev.mysql.com/doc/relnotes/connector-j/en/news-9-7-0.html\"\u003eMySQL 9.7.0\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50161\"\u003e#50161\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Neo4j Java Driver 5.28.13 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50074\"\u003e#50074\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/reactor/reactor/releases/tag/2024.0.17\"\u003eReactor Bom 2024.0.17\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49963\"\u003e#49963\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-amqp/releases/tag/v3.2.10\"\u003eSpring AMQP 3.2.10\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49964\"\u003e#49964\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-authorization-server/releases/tag/1.5.7\"\u003eSpring Authorization Server 1.5.7\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49965\"\u003e#49965\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-data-bom/releases/tag/2025.0.11\"\u003eSpring Data Bom 2025.0.11\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49966\"\u003e#49966\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-framework/releases/tag/v6.2.18\"\u003eSpring Framework 6.2.18\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49967\"\u003e#49967\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-kafka/releases/tag/v3.3.15\"\u003eSpring Kafka 3.3.15\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50129\"\u003e#50129\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/7d7b3ac12735161f9c096ce6cb415bdd9fc4a0f4\"\u003e\u003ccode\u003e7d7b3ac\u003c/code\u003e\u003c/a\u003e Release v3.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f3b8eb0f2cd989dffe5dceefce80bde165328b31\"\u003e\u003ccode\u003ef3b8eb0\u003c/code\u003e\u003c/a\u003e Use SecureRandom in RandomValuePropertySource\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e22083a5684c3c65bcf2a9a90adcdecee6e85d50\"\u003e\u003ccode\u003ee22083a\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Cassandra\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/5ceb1a228932e35cc803d1c1fea68f0f984aaa90\"\u003e\u003ccode\u003e5ceb1a2\u003c/code\u003e\u003c/a\u003e Improve ApplicationTemp's temporary directory creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4b0862cc00815a47b22339d7eac7ddc3b6645bd4\"\u003e\u003ccode\u003e4b0862c\u003c/code\u003e\u003c/a\u003e Use constant-time comparison for remote DevTools secret\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e4febe2015d340ea9135437ee0659ea0f2260c31\"\u003e\u003ccode\u003ee4febe2\u003c/code\u003e\u003c/a\u003e Apply verify-hostname consistently\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/2c2ffe51c415f464fde6368fdd144b9551c3458c\"\u003e\u003ccode\u003e2c2ffe5\u003c/code\u003e\u003c/a\u003e Fix Windows test failure\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/0046a442f9ac5ae186359df575e68fab17d01646\"\u003e\u003ccode\u003e0046a44\u003c/code\u003e\u003c/a\u003e Protect against corrupt buildpack archives\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.5.11...v3.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `com.sap.cloud.security:java-bom` from 3.6.8 to 4.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/SAP/cloud-security-xsuaa-integration/releases\"\u003ecom.sap.cloud.security:java-bom's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.0.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eRestore deprecated \u003ccode\u003eHttpClientFactory.services\u003c/code\u003e field and ServiceLoader-based factory discovery for backward compatibility\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eCustom \u003ccode\u003eHttpClientFactory\u003c/code\u003e implementations registered via \u003ccode\u003eMETA-INF/services\u003c/code\u003e are discovered again\u003c/li\u003e\n\u003cli\u003eA deprecation warning is logged when a custom factory is used, guiding users to migrate to \u003ccode\u003eSecurityHttpClientFactory\u003c/code\u003e with \u003ccode\u003eSecurityHttpClientProvider\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eToken services with default (no-arg) constructors continue to use the new \u003ccode\u003eSecurityHttpClientProvider\u003c/code\u003e internally\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix multi-tenant IAS token exchange by adding \u003ccode\u003eapp_tid\u003c/code\u003e parameter to the token exchange request in \u003ccode\u003eDefaultIdTokenExtension\u003c/code\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIn multi-tenant applications, IAS requires \u003ccode\u003eapp_tid\u003c/code\u003e in addition to \u003ccode\u003eclient_id\u003c/code\u003e to uniquely identify the application\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003eapp_tid\u003c/code\u003e is extracted from the incoming access token and included when present\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.0.4\u003c/h2\u003e\n\u003cp\u003eimprove domain validation handling\u003c/p\u003e\n\u003ch2\u003e4.0.3\u003c/h2\u003e\n\u003cp\u003eFix multi-tenant IAS token exchange to use token issuer URL instead of provider IAS URL from configuration in DefaultIdTokenExtension\u003c/p\u003e\n\u003ch2\u003e4.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix token exchange credential handling to use getClientIdentity() instead of manually checking for certificate vs client secret\u003c/li\u003e\n\u003cli\u003eAdd IAS certificate properties (certificate, key, credential-type, certurl) to IdentityServicesPropertySourceFactory to properly map X.509 credentials for IAS service bindings\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.0.1\u003c/h2\u003e\n\u003cp\u003eFix IAS token exchange to use \u003ccode\u003egetUrl()\u003c/code\u003e instead of \u003ccode\u003egetCertUrl()\u003c/code\u003e in \u003ccode\u003eDefaultIdTokenExtension\u003c/code\u003e\u003c/p\u003e\n\u003ch2\u003e4.0.0\u003c/h2\u003e\n\u003cp\u003eMajor release upgrading to Spring Boot 4.x and Jakarta EE 10. Spring Boot 3.x compatibility modules provided.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking Changes\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eFramework Upgrades:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eSpring Boot 3.x → 4.0.3\u003c/li\u003e\n\u003cli\u003eSpring Framework 6.x → 7.0.5\u003c/li\u003e\n\u003cli\u003eSpring Security 6.x → 7.0.3\u003c/li\u003e\n\u003cli\u003eJakarta Servlet API 6.0.0 → 6.1.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eToken Client HTTP Change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eNow uses Java 11 HttpClient by default (no Apache HttpClient dependency)\u003c/li\u003e\n\u003cli\u003eApache HttpClient 4 constructors deprecated (removed in 5.0.0)\u003c/li\u003e\n\u003cli\u003eCustom HTTP clients supported via SecurityHttpClientFactory\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eRemoved Modules:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003espring-xsuaa* → use spring-security or spring-security-3\u003c/li\u003e\n\u003cli\u003espring-security-compatibility → use spring-security-3\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eToken Client Spring Classes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eSpring-dependent classes moved to new token-client-spring module\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eNew Features\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eSpring Boot 3.x Compatibility:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003espring-security-3 - Core module for Spring Boot 3.5.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/SAP/cloud-security-services-integration-library/blob/main/CHANGELOG.md\"\u003ecom.sap.cloud.security:java-bom's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.0.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eRestore deprecated \u003ccode\u003eHttpClientFactory.services\u003c/code\u003e field and ServiceLoader-based factory discovery for backward compatibility\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eCustom \u003ccode\u003eHttpClientFactory\u003c/code\u003e implementations registered via \u003ccode\u003eMETA-INF/services\u003c/code\u003e are discovered again\u003c/li\u003e\n\u003cli\u003eA deprecation warning is logged when a custom factory is used, guiding users to migrate to \u003ccode\u003eSecurityHttpClientFactory\u003c/code\u003e with \u003ccode\u003eSecurityHttpClientProvider\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eToken services with default (no-arg) constructors continue to use the new \u003ccode\u003eSecurityHttpClientProvider\u003c/code\u003e internally\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix multi-tenant IAS token exchange by adding \u003ccode\u003eapp_tid\u003c/code\u003e parameter to the token exchange request in \u003ccode\u003eDefaultIdTokenExtension\u003c/code\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIn multi-tenant applications, IAS requires \u003ccode\u003eapp_tid\u003c/code\u003e in addition to \u003ccode\u003eclient_id\u003c/code\u003e to uniquely identify the application\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003eapp_tid\u003c/code\u003e is extracted from the incoming access token and included when present\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.0.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImprove domain validation handling in \u003ccode\u003eJwtValidatorBuilder\u003c/code\u003e for IAS tokens\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.0.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix multi-tenant IAS token exchange to use token issuer URL instead of provider IAS URL from configuration in \u003ccode\u003eDefaultIdTokenExtension\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix token exchange credential handling to use \u003ccode\u003egetClientIdentity()\u003c/code\u003e instead of manually checking for certificate vs client secret\u003c/li\u003e\n\u003cli\u003eAdd IAS certificate properties (\u003ccode\u003ecertificate\u003c/code\u003e, \u003ccode\u003ekey\u003c/code\u003e, \u003ccode\u003ecredential-type\u003c/code\u003e, \u003ccode\u003ecerturl\u003c/code\u003e) to \u003ccode\u003eIdentityServicesPropertySourceFactory\u003c/code\u003e to properly map X.509 credentials for IAS service bindings\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix IAS token exchange to use \u003ccode\u003egetUrl()\u003c/code\u003e instead of \u003ccode\u003egetCertUrl()\u003c/code\u003e in \u003ccode\u003eDefaultIdTokenExtension\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.0.0 - Major Release\u003c/h2\u003e\n\u003cp\u003eThis is a major release with breaking changes. The library has been upgraded to Spring Boot 4.x and Jakarta EE 10. For applications still on Spring Boot 3.x, compatibility modules are provided.\nPlease check the \u003ca href=\"https://github.com/SAP/cloud-security-services-integration-library/blob/main/MIGRATION_4.0.md\"\u003e4.0 Migration Guide\u003c/a\u003e for comprehensive upgrade instructions\u003c/p\u003e\n\u003ch3\u003e:warning: BREAKING CHANGES\u003c/h3\u003e\n\u003ch4\u003eSpring Boot and Jakarta EE Version Upgrades\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eSpring Boot\u003c/strong\u003e: Upgraded from 3.x to \u003cstrong\u003e4.0.3\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSpring Framework\u003c/strong\u003e: Upgraded from 6.x to \u003cstrong\u003e7.0.5\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSpring Security\u003c/strong\u003e: Upgraded from 6.x to \u003cstrong\u003e7.0.3\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eJakarta Servlet API\u003c/strong\u003e: Upgraded from 6.0.0 to \u003cstrong\u003e6.1.0\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eJava\u003c/strong\u003e: Minimum version remains \u003cstrong\u003eJava 17\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eJUnit Jupiter\u003c/strong\u003e: Upgraded from 5.12.2 to \u003cstrong\u003e6.0.3\u003c/strong\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eHTTP Client Default Changed\u003c/h4\u003e\n\u003cp\u003e\u003cstrong\u003eToken-client module\u003c/strong\u003e now uses \u003cstrong\u003eJava 11's HttpClient\u003c/strong\u003e as the default implementation. Apache HttpClient 4 remains available as a dependency for backward compatibility.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eImpact:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e✅ \u003cstrong\u003eNo code changes required\u003c/strong\u003e if you use the default (parameterless) constructors\u003c/li\u003e\n\u003cli\u003e⚠️ \u003cstrong\u003eDeprecated constructors\u003c/strong\u003e added for backward compatibility with Apache HttpClient 4\u003c/li\u003e\n\u003cli\u003e❌ \u003cstrong\u003eWill be removed in version 5.0.0\u003c/strong\u003e - Plan to migrate to Java HttpClient or custom implementation\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/SAP/cloud-security-services-integration-library/commit/2f9e42e70adef1cb4f3c994bc17c8cc73cf8f454\"\u003e\u003ccode\u003e2f9e42e\u003c/code\u003e\u003c/a\u003e Feature/restore httpclientfactory services (\u003ca href=\"https://redirect.github.com/SAP/cloud-security-xsuaa-integration/issues/1948\"\u003e#1948\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/SAP/cloud-security-services-integration-library/commit/eddb3a97467ab8de94077dab3a7cca60e6ce157e\"\u003e\u003ccode\u003eeddb3a9\u003c/code\u003e\u003c/a\u003e Bugfix/add app tid to id token exchange (\u003ca href=\"https://redirect.github.com/SAP/cloud-security-xsuaa-integration/issues/1949\"\u003e#1949\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/SAP/cloud-security-services-integration-library/commit/acb1d15476ca17e1868fdb5a648ce5c954be2f8f\"\u003e\u003ccode\u003eacb1d15\u003c/code\u003e\u003c/a\u003e improve domain validation handling (\u003ca href=\"https://redirect.github.com/SAP/cloud-security-xsuaa-integration/issues/1945\"\u003e#1945\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/SAP/cloud-security-services-integration-library/commit/ed3b9ef76f7e16d1d8ba8be551e58109d5f0d5bb\"\u003e\u003ccode\u003eed3b9ef\u003c/code\u003e\u003c/a\u003e Bugfix/4.0.2 (\u003ca href=\"https://redirect.github.com/SAP/cloud-security-xsuaa-integration/issues/1939\"\u003e#1939\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/SAP/cloud-security-services-integration-library/commit/ea432c80a625be5dff9444842a3481004df82b90\"\u003e\u003ccode\u003eea432c8\u003c/code\u003e\u003c/a\u003e Bugfix/4.0.2 (\u003ca href=\"https://redirect.github.com/SAP/cloud-security-xsuaa-integration/issues/1938\"\u003e#1938\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/SAP/cloud-security-services-integration-library/commit/4dce88bad75e91f820cff04bfbb8b640f8cc9799\"\u003e\u003ccode\u003e4dce88b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/SAP/cloud-security-xsuaa-integration/issues/1936\"\u003e#1936\u003c/a\u003e from SAP/feature/token-client-spring-3-module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/SAP/cloud-security-services-integration-library/commit/3073f80ffe87aae44fc17d449e91c07cb5afb723\"\u003e\u003ccode\u003e3073f80\u003c/code\u003e\u003c/a\u003e docs: Update migration guide with correct Spring Boot 3.x starter name\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/SAP/cloud-security-services-integration-library/commit/f25b05e62524809339a36ca5f97b63d28cba0daf\"\u003e\u003ccode\u003ef25b05e\u003c/code\u003e\u003c/a\u003e refactor: Centralize Spring Boot 3.x versions in parent POM\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/SAP/cloud-security-services-integration-library/commit/c3fba413e7da2d2efc59765bd7f6e4c27bc27c0b\"\u003e\u003ccode\u003ec3fba41\u003c/code\u003e\u003c/a\u003e feat: Add token-client-spring-3 module for Spring Boot 3.x compatibility\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/SAP/cloud-security-services-integration-library/commit/315650b50d40d27adb9f989955b156dbaff58861\"\u003e\u003ccode\u003e315650b\u003c/code\u003e\u003c/a\u003e Bugfix/id token exchange cert url and release 4.0.1 (\u003ca href=\"https://redirect.github.com/SAP/cloud-security-xsuaa-integration/issues/1935\"\u003e#1935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/SAP/cloud-security-xsuaa-integration/compare/3.6.8...4.0.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `com.sap.cds:cds-maven-plugin` from 4.8.0 to 4.9.0\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 3.5.11 to 3.5.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.14\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50173\"\u003e#50173\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50172\"\u003e#50172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50171\"\u003e#50171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50170\"\u003e#50170\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50169\"\u003e#50169\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50168\"\u003e#50168\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50035\"\u003e#50035\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50033\"\u003e#50033\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50021\"\u003e#50021\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50008\"\u003e#50008\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49942\"\u003e#49942\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49885\"\u003e#49885\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49865\"\u003e#49865\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49864\"\u003e#49864\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49863\"\u003e#49863\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49860\"\u003e#49860\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50092\"\u003e#50092\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50083\"\u003e#50083\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50023\"\u003e#50023\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50010\"\u003e#50010\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50007\"\u003e#50007\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49895\"\u003e#49895\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49835\"\u003e#49835\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Groovy 4.0.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49905\"\u003e#49905\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 6.6.49.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50140\"\u003e#50140\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50109\"\u003e#50109\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49907\"\u003e#49907\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jetty/jetty.project/releases/tag/jetty-12.0.34\"\u003eJetty 12.0.34\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49908\"\u003e#49908\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jOOQ/jOOQ/releases/tag/version-3.19.32\"\u003ejOOQ 3.19.32\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50110\"\u003e#50110\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Lombok 1.18.46 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50148\"\u003e#50148\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://mariadb.com/kb/en/mariadb-connector-j-3-5-8-release-notes\"\u003eMariaDB 3.5.8\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49909\"\u003e#49909\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/micrometer-metrics/micrometer/releases/tag/v1.15.11\"\u003eMicrometer 1.15.11\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49961\"\u003e#49961\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/micrometer-metrics/tracing/releases/tag/v1.5.11\"\u003eMicrometer Tracing 1.5.11\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49962\"\u003e#49962\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://dev.mysql.com/doc/relnotes/connector-j/en/news-9-7-0.html\"\u003eMySQL 9.7.0\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50161\"\u003e#50161\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Neo4j Java Driver 5.28.13 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50074\"\u003e#50074\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/reactor/reactor/releases/tag/2024.0.17\"\u003eReactor Bom 2024.0.17\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49963\"\u003e#49963\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-amqp/releases/tag/v3.2.10\"\u003eSpring AMQP 3.2.10\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49964\"\u003e#49964\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-authorization-server/releases/tag/1.5.7\"\u003eSpring Authorization Server 1.5.7\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49965\"\u003e#49965\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-data-bom/releases/tag/2025.0.11\"\u003eSpring Data Bom 2025.0.11\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49966\"\u003e#49966\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-framework/releases/tag/v6.2.18\"\u003eSpring Framework 6.2.18\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49967\"\u003e#49967\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-kafka/releases/tag/v3.3.15\"\u003eSpring Kafka 3.3.15\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50129\"\u003e#50129\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/7d7b3ac12735161f9c096ce6cb415bdd9fc4a0f4\"\u003e\u003ccode\u003e7d7b3ac\u003c/code\u003e\u003c/a\u003e Release v3.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f3b8eb0f2cd989dffe5dceefce80bde165328b31\"\u003e\u003ccode\u003ef3b8eb0\u003c/code\u003e\u003c/a\u003e Use SecureRandom in RandomValuePropertySource\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e22083a5684c3c65bcf2a9a90adcdecee6e85d50\"\u003e\u003ccode\u003ee22083a\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Cassandra\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/5ceb1a228932e35cc803d1c1fea68f0f984aaa90\"\u003e\u003ccode\u003e5ceb1a2\u003c/code\u003e\u003c/a\u003e Improve ApplicationTemp's temporary directory creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4b0862cc00815a47b22339d7eac7ddc3b6645bd4\"\u003e\u003ccode\u003e4b0862c\u003c/code\u003e\u003c/a\u003e Use constant-time comparison for remote DevTools secret\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e4febe2015d340ea9135437ee0659ea0f2260c31\"\u003e\u003ccode\u003ee4febe2\u003c/code\u003e\u003c/a\u003e Apply verify-hostname consistently\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/2c2ffe51c415f464fde6368fdd144b9551c3458c\"\u003e\u003ccode\u003e2c2ffe5\u003c/code\u003e\u003c/a\u003e Fix Windows test failure\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/0046a442f9ac5ae186359df575e68fab17d01646\"\u003e\u003ccode\u003e0046a44\u003c/code\u003e\u003c/a\u003e Protect against corrupt buildpack archives\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.5.11...v3.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.apache.maven.plugins:maven-enforcer-plugin` from 3.6.2 to 3.6.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/apache/maven-enforcer/releases\"\u003eorg.apache.maven.plugins:maven-enforcer-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.6.3\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e🚀 New features and improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMake bannedDependencies report root and transitive dependency in case both are banned. (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/940\"\u003e#940\u003c/a\u003e) \u003ca href=\"https://github.com/hvoynov\"\u003e\u003ccode\u003e@​hvoynov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd enforceBytecodeVersion rule based on mojohaus (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/968\"\u003e#968\u003c/a\u003e) \u003ca href=\"https://github.com/cstamas\"\u003e\u003ccode\u003e@​cstamas\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove formatting of deprecated API warning (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/951\"\u003e#951\u003c/a\u003e) \u003ca href=\"https://github.com/mthmulders\"\u003e\u003ccode\u003e@​mthmulders\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix handling of Java versions like 21.0.10.0.1 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/967\"\u003e#967\u003c/a\u003e) \u003ca href=\"https://github.com/parttimenerd\"\u003e\u003ccode\u003e@​parttimenerd\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd null checks for modelId in PluginWrapper (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/974\"\u003e#974\u003c/a\u003e) \u003ca href=\"https://github.com/cpfeiffer\"\u003e\u003ccode\u003e@​cpfeiffer\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📝 Documentation updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDocument the banMavenDefaults option for the requirePluginVersions rule. (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/936\"\u003e#936\u003c/a\u003e) \u003ca href=\"https://github.com/rpkrajewski\"\u003e\u003ccode\u003e@​rpkrajewski\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e👻 Maintenance\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ePlexusStringUtils\u003c/code\u003e Refaster recipes (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/943\"\u003e#943\u003c/a\u003e) \u003ca href=\"https://github.com/slachiewicz\"\u003e\u003ccode\u003e@​slachiewicz\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJUnit Jupiter migration from JUnit 4.x (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/941\"\u003e#941\u003c/a\u003e) \u003ca href=\"https://github.com/slachiewicz\"\u003e\u003ccode\u003e@​slachiewicz\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Dependency updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump org.apache.logging.log4j:log4j-core from 2.25.3 to 2.25.4 in /maven-enforcer-plugin/src/it/projects/MENFORCER-434 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/970\"\u003e#970\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeps: Parent POM 48 and align deps (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/979\"\u003e#979\u003c/a\u003e) \u003ca href=\"https://github.com/cstamas\"\u003e\u003ccode\u003e@​cstamas\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump commons-codec:commons-codec from 1.21.0 to 1.22.0 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/976\"\u003e#976\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump commons-io:commons-io from 2.21.0 to 2.22.0 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/975\"\u003e#975\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mavenVersion from 3.9.14 to 3.9.15 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/973\"\u003e#973\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mavenVersion from 3.9.13 to 3.9.14 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/965\"\u003e#965\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mavenVersion from 3.9.12 to 3.9.13 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/964\"\u003e#964\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.5.0 to 3.5.1 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/963\"\u003e#963\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate log4j in test to avoid CVE (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/961\"\u003e#961\u003c/a\u003e) \u003ca href=\"https://github.com/Bukama\"\u003e\u003ccode\u003e@​Bukama\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump commons-codec:commons-codec from 1.20.0 to 1.21.0 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/962\"\u003e#962\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.assertj:assertj-core from 3.27.6 to 3.27.7 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/960\"\u003e#960\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.mojo:mrm-maven-plugin from 1.7.0 to 1.7.1 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/959\"\u003e#959\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven:maven-parent from 46 to 47 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/958\"\u003e#958\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.plexus:plexus-archiver from 4.10.4 to 4.11.0 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/957\"\u003e#957\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate to 46 including fixes (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/955\"\u003e#955\u003c/a\u003e) \u003ca href=\"https://github.com/Bukama\"\u003e\u003ccode\u003e@​Bukama\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.3.0 to 3.5.0 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/956\"\u003e#956\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mavenVersion from 3.9.11 to 3.9.12 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/948\"\u003e#948\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.commons:commons-lang3 from 3.19.0 to 3.20.0 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/947\"\u003e#947\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump commons-io:commons-io from 2.20.0 to 2.21.0 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/946\"\u003e#946\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump commons-codec:commons-codec from 1.19.0 to 1.20.0 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/945\"\u003e#945\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-enforcer/commit/c7daff33d46c9c3ee0666540c6857c66cf159e70\"\u003e\u003ccode\u003ec7daff3\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare release enforcer-3.6.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-enforcer/commit/ee46e78b046be9882a739c07556940329a7345d6\"\u003e\u003ccode\u003eee46e78\u003c/code\u003e\u003c/a\u003e Make bannedDependencies report root and transitive dependency in case both ar...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-enforcer/commit/0806924d8f6c5ad6105ac387bf323846e769b18c\"\u003e\u003ccode\u003e0806924\u003c/code\u003e\u003c/a\u003e Document the banMavenDefaults option for the requirePluginVersions rule. (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/issues/936\"\u003e#936\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-enforcer/commit/8e4f5b94453de97592cf3935b79319894f013329\"\u003e\u003ccode\u003e8e4f5b9\u003c/code\u003e\u003c/a\u003e Add better enforceBytecodeVersion rule based on mojohaus (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/issues/968\"\u003e#968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-enforcer/commit/fd4b1486dcc93394d5f6a11687efd51d0d30b22d\"\u003e\u003ccode\u003efd4b148\u003c/code\u003e\u003c/a\u003e Add fix for 21.0.10.0.1 issue (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/issues/967\"\u003e#967\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-enforcer/commit/f32d5979ef387668162c2beb905b368e25accd70\"\u003e\u003ccode\u003ef32d597\u003c/code\u003e\u003c/a\u003e Deps: Parent POM 48 and align deps (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/issues/979\"\u003e#979\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-enforcer/commit/df0f2a6d7fbbaf79914cdb56fa5899d99c8eaf19\"\u003e\u003ccode\u003edf0f2a6\u003c/code\u003e\u003c/a\u003e Bump commons-codec:commons-codec from 1.21.0 to 1.22.0 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/issues/976\"\u003e#976\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-enforcer/commit/2da7a68b4d8d9d2da866ffaf1e07a206c9b7115d\"\u003e\u003ccode\u003e2da7a68\u003c/code\u003e\u003c/a\u003e Add null checks for modelId in PluginWrapper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-enforcer/commit/91eb4d9fe1f6f65137991c1131131ceaca542245\"\u003e\u003ccode\u003e91eb4d9\u003c/code\u003e\u003c/a\u003e Bump commons-io:commons-io from 2.21.0 to 2.22.0 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/issues/975\"\u003e#975\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-enforcer/commit/b6222459bf3256bfd747731a7f4ea81577777ffe\"\u003e\u003ccode\u003eb622245\u003c/code\u003e\u003c/a\u003e Bump mavenVersion from 3.9.14 to 3.9.15 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/issues/973\"\u003e#973\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/apache/maven-enforcer/compare/enforcer-3.6.2...enforcer-3.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `com.diffplug.spotless:spotless-maven-plugin` from 3.3.0 to 3.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/diffplug/spotless/releases\"\u003ecom.diffplug.spotless:spotless-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eMaven Plugin v3.5.1\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e\u0026lt;licenseHeader\u0026gt;\u003c/code\u003e with \u003ccode\u003e\u0026lt;yearMode\u0026gt;SET_FROM_GIT\u0026lt;/yearMode\u0026gt;\u003c/code\u003e no longer runs \u003ccode\u003egit log\u003c/code\u003e through a shell, eliminating a shell-injection vector when formatting files whose names contain shell metacharacters.\u003c/li\u003e\n\u003cli\u003eBump transitive \u003ccode\u003eplexus-utils\u003c/code\u003e \u003ccode\u003e4.0.2\u003c/code\u003e -\u0026gt; \u003ccode\u003e4.0.3\u003c/code\u003e to address \u003ca href=\"https://github.com/advisories/GHSA-6fmv-xxpf-w3cw\"\u003eCVE-2025-67030\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/issues/2919\"\u003e#2919\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eMaven Plugin v3.5.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e\u0026lt;scalafmt\u0026gt;\u003c/code\u003e now reads the version from the \u003ccode\u003eversion\u003c/code\u003e field in the scalafmt config file when no \u003ccode\u003e\u0026lt;version\u0026gt;\u003c/code\u003e is explicitly set, falling back to the built-in default only if neither is available. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2922\"\u003e#2922\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e\u0026lt;toml\u0026gt;\u003c/code\u003e format type with \u003ccode\u003e\u0026lt;versionCatalog\u0026gt;\u003c/code\u003e step for formatting and sorting Gradle version catalog files. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/issues/2916\"\u003e#2916\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e\u0026lt;javaparserVersion\u0026gt;\u003c/code\u003e option to \u003ccode\u003e\u0026lt;cleanthat\u0026gt;\u003c/code\u003e, allowing users to override the JavaParser version pulled in transitively by Cleanthat. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2903\"\u003e#2903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd a \u003ccode\u003eexpandWildcardImports\u003c/code\u003e API for java (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2930\"\u003e#2829\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePreserve case of JDBI named bind params that collide with SQL keywords (e.g. \u003ccode\u003e:limit\u003c/code\u003e, \u003ccode\u003e:offset\u003c/code\u003e) in the DBeaver SQL formatter. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2899\"\u003e#2899\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003e-Dspotless.ratchetFrom=...\u003c/code\u003e user property now takes priority over \u003ccode\u003e\u0026lt;ratchetFrom\u0026gt;\u003c/code\u003e configured in the plugin or in individual formatters, instead of being overridden by them. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2896\"\u003e#2896\u003c/a\u003e, fixes \u003ca href=\"https://redirect.github.com/diffplug/spotless/issues/2842\"\u003e#2842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix non-idempotent formatting when \u003ccode\u003eimportOrder()\u003c/code\u003e is combined with \u003ccode\u003egreclipse()\u003c/code\u003e: a single catch-all group no longer strips blank lines that \u003ccode\u003egreclipse()\u003c/code\u003e independently inserted between import groups. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2914\"\u003e#2914\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003eexpandWildcardImports\u003c/code\u003e failing on JDK XML types such as \u003ccode\u003eorg.xml.sax.InputSource\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2921\"\u003e#2921\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse Eclipse JDT's collator-based comparison when sorting Java members to better match Eclipse save actions. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2920\"\u003e#2920\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump default \u003ccode\u003ecleanthat\u003c/code\u003e version \u003ccode\u003e2.24\u003c/code\u003e -\u0026gt; \u003ccode\u003e2.25\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2903\"\u003e#2903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump default \u003ccode\u003eeclipse-jdt\u003c/code\u003e version from \u003ccode\u003e4.35\u003c/code\u003e to \u003ccode\u003e4.39\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2912\"\u003e#2912\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eMaven Plugin v3.4.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003etableTest\u003c/code\u003e format type for standalone \u003ccode\u003e.table\u003c/code\u003e files. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2880\"\u003e#2880\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump default \u003ccode\u003etabletest-formatter\u003c/code\u003e version \u003ccode\u003e1.0.1\u003c/code\u003e -\u0026gt; \u003ccode\u003e1.1.1\u003c/code\u003e, now works with Java 17+. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2880\"\u003e#2880\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eLib v3.3.1\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eGitPrePushHookInstaller\u003c/code\u003e didn't work on windows, now fixed. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2562\"\u003e#2562\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/diffplug/spotless/blob/main/CHANGES.md\"\u003ecom.diffplug.spotless:spotless-maven-plugin's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003espotless-lib and spotless-lib-extra releases\u003c/h1\u003e\n\u003cp\u003eIf you are a Spotless user (as opposed to developer), then you are probably looking for:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diffplug/spotless/blob/main/plugin-gradle/CHANGES.md\"\u003ehttps://github.com/diffplug/spotless/blob/main/plugin-gradle/CHANGES.md\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diffplug/spotless/blob/main/plugin-maven/CHANGES.md\"\u003ehttps://github.com/diffplug/spotless/blob/main/plugin-maven/CHANGES.md\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThis document is intended for Spotless developers.\u003c/p\u003e\n\u003cp\u003eWe adhere to the \u003ca href=\"https://keepachangelog.com/en/1.0.0/\"\u003ekeepachangelog\u003c/a\u003e format (starting after version \u003ccode\u003e1.27.0\u003c/code\u003e).\u003c/p\u003e\n\u003ch2\u003e[Unreleased]\u003c/h2\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eFormatter\u003c/code\u003e no longer recomputes line-ending normalization (\u003ccode\u003eLineEnding.toUnix\u003c/code\u003e) a second time for every formatter step that changes content, removing redundant O(n) work from the core formatting loop. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2934\"\u003e#2934\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.6.1] - 2026-05-15\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eLicenseHeaderStep\u003c/code\u003e in \u003ccode\u003eSET_FROM_GIT\u003c/code\u003e year mode no longer invokes \u003ccode\u003egit log\u003c/code\u003e through \u003ccode\u003ebash -c\u003c/code\u003e / \u003ccode\u003ecmd /c\u003c/code\u003e, eliminating a shell-injection vector when processing repositories that contain files whose names include shell metacharacters.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.6.0] - 2026-05-14\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003escalafmt()\u003c/code\u003e now reads the version from the \u003ccode\u003eversion\u003c/code\u003e field in the scalafmt config file when no version is explicitly set in the plugin config, falling back to the built-in default only if neither is available. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2922\"\u003e#2922\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eversionCatalog\u003c/code\u003e step for formatting and sorting Gradle version catalog (\u003ccode\u003e.toml\u003c/code\u003e) files. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/issues/2916\"\u003e#2916\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003ejavaparserVersion\u003c/code\u003e option to the Cleanthat step, allowing callers to override the JavaParser version pulled in transitively by Cleanthat. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2903\"\u003e#2903\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePreserve case of JDBI named bind params that collide with SQL keywords (e.g. \u003ccode\u003e:limit\u003c/code\u003e, \u003ccode\u003e:offset\u003c/code\u003e) in the DBeaver SQL formatter. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2899\"\u003e#2899\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix non-idempotent formatting when \u003ccode\u003eimportOrder()\u003c/code\u003e is combined with \u003ccode\u003egreclipse()\u003c/code\u003e: a single catch-all group no longer strips blank lines that \u003ccode\u003egreclipse()\u003c/code\u003e independently inserted between import groups. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2914\"\u003e#2914\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003eexpandWildcardImports\u003c/code\u003e failing on JDK XML types such as \u003ccode\u003eorg.xml.sax.InputSource\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2921\"\u003e#2921\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse Eclipse JDT's collator-based comparison when sorting Java members to better match Eclipse save actions. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2920\"\u003e#2920\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump default \u003ccode\u003ecleanthat\u003c/code\u003e version \u003ccode\u003e2.24\u003c/code\u003e -\u0026gt; \u003ccode\u003e2.25\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2903\"\u003e#2903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump default \u003ccode\u003eeclipse-jdt\u003c/code\u003e version from \u003ccode\u003e4.35\u003c/code\u003e to \u003ccode\u003e4.39\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2912\"\u003e#2912\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.0] - 2026-03-18\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003etableTest\u003c/code\u003e format type for standalone \u003ccode\u003e.table\u003c/code\u003e files. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2880\"\u003e#2880\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump default \u003ccode\u003etabletest-formatter\u003c/code\u003e version \u003ccode\u003e1.0.1\u003c/code\u003e -\u0026gt; \u003ccode\u003e1.1.1\u003c/code\u003e, now works with Java 17+. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2880\"\u003e#2880\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.4.0] - 2026-03-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003etabletest-formatter\u003c/code\u003e support for Java and Kotlin. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2860\"\u003e#2860\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix the ability to specify a wildcard version (\u003ccode\u003e*\u003c/code\u003e) for external formatter executables, which did not work. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2848\"\u003e#2848\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[fix] \u003ccode\u003eConcurrentModificationException\u003c/code\u003e in \u003ccode\u003eexpandWildcardImports\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/diffplug/spotless/issues/2830\"\u003e#2830\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.3.0] - 2026-01-27\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eP2Provisioner\u003c/code\u003e interface in lib-extra to enable build-tool-specific caching strategies for Eclipse P2 dependencies, fixing OutOfMemoryError in large multi-project builds. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/issues/2788\"\u003e#2788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diffplug/spotless/commit/0c48edf9597ec16e82e1a0b6da76a6a6dcc0d5de\"\u003e\u003ccode\u003e0c48edf\u003c/code\u003e\u003c/a\u003e Published maven/3.5.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diffplug/spotless/commit/c1595c815d5fdd344505792aa4df588f467f0ca9\"\u003e\u003ccode\u003ec1595c8\u003c/code\u003e\u003c/a\u003e Published gradle/8.5.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diffplug/spotless/commit/b26b570f7eba32554061b036206f675180cd2384\"\u003e\u003ccode\u003eb26b570\u003c/code\u003e\u003c/a\u003e Published lib/4.6.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diffplug/spotless/commit/ac3f6f14a2e007c2d36223335df96a2c9ba92719\"\u003e\u003ccode\u003eac3f6f1\u003c/code\u003e\u003c/a\u003e Bump plexus-utils to 4.0.3 to address CVE-2025-67030 (\u003ca href=\"https://redirect.github.com/diffplug/spotless/issues/2932\"\u003e#2932\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diffplug/spotless/commit/f5039f633d436a8831d09a934a3490d68968d684\"\u003e\u003ccode\u003ef5039f6\u003c/code\u003e\u003c/a\u003e Bump plexus-utils to 4.0.3 to address CVE-2025-67030\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diffplug/spotless/commit/0e77837d4789cb43b83c21d566fe4185adc4ae2b\"\u003e\u003ccode\u003e0e77837\u003c/code\u003e\u003c/a\u003e Fix shell-injection in LicenseHeaderStep SET_FROM_GIT mode (\u003ca href=\"https://redirect.github.com/diffplug/spotless/issues/2931\"\u003e#2931\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diffplug/spotless/commit/84f642329de804615ff16f34d12a2249f1890850\"\u003e\u003ccode\u003e84f6423\u003c/code\u003e\u003c/a\u003e Fix shell-injection in LicenseHeaderStep SET_FROM_GIT mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diffplug/spotless/commit/b87eb75efe54e94a7248ff5e2d07231bcc3a1b55\"\u003e\u003ccode\u003eb87eb75\u003c/code\u003e\u003c/a\u003e Published maven/3.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diffplug/spotless/commit/97c3baf34b79d0028a343776bb2c2fb223930355\"\u003e\u003ccode\u003e97c3baf\u003c/code\u003e\u003c/a\u003e Published gradle/8.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diffplug/spotless/commit/3dd1a9690270e7191f2c7db8314a9079b127ee76\"\u003e\u003ccode\u003e3dd1a96\u003c/code\u003e\u003c/a\u003e Published lib/4.6.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/diffplug/spotless/compare/lib/3.3.0...maven/3.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 3.5.11 to 3.5.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.14\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50173\"\u003e#50173\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50172\"\u003e#50172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50171\"\u003e#50171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50170\"\u003e#50170\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50169\"\u003e#50169\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50168\"\u003e#50168\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50035\"\u003e#50035\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50033\"\u003e#50033\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50021\"\u003e#50021\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50008\"\u003e#50008\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49942\"\u003e#49942\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49885\"\u003e#49885\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49865\"\u003e#49865\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49864\"\u003e#49864\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-proje...\n\n_Description has been truncated_","html_url":"https://github.com/capire/xflights-java/pull/39","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/capire%2Fxflights-java/issues/39","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/39/packages"},{"uuid":"4418375734","node_id":"PR_kwDOO2iZlM7aH0ZY","number":496,"state":"open","title":"build(agent)(deps): bump the spring-framework group in /agent/backend with 3 updates","user":"dependabot[bot]","labels":["Agent","dependencies"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-11T05:50:12.000Z","updated_at":"2026-05-11T05:50:13.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(agent)(deps): bump","group_name":"spring-framework","update_count":3,"packages":[{"name":"org.springframework.boot:spring-boot-dependencies","old_version":"3.5.7","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"3.5.7","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.modulith:spring-modulith-bom","old_version":"1.4.4","new_version":"2.0.6","repository_url":"https://github.com/spring-projects/spring-modulith"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"3.5.7","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"}],"path":"/agent/backend","ecosystem":"maven"},"body":"Bumps the spring-framework group in /agent/backend with 3 updates: [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot), [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) and [org.springframework.modulith:spring-modulith-bom](https://github.com/spring-projects/spring-modulith).\n\nUpdates `org.springframework.boot:spring-boot-dependencies` from 3.5.7 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.5.7...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 3.5.7 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.5.7...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.modulith:spring-modulith-bom` from 1.4.4 to 2.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-modulith/releases\"\u003eorg.springframework.modulith:spring-modulith-bom's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.0.6\u003c/h2\u003e\n\u003ch2\u003e:bulb: Improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrefer \u003ccode\u003e@SpringBootApplication\u003c/code\u003e on explicitly declared classes in \u003ccode\u003e@ModuleSlicing\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1645\"\u003e#1645\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:beetle: Bugs\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eIncorrect parameters in documentation for staleness of event publications of resubmitted event publications \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1664\"\u003e#1664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eJdbcEventPublicationRepository\u003c/code\u003e deletes currently processing publication \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1653\"\u003e#1653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove batch handling in \u003ccode\u003eDefaultEventpublicationRegistry.processFailedPublications(…)\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1651\"\u003e#1651\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Spring Boot 4.0.6 \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1679\"\u003e#1679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to MongoDB 5.6.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1670\"\u003e#1670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Lombok 1.18.46 \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1669\"\u003e#1669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Testcontainers 2.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1668\"\u003e#1668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to ArchUnit 1.4.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1667\"\u003e#1667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Spring Framework 7.0.7 \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1666\"\u003e#1666\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Micrometer Tracing 1.6.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1665\"\u003e#1665\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.0.5\u003c/h2\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Spring Boot 4.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1635\"\u003e#1635\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.0.4\u003c/h2\u003e\n\u003ch2\u003e:bulb: Improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd details about the refined event publication lifecycle to the reference documentation \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1594\"\u003e#1594\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:beetle: Bugs\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect \u003ccode\u003eEventPublication.Status\u003c/code\u003e reference in \u003ccode\u003e….staleness.published\u003c/code\u003e metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1601\"\u003e#1601\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePackage-based named interfaces not properly merged \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1599\"\u003e#1599\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Spring Boot 4.0.4 \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1619\"\u003e#1619\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Testcontainers 2.0.4 \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1616\"\u003e#1616\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Spring Framework 7.0.6 \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1615\"\u003e#1615\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Micrometer Tracing 1.6.4 \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1614\"\u003e#1614\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.0.3\u003c/h2\u003e\n\u003ch2\u003e:bulb: Improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eHibernate schema validation fails with JPA event publication registry \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1570\"\u003e#1570\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpringModulithProcessor fails on Windows with KAPT - StringIndexOutOfBoundsException due to hardcoded forward slashes \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1546\"\u003e#1546\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:beetle: Bugs\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-modulith/commit/20a0cbaef6fdbc38daac3678e63b2c4e934e7289\"\u003e\u003ccode\u003e20a0cba\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1675\"\u003eGH-1675\u003c/a\u003e - Release version 2.0.6.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-modulith/commit/680a6a941ddefe606dde7b462fac0d6ba34d460a\"\u003e\u003ccode\u003e680a6a9\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1679\"\u003eGH-1679\u003c/a\u003e - Upgrade to Spring Boot 4.0.6.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-modulith/commit/a328cab6bb66e81151c98a968db34876bb84b174\"\u003e\u003ccode\u003ea328cab\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1666\"\u003eGH-1666\u003c/a\u003e - Remove explicit Spring Framework version from examples.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-modulith/commit/d0281dd6c62415c9847e2e2f5935f9a142a7cadd\"\u003e\u003ccode\u003ed0281dd\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1666\"\u003eGH-1666\u003c/a\u003e - Adapt to changes in ApplicationListenerMethodAdapter.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-modulith/commit/46c70e9f5f181804a362d08d7d9f9d7e24904d99\"\u003e\u003ccode\u003e46c70e9\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1668\"\u003eGH-1668\u003c/a\u003e - Upgrade to Testcontainers 2.0.5.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-modulith/commit/6745da6245a47d2878dc13cc915e23e6fbaca621\"\u003e\u003ccode\u003e6745da6\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1667\"\u003eGH-1667\u003c/a\u003e - Upgrade to ArchUnit 1.4.2.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-modulith/commit/d7e198358dd3713552b16474a8dbd8349235565d\"\u003e\u003ccode\u003ed7e1983\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1666\"\u003eGH-1666\u003c/a\u003e - Upgrade to Spring Framework 7.0.7.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-modulith/commit/ce6064be1fc37f4d7618258b3b5184faa4587006\"\u003e\u003ccode\u003ece6064b\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1665\"\u003eGH-1665\u003c/a\u003e - Upgrade to Micrometer Tracing 1.6.5.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-modulith/commit/5b63b840ba27189def6ce862f111ce07d19c303d\"\u003e\u003ccode\u003e5b63b84\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1664\"\u003eGH-1664\u003c/a\u003e - Fix resubmission staleness property naming.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-modulith/commit/d5a294fe68d21e1e2ad46a44959f2be6779a4292\"\u003e\u003ccode\u003ed5a294f\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1653\"\u003eGH-1653\u003c/a\u003e - Fix deletion of completed events in JdbcEventPublicationRepositoryV2.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-modulith/compare/1.4.4...2.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 3.5.7 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.5.7...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/BBMRI-cz/data-quality-framework/pull/496","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/BBMRI-cz%2Fdata-quality-framework/issues/496","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/496/packages"},{"uuid":"4392114910","node_id":"PR_kwDOReQyjs7Yzerh","number":72,"state":"closed","title":"Bump the spring-boot group across 1 directory with 4 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-05-26T08:50:31.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-06T14:21:53.000Z","updated_at":"2026-05-26T08:50:34.000Z","time_to_close":1708118,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"spring-boot","update_count":4,"packages":[{"name":"org.springframework.boot:spring-boot-starter-web","old_version":"3.1.2","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-starter-test","old_version":"3.1.2","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-starter-data-redis","old_version":"3.1.2","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"3.1.2","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"}],"path":null,"ecosystem":"maven"},"body":"Bumps the spring-boot group with 4 updates in the /backend/istudyspot-backend directory: [org.springframework.boot:spring-boot-starter-web](https://github.com/spring-projects/spring-boot), [org.springframework.boot:spring-boot-starter-test](https://github.com/spring-projects/spring-boot), [org.springframework.boot:spring-boot-starter-data-redis](https://github.com/spring-projects/spring-boot) and [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot).\n\nUpdates `org.springframework.boot:spring-boot-starter-web` from 3.1.2 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-web's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.1.2...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-starter-test` from 3.1.2 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-test's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.1.2...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-starter-data-redis` from 3.1.2 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-data-redis's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.1.2...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 3.1.2 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.1.2...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n","html_url":"https://github.com/yu086868-ui/iStudySpot/pull/72","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/yu086868-ui%2FiStudySpot/issues/72","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/72/packages"},{"uuid":"4374065420","node_id":"PR_kwDOSQQ4Ac7X4NV5","number":26,"state":"closed","title":"deps(deps): bump the spring-boot group with 2 updates","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-04T10:09:52.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-04T04:45:59.000Z","updated_at":"2026-05-04T10:10:00.000Z","time_to_close":19433,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(deps): bump","group_name":"spring-boot","update_count":2,"packages":[{"name":"org.springframework.boot:spring-boot-dependencies","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"}],"path":null,"ecosystem":"maven"},"body":"Bumps the spring-boot group with 2 updates: [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot) and [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot).\n\nUpdates `org.springframework.boot:spring-boot-dependencies` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/iambilotta/spring-aiact/pull/26","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/iambilotta%2Fspring-aiact/issues/26","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/26/packages"},{"uuid":"4373443361","node_id":"PR_kwDOIhZj1M7X2Qt_","number":396,"state":"closed","title":"Bump the all group across 2 directories with 24 updates","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-18T00:52:56.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-04T00:47:28.000Z","updated_at":"2026-05-18T00:52:58.000Z","time_to_close":1209928,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"all","update_count":24,"packages":[{"name":"com.google.errorprone:error_prone_annotations","old_version":"2.44.0","new_version":"2.49.0","repository_url":"https://github.com/google/error-prone"},{"name":"com.google.guava:guava","old_version":"33.5.0-jre","new_version":"33.6.0-jre","repository_url":"https://github.com/google/guava"},{"name":"joda-time:joda-time","old_version":"2.14.0","new_version":"2.14.2","repository_url":"https://github.com/JodaOrg/joda-time"},{"name":"org.yaml:snakeyaml","old_version":"2.5","new_version":"2.6"},{"name":"org.jetbrains.kotlin:kotlin-bom","old_version":"2.2.21","new_version":"2.3.21","repository_url":"https://github.com/JetBrains/kotlin"},{"name":"com.fasterxml.jackson:jackson-bom","old_version":"2.20.1","new_version":"2.21.3","repository_url":"https://github.com/FasterXML/jackson-bom"},{"name":"org.apache.logging.log4j:log4j-bom","old_version":"0.0.0-SNAPSHOT","new_version":"2.25.4","repository_url":"https://github.com/apache/logging-log4j2"},{"name":"org.apache.logging.log4j:log4j-core","old_version":"2.25.2","new_version":"2.25.4"},{"name":"org.springframework.boot:spring-boot-dependencies","old_version":"3.5.7","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"3.5.7","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.cloud:spring-cloud-dependencies","old_version":"2025.0.0","new_version":"2025.1.1","repository_url":"https://github.com/spring-cloud/spring-cloud-release"},{"name":"org.aspectj:aspectjweaver","old_version":"1.9.25","new_version":"1.9.25.1","repository_url":"https://github.com/eclipse/org.aspectj"},{"name":"org.aspectj:aspectjrt","old_version":"1.9.25","new_version":"1.9.25.1","repository_url":"https://github.com/eclipse/org.aspectj"},{"name":"org.aspectj:aspectjtools","old_version":"1.9.25","new_version":"1.9.25.1","repository_url":"https://github.com/eclipse/org.aspectj"},{"name":"org.codehaus.mojo:aspectj-maven-plugin","old_version":"1.15.0","new_version":"1.16.0","repository_url":"https://github.com/mojohaus/aspectj-maven-plugin"},{"name":"org.apache.maven.plugins:maven-jlink-plugin","old_version":"3.2.0","new_version":"3.3.0","repository_url":"https://github.com/apache/maven-jlink-plugin"},{"name":"io.fabric8:kubernetes-client-bom","old_version":"7.4.0","new_version":"7.6.1","repository_url":"https://github.com/fabric8io/kubernetes-client"}],"path":null,"ecosystem":"maven"},"body":"Bumps the all group with 17 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [com.google.errorprone:error_prone_annotations](https://github.com/google/error-prone) | `2.44.0` | `2.49.0` |\n| [com.google.guava:guava](https://github.com/google/guava) | `33.5.0-jre` | `33.6.0-jre` |\n| [joda-time:joda-time](https://github.com/JodaOrg/joda-time) | `2.14.0` | `2.14.2` |\n| [org.yaml:snakeyaml](https://bitbucket.org/snakeyaml/snakeyaml) | `2.5` | `2.6` |\n| [org.jetbrains.kotlin:kotlin-bom](https://github.com/JetBrains/kotlin) | `2.2.21` | `2.3.21` |\n| [com.fasterxml.jackson:jackson-bom](https://github.com/FasterXML/jackson-bom) | `2.20.1` | `2.21.3` |\n| [org.apache.logging.log4j:log4j-bom](https://github.com/apache/logging-log4j2) | `0.0.0-SNAPSHOT` | `2.25.4` |\n| org.apache.logging.log4j:log4j-core | `2.25.2` | `2.25.4` |\n| [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot) | `3.5.7` | `4.0.6` |\n| [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) | `3.5.7` | `4.0.6` |\n| [org.springframework.cloud:spring-cloud-dependencies](https://github.com/spring-cloud/spring-cloud-release) | `2025.0.0` | `2025.1.1` |\n| [org.aspectj:aspectjweaver](https://github.com/eclipse/org.aspectj) | `1.9.25` | `1.9.25.1` |\n| [org.aspectj:aspectjrt](https://github.com/eclipse/org.aspectj) | `1.9.25` | `1.9.25.1` |\n| [org.aspectj:aspectjtools](https://github.com/eclipse/org.aspectj) | `1.9.25` | `1.9.25.1` |\n| [org.codehaus.mojo:aspectj-maven-plugin](https://github.com/mojohaus/aspectj-maven-plugin) | `1.15.0` | `1.16.0` |\n| [org.apache.maven.plugins:maven-jlink-plugin](https://github.com/apache/maven-jlink-plugin) | `3.2.0` | `3.3.0` |\n| [io.fabric8:kubernetes-client-bom](https://github.com/fabric8io/kubernetes-client) | `7.4.0` | `7.6.1` |\n\nBumps the all group with 8 updates in the /log4j-samples-graalvm directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [org.apache.logging.log4j:log4j-bom](https://github.com/apache/logging-log4j2) | `2.25.2` | `2.25.4` |\n| [org.codehaus.mojo:exec-maven-plugin](https://github.com/mojohaus/exec-maven-plugin) | `3.6.2` | `3.6.3` |\n| [org.assertj:assertj-bom](https://github.com/assertj/assertj) | `3.27.6` | `3.27.7` |\n| [org.junit:junit-bom](https://github.com/junit-team/junit-framework) | `6.0.1` | `6.0.3` |\n| [ch.qos.logback:logback-classic](https://github.com/qos-ch/logback) | `1.5.20` | `1.5.32` |\n| [org.json:json](https://github.com/douglascrockford/JSON-java) | `20250517` | `20251224` |\n| [net.javacrumbs.json-unit:json-unit-assertj](https://github.com/lukas-krecan/JsonUnit) | `5.0.0` | `5.1.1` |\n| [org.graalvm.buildtools:native-maven-plugin](https://github.com/graalvm/native-build-tools) | `0.11.2` | `1.1.0` |\n\n\nUpdates `com.google.errorprone:error_prone_annotations` from 2.44.0 to 2.49.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/error-prone/releases\"\u003ecom.google.errorprone:error_prone_annotations's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eError Prone 2.49.0\u003c/h2\u003e\n\u003cp\u003eThis release includes several changes to \u003ccode\u003eMatcher\u003c/code\u003e APIs, and removed some deprecated or problematic APIs:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRemove deprecated \u003ccode\u003eMethodMatchers.withSignature\u003c/code\u003e API, which relies on fragile \u003ccode\u003etoString\u003c/code\u003e behaviour. Alternatives for matching on method signatures with varargs and type parameters were added in \u003ca href=\"https://github.com/google/error-prone/commit/a98a1c55d92d343ae2c142485e8888cd46aa78b3\"\u003ehttps://github.com/google/error-prone/commit/a98a1c55d92d343ae2c142485e8888cd46aa78b3\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eRemoved \u003ccode\u003evariableType(Matcher)\u003c/code\u003e API. \u003ccode\u003eMatchers.variableType(Matcher)\u003c/code\u003e uses \u003ccode\u003eVariableTree#getType\u003c/code\u003e to match variable types, which own't work for lambda parameters with inferred types after \u003ca href=\"https://bugs.openjdk.org/browse/JDK-8268850\"\u003eJDK-8268850\u003c/a\u003e. The recommended replacement is \u003ccode\u003evariableType(TypePredicate)\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eMake \u003ccode\u003eenclosingPackage\u003c/code\u003e return an optional. Module elements are not enclosed by a package, checks using \u003ccode\u003eenclosingPackage\u003c/code\u003e shouldn't assume an enclosing package exists when processing arbitrary elements.\u003c/li\u003e\n\u003cli\u003eNew \u003ccode\u003eFieldMatchers\u003c/code\u003e API, similar to \u003ccode\u003eMethodMatchers\u003c/code\u003e (\u003ca href=\"https://github.com/google/error-prone/commit/1dd9c3a6bd76fca8104be6ae1c1004655d6a1745\"\u003ehttps://github.com/google/error-prone/commit/1dd9c3a6bd76fca8104be6ae1c1004655d6a1745\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eNew checks:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://errorprone.info/bugpattern/AssertThrowsBlockToExpression\"\u003e\u003ccode\u003eAssertThrowsBlockToExpression\u003c/code\u003e\u003c/a\u003e: Discourage unnecessary block lambdas in \u003ccode\u003eassertThrows\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://errorprone.info/bugpattern/AssertThrowsMinimizer\"\u003e\u003ccode\u003eAssertThrowsMinimizer\u003c/code\u003e\u003c/a\u003e: Suggest minimizing the amount of logic in \u003ccode\u003eassertThrows\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://errorprone.info/bugpattern/MemorySegmentReferenceEquality\"\u003e\u003ccode\u003eMemorySegmentReferenceEquality\u003c/code\u003e\u003c/a\u003e: Discourage using reference equality for \u003ccode\u003eMemorySegments\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://errorprone.info/bugpattern/PreferThrowsTag\"\u003e\u003ccode\u003ePreferThrowsTag\u003c/code\u003e\u003c/a\u003e: Recommends using \u003ccode\u003e@throws\u003c/code\u003e instead of the legacy \u003ccode\u003e@exception\u003c/code\u003e javadoc tag.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://errorprone.info/bugpattern/RecordAccessorInCompactConstructor\"\u003e\u003ccode\u003eRecordAccessorInCompactConstructor\u003c/code\u003e\u003c/a\u003e: detect record accessors inside the compact canonical ctors, which read uninitialized fields.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eClosed issues: \u003ca href=\"https://redirect.github.com/google/error-prone/issues/2283\"\u003e#2283\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/3503\"\u003e#3503\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5210\"\u003e#5210\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5289\"\u003e#5289\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5548\"\u003e#5548\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5548\"\u003e#5548\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5554\"\u003e#5554\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5609\"\u003e#5609\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5614\"\u003e#5614\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5656\"\u003e#5656\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eFull changelog: \u003ca href=\"https://github.com/google/error-prone/compare/v2.48.0...v2.49.0\"\u003ehttps://github.com/google/error-prone/compare/v2.48.0...v2.49.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eError Prone 2.48.0\u003c/h2\u003e\n\u003cp\u003eChanges:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdded support for passing flags with command-line argument files (\u003ccode\u003e@\u003c/code\u003e-files) (\u003ca href=\"https://github.com/google/error-prone/commit/8e84edf1beedc99ff2cff3c21a7adec578ad053e\"\u003ehttps://github.com/google/error-prone/commit/8e84edf1beedc99ff2cff3c21a7adec578ad053e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eNew checks:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://errorprone.info/bugpattern/AvoidValueSetter\"\u003e\u003ccode\u003eAvoidValueSetter\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://errorprone.info/bugpattern/UnnecessarySemicolon\"\u003e\u003ccode\u003eUnnecessarySemicolon\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eClosed issues: \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5529\"\u003e#5529\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5537\"\u003e#5537\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5522\"\u003e#5522\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5521\"\u003e#5521\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eFull changelog: \u003ca href=\"https://github.com/google/error-prone/compare/v2.47.0...v2.48.0\"\u003ehttps://github.com/google/error-prone/compare/v2.47.0...v2.48.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eError Prone 2.47.0\u003c/h2\u003e\n\u003cp\u003eNew checks:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://errorprone.info/bugpattern/InterruptedInCatchBlock\"\u003e\u003ccode\u003eInterruptedInCatchBlock\u003c/code\u003e\u003c/a\u003e: Detect accidental calls to \u003ccode\u003eThread.interrupted()\u003c/code\u003e inside of \u003ccode\u003ecatch(InterruptedException e)\u003c/code\u003e blocks.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://errorprone.info/bugpattern/RefactorSwitch\"\u003e\u003ccode\u003eRefactorSwitch\u003c/code\u003e\u003c/a\u003e: Refactorings to simplify arrow switches\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://errorprone.info/bugpattern/UnnamedVariable\"\u003e\u003ccode\u003eUnnamedVariable\u003c/code\u003e\u003c/a\u003e: Rename unused variables to \u003ccode\u003e_\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eClosed issues: \u003ca href=\"https://redirect.github.com/google/error-prone/issues/1811\"\u003e#1811\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/4168\"\u003e#4168\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5459\"\u003e#5459\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5460\"\u003e#5460\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eFull changelog: \u003ca href=\"https://github.com/google/error-prone/compare/v2.46.0...v2.47.0\"\u003ehttps://github.com/google/error-prone/compare/v2.46.0...v2.47.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eError Prone 2.46.0\u003c/h2\u003e\n\u003cp\u003eChanges:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe javac flag \u003ccode\u003e-XDaddTypeAnnotationsToSymbol=true\u003c/code\u003e is now required for Error Prone invocations on JDK 21, to enable the javac fix for \u003ca href=\"https://bugs.openjdk.org/browse/JDK-8225377\"\u003eJDK-8225377: type annotations are not visible to javac plugins across compilation boundaries\u003c/a\u003e. See \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5426\"\u003egoogle/error-prone#5426\u003c/a\u003e for details.\u003c/li\u003e\n\u003cli\u003eRemove deprecated \u003ccode\u003evalue\u003c/code\u003e attribute from \u003ccode\u003e@IncompatibleModifiers\u003c/code\u003e and \u003ccode\u003e@RequiredModifiers\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/google/error-prone/issues/2122\"\u003egoogle/error-prone#2122\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/error-prone/commit/89d75c196f2bac93d7aab17db6d2d70a2ee55941\"\u003e\u003ccode\u003e89d75c1\u003c/code\u003e\u003c/a\u003e Release Error Prone 2.49.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/error-prone/commit/0b7b03b05d038f596e687e35fccd2cdc0356a7e2\"\u003e\u003ccode\u003e0b7b03b\u003c/code\u003e\u003c/a\u003e Fix up some javadoc on `ModifySourceCollectionInStream.isStreamApiInvocationO...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/error-prone/commit/fe5a7b1f4583db97387c46ed32ccd664d3f455f6\"\u003e\u003ccode\u003efe5a7b1\u003c/code\u003e\u003c/a\u003e Remove old FieldMatchers API\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/error-prone/commit/d54a1d1cd9b57dd49de585e21d0e315f3fb88c82\"\u003e\u003ccode\u003ed54a1d1\u003c/code\u003e\u003c/a\u003e Fix up some \u003ccode\u003eFinally\u003c/code\u003e javadocs.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/error-prone/commit/d93b31908fd361eb5e817a7dd18a1296f12f6414\"\u003e\u003ccode\u003ed93b319\u003c/code\u003e\u003c/a\u003e [RefactorSwitch] bugfix comment handling\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/error-prone/commit/ff59782c69b9394e14b11d0b17574fe5b3dafa9c\"\u003e\u003ccode\u003eff59782\u003c/code\u003e\u003c/a\u003e [IfChainToSwitch] cleanup redundant conditions in ternary.  No functional cha...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/error-prone/commit/43b6df64ed635e1fcabaabd9c884df5753aac26b\"\u003e\u003ccode\u003e43b6df6\u003c/code\u003e\u003c/a\u003e Generalise DuplicateAssertion to handle check* methods.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/error-prone/commit/2c4346f59fdcdda7bf17839b55d2d5e416c7d1d1\"\u003e\u003ccode\u003e2c4346f\u003c/code\u003e\u003c/a\u003e Fix a bug in \u003ccode\u003eBooleanLiteral\u003c/code\u003e: it currently suggests replacing `Boolean.FALSE...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/error-prone/commit/559039bcc26400cd725236bdffe7fc94c4519311\"\u003e\u003ccode\u003e559039b\u003c/code\u003e\u003c/a\u003e [IfChainToSwitch] doc-only change.  fix typo in code comments.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/error-prone/commit/393c61ce5b28fd5bcd1290ee831d3358d37cce16\"\u003e\u003ccode\u003e393c61c\u003c/code\u003e\u003c/a\u003e [IfChainToSwitch] enhance code generation to emit unnamed variables, when sup...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/google/error-prone/compare/v2.44.0...v2.49.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `com.google.guava:guava` from 33.5.0-jre to 33.6.0-jre\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/guava/releases\"\u003ecom.google.guava:guava's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e33.6.0\u003c/h2\u003e\n\u003ch3\u003eMaven\u003c/h3\u003e\n\u003cpre lang=\"xml\"\u003e\u003ccode\u003e\u0026lt;dependency\u0026gt;\r\n  \u0026lt;groupId\u0026gt;com.google.guava\u0026lt;/groupId\u0026gt;\r\n  \u0026lt;artifactId\u0026gt;guava\u0026lt;/artifactId\u0026gt;\r\n  \u0026lt;version\u0026gt;33.6.0-jre\u0026lt;/version\u0026gt;\r\n  \u0026lt;!-- or, for Android: --\u0026gt;\r\n  \u0026lt;version\u0026gt;33.6.0-android\u0026lt;/version\u0026gt;\r\n\u0026lt;/dependency\u0026gt;\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eJar files\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://repo1.maven.org/maven2/com/google/guava/guava/33.6.0-jre/guava-33.6.0-jre.jar\"\u003e33.6.0-jre.jar\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://repo1.maven.org/maven2/com/google/guava/guava/33.6.0-android/guava-33.6.0-android.jar\"\u003e33.6.0-android.jar\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eGuava requires \u003ca href=\"https://github.com/google/guava/wiki/UseGuavaInYourBuild#what-about-guavas-own-dependencies\"\u003eone runtime dependency\u003c/a\u003e, which you can download here:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://repo1.maven.org/maven2/com/google/guava/failureaccess/1.0.3/failureaccess-1.0.3.jar\"\u003efailureaccess-1.0.3.jar\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eJavadoc\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://guava.dev/releases/33.6.0-jre/api/docs/\"\u003e33.6.0-jre\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://guava.dev/releases/33.6.0-android/api/docs/\"\u003e33.6.0-android\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eJDiff\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://guava.dev/releases/33.6.0-jre/api/diffs/\"\u003e33.6.0-jre vs. 33.5.0-jre\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://guava.dev/releases/33.6.0-android/api/diffs/\"\u003e33.6.0-android vs. 33.5.0-android\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://guava.dev/releases/33.6.0-android/api/androiddiffs/\"\u003e33.6.0-android vs. 33.6.0-jre\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChangelog\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMigrated some classes from \u003ccode\u003efinalize()\u003c/code\u003e to \u003ccode\u003ePhantomReference\u003c/code\u003e in preparation for \u003ca href=\"https://openjdk.org/jeps/421\"\u003ethe removal of finalization\u003c/a\u003e. (786b619dd6, 7c6b17c, aeef90988d)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ecache\u003c/code\u003e: Deprecated \u003ccode\u003eCacheBuilder\u003c/code\u003e APIs that use \u003ccode\u003eTimeUnit\u003c/code\u003e in favor of those that use \u003ccode\u003eDuration\u003c/code\u003e. (73f8b0bb84)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ecollect\u003c/code\u003e: Added \u003ccode\u003etoImmutableSortedMap\u003c/code\u003e collectors that use the natural comparator. (64d70b9f94)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ecollect\u003c/code\u003e: Changed \u003ccode\u003eConcurrentHashMultiset\u003c/code\u003e, \u003ccode\u003eImmutableMap\u003c/code\u003e and \u003ccode\u003eTreeMultiset\u003c/code\u003e deserialization to \u003ca href=\"https://openjdk.org/jeps/500\"\u003eavoid mutating \u003ccode\u003efinal\u003c/code\u003e fields\u003c/a\u003e. In extremely unlikely scenarios in which an instance of that type contains an object that refers back to that instance, this could lead to \u003ca href=\"https://docs.oracle.com/en/java/javase/26/docs/specs/serialization/input.html#the-readresolve-method:~:text=in%20cases%20where%20an%20object%20being%20serialized%20nominates%20a%20replacement%20object%20whose%20object%20graph%20has%20a%20reference%20to%20the%20original%20object\"\u003ea broken instance\u003c/a\u003e that throws \u003ccode\u003eNullPointerException\u003c/code\u003e when used. (8240c7e596, 046468055f)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003egraph\u003c/code\u003e: Removed \u003ccode\u003e@Beta\u003c/code\u003e from all APIs in the package. (dae9566b73)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003egraph\u003c/code\u003e: Added support to \u003ccode\u003eGraphs.transitiveClosure()\u003c/code\u003e for different strategies for adding self-loops. (2e13df25b2)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003egraph\u003c/code\u003e: Added an \u003ccode\u003easNetwork()\u003c/code\u003e view to \u003ccode\u003eGraph\u003c/code\u003e and \u003ccode\u003eValueGraph\u003c/code\u003e. (909c593c61)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ehash\u003c/code\u003e: Added \u003ccode\u003eBloomFilter.serializedSize()\u003c/code\u003e. (df9bcc251a)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003enet\u003c/code\u003e: Added \u003ccode\u003eHttpHeaders.CDN_CACHE_CONTROL\u003c/code\u003e. (75331b5030)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/google/guava/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `joda-time:joda-time` from 2.14.0 to 2.14.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/JodaOrg/joda-time/releases\"\u003ejoda-time:joda-time's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v2.14.2\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://www.joda.org/joda-time/changes-report.html#a2.14.2\"\u003echange notes\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate time zone data to 2026bgtz by \u003ca href=\"https://github.com/jodastephen\"\u003e\u003ccode\u003e@​jodastephen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/pull/831\"\u003eJodaOrg/joda-time#831\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/JodaOrg/joda-time/compare/v2.14.1...v2.14.2\"\u003ehttps://github.com/JodaOrg/joda-time/compare/v2.14.1...v2.14.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v2.14.1\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://www.joda.org/joda-time/changes-report.html#a2.14.1\"\u003echange notes\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix build by \u003ca href=\"https://github.com/jodastephen\"\u003e\u003ccode\u003e@​jodastephen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/pull/811\"\u003eJodaOrg/joda-time#811\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: correct typo in README (appropriate) by \u003ca href=\"https://github.com/nabilshafi\"\u003e\u003ccode\u003e@​nabilshafi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/pull/818\"\u003eJodaOrg/joda-time#818\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAuto-merge tzdb updates by \u003ca href=\"https://github.com/jodastephen\"\u003e\u003ccode\u003e@​jodastephen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/pull/819\"\u003eJodaOrg/joda-time#819\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate deployment from OSSRH by \u003ca href=\"https://github.com/jodastephen\"\u003e\u003ccode\u003e@​jodastephen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/pull/820\"\u003eJodaOrg/joda-time#820\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate time zone data to 2025cgtz by \u003ca href=\"https://github.com/jodastephen\"\u003e\u003ccode\u003e@​jodastephen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/pull/826\"\u003eJodaOrg/joda-time#826\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix time zone name key by \u003ca href=\"https://github.com/jodastephen\"\u003e\u003ccode\u003e@​jodastephen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/pull/827\"\u003eJodaOrg/joda-time#827\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate time zone data to 2026agtz by \u003ca href=\"https://github.com/jodastephen\"\u003e\u003ccode\u003e@​jodastephen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/pull/829\"\u003eJodaOrg/joda-time#829\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nabilshafi\"\u003e\u003ccode\u003e@​nabilshafi\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/pull/818\"\u003eJodaOrg/joda-time#818\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/JodaOrg/joda-time/compare/v2.14.0...v2.14.1\"\u003ehttps://github.com/JodaOrg/joda-time/compare/v2.14.0...v2.14.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JodaOrg/joda-time/commit/d6ba4f03c242c12feac308ac25b841a8c9457674\"\u003e\u003ccode\u003ed6ba4f0\u003c/code\u003e\u003c/a\u003e Release v2.14.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JodaOrg/joda-time/commit/43ea40b0c2117e272dbef2b20fd675b43378c8fd\"\u003e\u003ccode\u003e43ea40b\u003c/code\u003e\u003c/a\u003e Update time zone data to 2026bgtz (\u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/issues/831\"\u003e#831\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JodaOrg/joda-time/commit/c377753444ba79cccc0c6c4806ba6fd0a800e629\"\u003e\u003ccode\u003ec377753\u003c/code\u003e\u003c/a\u003e Release v2.14.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JodaOrg/joda-time/commit/3fd08d499067667fb51d210870e2c6bf19651bd3\"\u003e\u003ccode\u003e3fd08d4\u003c/code\u003e\u003c/a\u003e Update time zone data to 2026agtz (\u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/issues/829\"\u003e#829\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JodaOrg/joda-time/commit/c4bf8778152f20aba5a320316e11d05776fae7f5\"\u003e\u003ccode\u003ec4bf877\u003c/code\u003e\u003c/a\u003e Fix name key (\u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/issues/827\"\u003e#827\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JodaOrg/joda-time/commit/8b11cfacc4e8cef281385e7f051132f32583748f\"\u003e\u003ccode\u003e8b11cfa\u003c/code\u003e\u003c/a\u003e Update time zone data to 2025cgtz (\u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/issues/826\"\u003e#826\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JodaOrg/joda-time/commit/7088d772689b751d3e182833970290d05311bf35\"\u003e\u003ccode\u003e7088d77\u003c/code\u003e\u003c/a\u003e Update deployment from OSSRH (\u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JodaOrg/joda-time/commit/34181198cb234fc5b3b3c17ef7ab820b36c3dc84\"\u003e\u003ccode\u003e3418119\u003c/code\u003e\u003c/a\u003e Auto-merge tzdb updates (\u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/issues/819\"\u003e#819\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JodaOrg/joda-time/commit/6c95155c42bfaa49565d371ff3d686b00934d0c3\"\u003e\u003ccode\u003e6c95155\u003c/code\u003e\u003c/a\u003e Fix website commit message\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JodaOrg/joda-time/commit/c1d7f97f72d2c0f8537b6315fe0698a02d55a73c\"\u003e\u003ccode\u003ec1d7f97\u003c/code\u003e\u003c/a\u003e Fix typo in README (\u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/issues/818\"\u003e#818\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/JodaOrg/joda-time/compare/v2.14.0...v2.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.yaml:snakeyaml` from 2.5 to 2.6\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://bitbucket.org/snakeyaml/snakeyaml/commits/cc19a61c191ebc111ad1e22e83f75b18f27531cf\"\u003e\u003ccode\u003ecc19a61\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare for next development iteration\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://bitbucket.org/snakeyaml/snakeyaml/commits/bc4a8f4cf64c79e6a8ce9c51940f0dbea42ba707\"\u003e\u003ccode\u003ebc4a8f4\u003c/code\u003e\u003c/a\u003e Minor fixes in Javadoc\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://bitbucket.org/snakeyaml/snakeyaml/commits/f18203a60abb0427910821855a106bfcd4920457\"\u003e\u003ccode\u003ef18203a\u003c/code\u003e\u003c/a\u003e Add a test for Y79Y-003\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://bitbucket.org/snakeyaml/snakeyaml/commits/ad1fceb1baf04a81f83f65795fc11252f9027c2b\"\u003e\u003ccode\u003ead1fceb\u003c/code\u003e\u003c/a\u003e Less output in tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://bitbucket.org/snakeyaml/snakeyaml/commits/1db66b79fc9bd1760d4f7f5878ad5eac13201d57\"\u003e\u003ccode\u003e1db66b7\u003c/code\u003e\u003c/a\u003e Add (failing) build with JDK 25\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://bitbucket.org/snakeyaml/snakeyaml/commits/88ebaa8210f00b3665ff03680cd770f6762c8507\"\u003e\u003ccode\u003e88ebaa8\u003c/code\u003e\u003c/a\u003e build: fix JKD 25 tests compilation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://bitbucket.org/snakeyaml/snakeyaml/commits/6af8790448b7bcfec3fdcdc6053be49bb8176455\"\u003e\u003ccode\u003e6af8790\u003c/code\u003e\u003c/a\u003e Update Javadoc\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://bitbucket.org/snakeyaml/snakeyaml/commits/a006b7a163c843df70aa0b2fd35e06345a0fe152\"\u003e\u003ccode\u003ea006b7a\u003c/code\u003e\u003c/a\u003e Update Javadoc\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://bitbucket.org/snakeyaml/snakeyaml/commits/c143db209b05a4246b12cf9ea2c121e1301b1616\"\u003e\u003ccode\u003ec143db2\u003c/code\u003e\u003c/a\u003e Update changes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://bitbucket.org/snakeyaml/snakeyaml/commits/d78d11f9665a4a8322af15915047b7c55aefb6cc\"\u003e\u003ccode\u003ed78d11f\u003c/code\u003e\u003c/a\u003e Update changes\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://bitbucket.org/snakeyaml/snakeyaml/branches/compare/snakeyaml-2.6..snakeyaml-2.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.jetbrains.kotlin:kotlin-bom` from 2.2.21 to 2.3.21\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/JetBrains/kotlin/releases\"\u003eorg.jetbrains.kotlin:kotlin-bom's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eKotlin 2.3.21\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eBackend. Wasm\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84610\"\u003e\u003ccode\u003eKT-84610\u003c/code\u003e\u003c/a\u003e [Wasm] Failed to compile klibs in IC mode\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCompiler\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84566\"\u003e\u003ccode\u003eKT-84566\u003c/code\u003e\u003c/a\u003e Prevent launching Default dispatcher threads from IJ SDK in kotlin compiler\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85358\"\u003e\u003ccode\u003eKT-85358\u003c/code\u003e\u003c/a\u003e Native: roll back the workaround for KT-84678 once MapLibre has been properly fixed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85626\"\u003e\u003ccode\u003eKT-85626\u003c/code\u003e\u003c/a\u003e  \u003ccode\u003e@JvmRecord\u003c/code\u003e in commonMain breaks compileCommonMainKotlinMetadata with \u0026quot;Cannot access 'java.lang.Record'\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85405\"\u003e\u003ccode\u003eKT-85405\u003c/code\u003e\u003c/a\u003e Postpone/Revert \u003ccode\u003eDontIgnoreUpperBoundViolatedOnImplicitArguments\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84678\"\u003e\u003ccode\u003eKT-84678\u003c/code\u003e\u003c/a\u003e K/N: Undefined symbol from SPM-added ObjC frameworks when linking iOS target\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85021\"\u003e\u003ccode\u003eKT-85021\u003c/code\u003e\u003c/a\u003e False positive SUBCLASS_CANT_CALL_COMPANION_PROTECTED_NON_STATIC error in multi-module project\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eJavaScript\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-82395\"\u003e\u003ccode\u003eKT-82395\u003c/code\u003e\u003c/a\u003e Support top-level declarations from compiler plugins in JS incremental compilation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84475\"\u003e\u003ccode\u003eKT-84475\u003c/code\u003e\u003c/a\u003e K/JS: false-positive exportability warnings in multi-module project\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84633\"\u003e\u003ccode\u003eKT-84633\u003c/code\u003e\u003c/a\u003e Kotlin/JS: \u0026quot;Serializer for class not found\u0026quot; error when IR output granularity is \u003ccode\u003ewhole-program\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85047\"\u003e\u003ccode\u003eKT-85047\u003c/code\u003e\u003c/a\u003e Kotlin/JS: \u003ccode\u003e@JsStatic\u003c/code\u003e on suspend fun of class companion generates incorrect d.ts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84517\"\u003e\u003ccode\u003eKT-84517\u003c/code\u003e\u003c/a\u003e K/JS: bad mappings data in outputted Kotlin stdlib source map\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eLibraries\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-71848\"\u003e\u003ccode\u003eKT-71848\u003c/code\u003e\u003c/a\u003e Kotlinx.metadata: Add \u003ccode\u003eCompilerPluginData\u003c/code\u003e into Km API\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eNative. C and ObjC Import\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85399\"\u003e\u003ccode\u003eKT-85399\u003c/code\u003e\u003c/a\u003e Kotlin/Native: TypeCastException when casting ObjC Protocol MetaClass with genericSafeCasts enabled\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85508\"\u003e\u003ccode\u003eKT-85508\u003c/code\u003e\u003c/a\u003e K/N: TypeCastException when using nw_parameters_create_secure_tcp block parameter on 2.3.20\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eTools. Gradle\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84729\"\u003e\u003ccode\u003eKT-84729\u003c/code\u003e\u003c/a\u003e Update Gradle plugin-publish version to enable configuration cache badge on Gradle plugins portal\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eTools. Gradle. Compiler plugins\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85257\"\u003e\u003ccode\u003eKT-85257\u003c/code\u003e\u003c/a\u003e AGP/Compose: MergeMappingFileTask clears R8 artifacts due to \u003ccode\u003e@OutputDirectory\u003c/code\u003e annotation on AGP 9.1+\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eTools. Scripts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85105\"\u003e\u003ccode\u003eKT-85105\u003c/code\u003e\u003c/a\u003e Scripts: JVM backend internal error (IR lowering) when scratch file contains anonymous object\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85103\"\u003e\u003ccode\u003eKT-85103\u003c/code\u003e\u003c/a\u003e Exception while generating code when explain destructuring decls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84842\"\u003e\u003ccode\u003eKT-84842\u003c/code\u003e\u003c/a\u003e scriptCompilationClasspathFromContext behavior changed from 2.3.10 to 2.3.20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85029\"\u003e\u003ccode\u003eKT-85029\u003c/code\u003e\u003c/a\u003e Kotlin Scripting: ScriptDiagnostic reports \u0026quot;at null\u0026quot; instead of error location\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eTools. Statistics (FUS)\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/JetBrains/kotlin/blob/master/ChangeLog.md\"\u003eorg.jetbrains.kotlin:kotlin-bom's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.3.21\u003c/h2\u003e\n\u003ch3\u003eBackend. Wasm\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84610\"\u003e\u003ccode\u003eKT-84610\u003c/code\u003e\u003c/a\u003e [Wasm] Failed to compile klibs in IC mode\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCompiler\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84566\"\u003e\u003ccode\u003eKT-84566\u003c/code\u003e\u003c/a\u003e Prevent launching Default dispatcher threads from IJ SDK in kotlin compiler\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85358\"\u003e\u003ccode\u003eKT-85358\u003c/code\u003e\u003c/a\u003e Native: roll back the workaround for KT-84678 once MapLibre has been properly fixed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85626\"\u003e\u003ccode\u003eKT-85626\u003c/code\u003e\u003c/a\u003e  \u003ccode\u003e@JvmRecord\u003c/code\u003e in commonMain breaks compileCommonMainKotlinMetadata with \u0026quot;Cannot access 'java.lang.Record'\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85405\"\u003e\u003ccode\u003eKT-85405\u003c/code\u003e\u003c/a\u003e Postpone/Revert \u003ccode\u003eDontIgnoreUpperBoundViolatedOnImplicitArguments\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84678\"\u003e\u003ccode\u003eKT-84678\u003c/code\u003e\u003c/a\u003e K/N: Undefined symbol from SPM-added ObjC frameworks when linking iOS target\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85021\"\u003e\u003ccode\u003eKT-85021\u003c/code\u003e\u003c/a\u003e False positive SUBCLASS_CANT_CALL_COMPANION_PROTECTED_NON_STATIC error in multi-module project\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eJavaScript\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-82395\"\u003e\u003ccode\u003eKT-82395\u003c/code\u003e\u003c/a\u003e Support top-level declarations from compiler plugins in JS incremental compilation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84475\"\u003e\u003ccode\u003eKT-84475\u003c/code\u003e\u003c/a\u003e K/JS: false-positive exportability warnings in multi-module project\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84633\"\u003e\u003ccode\u003eKT-84633\u003c/code\u003e\u003c/a\u003e Kotlin/JS: \u0026quot;Serializer for class not found\u0026quot; error when IR output granularity is \u003ccode\u003ewhole-program\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85047\"\u003e\u003ccode\u003eKT-85047\u003c/code\u003e\u003c/a\u003e Kotlin/JS: \u003ccode\u003e@JsStatic\u003c/code\u003e on suspend fun of class companion generates incorrect d.ts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84517\"\u003e\u003ccode\u003eKT-84517\u003c/code\u003e\u003c/a\u003e K/JS: bad mappings data in outputted Kotlin stdlib source map\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eLibraries\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-71848\"\u003e\u003ccode\u003eKT-71848\u003c/code\u003e\u003c/a\u003e Kotlinx.metadata: Add \u003ccode\u003eCompilerPluginData\u003c/code\u003e into Km API\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eNative. C and ObjC Import\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85399\"\u003e\u003ccode\u003eKT-85399\u003c/code\u003e\u003c/a\u003e Kotlin/Native: TypeCastException when casting ObjC Protocol MetaClass with genericSafeCasts enabled\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85508\"\u003e\u003ccode\u003eKT-85508\u003c/code\u003e\u003c/a\u003e K/N: TypeCastException when using nw_parameters_create_secure_tcp block parameter on 2.3.20\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eTools. Gradle\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84729\"\u003e\u003ccode\u003eKT-84729\u003c/code\u003e\u003c/a\u003e Update Gradle plugin-publish version to enable configuration cache badge on Gradle plugins portal\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eTools. Gradle. Compiler plugins\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85257\"\u003e\u003ccode\u003eKT-85257\u003c/code\u003e\u003c/a\u003e AGP/Compose: MergeMappingFileTask clears R8 artifacts due to \u003ccode\u003e@OutputDirectory\u003c/code\u003e annotation on AGP 9.1+\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eTools. Scripts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85105\"\u003e\u003ccode\u003eKT-85105\u003c/code\u003e\u003c/a\u003e Scripts: JVM backend internal error (IR lowering) when scratch file contains anonymous object\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85103\"\u003e\u003ccode\u003eKT-85103\u003c/code\u003e\u003c/a\u003e Exception while generating code when explain destructuring decls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84842\"\u003e\u003ccode\u003eKT-84842\u003c/code\u003e\u003c/a\u003e scriptCompilationClasspathFromContext behavior changed from 2.3.10 to 2.3.20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85029\"\u003e\u003ccode\u003eKT-85029\u003c/code\u003e\u003c/a\u003e Kotlin Scripting: ScriptDiagnostic reports \u0026quot;at null\u0026quot; instead of error location\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eTools. Statistics (FUS)\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85628\"\u003e\u003ccode\u003eKT-85628\u003c/code\u003e\u003c/a\u003e KGP: composite build FUS metrics fail on access of 'configurationTimeMetrics'\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JetBrains/kotlin/commit/fea1ad8c18995b80d1ca0e3917056104613d23db\"\u003e\u003ccode\u003efea1ad8\u003c/code\u003e\u003c/a\u003e Add ChangeLog for 2.3.21-RC2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JetBrains/kotlin/commit/09c341e858b8f70d92955fc6b67d6a04962760b4\"\u003e\u003ccode\u003e09c341e\u003c/code\u003e\u003c/a\u003e disable swift export execution tests in order to update macos\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JetBrains/kotlin/commit/67a08681cdd53b318217e6f35d835e0ab3b2e31c\"\u003e\u003ccode\u003e67a0868\u003c/code\u003e\u003c/a\u003e Avoid accessing KotlinNativeLink taskProvider when task was not executed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JetBrains/kotlin/commit/f89e5dbc1867714116e17be1066d6c68e30cc2d4\"\u003e\u003ccode\u003ef89e5db\u003c/code\u003e\u003c/a\u003e [K/N] Disable TSAN in runtime tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JetBrains/kotlin/commit/45d6c859c027c4e82b14b4861e36bc125600e2b0\"\u003e\u003ccode\u003e45d6c85\u003c/code\u003e\u003c/a\u003e [K/N] Don't generate generic safe casts for Objective-C types\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JetBrains/kotlin/commit/9261a6f0790b7504e0223e9e0a0dd242fe0cc3f7\"\u003e\u003ccode\u003e9261a6f\u003c/code\u003e\u003c/a\u003e [K/N][tests] Add a reproducer for KT-85508\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JetBrains/kotlin/commit/c9ab9db37a191f2eb1ce0f5b7ff502ca9d4b3a0d\"\u003e\u003ccode\u003ec9ab9db\u003c/code\u003e\u003c/a\u003e [K/N][tests] Add a reproducer for KT-85399\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JetBrains/kotlin/commit/502e84484e520fbe1a93958be8da97e06a04d7ed\"\u003e\u003ccode\u003e502e844\u003c/code\u003e\u003c/a\u003e Explain: fix for destructuring declarations\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JetBrains/kotlin/commit/0c26485d83f532aa8afbb868895061b7132fd7c8\"\u003e\u003ccode\u003e0c26485\u003c/code\u003e\u003c/a\u003e Explain: fix for object literals\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JetBrains/kotlin/commit/68a9e3f99fcd59c5440970f5f34aff09ce462a69\"\u003e\u003ccode\u003e68a9e3f\u003c/code\u003e\u003c/a\u003e [minor] fix testdata name in explain test\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/JetBrains/kotlin/compare/v2.2.21...v2.3.21\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `com.fasterxml.jackson:jackson-bom` from 2.20.1 to 2.21.3\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FasterXML/jackson-bom/commit/374fbd08ee91a6c91626bae1d6497df21c89b541\"\u003e\u003ccode\u003e374fbd0\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare release jackson-bom-2.21.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FasterXML/jackson-bom/commit/7059df78cc36832349acad026169ff890f4c718c\"\u003e\u003ccode\u003e7059df7\u003c/code\u003e\u003c/a\u003e Prep for 2.21.3 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FasterXML/jackson-bom/commit/2fd60bdab3228f6b99dce81326d9fd7eaf587401\"\u003e\u003ccode\u003e2fd60bd\u003c/code\u003e\u003c/a\u003e Merge branch '2.20' into 2.21\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FasterXML/jackson-bom/commit/b82a3640491f66be2e56bef377b5002cd9d1567b\"\u003e\u003ccode\u003eb82a364\u003c/code\u003e\u003c/a\u003e Merge branch '2.19' into 2.20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FasterXML/jackson-bom/commit/ef4e013e95fc64583b0a414711648a84fc50be46\"\u003e\u003ccode\u003eef4e013\u003c/code\u003e\u003c/a\u003e Merge branch '2.18' into 2.19\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FasterXML/jackson-bom/commit/536ae51c1db9dfbfc8dda697ccfd6545cf626d2b\"\u003e\u003ccode\u003e536ae51\u003c/code\u003e\u003c/a\u003e Post-release dep version bump\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FasterXML/jackson-bom/commit/536c5339035643fdca46ddd947f253afd072f764\"\u003e\u003ccode\u003e536c533\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare for next development iteration\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FasterXML/jackson-bom/commit/426b778e5ea490d164e572a63319c7cf2f362f2f\"\u003e\u003ccode\u003e426b778\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare release jackson-bom-2.18.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FasterXML/jackson-bom/commit/a73cda9be3e57f29c53fea748f1f867eaa1457ab\"\u003e\u003ccode\u003ea73cda9\u003c/code\u003e\u003c/a\u003e Prep for 2.18.7 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FasterXML/jackson-bom/commit/76b4a05087a9e42eb1b26f59d5b7028b0496da5e\"\u003e\u003ccode\u003e76b4a05\u003c/code\u003e\u003c/a\u003e Post-release dep version bump\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/FasterXML/jackson-bom/compare/jackson-bom-2.20.1...jackson-bom-2.21.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.apache.logging.log4j:log4j-bom` from 0.0.0-SNAPSHOT to 2.25.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/apache/logging-log4j2/releases\"\u003eorg.apache.logging.log4j:log4j-bom's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.25.4\u003c/h2\u003e\n\u003cp\u003eThis patch release delivers fixes for configuration inconsistencies and formatting issues across several layouts.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRestores alignment between documented and actual configuration attributes.\u003c/li\u003e\n\u003cli\u003eFixes formatting and sanitization issues in XML and RFC5424 layouts.\u003c/li\u003e\n\u003cli\u003eImproves handling of invalid characters and non-standard values.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThe authoritative list of recognized configuration attributes is available in the \u003ca href=\"https://logging.apache.org/log4j/2.x/plugin-reference.html\"\u003ePluginReference\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDon't issue warnings if extra argument in parameterized logging is \u003ccode\u003enull\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3975\"\u003e#3975\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4014\"\u003e#4014\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRestore support for documented \u003ccode\u003eRfc5424Layout\u003c/code\u003e parameter names. (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4022\"\u003e#4022\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4074\"\u003e#4074\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTake \u003ccode\u003eThrowable#toString()\u003c/code\u003e into account while rendering stack traces in Pattern Layout. (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3623\"\u003e#3623\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4033\"\u003e#4033\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdded debug level logs for successful resource loading in \u003ccode\u003eLoader\u003c/code\u003e class. (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4058\"\u003e#4058\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4060\"\u003e#4060\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAlign \u003ccode\u003eSslConfiguration\u003c/code\u003e factory method usage with Log4j 2.12+ API. The \u003ccode\u003everifyHostname\u003c/code\u003e attribute is now correctly recognized. (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4061\"\u003e#4061\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4075\"\u003e#4075\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix sanitization of structured data parameter names in RFC5424 layout. (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4073\"\u003e#4073\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReplace invalid characters in XmlLayout output with the Unicode replacement character (U+FFFD). (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4077\"\u003e#4077\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReplace invalid characters in Log4j1XmlLayout output with the Unicode replacement character (U+FFFD). (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4078\"\u003e#4078\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReplace invalid characters in MapMessage.asXml() output with the Unicode replacement character (U+FFFD). (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4079\"\u003e#4079\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eWrite non-finite floating-point numbers as strings in \u003ccode\u003eJsonWriter\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4080\"\u003e#4080\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.25.3\u003c/h2\u003e\n\u003cp\u003eThis patch release addresses issues detailed in the changelog below. In particular, it includes an important fix for the host name verification in SSL/TLS configuration. This is used by Socket Appender.\u003c/p\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize \u003ccode\u003eDefaultThreadContextMap.getCopy()\u003c/code\u003e performance by avoiding megamorphic calls in \u003ccode\u003eHashMap\u003c/code\u003e constructor (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3935\"\u003e#3935\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3939\"\u003e#3939\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix GraalVM metadata for nested classes to use binary names instead of canonical names (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3871\"\u003e#3871\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3996\"\u003e#3996\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix failures caused by null \u003ccode\u003eSslConfiguration\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3947\"\u003e#3947\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3953\"\u003e#3953\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix incorrect handling of the host name verification in SSL/TLS configuration, which is used by Socket Appender when SSL/TLS is enabled (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4002\"\u003e#4002\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRemoved\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the \u003ccode\u003ecom.github.spotbugs:spotbugs-annotations\u003c/code\u003e dependency (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3984\"\u003e#3984\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3985\"\u003e#3985\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.25.2\u003c/h2\u003e\n\u003cp\u003eThis patch release addresses certain minor issues detailed in the changelog.\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix potential memory leak involving \u003ccode\u003eLogBuilder\u003c/code\u003e in Log4j API to Logback bridge (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3819\"\u003e#3819\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3824\"\u003e#3824\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePrevent unnecessary warnings in \u003ccode\u003eAbstractDriverManagerConnectionSource\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3828\"\u003e#3828\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3831\"\u003e#3831\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing newlines in default logging configuration for \u003ccode\u003elog4j-core\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3835\"\u003e#3835\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3851\"\u003e#3851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing default \u003ccode\u003eTarget\u003c/code\u003e value in Console Appender (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3852\"\u003e#3852\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDiscard the sub-second part while obtaining the initial time (i.e., creation time) of a file in \u003ccode\u003eRollingFileManager\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3068\"\u003e#3068\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3872\"\u003e#3872\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix Pattern Layout exception stack trace converters to no longer prepend newlines based on context (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3873\"\u003e#3873\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3919\"\u003e#3919\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/apache/logging-log4j2/commits/rel/2.25.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.25.2 to 2.25.4\n\nUpdates `org.springframework.boot:spring-boot-dependencies` from 3.5.7 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.5.7...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 3.5.7 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.5.7...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.cloud:spring-cloud-dependencies` from 2025.0.0 to 2025.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/releases\"\u003eorg.springframework.cloud:spring-cloud-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2025.1.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump antora from 3.2.0-alpha.10 to 3.2.0-alpha.11 in /docs by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/447\"\u003espring-cloud/spring-cloud-release#447\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.springframework.cloud:spring-cloud-contract-dependencies from 5.0.1-SNAPSHOT to 5.0.2-SNAPSHOT by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/454\"\u003espring-cloud/spring-cloud-release#454\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.springframework.cloud:spring-cloud-contract-dependencies from 5.0.1-SNAPSHOT to 5.0.2-SNAPSHOT by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/453\"\u003espring-cloud/spring-cloud-release#453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/cache from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/456\"\u003espring-cloud/spring-cloud-release#456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven:maven-model from 3.9.11 to 3.9.12 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/461\"\u003espring-cloud/spring-cloud-release#461\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven:maven-model from 3.9.11 to 3.9.12 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/460\"\u003espring-cloud/spring-cloud-release#460\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/compare/v2025.1.0...v2025.1.1\"\u003ehttps://github.com/spring-cloud/spring-cloud-release/compare/v2025.1.0...v2025.1.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/dbb12bfc2b899fb0845fe4b3c6dc07bc3c1828e2\"\u003e\u003ccode\u003edbb12bf\u003c/code\u003e\u003c/a\u003e Update SNAPSHOT to 2025.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/edc8bcb1d195cb0a9fa96efc82ccb3dfdaf2fd39\"\u003e\u003ccode\u003eedc8bcb\u003c/code\u003e\u003c/a\u003e Bumping versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/a9f418316485581438af2fa1db54f7ff5e80b17e\"\u003e\u003ccode\u003ea9f4183\u003c/code\u003e\u003c/a\u003e Use Spring Boot 4.0.2-SNAPSHOT\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/da7ad033005dd53554ad5aea9eeefab9416c1661\"\u003e\u003ccode\u003eda7ad03\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/issues/460\"\u003e#460\u003c/a\u003e from spring-cloud/dependabot/maven/org.apache.maven-m...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/49b10e643ffdb36873b3abb0bcd0539e0942f0c6\"\u003e\u003ccode\u003e49b10e6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/issues/461\"\u003e#461\u003c/a\u003e from spring-cloud/dependabot/maven/main/org.apache.ma...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/59782becdf97cb4db3693fc9d3688e85fde493b5\"\u003e\u003ccode\u003e59782be\u003c/code\u003e\u003c/a\u003e Bump org.apache.maven:maven-model from 3.9.11 to 3.9.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/89c8dd1e2610118b12e9d9ccb64945833a0ade22\"\u003e\u003ccode\u003e89c8dd1\u003c/code\u003e\u003c/a\u003e Bump org.apache.maven:maven-model from 3.9.11 to 3.9.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/96a5fb078d5eb2d80baec60004f1cb2518290afe\"\u003e\u003ccode\u003e96a5fb0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/issues/456\"\u003e#456\u003c/a\u003e from spring-cloud/dependabot/github_actions/main/acti...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spri...\n\n_Description has been truncated_","html_url":"https://github.com/apache/logging-log4j-samples/pull/396","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/apache%2Flogging-log4j-samples/issues/396","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/396/packages"},{"uuid":"4367011209","node_id":"PR_kwDORTiAr87XjJdQ","number":34,"state":"closed","title":"deps: Bump the all-dependencies group in /backend with 10 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-05-01T22:52:38.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-01T22:51:35.000Z","updated_at":"2026-05-01T22:52:47.000Z","time_to_close":63,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps: Bump","group_name":"all-dependencies","update_count":10,"packages":[{"name":"org.springframework.boot:spring-boot-starter-parent","old_version":"3.3.12","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"io.jsonwebtoken:jjwt-api","old_version":"0.12.6","new_version":"0.13.0","repository_url":"https://github.com/jwtk/jjwt"},{"name":"io.jsonwebtoken:jjwt-impl","old_version":"0.12.6","new_version":"0.13.0","repository_url":"https://github.com/jwtk/jjwt"},{"name":"io.jsonwebtoken:jjwt-jackson","old_version":"0.12.6","new_version":"0.13.0"},{"name":"org.projectlombok:lombok","old_version":"1.18.34","new_version":"1.18.46","repository_url":"https://github.com/projectlombok/lombok"},{"name":"org.springdoc:springdoc-openapi-starter-webmvc-ui","old_version":"2.6.0","new_version":"3.0.3","repository_url":"https://github.com/springdoc/springdoc-openapi"},{"name":"software.amazon.awssdk:s3","old_version":"2.29.1","new_version":"2.43.2"},{"name":"com.stripe:stripe-java","old_version":"28.3.0","new_version":"32.1.0","repository_url":"https://github.com/stripe/stripe-java"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"3.3.12","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.jacoco:jacoco-maven-plugin","old_version":"0.8.12","new_version":"0.8.14","repository_url":"https://github.com/jacoco/jacoco"}],"path":"/backend","ecosystem":"maven"},"body":"Bumps the all-dependencies group in /backend with 10 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [org.springframework.boot:spring-boot-starter-parent](https://github.com/spring-projects/spring-boot) | `3.3.12` | `4.0.6` |\n| [io.jsonwebtoken:jjwt-api](https://github.com/jwtk/jjwt) | `0.12.6` | `0.13.0` |\n| [io.jsonwebtoken:jjwt-impl](https://github.com/jwtk/jjwt) | `0.12.6` | `0.13.0` |\n| io.jsonwebtoken:jjwt-jackson | `0.12.6` | `0.13.0` |\n| [org.projectlombok:lombok](https://github.com/projectlombok/lombok) | `1.18.34` | `1.18.46` |\n| [org.springdoc:springdoc-openapi-starter-webmvc-ui](https://github.com/springdoc/springdoc-openapi) | `2.6.0` | `3.0.3` |\n| software.amazon.awssdk:s3 | `2.29.1` | `2.43.2` |\n| [com.stripe:stripe-java](https://github.com/stripe/stripe-java) | `28.3.0` | `32.1.0` |\n| [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) | `3.3.12` | `4.0.6` |\n| [org.jacoco:jacoco-maven-plugin](https://github.com/jacoco/jacoco) | `0.8.12` | `0.8.14` |\n\nUpdates `org.springframework.boot:spring-boot-starter-parent` from 3.3.12 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-parent's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.3.12...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `io.jsonwebtoken:jjwt-api` from 0.12.6 to 0.13.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jwtk/jjwt/releases\"\u003eio.jsonwebtoken:jjwt-api's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.13.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eThis is the last minor JJWT release branch that will support Java 7\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eAny necessary emergency bug fixes will be fixed in subsequent \u003ccode\u003e0.13.x\u003c/code\u003e patch releases, but all new development, including \u003ca href=\"https://github.com/jwtk/jjwt/issues?q=is%3Aissue%20label%3Ajdk8\"\u003eJava 8 compatible changes\u003c/a\u003e, will be in the next minor (\u003ccode\u003e0.14.0\u003c/code\u003e) release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eAll future JJWT major and minor versions (  \u003ccode\u003e0.14.0\u003c/code\u003e and later) will require Java 8 or later.\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eThis release contains a single change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe previously private \u003ccode\u003eJacksonDeserializer(ObjectMapper objectMapper, Map\u0026lt;String, Class\u0026lt;?\u0026gt;\u0026gt; claimTypeMap)\u003c/code\u003e constructor is now \u003ccode\u003epublic\u003c/code\u003e for those that want register a claims  type converter on their own specified \u003ccode\u003eObjectMapper\u003c/code\u003e instance. Thank you to \u003ca href=\"https://github.com/kesrishubham2510\"\u003e\u003ccode\u003e@​kesrishubham2510\u003c/code\u003e\u003c/a\u003e for PR \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/972\"\u003e#972\u003c/a\u003e. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/914\"\u003eIssue 914\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.12.7...0.13.0\"\u003ehttps://github.com/jwtk/jjwt/compare/0.12.7...0.13.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.12.7\u003c/h2\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdds a new Maven BOM! This is useful for multi-module projects. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/967\"\u003eIssue 967\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAllows the \u003ccode\u003eJwtParserBuilder\u003c/code\u003e to have empty nested algorithm collections, effectively disabling the parser's associated feature:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEmptying the \u003ccode\u003ezip()\u003c/code\u003e nested collection disables JWT decompression.\u003c/li\u003e\n\u003cli\u003eEmptying the \u003ccode\u003esig()\u003c/code\u003e nested collection disables JWS mac/signature verification (i.e. all JWSs will be unsupported/rejected).\u003c/li\u003e\n\u003cli\u003eEmptying either the \u003ccode\u003eenc()\u003c/code\u003e or \u003ccode\u003ekey()\u003c/code\u003e nested collections disables JWE decryption (i.e. all JWEs will be unsupported/rejected)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/996\"\u003eIssue 996\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixes \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/961\"\u003ebug 961\u003c/a\u003e where \u003ccode\u003eJwtParserBuilder\u003c/code\u003e nested collection builders were not correctly replacing algorithms with the same id.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eEnsures a \u003ccode\u003eJwkSet\u003c/code\u003e's \u003ccode\u003ekeys\u003c/code\u003e collection is no longer entirely secret/redacted by default.  This was an overzealous default that was unnecessarily restrictive; the \u003ccode\u003ekeys\u003c/code\u003e collection itself should always be public, and each individual key within should determine which fields should be redacted when printed. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/976\"\u003eIssue 976\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImproves performance slightly by ensuring all \u003ccode\u003ejjwt-api\u003c/code\u003e utility methods that create \u003ccode\u003e*Builder\u003c/code\u003e instances (\u003ccode\u003eJwts.builder()\u003c/code\u003e, \u003ccode\u003eJwts.parserBuilder()\u003c/code\u003e, \u003ccode\u003eJwks.builder()\u003c/code\u003e, etc) no longer use reflection.\u003c/p\u003e\n\u003cp\u003eInstead,\u003ccode\u003estatic\u003c/code\u003e factories are created via reflection only once during initial \u003ccode\u003ejjwt-api\u003c/code\u003e classloading, and then \u003ccode\u003e*Builder\u003c/code\u003es are created via standard instantiation using the \u003ccode\u003enew\u003c/code\u003e operator thereafter.  This also benefits certain environments that may not have ideal \u003ccode\u003eClassLoader\u003c/code\u003e implementations (e.g. Tomcat in some cases).\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNOTE: because this changes which classes are loaded via reflection, any environments that must explicitly reference reflective class names (e.g. GraalVM applications) will need to be updated to reflect the new factory class names\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/988\"\u003eIssue 988\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the Gson dependency to \u003ccode\u003e2.11.0\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the BouncyCastle dependency to \u003ccode\u003e1.78.1\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigpwned\"\u003e\u003ccode\u003e@​sigpwned\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/968\"\u003ejwtk/jjwt#968\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TheMrMilchmann\"\u003e\u003ccode\u003e@​TheMrMilchmann\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/979\"\u003ejwtk/jjwt#979\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/atanasg\"\u003e\u003ccode\u003e@​atanasg\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/974\"\u003ejwtk/jjwt#974\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.12.6...0.12.7\"\u003ehttps://github.com/jwtk/jjwt/compare/0.12.6...0.12.7\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jwtk/jjwt/blob/master/CHANGELOG.md\"\u003eio.jsonwebtoken:jjwt-api's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e0.13.0\u003c/h3\u003e\n\u003cp\u003eThis is the last minor JJWT release branch that will support Java 7. Any necessary emergency bug fixes will be fixed in subsequent \u003ccode\u003e0.13.x\u003c/code\u003e patch releases, but all new development, including Java 8 compatible changes, will be in the next minor (\u003ccode\u003e0.14.0\u003c/code\u003e) release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eAll future JJWT major and minor versions (  \u003ccode\u003e0.14.0\u003c/code\u003e and later) will require Java 8 or later.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eThis \u003ccode\u003e0.13.0\u003c/code\u003e minor release has only one change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe previously private \u003ccode\u003eJacksonDeserializer(ObjectMapper objectMapper, Map\u0026lt;String, Class\u0026lt;?\u0026gt;\u0026gt; claimTypeMap)\u003c/code\u003e constructor is now \u003ccode\u003epublic\u003c/code\u003e for those that want register a claims\ntype converter on their own specified \u003ccode\u003eObjectMapper\u003c/code\u003e instance.  See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/914\"\u003eIssue 914\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e0.12.7\u003c/h3\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdds a new Maven BOM, useful for multi-module projects. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/967\"\u003eIssue 967\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAllows the \u003ccode\u003eJwtParserBuilder\u003c/code\u003e to have empty nested algorithm collections, effectively disabling the parser's associated feature:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEmptying the \u003ccode\u003ezip()\u003c/code\u003e nested collection disables JWT decompression.\u003c/li\u003e\n\u003cli\u003eEmptying the \u003ccode\u003esig()\u003c/code\u003e nested collection disables JWS mac/signature verification (i.e. all JWSs will be unsupported/rejected).\u003c/li\u003e\n\u003cli\u003eEmptying either the \u003ccode\u003eenc()\u003c/code\u003e or \u003ccode\u003ekey()\u003c/code\u003e nested collections disables JWE decryption (i.e. all JWEs will be unsupported/rejected)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/996\"\u003eIssue 996\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixes \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/961\"\u003ebug 961\u003c/a\u003e where \u003ccode\u003eJwtParserBuilder\u003c/code\u003e nested collection builders were not correctly replacing algorithms with the same id.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eEnsures a \u003ccode\u003eJwkSet\u003c/code\u003e's \u003ccode\u003ekeys\u003c/code\u003e collection is no longer entirely secret/redacted by default.  This was an overzealous default that was unnecessarily restrictive; the \u003ccode\u003ekeys\u003c/code\u003e collection itself should always be public, and each individual key within should determine which fields should be redacted when printed. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/976\"\u003eIssue 976\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImproves performance slightly by ensuring all \u003ccode\u003ejjwt-api\u003c/code\u003e utility methods that create \u003ccode\u003e*Builder\u003c/code\u003e instances (\u003ccode\u003eJwts.builder()\u003c/code\u003e, \u003ccode\u003eJwts.parserBuilder()\u003c/code\u003e, \u003ccode\u003eJwks.builder()\u003c/code\u003e, etc) no longer use reflection.\u003c/p\u003e\n\u003cp\u003eInstead,\u003ccode\u003estatic\u003c/code\u003e factories are created via reflection only once during initial \u003ccode\u003ejjwt-api\u003c/code\u003e classloading, and then \u003ccode\u003e*Builder\u003c/code\u003es are created via standard instantiation using the \u003ccode\u003enew\u003c/code\u003e operator thereafter.  This also benefits certain environments that may not have ideal \u003ccode\u003eClassLoader\u003c/code\u003e implementations (e.g. Tomcat in some cases).\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNOTE: because this changes which classes are loaded via reflection, any environments that must explicitly reference reflective class names (e.g. GraalVM applications) will need to be updated to reflect the new factory class names\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/988\"\u003eIssue 988\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the Gson dependency to \u003ccode\u003e2.11.0\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the BouncyCastle dependency to \u003ccode\u003e1.78.1\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/a757addce04f6b6d8086beeee8dafcf670550a5b\"\u003e\u003ccode\u003ea757add\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare release 0.13.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/e357463c59cf62c1f70503ac0102d10efcdfc37d\"\u003e\u003ccode\u003ee357463\u003c/code\u003e\u003c/a\u003e Preparing for the 0.13.0 release.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/b6f8cb82a9c2e9817d842bfe72d2c8fb03124342\"\u003e\u003ccode\u003eb6f8cb8\u003c/code\u003e\u003c/a\u003e Made constructor public to allow users their own objectMapper instance (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/972\"\u003e#972\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/03f088a4eb774bae2403c428aa885a12d3afde14\"\u003e\u003ccode\u003e03f088a\u003c/code\u003e\u003c/a\u003e Bumping development version to 0.13.0-SNAPSHOT (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1014\"\u003e#1014\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/3f2697f854bedebe63e9eddb8c596f76086d11ca\"\u003e\u003ccode\u003e3f2697f\u003c/code\u003e\u003c/a\u003e Release 0.12.7 (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1012\"\u003e#1012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/efed1cf56f9b9715e60eaac7fda6b2c4b62410b9\"\u003e\u003ccode\u003eefed1cf\u003c/code\u003e\u003c/a\u003e Updated 0.12.7 change list\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/ca27b122b7f44f3bdd4cd4f636d084f38cc3b3c8\"\u003e\u003ccode\u003eca27b12\u003c/code\u003e\u003c/a\u003e Resolves \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1010\"\u003e#1010\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1011\"\u003e#1011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/55c7b9adef88328f59534f232060830c34f25478\"\u003e\u003ccode\u003e55c7b9a\u003c/code\u003e\u003c/a\u003e Resolves \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/771\"\u003e#771\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1009\"\u003e#1009\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/6e9c6a5a825c5ec38f90006f48cc1f8640a6d82e\"\u003e\u003ccode\u003e6e9c6a5\u003c/code\u003e\u003c/a\u003e Bump org.bouncycastle:bcpkix-jdk18on from 1.78 to 1.78.1 (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1008\"\u003e#1008\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/7ec7dd1a19a38a1829903f88b9512697bfb7be3c\"\u003e\u003ccode\u003e7ec7dd1\u003c/code\u003e\u003c/a\u003e Enable JwtParser empty nested algorithm collections. (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1007\"\u003e#1007\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.12.6...0.13.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `io.jsonwebtoken:jjwt-impl` from 0.12.6 to 0.13.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jwtk/jjwt/releases\"\u003eio.jsonwebtoken:jjwt-impl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.13.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eThis is the last minor JJWT release branch that will support Java 7\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eAny necessary emergency bug fixes will be fixed in subsequent \u003ccode\u003e0.13.x\u003c/code\u003e patch releases, but all new development, including \u003ca href=\"https://github.com/jwtk/jjwt/issues?q=is%3Aissue%20label%3Ajdk8\"\u003eJava 8 compatible changes\u003c/a\u003e, will be in the next minor (\u003ccode\u003e0.14.0\u003c/code\u003e) release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eAll future JJWT major and minor versions (  \u003ccode\u003e0.14.0\u003c/code\u003e and later) will require Java 8 or later.\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eThis release contains a single change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe previously private \u003ccode\u003eJacksonDeserializer(ObjectMapper objectMapper, Map\u0026lt;String, Class\u0026lt;?\u0026gt;\u0026gt; claimTypeMap)\u003c/code\u003e constructor is now \u003ccode\u003epublic\u003c/code\u003e for those that want register a claims  type converter on their own specified \u003ccode\u003eObjectMapper\u003c/code\u003e instance. Thank you to \u003ca href=\"https://github.com/kesrishubham2510\"\u003e\u003ccode\u003e@​kesrishubham2510\u003c/code\u003e\u003c/a\u003e for PR \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/972\"\u003e#972\u003c/a\u003e. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/914\"\u003eIssue 914\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.12.7...0.13.0\"\u003ehttps://github.com/jwtk/jjwt/compare/0.12.7...0.13.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.12.7\u003c/h2\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdds a new Maven BOM! This is useful for multi-module projects. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/967\"\u003eIssue 967\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAllows the \u003ccode\u003eJwtParserBuilder\u003c/code\u003e to have empty nested algorithm collections, effectively disabling the parser's associated feature:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEmptying the \u003ccode\u003ezip()\u003c/code\u003e nested collection disables JWT decompression.\u003c/li\u003e\n\u003cli\u003eEmptying the \u003ccode\u003esig()\u003c/code\u003e nested collection disables JWS mac/signature verification (i.e. all JWSs will be unsupported/rejected).\u003c/li\u003e\n\u003cli\u003eEmptying either the \u003ccode\u003eenc()\u003c/code\u003e or \u003ccode\u003ekey()\u003c/code\u003e nested collections disables JWE decryption (i.e. all JWEs will be unsupported/rejected)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/996\"\u003eIssue 996\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixes \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/961\"\u003ebug 961\u003c/a\u003e where \u003ccode\u003eJwtParserBuilder\u003c/code\u003e nested collection builders were not correctly replacing algorithms with the same id.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eEnsures a \u003ccode\u003eJwkSet\u003c/code\u003e's \u003ccode\u003ekeys\u003c/code\u003e collection is no longer entirely secret/redacted by default.  This was an overzealous default that was unnecessarily restrictive; the \u003ccode\u003ekeys\u003c/code\u003e collection itself should always be public, and each individual key within should determine which fields should be redacted when printed. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/976\"\u003eIssue 976\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImproves performance slightly by ensuring all \u003ccode\u003ejjwt-api\u003c/code\u003e utility methods that create \u003ccode\u003e*Builder\u003c/code\u003e instances (\u003ccode\u003eJwts.builder()\u003c/code\u003e, \u003ccode\u003eJwts.parserBuilder()\u003c/code\u003e, \u003ccode\u003eJwks.builder()\u003c/code\u003e, etc) no longer use reflection.\u003c/p\u003e\n\u003cp\u003eInstead,\u003ccode\u003estatic\u003c/code\u003e factories are created via reflection only once during initial \u003ccode\u003ejjwt-api\u003c/code\u003e classloading, and then \u003ccode\u003e*Builder\u003c/code\u003es are created via standard instantiation using the \u003ccode\u003enew\u003c/code\u003e operator thereafter.  This also benefits certain environments that may not have ideal \u003ccode\u003eClassLoader\u003c/code\u003e implementations (e.g. Tomcat in some cases).\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNOTE: because this changes which classes are loaded via reflection, any environments that must explicitly reference reflective class names (e.g. GraalVM applications) will need to be updated to reflect the new factory class names\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/988\"\u003eIssue 988\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the Gson dependency to \u003ccode\u003e2.11.0\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the BouncyCastle dependency to \u003ccode\u003e1.78.1\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigpwned\"\u003e\u003ccode\u003e@​sigpwned\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/968\"\u003ejwtk/jjwt#968\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TheMrMilchmann\"\u003e\u003ccode\u003e@​TheMrMilchmann\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/979\"\u003ejwtk/jjwt#979\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/atanasg\"\u003e\u003ccode\u003e@​atanasg\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/974\"\u003ejwtk/jjwt#974\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.12.6...0.12.7\"\u003ehttps://github.com/jwtk/jjwt/compare/0.12.6...0.12.7\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jwtk/jjwt/blob/master/CHANGELOG.md\"\u003eio.jsonwebtoken:jjwt-impl's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e0.13.0\u003c/h3\u003e\n\u003cp\u003eThis is the last minor JJWT release branch that will support Java 7. Any necessary emergency bug fixes will be fixed in subsequent \u003ccode\u003e0.13.x\u003c/code\u003e patch releases, but all new development, including Java 8 compatible changes, will be in the next minor (\u003ccode\u003e0.14.0\u003c/code\u003e) release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eAll future JJWT major and minor versions (  \u003ccode\u003e0.14.0\u003c/code\u003e and later) will require Java 8 or later.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eThis \u003ccode\u003e0.13.0\u003c/code\u003e minor release has only one change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe previously private \u003ccode\u003eJacksonDeserializer(ObjectMapper objectMapper, Map\u0026lt;String, Class\u0026lt;?\u0026gt;\u0026gt; claimTypeMap)\u003c/code\u003e constructor is now \u003ccode\u003epublic\u003c/code\u003e for those that want register a claims\ntype converter on their own specified \u003ccode\u003eObjectMapper\u003c/code\u003e instance.  See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/914\"\u003eIssue 914\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e0.12.7\u003c/h3\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdds a new Maven BOM, useful for multi-module projects. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/967\"\u003eIssue 967\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAllows the \u003ccode\u003eJwtParserBuilder\u003c/code\u003e to have empty nested algorithm collections, effectively disabling the parser's associated feature:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEmptying the \u003ccode\u003ezip()\u003c/code\u003e nested collection disables JWT decompression.\u003c/li\u003e\n\u003cli\u003eEmptying the \u003ccode\u003esig()\u003c/code\u003e nested collection disables JWS mac/signature verification (i.e. all JWSs will be unsupported/rejected).\u003c/li\u003e\n\u003cli\u003eEmptying either the \u003ccode\u003eenc()\u003c/code\u003e or \u003ccode\u003ekey()\u003c/code\u003e nested collections disables JWE decryption (i.e. all JWEs will be unsupported/rejected)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/996\"\u003eIssue 996\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixes \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/961\"\u003ebug 961\u003c/a\u003e where \u003ccode\u003eJwtParserBuilder\u003c/code\u003e nested collection builders were not correctly replacing algorithms with the same id.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eEnsures a \u003ccode\u003eJwkSet\u003c/code\u003e's \u003ccode\u003ekeys\u003c/code\u003e collection is no longer entirely secret/redacted by default.  This was an overzealous default that was unnecessarily restrictive; the \u003ccode\u003ekeys\u003c/code\u003e collection itself should always be public, and each individual key within should determine which fields should be redacted when printed. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/976\"\u003eIssue 976\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImproves performance slightly by ensuring all \u003ccode\u003ejjwt-api\u003c/code\u003e utility methods that create \u003ccode\u003e*Builder\u003c/code\u003e instances (\u003ccode\u003eJwts.builder()\u003c/code\u003e, \u003ccode\u003eJwts.parserBuilder()\u003c/code\u003e, \u003ccode\u003eJwks.builder()\u003c/code\u003e, etc) no longer use reflection.\u003c/p\u003e\n\u003cp\u003eInstead,\u003ccode\u003estatic\u003c/code\u003e factories are created via reflection only once during initial \u003ccode\u003ejjwt-api\u003c/code\u003e classloading, and then \u003ccode\u003e*Builder\u003c/code\u003es are created via standard instantiation using the \u003ccode\u003enew\u003c/code\u003e operator thereafter.  This also benefits certain environments that may not have ideal \u003ccode\u003eClassLoader\u003c/code\u003e implementations (e.g. Tomcat in some cases).\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNOTE: because this changes which classes are loaded via reflection, any environments that must explicitly reference reflective class names (e.g. GraalVM applications) will need to be updated to reflect the new factory class names\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/988\"\u003eIssue 988\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the Gson dependency to \u003ccode\u003e2.11.0\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the BouncyCastle dependency to \u003ccode\u003e1.78.1\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/a757addce04f6b6d8086beeee8dafcf670550a5b\"\u003e\u003ccode\u003ea757add\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare release 0.13.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/e357463c59cf62c1f70503ac0102d10efcdfc37d\"\u003e\u003ccode\u003ee357463\u003c/code\u003e\u003c/a\u003e Preparing for the 0.13.0 release.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/b6f8cb82a9c2e9817d842bfe72d2c8fb03124342\"\u003e\u003ccode\u003eb6f8cb8\u003c/code\u003e\u003c/a\u003e Made constructor public to allow users their own objectMapper instance (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/972\"\u003e#972\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/03f088a4eb774bae2403c428aa885a12d3afde14\"\u003e\u003ccode\u003e03f088a\u003c/code\u003e\u003c/a\u003e Bumping development version to 0.13.0-SNAPSHOT (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1014\"\u003e#1014\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/3f2697f854bedebe63e9eddb8c596f76086d11ca\"\u003e\u003ccode\u003e3f2697f\u003c/code\u003e\u003c/a\u003e Release 0.12.7 (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1012\"\u003e#1012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/efed1cf56f9b9715e60eaac7fda6b2c4b62410b9\"\u003e\u003ccode\u003eefed1cf\u003c/code\u003e\u003c/a\u003e Updated 0.12.7 change list\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/ca27b122b7f44f3bdd4cd4f636d084f38cc3b3c8\"\u003e\u003ccode\u003eca27b12\u003c/code\u003e\u003c/a\u003e Resolves \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1010\"\u003e#1010\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1011\"\u003e#1011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/55c7b9adef88328f59534f232060830c34f25478\"\u003e\u003ccode\u003e55c7b9a\u003c/code\u003e\u003c/a\u003e Resolves \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/771\"\u003e#771\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1009\"\u003e#1009\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/6e9c6a5a825c5ec38f90006f48cc1f8640a6d82e\"\u003e\u003ccode\u003e6e9c6a5\u003c/code\u003e\u003c/a\u003e Bump org.bouncycastle:bcpkix-jdk18on from 1.78 to 1.78.1 (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1008\"\u003e#1008\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/7ec7dd1a19a38a1829903f88b9512697bfb7be3c\"\u003e\u003ccode\u003e7ec7dd1\u003c/code\u003e\u003c/a\u003e Enable JwtParser empty nested algorithm collections. (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1007\"\u003e#1007\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.12.6...0.13.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `io.jsonwebtoken:jjwt-jackson` from 0.12.6 to 0.13.0\n\nUpdates `io.jsonwebtoken:jjwt-impl` from 0.12.6 to 0.13.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jwtk/jjwt/releases\"\u003eio.jsonwebtoken:jjwt-impl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.13.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eThis is the last minor JJWT release branch that will support Java 7\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eAny necessary emergency bug fixes will be fixed in subsequent \u003ccode\u003e0.13.x\u003c/code\u003e patch releases, but all new development, including \u003ca href=\"https://github.com/jwtk/jjwt/issues?q=is%3Aissue%20label%3Ajdk8\"\u003eJava 8 compatible changes\u003c/a\u003e, will be in the next minor (\u003ccode\u003e0.14.0\u003c/code\u003e) release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eAll future JJWT major and minor versions (  \u003ccode\u003e0.14.0\u003c/code\u003e and later) will require Java 8 or later.\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eThis release contains a single change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe previously private \u003ccode\u003eJacksonDeserializer(ObjectMapper objectMapper, Map\u0026lt;String, Class\u0026lt;?\u0026gt;\u0026gt; claimTypeMap)\u003c/code\u003e constructor is now \u003ccode\u003epublic\u003c/code\u003e for those that want register a claims  type converter on their own specified \u003ccode\u003eObjectMapper\u003c/code\u003e instance. Thank you to \u003ca href=\"https://github.com/kesrishubham2510\"\u003e\u003ccode\u003e@​kesrishubham2510\u003c/code\u003e\u003c/a\u003e for PR \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/972\"\u003e#972\u003c/a\u003e. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/914\"\u003eIssue 914\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.12.7...0.13.0\"\u003ehttps://github.com/jwtk/jjwt/compare/0.12.7...0.13.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.12.7\u003c/h2\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdds a new Maven BOM! This is useful for multi-module projects. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/967\"\u003eIssue 967\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAllows the \u003ccode\u003eJwtParserBuilder\u003c/code\u003e to have empty nested algorithm collections, effectively disabling the parser's associated feature:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEmptying the \u003ccode\u003ezip()\u003c/code\u003e nested collection disables JWT decompression.\u003c/li\u003e\n\u003cli\u003eEmptying the \u003ccode\u003esig()\u003c/code\u003e nested collection disables JWS mac/signature verification (i.e. all JWSs will be unsupported/rejected).\u003c/li\u003e\n\u003cli\u003eEmptying either the \u003ccode\u003eenc()\u003c/code\u003e or \u003ccode\u003ekey()\u003c/code\u003e nested collections disables JWE decryption (i.e. all JWEs will be unsupported/rejected)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/996\"\u003eIssue 996\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixes \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/961\"\u003ebug 961\u003c/a\u003e where \u003ccode\u003eJwtParserBuilder\u003c/code\u003e nested collection builders were not correctly replacing algorithms with the same id.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eEnsures a \u003ccode\u003eJwkSet\u003c/code\u003e's \u003ccode\u003ekeys\u003c/code\u003e collection is no longer entirely secret/redacted by default.  This was an overzealous default that was unnecessarily restrictive; the \u003ccode\u003ekeys\u003c/code\u003e collection itself should always be public, and each individual key within should determine which fields should be redacted when printed. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/976\"\u003eIssue 976\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImproves performance slightly by ensuring all \u003ccode\u003ejjwt-api\u003c/code\u003e utility methods that create \u003ccode\u003e*Builder\u003c/code\u003e instances (\u003ccode\u003eJwts.builder()\u003c/code\u003e, \u003ccode\u003eJwts.parserBuilder()\u003c/code\u003e, \u003ccode\u003eJwks.builder()\u003c/code\u003e, etc) no longer use reflection.\u003c/p\u003e\n\u003cp\u003eInstead,\u003ccode\u003estatic\u003c/code\u003e factories are created via reflection only once during initial \u003ccode\u003ejjwt-api\u003c/code\u003e classloading, and then \u003ccode\u003e*Builder\u003c/code\u003es are created via standard instantiation using the \u003ccode\u003enew\u003c/code\u003e operator thereafter.  This also benefits certain environments that may not have ideal \u003ccode\u003eClassLoader\u003c/code\u003e implementations (e.g. Tomcat in some cases).\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNOTE: because this changes which classes are loaded via reflection, any environments that must explicitly reference reflective class names (e.g. GraalVM applications) will need to be updated to reflect the new factory class names\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/988\"\u003eIssue 988\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the Gson dependency to \u003ccode\u003e2.11.0\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the BouncyCastle dependency to \u003ccode\u003e1.78.1\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigpwned\"\u003e\u003ccode\u003e@​sigpwned\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/968\"\u003ejwtk/jjwt#968\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TheMrMilchmann\"\u003e\u003ccode\u003e@​TheMrMilchmann\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/979\"\u003ejwtk/jjwt#979\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/atanasg\"\u003e\u003ccode\u003e@​atanasg\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/974\"\u003ejwtk/jjwt#974\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.12.6...0.12.7\"\u003ehttps://github.com/jwtk/jjwt/compare/0.12.6...0.12.7\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jwtk/jjwt/blob/master/CHANGELOG.md\"\u003eio.jsonwebtoken:jjwt-impl's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e0.13.0\u003c/h3\u003e\n\u003cp\u003eThis is the last minor JJWT release branch that will support Java 7. Any necessary emergency bug fixes will be fixed in subsequent \u003ccode\u003e0.13.x\u003c/code\u003e patch releases, but all new development, including Java 8 compatible changes, will be in the next minor (\u003ccode\u003e0.14.0\u003c/code\u003e) release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eAll future JJWT major and minor versions (  \u003ccode\u003e0.14.0\u003c/code\u003e and later) will require Java 8 or later.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eThis \u003ccode\u003e0.13.0\u003c/code\u003e minor release has only one change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe previously private \u003ccode\u003eJacksonDeserializer(ObjectMapper objectMapper, Map\u0026lt;String, Class\u0026lt;?\u0026gt;\u0026gt; claimTypeMap)\u003c/code\u003e constructor is now \u003ccode\u003epublic\u003c/code\u003e for those that want register a claims\ntype converter on their own specified \u003ccode\u003eObjectMapper\u003c/code\u003e instance.  See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/914\"\u003eIssue 914\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e0.12.7\u003c/h3\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdds a new Maven BOM, useful for multi-module projects. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/967\"\u003eIssue 967\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAllows the \u003ccode\u003eJwtParserBuilder\u003c/code\u003e to have empty nested algorithm collections, effectively disabling the parser's associated feature:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEmptying the \u003ccode\u003ezip()\u003c/code\u003e nested collection disables JWT decompression.\u003c/li\u003e\n\u003cli\u003eEmptying the \u003ccode\u003esig()\u003c/code\u003e nested collection disables JWS mac/signature verification (i.e. all JWSs will be unsupported/rejected).\u003c/li\u003e\n\u003cli\u003eEmptying either the \u003ccode\u003eenc()\u003c/code\u003e or \u003ccode\u003ekey()\u003c/code\u003e nested collections disables JWE decryption (i.e. all JWEs will be unsupported/rejected)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/996\"\u003eIssue 996\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixes \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/961\"\u003ebug 961\u003c/a\u003e where \u003ccode\u003eJwtParserBuilder\u003c/code\u003e nested collection builders were not correctly replacing algorithms with the same id.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eEnsures a \u003ccode\u003eJwkSet\u003c/code\u003e's \u003ccode\u003ekeys\u003c/code\u003e collection is no longer entirely secret/redacted by default.  This was an overzealous default that was unnecessarily restrictive; the \u003ccode\u003ekeys\u003c/code\u003e collection itself should always be public, and each individual key within should determine which fields should be redacted when printed. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/976\"\u003eIssue 976\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImproves performance slightly by ensuring all \u003ccode\u003ejjwt-api\u003c/code\u003e utility methods that create \u003ccode\u003e*Builder\u003c/code\u003e instances (\u003ccode\u003eJwts.builder()\u003c/code\u003e, \u003ccode\u003eJwts.parserBuilder()\u003c/code\u003e, \u003ccode\u003eJwks.builder()\u003c/code\u003e, etc) no longer use reflection.\u003c/p\u003e\n\u003cp\u003eInstead,\u003ccode\u003estatic\u003c/code\u003e factories are created via reflection only once during initial \u003ccode\u003ejjwt-api\u003c/code\u003e classloading, and then \u003ccode\u003e*Builder\u003c/code\u003es are created via standard instantiation using the \u003ccode\u003enew\u003c/code\u003e operator thereafter.  This also benefits certain environments that may not have ideal \u003ccode\u003eClassLoader\u003c/code\u003e implementations (e.g. Tomcat in some cases).\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNOTE: because this changes which classes are loaded via reflection, any environments that must explicitly reference reflective class names (e.g. GraalVM applications) will need to be updated to reflect the new factory class names\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/988\"\u003eIssue 988\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the Gson dependency to \u003ccode\u003e2.11.0\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the BouncyCastle dependency to \u003ccode\u003e1.78.1\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/a757addce04f6b6d8086beeee8dafcf670550a5b\"\u003e\u003ccode\u003ea757add\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare release 0.13.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/e357463c59cf62c1f70503ac0102d10efcdfc37d\"\u003e\u003ccode\u003ee357463\u003c/code\u003e\u003c/a\u003e Preparing for the 0.13.0 release.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/b6f8cb82a9c2e9817d842bfe72d2c8fb03124342\"\u003e\u003ccode\u003eb6f8cb8\u003c/code\u003e\u003c/a\u003e Made constructor public to allow users their own objectMapper instance (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/972\"\u003e#972\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/03f088a4eb774bae2403c428aa885a12d3afde14\"\u003e\u003ccode\u003e03f088a\u003c/code\u003e\u003c/a\u003e Bumping development version to 0.13.0-SNAPSHOT (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1014\"\u003e#1014\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/3f2697f854bedebe63e9eddb8c596f76086d11ca\"\u003e\u003ccode\u003e3f2697f\u003c/code\u003e\u003c/a\u003e Release 0.12.7 (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1012\"\u003e#1012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/efed1cf56f9b9715e60eaac7fda6b2c4b62410b9\"\u003e\u003ccode\u003eefed1cf\u003c/code\u003e\u003c/a\u003e Updated 0.12.7 change list\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/ca27b122b7f44f3bdd4cd4f636d084f38cc3b3c8\"\u003e\u003ccode\u003eca27b12\u003c/code\u003e\u003c/a\u003e Resolves \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1010\"\u003e#1010\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1011\"\u003e#1011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/55c7b9adef88328f59534f232060830c34f25478\"\u003e\u003ccode\u003e55c7b9a\u003c/code\u003e\u003c/a\u003e Resolves \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/771\"\u003e#771\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1009\"\u003e#1009\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/6e9c6a5a825c5ec38f90006f48cc1f8640a6d82e\"\u003e\u003ccode\u003e6e9c6a5\u003c/code\u003e\u003c/a\u003e Bump org.bouncycastle:bcpkix-jdk18on from 1.78 to 1.78.1 (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1008\"\u003e#1008\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/7ec7dd1a19a38a1829903f88b9512697bfb7be3c\"\u003e\u003ccode\u003e7ec7dd1\u003c/code\u003e\u003c/a\u003e Enable JwtParser empty nested algorithm collections. (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1007\"\u003e#1007\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.12.6...0.13.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `io.jsonwebtoken:jjwt-jackson` from 0.12.6 to 0.13.0\n\nUpdates `org.projectlombok:lombok` from 1.18.34 to 1.18.46\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/projectlombok/lombok/blob/master/doc/changelog.markdown\"\u003eorg.projectlombok:lombok's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003ev1.18.46 (April 22nd, 2026)\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePLATFORM: JDK26 support added \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/4019\"\u003e#4019\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003ePLATFORM: Spring Tools Suite 5 supported \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3985\"\u003e#3985\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eBUGFIX: \u003ccode\u003e@Jacksonized\u003c/code\u003e no longer stops generating \u003ccode\u003e@JsonProperty\u003c/code\u003e once an explicit \u003ccode\u003e@JsonIgnore\u003c/code\u003e annotations is encountered \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/4022\"\u003e#4022\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eBUGFIX: In eclipse, mixing \u003ccode\u003e@Jacksonized\u003c/code\u003e and \u003ccode\u003efluent = true\u003c/code\u003e no longer causes the error \u003ccode\u003ecom.fasterxml.jackson.annotation.JsonProperty is not a repeatable annotation interface\u003c/code\u003e. \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3934\"\u003e#3934\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eBUGFIX: Some finishing touches for v1.18.44's support of Jackson3 \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/4004\"\u003e#4004\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ev1.18.44 (March 11th, 2026)\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFEATURE: \u003ccode\u003e@Jacksonized\u003c/code\u003e now supports both Jackson2 and Jackson3; you'll get a warning until you configure which one (or even both!) you want lombok to generate. \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3950\"\u003e#3950\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eBUGFIX: On JDK25, \u003ccode\u003eval\u003c/code\u003e and \u003ccode\u003e@ExtensionMethod\u003c/code\u003e could sometimes cause erroneous errors (in that you see errors but compilation succeeds anyway) using javac. \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3947\"\u003e#3947\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eBUGFIX: \u003ccode\u003e@Jacksonized\u003c/code\u003e + fields marked \u003ccode\u003etransient\u003c/code\u003e would result in those transient fields being serialised which is surprising (and thus undesired) behaviour. \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3936\"\u003e#3936\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ev1.18.42 (September 18th, 2025)\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFEATURE: All the various \u003ccode\u003e@Log\u003c/code\u003e annotations now allow you to change their access level (they still default to \u003ccode\u003eprivate\u003c/code\u003e). \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/2280\"\u003e#2280\u003c/a\u003e. Thanks to new contributor Liam Pace!\u003c/li\u003e\n\u003cli\u003eBUGFIX: Javadoc parsing was broken in Netbeans and ErrorProne for JDK25 \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3940\"\u003e#3940\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ev1.18.40 (September 4th, 2025)\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePLATFORM: JDK25 support added \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3859\"\u003e#3859\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eBUGFIX: Recent versions of eclipse (or the eclipse-based java lang server for VSCode) caused \u003ccode\u003ejava.lang.IllegalArgumentException: Document does not match the AST\u003c/code\u003e. [Issue \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3886\"\u003e#3886\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3886\"\u003eprojectlombok/lombok#3886\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003ePERFORMANCE: \u003ccode\u003e@ExtensionMethod\u003c/code\u003e is now significantly faster [Issue \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3866\"\u003e#3866\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3866\"\u003eprojectlombok/lombok#3866\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eBUGFIX: the command line \u003ccode\u003econfig\u003c/code\u003e tool would emit incorrect output for nullity annotations. [Issue \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3931\"\u003e#3931\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3931\"\u003eprojectlombok/lombok#3931\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFEATURE: \u003ccode\u003e@Jacksonized @Accessors(fluent=true)\u003c/code\u003e automatically creates the relevant annotations such that Jackson correctly identifies fluent accessors. [Issue \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3265\"\u003e#3265\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3265\"\u003eprojectlombok/lombok#3265\u003c/a\u003e), [Issue \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3270\"\u003e#3270\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3270\"\u003eprojectlombok/lombok#3270\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eIMPROBABLE BREAKING CHANGE: From versions 1.18.16 to 1.18.38, lombok automatically copies certain Jackson annotations (e.g., \u003ccode\u003e@JsonProperty\u003c/code\u003e) from fields to the corresponding accessors (getters/setters). However, it turned out to be harmful in certain situations. Thus, Lombok does not automatically copy those annotations any more. You can restore the old behavior using the \u003ca href=\"https://projectlombok.org/features/configuration\"\u003econfig key\u003c/a\u003e \u003ccode\u003elombok.copyJacksonAnnotationsToAccessors = true\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ev1.18.38 (March 31st, 2025)\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePLATFORM: JDK24 support added.\u003c/li\u003e\n\u003cli\u003eFEATURE: Lombok's nullity annotation now supports \u003ca href=\"https://jspecify.dev\"\u003eJSpecify\u003c/a\u003e out of the box, using \u003ca href=\"https://projectlombok.org/features/configuration\"\u003econfig key\u003c/a\u003e \u003ccode\u003ejspecify\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eBUGFIX: Recent eclipse releases would get you 'negative length' error. The bug had always been in lombok but didn't matter until recent releases. [Issue \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3823\"\u003e#3823\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3823\"\u003eprojectlombok/lombok#3823\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eBUGFIX: The 'extract local variable' refactor script of VSCode wouldn't replace all occurrences if run on a method call to a lombok generated method. [Issue \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3783\"\u003e#3783\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3783\"\u003eprojectlombok/lombok#3783\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ev1.18.36 (November 15th, 2024)\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePLATFORM: JDK23 support added.\u003c/li\u003e\n\u003cli\u003eBUGFIX: Eclipse projects using the \u003ccode\u003ecom.pro-crafting.tools:jasperreports-maven-plugin\u003c/code\u003e will now compile.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/projectlombok/lombok/commit/936ca59baf844fd6c0ad641974295498785d8091\"\u003e\u003ccode\u003e936ca59\u003c/code\u003e\u003c/a\u003e [build] lombok's launcher is still intended to be 1.4 compatible, or at least...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/projectlombok/lombok/commit/fcdab3f29e1b48c8f4b33ef9231ec2587a43d122\"\u003e\u003ccode\u003efcdab3f\u003c/code\u003e\u003c/a\u003e [version] pre-release version bump\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/projectlombok/lombok/commit/1cb7d49c5d2dc98af7a66413d8119dec285d0666\"\u003e\u003ccode\u003e1cb7d49\u003c/code\u003e\u003c/a\u003e [changelog]\u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/4004\"\u003e#4004\u003c/a\u003e Mention Jackson3 final touches in changelog.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/projectlombok/lombok/commit/12a15b00555ec8097eca2bf7d77c2c2124e13e0e\"\u003e\u003ccode\u003e12a15b0\u003c/code\u003e\u003c/a\u003e Fix: Bump EA_JDK to 27 (25 and 26 have been released)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/projectlombok/lombok/commit/2be766cfc2ef56f2d986f28f734c98535d611aee\"\u003e\u003ccode\u003e2be766c\u003c/code\u003e\u003c/a\u003e Merge branch 'jackson3-final-touches'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/projectlombok/lombok/commit/290fa4c8539c7e97b47f7e80033e078127050eb5\"\u003e\u003ccode\u003e290fa4c\u003c/code\u003e\u003c/a\u003e [trivial] constantize the warning we spit out for ambiguous jackson2/3, and m...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/projectlombok/lombok/commit/e6567b6621f86b43033ab4a75e0273780e18e998\"\u003e\u003ccode\u003ee6567b6\u003c/code\u003e\u003c/a\u003e test: Add Jackson 3 test cases and version ambiguity warnings\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/projectlombok/lombok/commit/45e72e241abe98dcfb66408402da825dd2b8e925\"\u003e\u003ccode\u003e45e72e2\u003c/code\u003e\u003c/a\u003e feat: Add Jackson 3 databind/dataformat annotations to HandlerUtil copy lists\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/projectlombok/lombok/commit/184d42363d86446a63b6270ac1eb352dc43ae76c\"\u003e\u003ccode\u003e184d423\u003c/code\u003e\u003c/a\u003e feat: Add Jackson 3 support to \u003ca href=\"https://github.com/Jacksonized\"\u003e\u003ccode\u003e@​Jacksonized\u003c/code\u003e\u003c/a\u003e handlers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/projectlombok/lombok/commit/e027ad0f1515bd33d4d329d90e59dccbaf44651e\"\u003e\u003ccode\u003ee027ad0\u003c/code\u003e\u003c/a\u003e refactored to ShadowClassLoader use Collections::enumeration instead of Vector\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/projectlombok/lombok/compare/v1.18.34...v1.18.46\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springdoc:springdoc-openapi-starter-webmvc-ui` from 2.6.0 to 3.0.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/springdoc/springdoc-openapi/releases\"\u003eorg.springdoc:springdoc-openapi-starter-webmvc-ui's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003espringdoc-openapi v3.0.3 released!\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3246\"\u003e#3246\u003c/a\u003e – Add Springdoc OpenAPI MCP (Model Context Protocol) support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3256\"\u003e#3256\u003c/a\u003e – Auto-set \u003ccode\u003enullable: true\u003c/code\u003e for Kotlin nullable types in schema properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3239\"\u003e#3239\u003c/a\u003e – Add support for the \u003ccode\u003e@Range\u003c/code\u003e constraint validation annotation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3244\"\u003e#3244\u003c/a\u003e – Handle default values for \u003ccode\u003eLocalDate\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade Spring Boot to version \u003cstrong\u003e4.0.5\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-core to version \u003cstrong\u003e2.2.47\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-ui to version \u003cstrong\u003e5.32.2\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3260\"\u003e#3260\u003c/a\u003e – \u003ccode\u003e@ConditionalOnClass(HateoasProperties.class)\u003c/code\u003e in \u003ccode\u003eSpringDocHateoasConfiguration\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eForwards all MCP non-transport headers to downstream methods\u003c/li\u003e\n\u003cli\u003eDynamically resolve the base path from \u003ccode\u003ewindow.location.pathname\u003c/code\u003e for MCP UI\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3258\"\u003e#3258\u003c/a\u003e – Setting API Version Required when using WebFlux breaks the Swagger UI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3259\"\u003e#3259\u003c/a\u003e – Annotated Generic properties getting applied to sibling properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3255\"\u003e#3255\u003c/a\u003e – \u003ccode\u003eDirection\u003c/code\u003e enum: fixed visibility scope of group order so that \u003ccode\u003esetGroupsOrder\u003c/code\u003e method can be used\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3247\"\u003e#3247\u003c/a\u003e – Preserve YAML group URLs in Swagger UI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3245\"\u003e#3245\u003c/a\u003e – Upgrade swagger-core from version 2.2.43 to 2.2.45\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3235\"\u003e#3235\u003c/a\u003e – \u003ccode\u003ePropertyResolverUtils\u003c/code\u003e retains a \u003ccode\u003eJsonNode\u003c/code\u003e when reading an \u003ccode\u003eExtensionProperty\u003c/code\u003e annotation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3226\"\u003e#3226\u003c/a\u003e – Propagate \u003ccode\u003eJsonView\u003c/code\u003e context when resolving \u003ccode\u003ePage\u0026lt;T\u0026gt;\u003c/code\u003e schema\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/seregamorph\"\u003e\u003ccode\u003e@​seregamorph\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/pull/3260\"\u003espringdoc/springdoc-openapi#3260\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/springdoc/springdoc-openapi/compare/v3.0.2...v3.0.3\"\u003ehttps://github.com/springdoc/springdoc-openapi/compare/v3.0.2...v3.0.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003espringdoc-openapi v3.0.2 released!\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3229\"\u003e#3229\u003c/a\u003e – Add support for Spring Framework API Versioning with Functional Endpoints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3208\"\u003e#3208\u003c/a\u003e – Add \u003ccode\u003espringdoc.swagger-ui.document-title\u003c/code\u003e property\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade Spring Boot to version \u003cstrong\u003e4.0.3\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-core to version \u003cstrong\u003e2.2.43\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-ui to version \u003cstrong\u003e5.32.0\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade Scalar to version \u003cstrong\u003e0.5.55\u003c/strong\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3232\"\u003e#3232\u003c/a\u003e – Gracefully handle springdoc endpoint paths during API version resolution\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3230\"\u003e#3230\u003c/a\u003e – Scalar source URLs resolve to \u003ccode\u003enull/\u0026lt;groupName\u0026gt;\u003c/code\u003e on second request when using \u003ccode\u003eGroupedOpenApi\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3228\"\u003e#3228\u003c/a\u003e – springdoc-openapi-starter 3.x doesn't depend on \u003ccode\u003eorg.springframework.boot:spring-boot-starter\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/springdoc/springdoc-openapi/blob/v3.0.3/CHANGELOG.md\"\u003eorg.springdoc:springdoc-openapi-starter-webmvc-ui's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.0.3] - 2026-04-12\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3246\"\u003e#3246\u003c/a\u003e – Add Springdoc OpenAPI MCP (Model Context Protocol) support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3256\"\u003e#3256\u003c/a\u003e – Auto-set \u003ccode\u003enullable: true\u003c/code\u003e for Kotlin nullable types in schema properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3239\"\u003e#3239\u003c/a\u003e – Add support for the \u003ccode\u003e@Range\u003c/code\u003e constraint validation annotation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3244\"\u003e#3244\u003c/a\u003e – Handle default values for \u003ccode\u003eLocalDate\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade Spring Boot to version \u003cstrong\u003e4.0.5\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-core to version \u003cstrong\u003e2.2.47\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-ui to version \u003cstrong\u003e5.32.2\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3260\"\u003e#3260\u003c/a\u003e – \u003ccode\u003e@ConditionalOnClass(HateoasProperties.class)\u003c/code\u003e in \u003ccode\u003eSpringDocHateoasConfiguration\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eForwards all MCP non-transport headers to downstream methods\u003c/li\u003e\n\u003cli\u003eDynamically resolve the base path from \u003ccode\u003ewindow.location.pathname\u003c/code\u003e for MCP UI\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3258\"\u003e#3258\u003c/a\u003e – Setting API Version Required when using WebFlux breaks the Swagger UI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3259\"\u003e#3259\u003c/a\u003e – Annotated Generic properties getting applied to sibling properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3255\"\u003e#3255\u003c/a\u003e – \u003ccode\u003eDirection\u003c/code\u003e enum: fixed visibility scope of group order so that \u003ccode\u003esetGroupsOrder\u003c/code\u003e method can be used\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3247\"\u003e#3247\u003c/a\u003e – Preserve YAML group URLs in Swagger UI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3245\"\u003e#3245\u003c/a\u003e – Upgrade swagger-core from version 2.2.43 to 2.2.45\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3235\"\u003e#3235\u003c/a\u003e – \u003ccode\u003ePropertyResolverUtils\u003c/code\u003e retains a \u003ccode\u003eJsonNode\u003c/code\u003e when reading an \u003ccode\u003eExtensionProperty\u003c/code\u003e annotation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3226\"\u003e#3226\u003c/a\u003e – Propagate \u003ccode\u003eJsonView\u003c/code\u003e context when resolving \u003ccode\u003ePage\u0026lt;T\u0026gt;\u003c/code\u003e schema\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.2] - 2026-02-27\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3229\"\u003e#3229\u003c/a\u003e – Add support for Spring Framework API Versioning with Functional Endpoints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3208\"\u003e#3208\u003c/a\u003e – Add \u003ccode\u003espringdoc.swagger-ui.document-title\u003c/code\u003e property\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade Spring Boot to version \u003cstrong\u003e4.0.3\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-core to version \u003cstrong\u003e2.2.43\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-ui to version \u003cstrong\u003e5.32.0\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade Scalar to version \u003cstrong\u003e0.5.55\u003c/strong\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3232\"\u003e#3232\u003c/a\u003e – Gracefully handle springdoc endpoint paths during API version resolution\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3230\"\u003e#3230\u003c/a\u003e – Scalar source URLs resolve to \u003ccode\u003enull/\u0026lt;groupName\u0026gt;\u003c/code\u003e on second request when using \u003ccode\u003eGroupedOpenApi\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3228\"\u003e#3228\u003c/a\u003e – springdoc-openapi-starter 3.x doesn't depend on \u003ccode\u003eorg.springframework.boot:spring-boot-starter\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3220\"\u003e#3220\u003c/a\u003e – Reachability metadata not compatible with GraalVM 25\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3195\"\u003e#3195\u003c/a\u003e – Application won't compile when OpenApi and spring-boot-data-rest is present\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3193\"\u003e#3193\u003c/a\u003e – \u003ccode\u003eOpenApi\u003c/code\u003e field in \u003ccode\u003eSpringDocConfigProperties\u003c/code\u003e does not comply with camel case naming conventions\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/3c30283fb33ced3b8368c7a890ee05d23119322a\"\u003e\u003ccode\u003e3c30283\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare release v3.0.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/4184c05db39e96e8d1ce1287d5f58f242a4c8165\"\u003e\u003ccode\u003e4184c05\u003c/code\u003e\u003c/a\u003e update .gitignore\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/89745c20c3695b9b934cbf77f96ef1cd1df9fac7\"\u003e\u003ccode\u003e89745c2\u003c/code\u003e\u003c/a\u003e CHANGELOG.md update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/4d1a730134720740ed3b9a2831d14e97dbe28780\"\u003e\u003ccode\u003e4d1a730\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3260\"\u003e#3260\u003c/a\u003e from seregamorph/SpringDocHateoasConfiguration-class...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/54e765036d9d49935a97e3ccebd875581efcc8ed\"\u003e\u003ccode\u003e54e7650\u003c/code\u003e\u003c/a\u003e ConditionalOnClass (HateoasProperties.class) in SpringDocHateoasConfiguration\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/9f354b2a3cb92a8caa1d0518b1916ac4f79fbd71\"\u003e\u003ccode\u003e9f354b2\u003c/code\u003e\u003c/a\u003e Spring-boot upgrade to version 4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/14df32f99179db89967a6260562775cd6b883128\"\u003e\u003ccode\u003e14df32f\u003c/code\u003e\u003c/a\u003e Forwards all MCP non-transport headers, to downstream methods\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/3ee9a44547f44fb4982c98b7a5dbc1f6f9aff1a3\"\u003e\u003ccode\u003e3ee9a44\u003c/code\u003e\u003c/a\u003e Forwards all MCP non-transport headers, to downstream methods\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/df99408a7674af5ea3fc40f79d81bfef372e7c0e\"\u003e\u003ccode\u003edf99408\u003c/code\u003e\u003c/a\u003e upgrade swagger-ui to version 5.32.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/6ee70f4074e76d3d8554487e4318681d95e444d7\"\u003e\u003ccode\u003e6ee70f4\u003c/code\u003e\u003c/a\u003e upgrade swagger-api to version 2.2.47\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/springdoc/springdoc-openapi/compare/v2.6.0...v3.0.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `software.amazon.awssdk:s3` from 2.29.1 to 2.43.2\n\nUpdates `com.stripe:stripe-java` from 28.3.0 to 32.1.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/stripe/stripe-java/releases\"\u003ecom.stripe:stripe-java's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev32.1.0\u003c/h2\u003e\n\u003cp\u003eThis release changes the pinned API version to 2026-04-22.dahlia.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/stripe/stripe-java/pull/2203\"\u003e#2203\u003c/a\u003e Update generated code\n\u003cul\u003e\n\u003cli\u003eAdd support for \u003ccode\u003ebalanceReport\u003c/code\u003e and \u003ccode\u003epayoutReconciliationReport\u003c/code\u003e on \u003ccode\u003eAccountSession.components\u003c/code\u003e and \u003ccode\u003eAccountSessionCreateParams.components\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003eappDistribution\u003c/code\u003e and \u003ccode\u003esunbitPayments\u003c/code\u003e on \u003ccode\u003eAccount.capabilities\u003c/code\u003e, \u003ccode\u003eAccountCreateParams.capabilities\u003c/code\u003e, and \u003ccode\u003eAccountUpdateParams.capabilities\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003esunbit\u003c/code\u003e on \u003ccode\u003eCharge.payment_method_details\u003c/code\u003e, \u003ccode\u003eConfirmationToken.payment_method_preview\u003c/code\u003e, \u003ccode\u003eConfirmationTokenCreateParams.payment_method_data\u003c/code\u003e, \u003ccode\u003ePaymentAttemptRecord.payment_method_details\u003c/code\u003e, \u003ccode\u003ePaymentIntentConfirmParams.payment_method_data\u003c/code\u003e, \u003ccode\u003ePaymentIntentCreateParams.payment_method_data\u003c/code\u003e, \u003ccode\u003ePay...\n\n_Description has been truncated_","html_url":"https://github.com/CjlConsultoria/convivium2/pull/34","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/CjlConsultoria%2Fconvivium2/issues/34","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/34/packages"},{"uuid":"4363728840","node_id":"PR_kwDOC3am1M7XYpeX","number":80,"state":"open","title":"dependencies upgrade(dashboard-service): bump the all group across 1 directory with 2 updates","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-01T09:22:39.000Z","updated_at":"2026-05-01T17:37:29.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"dependencies upgrade(dashboard-service): bump","group_name":"all","update_count":2,"packages":[{"name":"org.springframework.boot:spring-boot-starter-parent","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"}],"path":null,"ecosystem":"maven"},"body":"Bumps the all group with 2 updates in the /dashboard-service directory: [org.springframework.boot:spring-boot-starter-parent](https://github.com/spring-projects/spring-boot) and [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot).\n\nUpdates `org.springframework.boot:spring-boot-starter-parent` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-parent's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n","html_url":"https://github.com/zak905/keycloak-api-key-demo/pull/80","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/zak905%2Fkeycloak-api-key-demo/issues/80","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/80/packages"},{"uuid":"4351110245","node_id":"PR_kwDOPM9ABM7WvebK","number":127,"state":"closed","title":"Bump the maven-deps group across 1 directory with 8 updates","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-11T21:45:07.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-29T13:57:22.000Z","updated_at":"2026-05-11T21:45:09.000Z","time_to_close":1064865,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"maven-deps","update_count":8,"packages":[{"name":"org.springframework.boot:spring-boot-starter-parent","old_version":"4.0.4","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-starter","old_version":"4.0.4","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-starter-log4j2","old_version":"4.0.4","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.4","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springdoc:springdoc-openapi-starter-webmvc-ui","old_version":"3.0.2","new_version":"3.0.3","repository_url":"https://github.com/springdoc/springdoc-openapi"},{"name":"org.springdoc:springdoc-openapi-starter-common","old_version":"3.0.2","new_version":"3.0.3","repository_url":"https://github.com/springdoc/springdoc-openapi"},{"name":"org.postgresql:postgresql","old_version":"42.7.10","new_version":"42.7.11","repository_url":"https://github.com/pgjdbc/pgjdbc"},{"name":"org.apache.httpcomponents.client5:httpclient5","old_version":"5.6","new_version":"5.6.1","repository_url":"https://github.com/apache/httpcomponents-client"}],"path":null,"ecosystem":"maven"},"body":"Bumps the maven-deps group with 8 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [org.springframework.boot:spring-boot-starter-parent](https://github.com/spring-projects/spring-boot) | `4.0.4` | `4.0.6` |\n| [org.springframework.boot:spring-boot-starter](https://github.com/spring-projects/spring-boot) | `4.0.4` | `4.0.6` |\n| [org.springframework.boot:spring-boot-starter-log4j2](https://github.com/spring-projects/spring-boot) | `4.0.4` | `4.0.6` |\n| [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) | `4.0.4` | `4.0.6` |\n| [org.springdoc:springdoc-openapi-starter-webmvc-ui](https://github.com/springdoc/springdoc-openapi) | `3.0.2` | `3.0.3` |\n| [org.springdoc:springdoc-openapi-starter-common](https://github.com/springdoc/springdoc-openapi) | `3.0.2` | `3.0.3` |\n| [org.postgresql:postgresql](https://github.com/pgjdbc/pgjdbc) | `42.7.10` | `42.7.11` |\n| [org.apache.httpcomponents.client5:httpclient5](https://github.com/apache/httpcomponents-client) | `5.6` | `5.6.1` |\n\n\nUpdates `org.springframework.boot:spring-boot-starter-parent` from 4.0.4 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-parent's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.4...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-starter` from 4.0.4 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.4...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-starter-log4j2` from 4.0.4 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-log4j2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.4...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 4.0.4 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.4...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-starter-log4j2` from 4.0.4 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-log4j2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.4...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springdoc:springdoc-openapi-starter-webmvc-ui` from 3.0.2 to 3.0.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/springdoc/springdoc-openapi/releases\"\u003eorg.springdoc:springdoc-openapi-starter-webmvc-ui's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003espringdoc-openapi v3.0.3 released!\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3246\"\u003e#3246\u003c/a\u003e – Add Springdoc OpenAPI MCP (Model Context Protocol) support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3256\"\u003e#3256\u003c/a\u003e – Auto-set \u003ccode\u003enullable: true\u003c/code\u003e for Kotlin nullable types in schema properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3239\"\u003e#3239\u003c/a\u003e – Add support for the \u003ccode\u003e@Range\u003c/code\u003e constraint validation annotation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3244\"\u003e#3244\u003c/a\u003e – Handle default values for \u003ccode\u003eLocalDate\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade Spring Boot to version \u003cstrong\u003e4.0.5\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-core to version \u003cstrong\u003e2.2.47\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-ui to version \u003cstrong\u003e5.32.2\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3260\"\u003e#3260\u003c/a\u003e – \u003ccode\u003e@ConditionalOnClass(HateoasProperties.class)\u003c/code\u003e in \u003ccode\u003eSpringDocHateoasConfiguration\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eForwards all MCP non-transport headers to downstream methods\u003c/li\u003e\n\u003cli\u003eDynamically resolve the base path from \u003ccode\u003ewindow.location.pathname\u003c/code\u003e for MCP UI\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3258\"\u003e#3258\u003c/a\u003e – Setting API Version Required when using WebFlux breaks the Swagger UI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3259\"\u003e#3259\u003c/a\u003e – Annotated Generic properties getting applied to sibling properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3255\"\u003e#3255\u003c/a\u003e – \u003ccode\u003eDirection\u003c/code\u003e enum: fixed visibility scope of group order so that \u003ccode\u003esetGroupsOrder\u003c/code\u003e method can be used\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3247\"\u003e#3247\u003c/a\u003e – Preserve YAML group URLs in Swagger UI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3245\"\u003e#3245\u003c/a\u003e – Upgrade swagger-core from version 2.2.43 to 2.2.45\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3235\"\u003e#3235\u003c/a\u003e – \u003ccode\u003ePropertyResolverUtils\u003c/code\u003e retains a \u003ccode\u003eJsonNode\u003c/code\u003e when reading an \u003ccode\u003eExtensionProperty\u003c/code\u003e annotation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3226\"\u003e#3226\u003c/a\u003e – Propagate \u003ccode\u003eJsonView\u003c/code\u003e context when resolving \u003ccode\u003ePage\u0026lt;T\u0026gt;\u003c/code\u003e schema\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/seregamorph\"\u003e\u003ccode\u003e@​seregamorph\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/pull/3260\"\u003espringdoc/springdoc-openapi#3260\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/springdoc/springdoc-openapi/compare/v3.0.2...v3.0.3\"\u003ehttps://github.com/springdoc/springdoc-openapi/compare/v3.0.2...v3.0.3\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/springdoc/springdoc-openapi/blob/v3.0.3/CHANGELOG.md\"\u003eorg.springdoc:springdoc-openapi-starter-webmvc-ui's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.0.3] - 2026-04-12\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3246\"\u003e#3246\u003c/a\u003e – Add Springdoc OpenAPI MCP (Model Context Protocol) support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3256\"\u003e#3256\u003c/a\u003e – Auto-set \u003ccode\u003enullable: true\u003c/code\u003e for Kotlin nullable types in schema properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3239\"\u003e#3239\u003c/a\u003e – Add support for the \u003ccode\u003e@Range\u003c/code\u003e constraint validation annotation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3244\"\u003e#3244\u003c/a\u003e – Handle default values for \u003ccode\u003eLocalDate\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade Spring Boot to version \u003cstrong\u003e4.0.5\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-core to version \u003cstrong\u003e2.2.47\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-ui to version \u003cstrong\u003e5.32.2\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3260\"\u003e#3260\u003c/a\u003e – \u003ccode\u003e@ConditionalOnClass(HateoasProperties.class)\u003c/code\u003e in \u003ccode\u003eSpringDocHateoasConfiguration\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eForwards all MCP non-transport headers to downstream methods\u003c/li\u003e\n\u003cli\u003eDynamically resolve the base path from \u003ccode\u003ewindow.location.pathname\u003c/code\u003e for MCP UI\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3258\"\u003e#3258\u003c/a\u003e – Setting API Version Required when using WebFlux breaks the Swagger UI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3259\"\u003e#3259\u003c/a\u003e – Annotated Generic properties getting applied to sibling properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3255\"\u003e#3255\u003c/a\u003e – \u003ccode\u003eDirection\u003c/code\u003e enum: fixed visibility scope of group order so that \u003ccode\u003esetGroupsOrder\u003c/code\u003e method can be used\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3247\"\u003e#3247\u003c/a\u003e – Preserve YAML group URLs in Swagger UI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3245\"\u003e#3245\u003c/a\u003e – Upgrade swagger-core from version 2.2.43 to 2.2.45\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3235\"\u003e#3235\u003c/a\u003e – \u003ccode\u003ePropertyResolverUtils\u003c/code\u003e retains a \u003ccode\u003eJsonNode\u003c/code\u003e when reading an \u003ccode\u003eExtensionProperty\u003c/code\u003e annotation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3226\"\u003e#3226\u003c/a\u003e – Propagate \u003ccode\u003eJsonView\u003c/code\u003e context when resolving \u003ccode\u003ePage\u0026lt;T\u0026gt;\u003c/code\u003e schema\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/3c30283fb33ced3b8368c7a890ee05d23119322a\"\u003e\u003ccode\u003e3c30283\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare release v3.0.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/4184c05db39e96e8d1ce1287d5f58f242a4c8165\"\u003e\u003ccode\u003e4184c05\u003c/code\u003e\u003c/a\u003e update .gitignore\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/89745c20c3695b9b934cbf77f96ef1cd1df9fac7\"\u003e\u003ccode\u003e89745c2\u003c/code\u003e\u003c/a\u003e CHANGELOG.md update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/4d1a730134720740ed3b9a2831d14e97dbe28780\"\u003e\u003ccode\u003e4d1a730\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3260\"\u003e#3260\u003c/a\u003e from seregamorph/SpringDocHateoasConfiguration-class...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/54e765036d9d49935a97e3ccebd875581efcc8ed\"\u003e\u003ccode\u003e54e7650\u003c/code\u003e\u003c/a\u003e ConditionalOnClass (HateoasProperties.class) in SpringDocHateoasConfiguration\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/9f354b2a3cb92a8caa1d0518b1916ac4f79fbd71\"\u003e\u003ccode\u003e9f354b2\u003c/code\u003e\u003c/a\u003e Spring-boot upgrade to version 4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/14df32f99179db89967a6260562775cd6b883128\"\u003e\u003ccode\u003e14df32f\u003c/code\u003e\u003c/a\u003e Forwards all MCP non-transport headers, to downstream methods\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/3ee9a44547f44fb4982c98b7a5dbc1f6f9aff1a3\"\u003e\u003ccode\u003e3ee9a44\u003c/code\u003e\u003c/a\u003e Forwards all MCP non-transport headers, to downstream methods\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/df99408a7674af5ea3fc40f79d81bfef372e7c0e\"\u003e\u003ccode\u003edf99408\u003c/code\u003e\u003c/a\u003e upgrade swagger-ui to version 5.32.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/6ee70f4074e76d3d8554487e4318681d95e444d7\"\u003e\u003ccode\u003e6ee70f4\u003c/code\u003e\u003c/a\u003e upgrade swagger-api to version 2.2.47\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/springdoc/springdoc-openapi/compare/v3.0.2...v3.0.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springdoc:springdoc-openapi-starter-common` from 3.0.2 to 3.0.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/springdoc/springdoc-openapi/releases\"\u003eorg.springdoc:springdoc-openapi-starter-common's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003espringdoc-openapi v3.0.3 released!\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3246\"\u003e#3246\u003c/a\u003e – Add Springdoc OpenAPI MCP (Model Context Protocol) support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3256\"\u003e#3256\u003c/a\u003e – Auto-set \u003ccode\u003enullable: true\u003c/code\u003e for Kotlin nullable types in schema properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3239\"\u003e#3239\u003c/a\u003e – Add support for the \u003ccode\u003e@Range\u003c/code\u003e constraint validation annotation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3244\"\u003e#3244\u003c/a\u003e – Handle default values for \u003ccode\u003eLocalDate\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade Spring Boot to version \u003cstrong\u003e4.0.5\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-core to version \u003cstrong\u003e2.2.47\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-ui to version \u003cstrong\u003e5.32.2\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3260\"\u003e#3260\u003c/a\u003e – \u003ccode\u003e@ConditionalOnClass(HateoasProperties.class)\u003c/code\u003e in \u003ccode\u003eSpringDocHateoasConfiguration\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eForwards all MCP non-transport headers to downstream methods\u003c/li\u003e\n\u003cli\u003eDynamically resolve the base path from \u003ccode\u003ewindow.location.pathname\u003c/code\u003e for MCP UI\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3258\"\u003e#3258\u003c/a\u003e – Setting API Version Required when using WebFlux breaks the Swagger UI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3259\"\u003e#3259\u003c/a\u003e – Annotated Generic properties getting applied to sibling properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3255\"\u003e#3255\u003c/a\u003e – \u003ccode\u003eDirection\u003c/code\u003e enum: fixed visibility scope of group order so that \u003ccode\u003esetGroupsOrder\u003c/code\u003e method can be used\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3247\"\u003e#3247\u003c/a\u003e – Preserve YAML group URLs in Swagger UI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3245\"\u003e#3245\u003c/a\u003e – Upgrade swagger-core from version 2.2.43 to 2.2.45\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3235\"\u003e#3235\u003c/a\u003e – \u003ccode\u003ePropertyResolverUtils\u003c/code\u003e retains a \u003ccode\u003eJsonNode\u003c/code\u003e when reading an \u003ccode\u003eExtensionProperty\u003c/code\u003e annotation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3226\"\u003e#3226\u003c/a\u003e – Propagate \u003ccode\u003eJsonView\u003c/code\u003e context when resolving \u003ccode\u003ePage\u0026lt;T\u0026gt;\u003c/code\u003e schema\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/seregamorph\"\u003e\u003ccode\u003e@​seregamorph\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/pull/3260\"\u003espringdoc/springdoc-openapi#3260\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/springdoc/springdoc-openapi/compare/v3.0.2...v3.0.3\"\u003ehttps://github.com/springdoc/springdoc-openapi/compare/v3.0.2...v3.0.3\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/springdoc/springdoc-openapi/blob/v3.0.3/CHANGELOG.md\"\u003eorg.springdoc:springdoc-openapi-starter-common's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.0.3] - 2026-04-12\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3246\"\u003e#3246\u003c/a\u003e – Add Springdoc OpenAPI MCP (Model Context Protocol) support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3256\"\u003e#3256\u003c/a\u003e – Auto-set \u003ccode\u003enullable: true\u003c/code\u003e for Kotlin nullable types in schema properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3239\"\u003e#3239\u003c/a\u003e – Add support for the \u003ccode\u003e@Range\u003c/code\u003e constraint validation annotation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3244\"\u003e#3244\u003c/a\u003e – Handle default values for \u003ccode\u003eLocalDate\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade Spring Boot to version \u003cstrong\u003e4.0.5\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-core to version \u003cstrong\u003e2.2.47\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-ui to version \u003cstrong\u003e5.32.2\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3260\"\u003e#3260\u003c/a\u003e – \u003ccode\u003e@ConditionalOnClass(HateoasProperties.class)\u003c/code\u003e in \u003ccode\u003eSpringDocHateoasConfiguration\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eForwards all MCP non-transport headers to downstream methods\u003c/li\u003e\n\u003cli\u003eDynamically resolve the base path from \u003ccode\u003ewindow.location.pathname\u003c/code\u003e for MCP UI\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3258\"\u003e#3258\u003c/a\u003e – Setting API Version Required when using WebFlux breaks the Swagger UI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3259\"\u003e#3259\u003c/a\u003e – Annotated Generic properties getting applied to sibling properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3255\"\u003e#3255\u003c/a\u003e – \u003ccode\u003eDirection\u003c/code\u003e enum: fixed visibility scope of group order so that \u003ccode\u003esetGroupsOrder\u003c/code\u003e method can be used\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3247\"\u003e#3247\u003c/a\u003e – Preserve YAML group URLs in Swagger UI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3245\"\u003e#3245\u003c/a\u003e – Upgrade swagger-core from version 2.2.43 to 2.2.45\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3235\"\u003e#3235\u003c/a\u003e – \u003ccode\u003ePropertyResolverUtils\u003c/code\u003e retains a \u003ccode\u003eJsonNode\u003c/code\u003e when reading an \u003ccode\u003eExtensionProperty\u003c/code\u003e annotation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3226\"\u003e#3226\u003c/a\u003e – Propagate \u003ccode\u003eJsonView\u003c/code\u003e context when resolving \u003ccode\u003ePage\u0026lt;T\u0026gt;\u003c/code\u003e schema\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/3c30283fb33ced3b8368c7a890ee05d23119322a\"\u003e\u003ccode\u003e3c30283\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare release v3.0.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/4184c05db39e96e8d1ce1287d5f58f242a4c8165\"\u003e\u003ccode\u003e4184c05\u003c/code\u003e\u003c/a\u003e update .gitignore\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/89745c20c3695b9b934cbf77f96ef1cd1df9fac7\"\u003e\u003ccode\u003e89745c2\u003c/code\u003e\u003c/a\u003e CHANGELOG.md update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/4d1a730134720740ed3b9a2831d14e97dbe28780\"\u003e\u003ccode\u003e4d1a730\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3260\"\u003e#3260\u003c/a\u003e from seregamorph/SpringDocHateoasConfiguration-class...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/54e765036d9d49935a97e3ccebd875581efcc8ed\"\u003e\u003ccode\u003e54e7650\u003c/code\u003e\u003c/a\u003e ConditionalOnClass (HateoasProperties.class) in SpringDocHateoasConfiguration\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/9f354b2a3cb92a8caa1d0518b1916ac4f79fbd71\"\u003e\u003ccode\u003e9f354b2\u003c/code\u003e\u003c/a\u003e Spring-boot upgrade to version 4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/14df32f99179db89967a6260562775cd6b883128\"\u003e\u003ccode\u003e14df32f\u003c/code\u003e\u003c/a\u003e Forwards all MCP non-transport headers, to downstream methods\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/3ee9a44547f44fb4982c98b7a5dbc1f6f9aff1a3\"\u003e\u003ccode\u003e3ee9a44\u003c/code\u003e\u003c/a\u003e Forwards all MCP non-transport headers, to downstream methods\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/df99408a7674af5ea3fc40f79d81bf...\n\n_Description has been truncated_","html_url":"https://github.com/starwit/Urbalytix/pull/127","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/starwit%2FUrbalytix/issues/127","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/127/packages"},{"uuid":"4347265321","node_id":"PR_kwDOQYaGK87WiwvV","number":46,"state":"open","title":"build(deps-dev): bump org.springframework.boot:spring-boot-maven-plugin from 4.0.1 to 4.0.6","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-29T01:23:16.000Z","updated_at":"2026-04-29T01:23:54.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps-dev)","packages":[{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.1","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"}],"path":null,"ecosystem":"maven"},"body":"Bumps [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) from 4.0.1 to 4.0.6.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.1...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.springframework.boot:spring-boot-maven-plugin\u0026package-manager=maven\u0026previous-version=4.0.1\u0026new-version=4.0.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/gryphus-lab/kafdrop/pull/46","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/gryphus-lab%2Fkafdrop/issues/46","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/46/packages"},{"uuid":"4332701679","node_id":"PR_kwDOAUOTqM7VzeNh","number":34,"state":"open","title":"build(deps): bump the spring group with 3 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-27T02:19:07.000Z","updated_at":"2026-04-27T02:19:07.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"spring","update_count":3,"packages":[{"name":"org.springframework.boot:spring-boot-dependencies","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-configuration-processor","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-configuration-processor","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"}],"path":null,"ecosystem":"maven"},"body":"Bumps the spring group with 3 updates: [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot), [org.springframework.boot:spring-boot-configuration-processor](https://github.com/spring-projects/spring-boot) and [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot).\n\nUpdates `org.springframework.boot:spring-boot-dependencies` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-configuration-processor` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-configuration-processor's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-configuration-processor` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-configuration-processor's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/prasadus92/face-recognition/pull/34","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/prasadus92%2Fface-recognition/issues/34","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/34/packages"},{"uuid":"4329586175","node_id":"PR_kwDOLwFaOs7VqS4B","number":219,"state":"open","title":"chore(deps-dev): bump org.springframework.boot:spring-boot-maven-plugin from 4.0.5 to 4.0.6 in the dev-deps group","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-26T00:12:36.000Z","updated_at":"2026-04-26T00:17:28.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps-dev)","packages":[{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"}],"path":"the dev-deps group","ecosystem":"maven"},"body":"Bumps the dev-deps group with 1 update: [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot).\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.springframework.boot:spring-boot-maven-plugin\u0026package-manager=maven\u0026previous-version=4.0.5\u0026new-version=4.0.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/folio-org/mod-record-specifications/pull/219","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/folio-org%2Fmod-record-specifications/issues/219","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/219/packages"},{"uuid":"4324379641","node_id":"PR_kwDOPcwqW87VaCGj","number":46,"state":"open","title":"deps: bump the spring-boot group across 1 directory with 3 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-24T16:52:34.000Z","updated_at":"2026-04-26T13:10:41.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps: bump","group_name":"spring-boot","update_count":3,"packages":[{"name":"org.springframework.boot:spring-boot-dependencies","old_version":"3.2.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"3.2.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.cloud:spring-cloud-dependencies","old_version":"2023.0.1","new_version":"2025.1.1","repository_url":"https://github.com/spring-cloud/spring-cloud-release"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"3.2.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"}],"path":null,"ecosystem":"maven"},"body":"Bumps the spring-boot group with 3 updates in the / directory: [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot), [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) and [org.springframework.cloud:spring-cloud-dependencies](https://github.com/spring-cloud/spring-cloud-release).\n\nUpdates `org.springframework.boot:spring-boot-dependencies` from 3.2.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.2.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 3.2.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.2.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.cloud:spring-cloud-dependencies` from 2023.0.1 to 2025.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/releases\"\u003eorg.springframework.cloud:spring-cloud-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2025.1.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump antora from 3.2.0-alpha.10 to 3.2.0-alpha.11 in /docs by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/447\"\u003espring-cloud/spring-cloud-release#447\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.springframework.cloud:spring-cloud-contract-dependencies from 5.0.1-SNAPSHOT to 5.0.2-SNAPSHOT by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/454\"\u003espring-cloud/spring-cloud-release#454\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.springframework.cloud:spring-cloud-contract-dependencies from 5.0.1-SNAPSHOT to 5.0.2-SNAPSHOT by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/453\"\u003espring-cloud/spring-cloud-release#453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/cache from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/456\"\u003espring-cloud/spring-cloud-release#456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven:maven-model from 3.9.11 to 3.9.12 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/461\"\u003espring-cloud/spring-cloud-release#461\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven:maven-model from 3.9.11 to 3.9.12 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/460\"\u003espring-cloud/spring-cloud-release#460\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/compare/v2025.1.0...v2025.1.1\"\u003ehttps://github.com/spring-cloud/spring-cloud-release/compare/v2025.1.0...v2025.1.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e2025.0.0\u003c/h2\u003e\n\u003ch2\u003eBreaking Changes\u003c/h2\u003e\n\u003ch3\u003eSpring Cloud Gateway\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eNew Module and Starter names have been created, and the old names are deprecated. The new and deprecated artifacts are listed in the table below \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-gateway/pull/3645\"\u003e#3645\u003c/a\u003e. These new names clarify the two styles of gateway (server or proxy exchange) as well as the two web stacks from Spring Framework (Web MCV and WebFlux). Use of the deprecated artifacts will add a warning message in the logs.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ctable\u003e\n\u003cthead\u003e\n\u003ctr\u003e\n\u003cth\u003eDeprecated Artifact\u003c/th\u003e\n\u003cth\u003eNew Artifact\u003c/th\u003e\n\u003c/tr\u003e\n\u003c/thead\u003e\n\u003ctbody\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-gateway-server\u003c/td\u003e\n\u003ctd\u003espring-cloud-gateway-server-webflux\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-gateway-server-mvc\u003c/td\u003e\n\u003ctd\u003espring-cloud-gateway-server-webmvc\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-starter-gateway-server\u003c/td\u003e\n\u003ctd\u003espring-cloud-starter-gateway-server-webflux\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-starter-gateway-server-mvc\u003c/td\u003e\n\u003ctd\u003espring-cloud-starter-gateway-server-webmvc\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-gateway-mvc\u003c/td\u003e\n\u003ctd\u003espring-cloud-gateway-proxyexchange-webmvc\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-gateway-webflux\u003c/td\u003e\n\u003ctd\u003espring-cloud-gateway-proxyexchange-webflux\u003c/td\u003e\n\u003c/tr\u003e\n\u003c/tbody\u003e\n\u003c/table\u003e\n\u003cul\u003e\n\u003cli\u003eMigration to new property prefixes to match the new module names: \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-gateway/issues/3361\"\u003e#3361\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-gateway/issues/3362\"\u003e#3362\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-gateway/issues/3363\"\u003e#3363\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-gateway/issues/3647\"\u003e#3647\u003c/a\u003e. Use \u003ccode\u003espring-boot-properties-migrator\u003c/code\u003e to support the deprecated prefixes. The table below lists the module or starter, its old prefix, and the new replacement prefix.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ctable\u003e\n\u003cthead\u003e\n\u003ctr\u003e\n\u003cth\u003eModule/Starter\u003c/th\u003e\n\u003cth\u003eDeprecated prefix\u003c/th\u003e\n\u003cth\u003eNew prefix\u003c/th\u003e\n\u003c/tr\u003e\n\u003c/thead\u003e\n\u003ctbody\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-starter-gateway-server-webflux\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.*\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.server.webflux.*\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-starter-gateway-server-webmvc\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.mvc.*\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.server.webmvc.*\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-gateway-proxyexchange-webflux\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.proxy.*\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.proxy-exchange.webflux.*\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-gateway-proxyexchange-webmvc\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.proxy.*\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.proxy-exchange.webmvc.*\u003c/td\u003e\n\u003c/tr\u003e\n\u003c/tbody\u003e\n\u003c/table\u003e\n\u003cul\u003e\n\u003cli\u003eThe \u003ccode\u003eX-Forwarded-*\u003c/code\u003e and \u003ccode\u003eForwarded\u003c/code\u003e header functionality will be disabled by default with the fix versions. If you require \u003ccode\u003eX-Forwarded-*\u003c/code\u003e or \u003ccode\u003eForwarded\u003c/code\u003e header functionality, set \u003ccode\u003espring.cloud.gateway.server.webflux.trusted-proxies\u003c/code\u003e to a Java Regular Expression that specifies the proxies whose headers you trust. If you are using Spring Cloud Gateway Server MVC (only available from 4.1.x onward) set \u003ccode\u003espring.cloud.gateway.mvc.trusted-proxies\u003c/code\u003e. For example for Spring Cloud Gateway Server:\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre lang=\"properties\"\u003e\u003ccode\u003espring.cloud.gateway.server.webflux.trusted-proxies=10\\.0\\.0\\..*\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eFor example, for Spring Cloud Gateway Server WebMVC:\u003c/p\u003e\n\u003cpre lang=\"properties\"\u003e\u003ccode\u003espring.cloud.gateway.server.webmvc.trusted-proxies=10\\.0\\.0\\..*\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eSpring Cloud Kubernetes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/dbb12bfc2b899fb0845fe4b3c6dc07bc3c1828e2\"\u003e\u003ccode\u003edbb12bf\u003c/code\u003e\u003c/a\u003e Update SNAPSHOT to 2025.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/edc8bcb1d195cb0a9fa96efc82ccb3dfdaf2fd39\"\u003e\u003ccode\u003eedc8bcb\u003c/code\u003e\u003c/a\u003e Bumping versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/a9f418316485581438af2fa1db54f7ff5e80b17e\"\u003e\u003ccode\u003ea9f4183\u003c/code\u003e\u003c/a\u003e Use Spring Boot 4.0.2-SNAPSHOT\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/da7ad033005dd53554ad5aea9eeefab9416c1661\"\u003e\u003ccode\u003eda7ad03\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/issues/460\"\u003e#460\u003c/a\u003e from spring-cloud/dependabot/maven/org.apache.maven-m...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/49b10e643ffdb36873b3abb0bcd0539e0942f0c6\"\u003e\u003ccode\u003e49b10e6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/issues/461\"\u003e#461\u003c/a\u003e from spring-cloud/dependabot/maven/main/org.apache.ma...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/59782becdf97cb4db3693fc9d3688e85fde493b5\"\u003e\u003ccode\u003e59782be\u003c/code\u003e\u003c/a\u003e Bump org.apache.maven:maven-model from 3.9.11 to 3.9.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/89c8dd1e2610118b12e9d9ccb64945833a0ade22\"\u003e\u003ccode\u003e89c8dd1\u003c/code\u003e\u003c/a\u003e Bump org.apache.maven:maven-model from 3.9.11 to 3.9.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/96a5fb078d5eb2d80baec60004f1cb2518290afe\"\u003e\u003ccode\u003e96a5fb0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/issues/456\"\u003e#456\u003c/a\u003e from spring-cloud/dependabot/github_actions/main/acti...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/5d22a1d1f65df1f7a8c5bc021f5cc5dc44398072\"\u003e\u003ccode\u003e5d22a1d\u003c/code\u003e\u003c/a\u003e Bump actions/cache from 4 to 5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/ec45c6d4c7d7e49695e3c6c9fa68abd3823a770d\"\u003e\u003ccode\u003eec45c6d\u003c/code\u003e\u003c/a\u003e Bumping versions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/compare/v2023.0.1...v2025.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 3.2.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.2.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n","html_url":"https://github.com/Drive10/payflow/pull/46","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Drive10%2Fpayflow/issues/46","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/46/packages"},{"uuid":"4319579260","node_id":"PR_kwDOB3jAEs7VKQM-","number":1411,"state":"closed","title":"Bump org.springframework.boot:spring-boot-maven-plugin from 4.0.5 to 4.0.6","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-06-11T00:02:48.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-24T00:03:08.000Z","updated_at":"2026-06-11T00:02:50.000Z","time_to_close":4147180,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"}],"path":null,"ecosystem":"maven"},"body":"Bumps [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) from 4.0.5 to 4.0.6.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.springframework.boot:spring-boot-maven-plugin\u0026package-manager=maven\u0026previous-version=4.0.5\u0026new-version=4.0.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/camel-tooling/camel-language-server/pull/1411","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/camel-tooling%2Fcamel-language-server/issues/1411","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1411/packages"},{"uuid":"4317444282","node_id":"PR_kwDOHBnDWc7VDRC-","number":682,"state":"open","title":"Bump the spring-boot group with 2 updates","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-23T16:38:13.000Z","updated_at":"2026-04-23T16:48:23.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"spring-boot","update_count":2,"packages":[{"name":"org.springframework.boot:spring-boot-dependencies","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"}],"path":null,"ecosystem":"maven"},"body":"Bumps the spring-boot group with 2 updates: [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot) and [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot).\n\nUpdates `org.springframework.boot:spring-boot-dependencies` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/cjmalloy/jasper/pull/682","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/cjmalloy%2Fjasper/issues/682","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/682/packages"},{"uuid":"4252902457","node_id":"PR_kwDODLsxAM7R673C","number":1619,"state":"open","title":"Bump the spring group across 1 directory with 4 updates","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-13T08:56:09.000Z","updated_at":"2026-04-13T09:08:13.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"spring","update_count":4,"packages":[{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"3.5.12","new_version":"3.5.13","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-dependencies","old_version":"3.5.12","new_version":"3.5.13","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-starter-logging","old_version":"3.5.12","new_version":"3.5.13","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-dependencies","old_version":"3.5.12","new_version":"3.5.13","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-starter-logging","old_version":"3.5.12","new_version":"3.5.13","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springdoc:springdoc-openapi-starter-webmvc-ui","old_version":"2.8.16","new_version":"2.8.17","repository_url":"https://github.com/springdoc/springdoc-openapi"}],"path":null,"ecosystem":"maven"},"body":"Bumps the spring group with 4 updates in the / directory: [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot), [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot), [org.springframework.boot:spring-boot-starter-logging](https://github.com/spring-projects/spring-boot) and [org.springdoc:springdoc-openapi-starter-webmvc-ui](https://github.com/springdoc/springdoc-openapi).\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 3.5.12 to 3.5.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.13\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eJackson has been upgraded to 2.21.2 in response to the Jackson team ending support for Jackson 2.19.x and 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49365\"\u003e#49365\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49750\"\u003e#49750\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49734\"\u003e#49734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49724\"\u003e#49724\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49716\"\u003e#49716\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49661\"\u003e#49661\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49660\"\u003e#49660\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49723\"\u003e#49723\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49710\"\u003e#49710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Hibernate 6.6.45.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49757\"\u003e#49757\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49758\"\u003e#49758\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.1.132.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49759\"\u003e#49759\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 10.1.53 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49760\"\u003e#49760\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Undertow 2.3.24.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49761\"\u003e#49761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49756\"\u003e#49756\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a4c79fa691793be59361c31f4a6447bb0a48907\"\u003e\u003ccode\u003e4a4c79f\u003c/code\u003e\u003c/a\u003e Release v3.5.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4b37ecbf6db93913f811f4d3f64a7f800ea39573\"\u003e\u003ccode\u003e4b37ecb\u003c/code\u003e\u003c/a\u003e Upgrade to Undertow 2.3.24.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/32a51d5d709b758786f371e063754d99c0348755\"\u003e\u003ccode\u003e32a51d5\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 10.1.53\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/093429614119c03ab660e30fd21dacbd404a10fe\"\u003e\u003ccode\u003e0934296\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.1.132.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/851ddda4225a97ba8f5030454f276a559bcb3b71\"\u003e\u003ccode\u003e851ddda\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef876fe5d2648ec11eab45546725bd0f21c34870\"\u003e\u003ccode\u003eef876fe\u003c/code\u003e\u003c/a\u003e Upgrade to Hibernate 6.6.45.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/2841d874cfffed8f8c75bf631289aa4283281d3a\"\u003e\u003ccode\u003e2841d87\u003c/code\u003e\u003c/a\u003e Upgrade to Zipkin Reporter 3.5.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/025b527e87f9820c1142468fdcf0b21db3cd192d\"\u003e\u003ccode\u003e025b527\u003c/code\u003e\u003c/a\u003e Fix WebSocketMessagingAutoConfiguration in the absence of Jackson\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/328267249f71336f642effe8aaf80e39d9d9be65\"\u003e\u003ccode\u003e3282672\u003c/code\u003e\u003c/a\u003e Make DevTools tests more tolerant to wrapped DataSource\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.5.12...v3.5.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-dependencies` from 3.5.12 to 3.5.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.13\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eJackson has been upgraded to 2.21.2 in response to the Jackson team ending support for Jackson 2.19.x and 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49365\"\u003e#49365\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49750\"\u003e#49750\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49734\"\u003e#49734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49724\"\u003e#49724\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49716\"\u003e#49716\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49661\"\u003e#49661\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49660\"\u003e#49660\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49723\"\u003e#49723\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49710\"\u003e#49710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Hibernate 6.6.45.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49757\"\u003e#49757\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49758\"\u003e#49758\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.1.132.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49759\"\u003e#49759\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 10.1.53 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49760\"\u003e#49760\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Undertow 2.3.24.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49761\"\u003e#49761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49756\"\u003e#49756\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a4c79fa691793be59361c31f4a6447bb0a48907\"\u003e\u003ccode\u003e4a4c79f\u003c/code\u003e\u003c/a\u003e Release v3.5.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4b37ecbf6db93913f811f4d3f64a7f800ea39573\"\u003e\u003ccode\u003e4b37ecb\u003c/code\u003e\u003c/a\u003e Upgrade to Undertow 2.3.24.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/32a51d5d709b758786f371e063754d99c0348755\"\u003e\u003ccode\u003e32a51d5\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 10.1.53\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/093429614119c03ab660e30fd21dacbd404a10fe\"\u003e\u003ccode\u003e0934296\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.1.132.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/851ddda4225a97ba8f5030454f276a559bcb3b71\"\u003e\u003ccode\u003e851ddda\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef876fe5d2648ec11eab45546725bd0f21c34870\"\u003e\u003ccode\u003eef876fe\u003c/code\u003e\u003c/a\u003e Upgrade to Hibernate 6.6.45.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/2841d874cfffed8f8c75bf631289aa4283281d3a\"\u003e\u003ccode\u003e2841d87\u003c/code\u003e\u003c/a\u003e Upgrade to Zipkin Reporter 3.5.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/025b527e87f9820c1142468fdcf0b21db3cd192d\"\u003e\u003ccode\u003e025b527\u003c/code\u003e\u003c/a\u003e Fix WebSocketMessagingAutoConfiguration in the absence of Jackson\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/328267249f71336f642effe8aaf80e39d9d9be65\"\u003e\u003ccode\u003e3282672\u003c/code\u003e\u003c/a\u003e Make DevTools tests more tolerant to wrapped DataSource\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.5.12...v3.5.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-starter-logging` from 3.5.12 to 3.5.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-logging's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.13\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eJackson has been upgraded to 2.21.2 in response to the Jackson team ending support for Jackson 2.19.x and 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49365\"\u003e#49365\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49750\"\u003e#49750\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49734\"\u003e#49734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49724\"\u003e#49724\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49716\"\u003e#49716\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49661\"\u003e#49661\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49660\"\u003e#49660\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49723\"\u003e#49723\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49710\"\u003e#49710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Hibernate 6.6.45.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49757\"\u003e#49757\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49758\"\u003e#49758\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.1.132.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49759\"\u003e#49759\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 10.1.53 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49760\"\u003e#49760\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Undertow 2.3.24.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49761\"\u003e#49761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49756\"\u003e#49756\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a4c79fa691793be59361c31f4a6447bb0a48907\"\u003e\u003ccode\u003e4a4c79f\u003c/code\u003e\u003c/a\u003e Release v3.5.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4b37ecbf6db93913f811f4d3f64a7f800ea39573\"\u003e\u003ccode\u003e4b37ecb\u003c/code\u003e\u003c/a\u003e Upgrade to Undertow 2.3.24.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/32a51d5d709b758786f371e063754d99c0348755\"\u003e\u003ccode\u003e32a51d5\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 10.1.53\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/093429614119c03ab660e30fd21dacbd404a10fe\"\u003e\u003ccode\u003e0934296\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.1.132.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/851ddda4225a97ba8f5030454f276a559bcb3b71\"\u003e\u003ccode\u003e851ddda\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef876fe5d2648ec11eab45546725bd0f21c34870\"\u003e\u003ccode\u003eef876fe\u003c/code\u003e\u003c/a\u003e Upgrade to Hibernate 6.6.45.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/2841d874cfffed8f8c75bf631289aa4283281d3a\"\u003e\u003ccode\u003e2841d87\u003c/code\u003e\u003c/a\u003e Upgrade to Zipkin Reporter 3.5.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/025b527e87f9820c1142468fdcf0b21db3cd192d\"\u003e\u003ccode\u003e025b527\u003c/code\u003e\u003c/a\u003e Fix WebSocketMessagingAutoConfiguration in the absence of Jackson\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/328267249f71336f642effe8aaf80e39d9d9be65\"\u003e\u003ccode\u003e3282672\u003c/code\u003e\u003c/a\u003e Make DevTools tests more tolerant to wrapped DataSource\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.5.12...v3.5.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-dependencies` from 3.5.12 to 3.5.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.13\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eJackson has been upgraded to 2.21.2 in response to the Jackson team ending support for Jackson 2.19.x and 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49365\"\u003e#49365\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49750\"\u003e#49750\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49734\"\u003e#49734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49724\"\u003e#49724\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49716\"\u003e#49716\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49661\"\u003e#49661\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49660\"\u003e#49660\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49723\"\u003e#49723\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49710\"\u003e#49710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Hibernate 6.6.45.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49757\"\u003e#49757\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49758\"\u003e#49758\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.1.132.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49759\"\u003e#49759\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 10.1.53 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49760\"\u003e#49760\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Undertow 2.3.24.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49761\"\u003e#49761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49756\"\u003e#49756\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a4c79fa691793be59361c31f4a6447bb0a48907\"\u003e\u003ccode\u003e4a4c79f\u003c/code\u003e\u003c/a\u003e Release v3.5.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4b37ecbf6db93913f811f4d3f64a7f800ea39573\"\u003e\u003ccode\u003e4b37ecb\u003c/code\u003e\u003c/a\u003e Upgrade to Undertow 2.3.24.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/32a51d5d709b758786f371e063754d99c0348755\"\u003e\u003ccode\u003e32a51d5\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 10.1.53\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/093429614119c03ab660e30fd21dacbd404a10fe\"\u003e\u003ccode\u003e0934296\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.1.132.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/851ddda4225a97ba8f5030454f276a559bcb3b71\"\u003e\u003ccode\u003e851ddda\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef876fe5d2648ec11eab45546725bd0f21c34870\"\u003e\u003ccode\u003eef876fe\u003c/code\u003e\u003c/a\u003e Upgrade to Hibernate 6.6.45.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/2841d874cfffed8f8c75bf631289aa4283281d3a\"\u003e\u003ccode\u003e2841d87\u003c/code\u003e\u003c/a\u003e Upgrade to Zipkin Reporter 3.5.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/025b527e87f9820c1142468fdcf0b21db3cd192d\"\u003e\u003ccode\u003e025b527\u003c/code\u003e\u003c/a\u003e Fix WebSocketMessagingAutoConfiguration in the absence of Jackson\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/328267249f71336f642effe8aaf80e39d9d9be65\"\u003e\u003ccode\u003e3282672\u003c/code\u003e\u003c/a\u003e Make DevTools tests more tolerant to wrapped DataSource\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.5.12...v3.5.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-starter-logging` from 3.5.12 to 3.5.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-logging's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.13\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eJackson has been upgraded to 2.21.2 in response to the Jackson team ending support for Jackson 2.19.x and 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49365\"\u003e#49365\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49750\"\u003e#49750\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49734\"\u003e#49734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49724\"\u003e#49724\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49716\"\u003e#49716\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49661\"\u003e#49661\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49660\"\u003e#49660\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49723\"\u003e#49723\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49710\"\u003e#49710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Hibernate 6.6.45.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49757\"\u003e#49757\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49758\"\u003e#49758\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.1.132.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49759\"\u003e#49759\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 10.1.53 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49760\"\u003e#49760\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Undertow 2.3.24.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49761\"\u003e#49761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49756\"\u003e#49756\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a4c79fa691793be59361c31f4a6447bb0a48907\"\u003e\u003ccode\u003e4a4c79f\u003c/code\u003e\u003c/a\u003e Release v3.5.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4b37ecbf6db93913f811f4d3f64a7f800ea39573\"\u003e\u003ccode\u003e4b37ecb\u003c/code\u003e\u003c/a\u003e Upgrade to Undertow 2.3.24.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/32a51d5d709b758786f371e063754d99c0348755\"\u003e\u003ccode\u003e32a51d5\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 10.1.53\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/093429614119c03ab660e30fd21dacbd404a10fe\"\u003e\u003ccode\u003e0934296\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.1.132.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/851ddda4225a97ba8f5030454f276a559bcb3b71\"\u003e\u003ccode\u003e851ddda\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef876fe5d2648ec11eab45546725bd0f21c34870\"\u003e\u003ccode\u003eef876fe\u003c/code\u003e\u003c/a\u003e Upgrade to Hibernate 6.6.45.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/2841d874cfffed8f8c75bf631289aa4283281d3a\"\u003e\u003ccode\u003e2841d87\u003c/code\u003e\u003c/a\u003e Upgrade to Zipkin Reporter 3.5.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/025b527e87f9820c1142468fdcf0b21db3cd192d\"\u003e\u003ccode\u003e025b527\u003c/code\u003e\u003c/a\u003e Fix WebSocketMessagingAutoConfiguration in the absence of Jackson\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/328267249f71336f642effe8aaf80e39d9d9be65\"\u003e\u003ccode\u003e3282672\u003c/code\u003e\u003c/a\u003e Make DevTools tests more tolerant to wrapped DataSource\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.5.12...v3.5.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springdoc:springdoc-openapi-starter-webmvc-ui` from 2.8.16 to 2.8.17\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/springdoc/springdoc-openapi/releases\"\u003eorg.springdoc:springdoc-openapi-starter-webmvc-ui's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003espringdoc-openapi v2.8.17 released!\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for the \u003ccode\u003e@Range\u003c/code\u003e constraint validation annotation\u003c/li\u003e\n\u003cli\u003eAuto-set \u003ccode\u003enullable: true\u003c/code\u003e for Kotlin nullable types in schema properties\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade Spring Boot to version \u003cstrong\u003e3.5.13\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-core to version \u003cstrong\u003e2.2.47\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-ui to version \u003cstrong\u003e5.32.2\u003c/strong\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3259\"\u003e#3259\u003c/a\u003e – Fix an issue with annotated types with generics on parameters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3255\"\u003e#3255\u003c/a\u003e – Handle \u003ccode\u003e$ref\u003c/code\u003e nullable wrapping and OAS 3.1 support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3245\"\u003e#3245\u003c/a\u003e – Upgrade swagger-core from 2.2.43 to 2.2.45 (fixes schema resolution issues)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3241\"\u003e#3241\u003c/a\u003e – Generic error responses from multiple \u003ccode\u003e@ControllerAdvice\u003c/code\u003e are still nondeterministic across OS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3236\"\u003e#3236\u003c/a\u003e – Preserve YAML group URLs in Swagger UI\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003ePropertyResolverUtils\u003c/code\u003e to retain a \u003ccode\u003eJsonNode\u003c/code\u003e when reading an \u003ccode\u003eExtensionProperty\u003c/code\u003e annotation\u003c/li\u003e\n\u003cli\u003eFix handling of default values for \u003ccode\u003eLocalDate\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/soowanx\"\u003e\u003ccode\u003e@​soowanx\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/pull/3247\"\u003espringdoc/springdoc-openapi#3247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pcalouche\"\u003e\u003ccode\u003e@​pcalouche\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/pull/3254\"\u003espringdoc/springdoc-openapi#3254\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sisco70\"\u003e\u003ccode\u003e@​sisco70\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/pull/3255\"\u003espringdoc/springdoc-openapi#3255\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/thejeff77\"\u003e\u003ccode\u003e@​thejeff77\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/pull/3256\"\u003espringdoc/springdoc-openapi#3256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mcclellanmj\"\u003e\u003ccode\u003e@​mcclellanmj\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/pull/3259\"\u003espringdoc/springdoc-openapi#3259\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/springdoc/springdoc-openapi/compare/v2.8.16...v2.8.17\"\u003ehttps://github.com/springdoc/springdoc-openapi/compare/v2.8.16...v2.8.17\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/springdoc/springdoc-openapi/blob/main/CHANGELOG.md\"\u003eorg.springdoc:springdoc-openapi-starter-webmvc-ui's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[2.8.17] - 2026-04-12\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for the \u003ccode\u003e@Range\u003c/code\u003e constraint validation annotation\u003c/li\u003e\n\u003cli\u003eAuto-set \u003ccode\u003enullable: true\u003c/code\u003e for Kotlin nullable types in schema properties\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade Spring Boot to version \u003cstrong\u003e3.5.13\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-core to version \u003cstrong\u003e2.2.47\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-ui to version \u003cstrong\u003e5.32.2\u003c/strong\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3259\"\u003e#3259\u003c/a\u003e – Fix an issue with annotated types with generics on parameters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3255\"\u003e#3255\u003c/a\u003e – Handle \u003ccode\u003e$ref\u003c/code\u003e nullable wrapping and OAS 3.1 support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3245\"\u003e#3245\u003c/a\u003e – Upgrade swagger-core from 2.2.43 to 2.2.45 (fixes schema resolution issues)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3241\"\u003e#3241\u003c/a\u003e – Generic error responses from multiple \u003ccode\u003e@ControllerAdvice\u003c/code\u003e are still nondeterministic across OS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3236\"\u003e#3236\u003c/a\u003e – Preserve YAML group URLs in Swagger UI\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003ePropertyResolverUtils\u003c/code\u003e to retain a \u003ccode\u003eJsonNode\u003c/code\u003e when reading an \u003ccode\u003eExtensionProperty\u003c/code\u003e annotation\u003c/li\u003e\n\u003cli\u003eFix handling of default values for \u003ccode\u003eLocalDate\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/07e7739daa0dce4acfa68178f2407d8339836ded\"\u003e\u003ccode\u003e07e7739\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare release v2.8.17\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/2019f83dcb4123ef923a2544db5ccbd51c77bed4\"\u003e\u003ccode\u003e2019f83\u003c/code\u003e\u003c/a\u003e CHANGELOG.md update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/90db507fa2262fa675f7138e5ea1ba82cf6f809f\"\u003e\u003ccode\u003e90db507\u003c/code\u003e\u003c/a\u003e upgrade swagger-ui to version 5.32.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/5964baa6001ac5d89e4d0c16e21153cb4798b298\"\u003e\u003ccode\u003e5964baa\u003c/code\u003e\u003c/a\u003e Upgrade swagger-api.version to 2.2.47\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/7a19bca127ced0660b4fab1c6a977e5bdc0886b2\"\u003e\u003ccode\u003e7a19bca\u003c/code\u003e\u003c/a\u003e Fixes tests for \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3255\"\u003e#3255\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/0b0ebab65d1e29118f82133ed8556d4e81582a4c\"\u003e\u003ccode\u003e0b0ebab\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3259\"\u003e#3259\u003c/a\u003e from mcclellanmj/bug-parameterized-types\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/6b9b69ef192416676ba66ce0c2de03773ce78d13\"\u003e\u003ccode\u003e6b9b69e\u003c/code\u003e\u003c/a\u003e Fixes tests for \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3255\"\u003e#3255\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/6462e32eac9310db46cc468f2e357151272c3c48\"\u003e\u003ccode\u003e6462e32\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3256\"\u003e#3256\u003c/a\u003e from thejeff77/feat/kotlin-nullable-schema-properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/f634f5437e95c62bcb0839fba7d6e6eaeb312eb7\"\u003e\u003ccode\u003ef634f54\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3255\"\u003e#3255\u003c/a\u003e from sisco70/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/386e4599d0e14a7ccc5fb06623ff0509b387246c\"\u003e\u003ccode\u003e386e459\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3254\"\u003e#3254\u003c/a\u003e from pcalouche/update-spring-boot\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/springdoc/springdoc-openapi/compare/v2.8.16...v2.8.17\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\u003cdetails\u003e\n\u003csummary\u003eMost Recent Ignore Conditions Applied to This Pull Request\u003c/summary\u003e\n\n| Dependency Name | Ignore Conditions |\n| --- | --- |\n| org.springframework.boot:spring-boot-dependencies | [\u003e= 3.3.a0, \u003c 3.4] |\n| org.springframework.boot:spring-boot-maven-plugin | [\u003e= 3.3.a0, \u003c 3.4] |\n| org.springframework.boot:spring-boot-starter-logging | [\u003e= 3.3.a0, \u003c 3.4] |\n\u003c/details\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/ehrbase/ehrbase/pull/1619","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ehrbase%2Fehrbase/issues/1619","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1619/packages"},{"uuid":"4251829036","node_id":"PR_kwDOPcwqW87R4pMx","number":29,"state":"open","title":"deps: bump the spring-boot group with 9 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-13T06:23:32.000Z","updated_at":"2026-04-13T06:24:48.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps: bump","group_name":"spring-boot","update_count":9,"packages":[{"name":"org.springframework.boot:spring-boot-dependencies","old_version":"3.2.5","new_version":"4.0.5","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"3.2.5","new_version":"4.0.5","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.cloud:spring-cloud-dependencies","old_version":"2023.0.0","new_version":"2025.1.1","repository_url":"https://github.com/spring-cloud/spring-cloud-release"},{"name":"org.springframework.boot:spring-boot-starter-security","old_version":"3.3.0","new_version":"4.0.5","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-starter-actuator","old_version":"3.3.0","new_version":"4.0.5","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-starter-test","old_version":"3.3.0","new_version":"4.0.5","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-starter-webflux","old_version":"3.3.0","new_version":"4.0.5","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-starter-data-redis-reactive","old_version":"3.3.0","new_version":"4.0.5","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.cloud:spring-cloud-starter-gateway","old_version":"4.2.0","new_version":"4.3.4","repository_url":"https://github.com/spring-cloud/spring-cloud-gateway"}],"path":null,"ecosystem":"maven"},"body":"Bumps the spring-boot group with 9 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot) | `3.2.5` | `4.0.5` |\n| [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) | `3.2.5` | `4.0.5` |\n| [org.springframework.cloud:spring-cloud-dependencies](https://github.com/spring-cloud/spring-cloud-release) | `2023.0.0` | `2025.1.1` |\n| [org.springframework.boot:spring-boot-starter-security](https://github.com/spring-projects/spring-boot) | `3.3.0` | `4.0.5` |\n| [org.springframework.boot:spring-boot-starter-actuator](https://github.com/spring-projects/spring-boot) | `3.3.0` | `4.0.5` |\n| [org.springframework.boot:spring-boot-starter-test](https://github.com/spring-projects/spring-boot) | `3.3.0` | `4.0.5` |\n| [org.springframework.boot:spring-boot-starter-webflux](https://github.com/spring-projects/spring-boot) | `3.3.0` | `4.0.5` |\n| [org.springframework.boot:spring-boot-starter-data-redis-reactive](https://github.com/spring-projects/spring-boot) | `3.3.0` | `4.0.5` |\n| [org.springframework.cloud:spring-cloud-starter-gateway](https://github.com/spring-cloud/spring-cloud-gateway) | `4.2.0` | `4.3.4` |\n\nUpdates `org.springframework.boot:spring-boot-dependencies` from 3.2.5 to 4.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.5\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTest starter for Spring Integration does not include Spring Integration test module \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49784\"\u003e#49784\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49782\"\u003e#49782\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49753\"\u003e#49753\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket app fails to start when Jackson is on the classpath but there's no JsonMapper bean \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49749\"\u003e#49749\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49738\"\u003e#49738\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49731\"\u003e#49731\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49706\"\u003e#49706\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e@ConditionalOnWebApplication\u003c/code\u003e to NettyReactiveWebServerAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49695\"\u003e#49695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49672\"\u003e#49672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49727\"\u003e#49727\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49714\"\u003e#49714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverhaul Spring Session documentation following modularization \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49704\"\u003e#49704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Brave 6.3.1 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49763\"\u003e#49763\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson 2 Bom 2.21.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49764\"\u003e#49764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49765\"\u003e#49765\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49794\"\u003e#49794\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 11.0.20 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49767\"\u003e#49767\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49762\"\u003e#49762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/kwondh5217\"\u003e\u003ccode\u003e@​kwondh5217\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/quaff\"\u003e\u003ccode\u003e@​quaff\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.0.4\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOpenTelemetry's ZipkinSpanExporter has been deprecated and its support will be removed in Spring Boot 4.2. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49453\"\u003e#49453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson 2 has been upgraded to 2.21.1 in response to the Jackson team ending support for Jackson 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49389\"\u003e#49389\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson has been upgraded to 3.1.0 in response to the Jackson team ending support for Jackson 3.0.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49383\"\u003e#49383\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe default value for \u003ccode\u003eserver.tomcat.max-part-count\u003c/code\u003e has been increased from 10 to 50. This aligns it with Tomcat's own default and the default in Spring Boot 3.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49311\"\u003e#49311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEndpointRequest request matcher for health groups is too complex \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49649\"\u003e#49649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u0026quot;/cloudfoundryapplication\u0026quot; web path is not limited to Actuator \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49646\"\u003e#49646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix EndpointRequest.toLinks() when base-path is '/' \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49617\"\u003e#49617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker fails when a 'tcp://' address ends with a slash (for example 'tcp://docker:2375/') \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49596\"\u003e#49596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRSocket exposes duplicate endpoint for websocket setups \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49593\"\u003e#49593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFailure analysis for a missing mail sender is misleading \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49582\"\u003e#49582\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fe74b311f4b2846848e678eaf7b3c6203ddae930\"\u003e\u003ccode\u003efe74b31\u003c/code\u003e\u003c/a\u003e Release v4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e1d6e5a7098d1e5d3403fb58387622b65d8e825f\"\u003e\u003ccode\u003ee1d6e5a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/6c9e52a1745d255e096d1334593636d005f68143\"\u003e\u003ccode\u003e6c9e52a\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.14-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/a413e9545fd1efe9a9548ec70c86f87559c907f1\"\u003e\u003ccode\u003ea413e95\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.12.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/c1694b50c29e37a162a3d9ad43f4e4b434698247\"\u003e\u003ccode\u003ec1694b5\u003c/code\u003e\u003c/a\u003e Add missing Spring Integration test module to the relevant starter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/51ffdc6cd319fd70f8200ffd69dff0f79c3dfdb7\"\u003e\u003ccode\u003e51ffdc6\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ba70d41a998c8e77d185dd1d7e4ace80ed8cd7e2\"\u003e\u003ccode\u003eba70d41\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 11.0.20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fd94ca0a0baab48a055b3dfe8fd4d09daec766b9\"\u003e\u003ccode\u003efd94ca0\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.11.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/7e6833bc9c5b73bba6920cead989e28d64f982ff\"\u003e\u003ccode\u003e7e6833b\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.2.5...v4.0.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 3.2.5 to 4.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.5\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTest starter for Spring Integration does not include Spring Integration test module \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49784\"\u003e#49784\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49782\"\u003e#49782\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49753\"\u003e#49753\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket app fails to start when Jackson is on the classpath but there's no JsonMapper bean \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49749\"\u003e#49749\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49738\"\u003e#49738\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49731\"\u003e#49731\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49706\"\u003e#49706\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e@ConditionalOnWebApplication\u003c/code\u003e to NettyReactiveWebServerAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49695\"\u003e#49695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49672\"\u003e#49672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49727\"\u003e#49727\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49714\"\u003e#49714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverhaul Spring Session documentation following modularization \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49704\"\u003e#49704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Brave 6.3.1 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49763\"\u003e#49763\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson 2 Bom 2.21.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49764\"\u003e#49764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49765\"\u003e#49765\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49794\"\u003e#49794\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 11.0.20 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49767\"\u003e#49767\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49762\"\u003e#49762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/kwondh5217\"\u003e\u003ccode\u003e@​kwondh5217\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/quaff\"\u003e\u003ccode\u003e@​quaff\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.0.4\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOpenTelemetry's ZipkinSpanExporter has been deprecated and its support will be removed in Spring Boot 4.2. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49453\"\u003e#49453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson 2 has been upgraded to 2.21.1 in response to the Jackson team ending support for Jackson 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49389\"\u003e#49389\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson has been upgraded to 3.1.0 in response to the Jackson team ending support for Jackson 3.0.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49383\"\u003e#49383\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe default value for \u003ccode\u003eserver.tomcat.max-part-count\u003c/code\u003e has been increased from 10 to 50. This aligns it with Tomcat's own default and the default in Spring Boot 3.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49311\"\u003e#49311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEndpointRequest request matcher for health groups is too complex \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49649\"\u003e#49649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u0026quot;/cloudfoundryapplication\u0026quot; web path is not limited to Actuator \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49646\"\u003e#49646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix EndpointRequest.toLinks() when base-path is '/' \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49617\"\u003e#49617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker fails when a 'tcp://' address ends with a slash (for example 'tcp://docker:2375/') \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49596\"\u003e#49596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRSocket exposes duplicate endpoint for websocket setups \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49593\"\u003e#49593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFailure analysis for a missing mail sender is misleading \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49582\"\u003e#49582\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fe74b311f4b2846848e678eaf7b3c6203ddae930\"\u003e\u003ccode\u003efe74b31\u003c/code\u003e\u003c/a\u003e Release v4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e1d6e5a7098d1e5d3403fb58387622b65d8e825f\"\u003e\u003ccode\u003ee1d6e5a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/6c9e52a1745d255e096d1334593636d005f68143\"\u003e\u003ccode\u003e6c9e52a\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.14-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/a413e9545fd1efe9a9548ec70c86f87559c907f1\"\u003e\u003ccode\u003ea413e95\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.12.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/c1694b50c29e37a162a3d9ad43f4e4b434698247\"\u003e\u003ccode\u003ec1694b5\u003c/code\u003e\u003c/a\u003e Add missing Spring Integration test module to the relevant starter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/51ffdc6cd319fd70f8200ffd69dff0f79c3dfdb7\"\u003e\u003ccode\u003e51ffdc6\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ba70d41a998c8e77d185dd1d7e4ace80ed8cd7e2\"\u003e\u003ccode\u003eba70d41\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 11.0.20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fd94ca0a0baab48a055b3dfe8fd4d09daec766b9\"\u003e\u003ccode\u003efd94ca0\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.11.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/7e6833bc9c5b73bba6920cead989e28d64f982ff\"\u003e\u003ccode\u003e7e6833b\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.2.5...v4.0.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.cloud:spring-cloud-dependencies` from 2023.0.0 to 2025.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/releases\"\u003eorg.springframework.cloud:spring-cloud-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2025.1.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump antora from 3.2.0-alpha.10 to 3.2.0-alpha.11 in /docs by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/447\"\u003espring-cloud/spring-cloud-release#447\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.springframework.cloud:spring-cloud-contract-dependencies from 5.0.1-SNAPSHOT to 5.0.2-SNAPSHOT by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/454\"\u003espring-cloud/spring-cloud-release#454\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.springframework.cloud:spring-cloud-contract-dependencies from 5.0.1-SNAPSHOT to 5.0.2-SNAPSHOT by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/453\"\u003espring-cloud/spring-cloud-release#453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/cache from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/456\"\u003espring-cloud/spring-cloud-release#456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven:maven-model from 3.9.11 to 3.9.12 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/461\"\u003espring-cloud/spring-cloud-release#461\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven:maven-model from 3.9.11 to 3.9.12 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/460\"\u003espring-cloud/spring-cloud-release#460\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/compare/v2025.1.0...v2025.1.1\"\u003ehttps://github.com/spring-cloud/spring-cloud-release/compare/v2025.1.0...v2025.1.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e2025.0.0\u003c/h2\u003e\n\u003ch2\u003eBreaking Changes\u003c/h2\u003e\n\u003ch3\u003eSpring Cloud Gateway\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eNew Module and Starter names have been created, and the old names are deprecated. The new and deprecated artifacts are listed in the table below \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-gateway/pull/3645\"\u003e#3645\u003c/a\u003e. These new names clarify the two styles of gateway (server or proxy exchange) as well as the two web stacks from Spring Framework (Web MCV and WebFlux). Use of the deprecated artifacts will add a warning message in the logs.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ctable\u003e\n\u003cthead\u003e\n\u003ctr\u003e\n\u003cth\u003eDeprecated Artifact\u003c/th\u003e\n\u003cth\u003eNew Artifact\u003c/th\u003e\n\u003c/tr\u003e\n\u003c/thead\u003e\n\u003ctbody\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-gateway-server\u003c/td\u003e\n\u003ctd\u003espring-cloud-gateway-server-webflux\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-gateway-server-mvc\u003c/td\u003e\n\u003ctd\u003espring-cloud-gateway-server-webmvc\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-starter-gateway-server\u003c/td\u003e\n\u003ctd\u003espring-cloud-starter-gateway-server-webflux\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-starter-gateway-server-mvc\u003c/td\u003e\n\u003ctd\u003espring-cloud-starter-gateway-server-webmvc\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-gateway-mvc\u003c/td\u003e\n\u003ctd\u003espring-cloud-gateway-proxyexchange-webmvc\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-gateway-webflux\u003c/td\u003e\n\u003ctd\u003espring-cloud-gateway-proxyexchange-webflux\u003c/td\u003e\n\u003c/tr\u003e\n\u003c/tbody\u003e\n\u003c/table\u003e\n\u003cul\u003e\n\u003cli\u003eMigration to new property prefixes to match the new module names: \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-gateway/issues/3361\"\u003e#3361\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-gateway/issues/3362\"\u003e#3362\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-gateway/issues/3363\"\u003e#3363\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-gateway/issues/3647\"\u003e#3647\u003c/a\u003e. Use \u003ccode\u003espring-boot-properties-migrator\u003c/code\u003e to support the deprecated prefixes. The table below lists the module or starter, its old prefix, and the new replacement prefix.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ctable\u003e\n\u003cthead\u003e\n\u003ctr\u003e\n\u003cth\u003eModule/Starter\u003c/th\u003e\n\u003cth\u003eDeprecated prefix\u003c/th\u003e\n\u003cth\u003eNew prefix\u003c/th\u003e\n\u003c/tr\u003e\n\u003c/thead\u003e\n\u003ctbody\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-starter-gateway-server-webflux\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.*\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.server.webflux.*\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-starter-gateway-server-webmvc\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.mvc.*\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.server.webmvc.*\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-gateway-proxyexchange-webflux\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.proxy.*\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.proxy-exchange.webflux.*\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-gateway-proxyexchange-webmvc\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.proxy.*\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.proxy-exchange.webmvc.*\u003c/td\u003e\n\u003c/tr\u003e\n\u003c/tbody\u003e\n\u003c/table\u003e\n\u003cul\u003e\n\u003cli\u003eThe \u003ccode\u003eX-Forwarded-*\u003c/code\u003e and \u003ccode\u003eForwarded\u003c/code\u003e header functionality will be disabled by default with the fix versions. If you require \u003ccode\u003eX-Forwarded-*\u003c/code\u003e or \u003ccode\u003eForwarded\u003c/code\u003e header functionality, set \u003ccode\u003espring.cloud.gateway.server.webflux.trusted-proxies\u003c/code\u003e to a Java Regular Expression that specifies the proxies whose headers you trust. If you are using Spring Cloud Gateway Server MVC (only available from 4.1.x onward) set \u003ccode\u003espring.cloud.gateway.mvc.trusted-proxies\u003c/code\u003e. For example for Spring Cloud Gateway Server:\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre lang=\"properties\"\u003e\u003ccode\u003espring.cloud.gateway.server.webflux.trusted-proxies=10\\.0\\.0\\..*\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eFor example, for Spring Cloud Gateway Server WebMVC:\u003c/p\u003e\n\u003cpre lang=\"properties\"\u003e\u003ccode\u003espring.cloud.gateway.server.webmvc.trusted-proxies=10\\.0\\.0\\..*\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eSpring Cloud Kubernetes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/dbb12bfc2b899fb0845fe4b3c6dc07bc3c1828e2\"\u003e\u003ccode\u003edbb12bf\u003c/code\u003e\u003c/a\u003e Update SNAPSHOT to 2025.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/edc8bcb1d195cb0a9fa96efc82ccb3dfdaf2fd39\"\u003e\u003ccode\u003eedc8bcb\u003c/code\u003e\u003c/a\u003e Bumping versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/a9f418316485581438af2fa1db54f7ff5e80b17e\"\u003e\u003ccode\u003ea9f4183\u003c/code\u003e\u003c/a\u003e Use Spring Boot 4.0.2-SNAPSHOT\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/da7ad033005dd53554ad5aea9eeefab9416c1661\"\u003e\u003ccode\u003eda7ad03\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/issues/460\"\u003e#460\u003c/a\u003e from spring-cloud/dependabot/maven/org.apache.maven-m...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/49b10e643ffdb36873b3abb0bcd0539e0942f0c6\"\u003e\u003ccode\u003e49b10e6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/issues/461\"\u003e#461\u003c/a\u003e from spring-cloud/dependabot/maven/main/org.apache.ma...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/59782becdf97cb4db3693fc9d3688e85fde493b5\"\u003e\u003ccode\u003e59782be\u003c/code\u003e\u003c/a\u003e Bump org.apache.maven:maven-model from 3.9.11 to 3.9.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/89c8dd1e2610118b12e9d9ccb64945833a0ade22\"\u003e\u003ccode\u003e89c8dd1\u003c/code\u003e\u003c/a\u003e Bump org.apache.maven:maven-model from 3.9.11 to 3.9.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/96a5fb078d5eb2d80baec60004f1cb2518290afe\"\u003e\u003ccode\u003e96a5fb0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/issues/456\"\u003e#456\u003c/a\u003e from spring-cloud/dependabot/github_actions/main/acti...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/5d22a1d1f65df1f7a8c5bc021f5cc5dc44398072\"\u003e\u003ccode\u003e5d22a1d\u003c/code\u003e\u003c/a\u003e Bump actions/cache from 4 to 5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/ec45c6d4c7d7e49695e3c6c9fa68abd3823a770d\"\u003e\u003ccode\u003eec45c6d\u003c/code\u003e\u003c/a\u003e Bumping versions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/compare/v2023.0.0...v2025.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 3.2.5 to 4.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.5\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTest starter for Spring Integration does not include Spring Integration test module \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49784\"\u003e#49784\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49782\"\u003e#49782\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49753\"\u003e#49753\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket app fails to start when Jackson is on the classpath but there's no JsonMapper bean \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49749\"\u003e#49749\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49738\"\u003e#49738\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49731\"\u003e#49731\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49706\"\u003e#49706\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e@ConditionalOnWebApplication\u003c/code\u003e to NettyReactiveWebServerAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49695\"\u003e#49695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49672\"\u003e#49672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49727\"\u003e#49727\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49714\"\u003e#49714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverhaul Spring Session documentation following modularization \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49704\"\u003e#49704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Brave 6.3.1 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49763\"\u003e#49763\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson 2 Bom 2.21.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49764\"\u003e#49764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49765\"\u003e#49765\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49794\"\u003e#49794\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 11.0.20 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49767\"\u003e#49767\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49762\"\u003e#49762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/kwondh5217\"\u003e\u003ccode\u003e@​kwondh5217\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/quaff\"\u003e\u003ccode\u003e@​quaff\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.0.4\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOpenTelemetry's ZipkinSpanExporter has been deprecated and its support will be removed in Spring Boot 4.2. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49453\"\u003e#49453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson 2 has been upgraded to 2.21.1 in response to the Jackson team ending support for Jackson 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49389\"\u003e#49389\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson has been upgraded to 3.1.0 in response to the Jackson team ending support for Jackson 3.0.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49383\"\u003e#49383\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe default value for \u003ccode\u003eserver.tomcat.max-part-count\u003c/code\u003e has been increased from 10 to 50. This aligns it with Tomcat's own default and the default in Spring Boot 3.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49311\"\u003e#49311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEndpointRequest request matcher for health groups is too complex \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49649\"\u003e#49649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u0026quot;/cloudfoundryapplication\u0026quot; web path is not limited to Actuator \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49646\"\u003e#49646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix EndpointRequest.toLinks() when base-path is '/' \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49617\"\u003e#49617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker fails when a 'tcp://' address ends with a slash (for example 'tcp://docker:2375/') \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49596\"\u003e#49596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRSocket exposes duplicate endpoint for websocket setups \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49593\"\u003e#49593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFailure analysis for a missing mail sender is misleading \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49582\"\u003e#49582\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fe74b311f4b2846848e678eaf7b3c6203ddae930\"\u003e\u003ccode\u003efe74b31\u003c/code\u003e\u003c/a\u003e Release v4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e1d6e5a7098d1e5d3403fb58387622b65d8e825f\"\u003e\u003ccode\u003ee1d6e5a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/6c9e52a1745d255e096d1334593636d005f68143\"\u003e\u003ccode\u003e6c9e52a\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.14-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/a413e9545fd1efe9a9548ec70c86f87559c907f1\"\u003e\u003ccode\u003ea413e95\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.12.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/c1694b50c29e37a162a3d9ad43f4e4b434698247\"\u003e\u003ccode\u003ec1694b5\u003c/code\u003e\u003c/a\u003e Add missing Spring Integration test module to the relevant starter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/51ffdc6cd319fd70f8200ffd69dff0f79c3dfdb7\"\u003e\u003ccode\u003e51ffdc6\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ba70d41a998c8e77d185dd1d7e4ace80ed8cd7e2\"\u003e\u003ccode\u003eba70d41\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 11.0.20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fd94ca0a0baab48a055b3dfe8fd4d09daec766b9\"\u003e\u003ccode\u003efd94ca0\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.11.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/7e6833bc9c5b73bba6920cead989e28d64f982ff\"\u003e\u003ccode\u003e7e6833b\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.2.5...v4.0.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-starter-security` from 3.3.0 to 4.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-security's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.5\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTest starter for Spring Integration does not include Spring Integration test module \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49784\"\u003e#49784\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49782\"\u003e#49782\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49753\"\u003e#49753\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket app fails to start when Jackson is on the classpath but there's no JsonMapper bean \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49749\"\u003e#49749\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49738\"\u003e#49738\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49731\"\u003e#49731\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49706\"\u003e#49706\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e@ConditionalOnWebApplication\u003c/code\u003e to NettyReactiveWebServerAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49695\"\u003e#49695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49672\"\u003e#49672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49727\"\u003e#49727\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49714\"\u003e#49714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverhaul Spring Session documentation following modularization \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49704\"\u003e#49704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Brave 6.3.1 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49763\"\u003e#49763\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson 2 Bom 2.21.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49764\"\u003e#49764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49765\"\u003e#49765\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49794\"\u003e#49794\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 11.0.20 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49767\"\u003e#49767\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49762\"\u003e#49762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/kwondh5217\"\u003e\u003ccode\u003e@​kwondh5217\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/quaff\"\u003e\u003ccode\u003e@​quaff\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.0.4\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOpenTelemetry's ZipkinSpanExporter has been deprecated and its support will be removed in Spring Boot 4.2. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49453\"\u003e#49453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson 2 has been upgraded to 2.21.1 in response to the Jackson team ending support for Jackson 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49389\"\u003e#49389\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson has been upgraded to 3.1.0 in response to the Jackson team ending support for Jackson 3.0.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49383\"\u003e#49383\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe default value for \u003ccode\u003eserver.tomcat.max-part-count\u003c/code\u003e has been increased from 10 to 50. This aligns it with Tomcat's own default and the default in Spring Boot 3.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49311\"\u003e#49311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEndpointRequest request matcher for health groups is too complex \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49649\"\u003e#49649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u0026quot;/cloudfoundryapplication\u0026quot; web path is not limited to Actuator \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49646\"\u003e#49646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix EndpointRequest.toLinks() when base-path is '/' \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49617\"\u003e#49617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker fails when a 'tcp://' address ends with a slash (for example 'tcp://docker:2375/') \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49596\"\u003e#49596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRSocket exposes duplicate endpoint for websocket setups \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49593\"\u003e#49593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFailure analysis for a missing mail sender is misleading \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49582\"\u003e#49582\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fe74b311f4b2846848e678eaf7b3c6203ddae930\"\u003e\u003ccode\u003efe74b31\u003c/code\u003e\u003c/a\u003e Release v4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e1d6e5a7098d1e5d3403fb58387622b65d8e825f\"\u003e\u003ccode\u003ee1d6e5a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/6c9e52a1745d255e096d1334593636d005f68143\"\u003e\u003ccode\u003e6c9e52a\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.14-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/a413e9545fd1efe9a9548ec70c86f87559c907f1\"\u003e\u003ccode\u003ea413e95\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.12.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/c1694b50c29e37a162a3d9ad43f4e4b434698247\"\u003e\u003ccode\u003ec1694b5\u003c/code\u003e\u003c/a\u003e Add missing Spring Integration test module to the relevant starter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/51ffdc6cd319fd70f8200ffd69dff0f79c3dfdb7\"\u003e\u003ccode\u003e51ffdc6\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ba70d41a998c8e77d185dd1d7e4ace80ed8cd7e2\"\u003e\u003ccode\u003eba70d41\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 11.0.20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fd94ca0a0baab48a055b3dfe8fd4d09daec766b9\"\u003e\u003ccode\u003efd94ca0\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.11.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/7e6833bc9c5b73bba6920cead989e28d64f982ff\"\u003e\u003ccode\u003e7e6833b\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.3.0...v4.0.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-starter-actuator` from 3.3.0 to 4.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-actuator's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.5\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTest starter for Spring Integration does not include Spring Integration test module \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49784\"\u003e#49784\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49782\"\u003e#49782\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49753\"\u003e#49753\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket app fails to start when Jackson is on the classpath but there's no JsonMapper bean \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49749\"\u003e#49749\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49738\"\u003e#49738\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49731\"\u003e#49731\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49706\"\u003e#49706\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e@ConditionalOnWebApplication\u003c/code\u003e to NettyReactiveWebServerAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49695\"\u003e#49695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49672\"\u003e#49672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49727\"\u003e#49727\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49714\"\u003e#49714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverhaul Spring Session documentation following modularization \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49704\"\u003e#49704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Brave 6.3.1 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49763\"\u003e#49763\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson 2 Bom 2.21.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49764\"\u003e#49764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49765\"\u003e#49765\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49794\"\u003e#49794\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 11.0.20 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49767\"\u003e#49767\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49762\"\u003e#49762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/kwondh5217\"\u003e\u003ccode\u003e@​kwondh5217\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/quaff\"\u003e\u003ccode\u003e@​quaff\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.0.4\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOpenTelemetry's ZipkinSpanExporter has been deprecated and its support will be removed in Spring Boot 4.2. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49453\"\u003e#49453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson 2 has been upgraded to 2.21.1 in response to the Jackson team ending support for Jackson 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49389\"\u003e#49389\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson has been upgraded to 3.1.0 in response to the Jackson team ending support for Jackson 3.0.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49383\"\u003e#49383\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe default value for \u003ccode\u003eserver.tomcat.max-part-count\u003c/code\u003e has been increased from 10 to 50. This aligns it with Tomcat's own default and the default in Spring Boot 3.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49311\"\u003e#49311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEndpointRequest request matcher for health groups is too complex \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49649\"\u003e#49649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u0026quot;/cloudfoundryapplication\u0026quot; web path is not limited to Actuator \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49646\"\u003e#49646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix EndpointRequest.toLinks() when base-path is '/' \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49617\"\u003e#49617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker fails when a 'tcp://' address ends with a slash (for example 'tcp://docker:2375/') \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49596\"\u003e#49596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRSocket exposes duplicate endpoint for websocket setups \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49593\"\u003e#49593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFailure analysis for a missing mail sender is misleading \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49582\"\u003e#49582\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fe74b311f4b2846848e678eaf7b3c6203ddae930\"\u003e\u003ccode\u003efe74b31\u003c/code\u003e\u003c/a\u003e Release v4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e1d6e5a7098d1e5d3403fb58387622b65d8e825f\"\u003e\u003ccode\u003ee1d6e5a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/6c9e52a1745d255e096d1334593636d005f68143\"\u003e\u003ccode\u003e6c9e52a\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.14-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/a413e9545fd1efe9a9548ec70c86f87559c907f1\"\u003e\u003ccode\u003ea413e95\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.12.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/c1694b50c29e37a162a3d9ad43f4e4b434698247\"\u003e\u003ccode\u003ec1694b5\u003c/code\u003e\u003c/a\u003e Add missing Spring Integration test module to the relevant starter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/51ffdc6cd319fd70f8200ffd69dff0f79c3dfdb7\"\u003e\u003ccode\u003e51ffdc6\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ba70d41a998c8e77d185dd1d7e4ace80ed8cd7e2\"\u003e\u003ccode\u003eba70d41\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 11.0.20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fd94ca0a0baab48a055b3dfe8fd4d09daec766b9\"\u003e\u003ccode\u003efd94ca0\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.11.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/7e6833bc9c5b73bba6920cead989e28d64f982ff\"\u003e\u003ccode\u003e7e6833b\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.3.0...v4.0.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-starter-test` from 3.3.0 to 4.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-test's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.5\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTest starter for Spring Integration does not include Spring Integration test module \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49784\"\u003e#49784\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49782\"\u003e#49782\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49753\"\u003e#49753\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket app fails to start when Jackson is on the classpath but there's no JsonMapper bean \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49749\"\u003e#49749\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49738\"\u003e#49738\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49731\"\u003e#49731\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49706\"\u003e#49706\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e@ConditionalOnWebApplication\u003c/code\u003e to NettyReactiveWebServerAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49695\"\u003e#49695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49672\"\u003e#49672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49727\"\u003e#49727\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49714\"\u003e#49714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverhaul Spring Session documentation following modularization \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49704\"\u003e#49704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Brave 6.3.1 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49763\"\u003e#49763\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson 2 Bom 2.21.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49764\"\u003e#49764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49765\"\u003e#49765\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49794\"\u003e#49794\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 11.0.20 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49767\"\u003e#49767\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49762\"\u003e#49762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/kwondh5217\"\u003e\u003ccode\u003e@​kwondh5217\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/quaff\"\u003e\u003ccode\u003e@​quaff\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.0.4\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOpenTelemetry's ZipkinSpanExporter has been deprecated and its support will be removed in Spring Boot 4.2. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49453\"\u003e#49453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson 2 has been upgraded to 2.21.1 in response to the Jackson team ending support for Jackson 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49389\"\u003e#49389\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson has been upgraded to 3.1.0 in response to the Jackson team ending support for Jackson 3.0.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49383\"\u003e#49383\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe default value for \u003ccode\u003eserver.tomcat.max-part-count\u003c/code\u003e has been increased from 10 to 50. This aligns it with Tomcat's own default and the default in Spring Boot 3.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49311\"\u003e#49311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEndpointRequest request matcher for health groups is too complex \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49649\"\u003e#49649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u0026quot;/cloudfoundryapplication\u0026quot; web path is not limited to Actuator \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49646\"\u003e#49646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix EndpointRequest.toLinks() when base-path is '/' \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49617\"\u003e#49617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker fails when a 'tcp://' address ends with a slash (for example 'tcp://docker:2375/') \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49596\"\u003e#49596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRSocket exposes duplicate endpoint for websocket setups \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49593\"\u003e#49593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFailure analysis for a missing mail sender is misleading \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49582\"\u003e#49582\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fe74b311f4b2846848e678eaf7b3c6203ddae930\"\u003e\u003ccode\u003efe74b31\u003c/code\u003e\u003c/a\u003e Release v4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e1d6e5a7098d1e5d3403fb58387622b65d8e825f\"\u003e\u003ccode\u003ee1d6e5a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/6c9e52a1745d255e096d1334593636d005f68143\"\u003e\u003ccode\u003e6c9e52a\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.14-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/a413e9545fd1efe9a9548ec70c86f87559c907f1\"\u003e\u003ccode\u003ea413e95\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.12.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/c1694b50c29e37a162a3d9ad43f4e4b434698247\"\u003e\u003ccode\u003ec1694b5\u003c/code\u003e\u003c/a\u003e Add missing Spring Integration test module to the relevant starter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/51ffdc6cd319fd70f8200ffd69dff0f79c3dfdb7\"\u003e\u003ccode\u003e51ffdc6\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ba70d41a998c8e77d185dd1d7e4ace80ed8cd7e2\"\u003e\u003ccode\u003eba70d41\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 11.0.20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fd94ca0a0baab48a055b3dfe8fd4d09daec766b9\"\u003e\u003ccode\u003efd94ca0\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.11.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/7e6833bc9c5b73bba6920cead989e28d64f982ff\"\u003e\u003ccode\u003e7e6833b\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.3.0...v4.0.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-starter-webflux` from 3.3.0 to 4.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-webflux's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.5\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTest starter for Spring Integration does not include Spring Integration test module \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49784\"\u003e#49784\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49782\"\u003e#49782\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49753\"\u003e#49753\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket app fails to start when Jackson is on the classpath but there's no JsonMapper bean \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49749\"\u003e#49749\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49738\"\u003e#49738\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49731\"\u003e#49731\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49706\"\u003e#49706\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e@ConditionalOnWebApplication\u003c/code\u003e to NettyReactiveWebServerAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49695\"\u003e#49695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49672\"\u003e#49672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49727\"\u003e#49727\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49714\"\u003e#49714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverhaul Spring Session documentation following modularization \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49704\"\u003e#49704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Brave 6.3.1 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49763\"\u003e#49763\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson 2 Bom 2.21.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49764\"\u003e#49764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49765\"\u003e#49765\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49794\"\u003e#49794\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 11.0.20 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49767\"\u003e#49767\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49762\"\u003e#49762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/kwondh5217\"\u003e\u003ccode\u003e@​kwondh5217\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/quaff\"\u003e\u003ccode\u003e@​quaff\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.0.4\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOpenTelemetry's ZipkinSpanExporter has been deprecated and its support will be removed in Spring Boot 4.2. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49453\"\u003e#49453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson 2 has been upgraded to 2.21.1 in response to the Jackson team ending support for Jackson 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49389\"\u003e#49389\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson has been upgraded to 3.1.0 in response to the Jackson team ending support for Jackson 3.0.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49383\"\u003e#49383\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe default value for \u003ccode\u003eserver.tomcat.max-part-count\u003c/code\u003e has been increased from 10 to 50. This aligns it with Tomcat's own default and the default in Spring Boot 3.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49311\"\u003e#49311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEndpointRequest request matcher for health groups is too complex \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49649\"\u003e#49649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u0026quot;/cloudfoundryapplication\u0026quot; web path is not limited to Actuator \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49646\"\u003e#49646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix EndpointRequest.toLinks() when base-path is '/' \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49617\"\u003e#49617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker fails when a 'tcp://' address ends with a slash (for example 'tcp://docker:2375/') \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49596\"\u003e#49596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRSocket exposes duplicate endpoint for websocket setups \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49593\"\u003e#49593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFailure analysis for a missing mail sender is misleading \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49582\"\u003e#49582\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fe74b311f4b2846848e678eaf7b3c6203ddae930\"\u003e\u003ccode\u003efe74b31\u003c/code\u003e\u003c/a\u003e Release v4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e1d6e5a7098d1e5d3403fb58387622b65d8e825f\"\u003e\u003ccode\u003ee1d6e5a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/6c9e52a1745d255e096d1334593636d005f68143\"\u003e\u003ccode\u003e6c9e52a\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.14-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/a413e9545fd1efe9a9548ec70c86f87559c907f1\"\u003e\u003ccode\u003ea413e95\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.12.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/c1694b50c29e37a162a3d9ad43f4e4b434698247\"\u003e\u003ccode\u003ec1694b5\u003c/code\u003e\u003c/a\u003e Add missing Spring Integration test module to the relevant starter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/51ffdc6cd319fd70f8200ffd69dff0f79c3dfdb7\"\u003e\u003ccode\u003e51ffdc6\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ba70d41a998c8e77d185dd1d7e4ace80ed8cd7e2\"\u003e\u003ccode\u003eba70d41\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 11.0.20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fd94ca0a0baab48a055b3dfe8fd4d09daec766b9\"\u003e\u003ccode\u003efd94ca0\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.11.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/7e6833bc9c5b73bba6920cead989e28d64f982ff\"\u003e\u003ccode\u003e7e6833b\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli...\n\n_Description has been truncated_","html_url":"https://github.com/Drive10/payflow/pull/29","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Drive10%2Fpayflow/issues/29","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/29/packages"},{"uuid":"4220931220","node_id":"PR_kwDORCe1787Qo1cq","number":36,"state":"open","title":"chore(deps-dev): bump org.springframework.boot:spring-boot-maven-plugin from 4.0.4 to 4.0.5","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-07T22:25:39.000Z","updated_at":"2026-04-08T22:11:58.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps-dev)","packages":[{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.4","new_version":"4.0.5","repository_url":"https://github.com/spring-projects/spring-boot"}],"path":null,"ecosystem":"maven"},"body":"Bumps [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) from 4.0.4 to 4.0.5.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.5\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTest starter for Spring Integration does not include Spring Integration test module \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49784\"\u003e#49784\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49782\"\u003e#49782\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49753\"\u003e#49753\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket app fails to start when Jackson is on the classpath but there's no JsonMapper bean \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49749\"\u003e#49749\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49738\"\u003e#49738\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49731\"\u003e#49731\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49706\"\u003e#49706\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e@ConditionalOnWebApplication\u003c/code\u003e to NettyReactiveWebServerAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49695\"\u003e#49695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49672\"\u003e#49672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49727\"\u003e#49727\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49714\"\u003e#49714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverhaul Spring Session documentation following modularization \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49704\"\u003e#49704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Brave 6.3.1 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49763\"\u003e#49763\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson 2 Bom 2.21.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49764\"\u003e#49764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49765\"\u003e#49765\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49794\"\u003e#49794\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 11.0.20 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49767\"\u003e#49767\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49762\"\u003e#49762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/kwondh5217\"\u003e\u003ccode\u003e@​kwondh5217\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/quaff\"\u003e\u003ccode\u003e@​quaff\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fe74b311f4b2846848e678eaf7b3c6203ddae930\"\u003e\u003ccode\u003efe74b31\u003c/code\u003e\u003c/a\u003e Release v4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e1d6e5a7098d1e5d3403fb58387622b65d8e825f\"\u003e\u003ccode\u003ee1d6e5a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/6c9e52a1745d255e096d1334593636d005f68143\"\u003e\u003ccode\u003e6c9e52a\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.14-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/a413e9545fd1efe9a9548ec70c86f87559c907f1\"\u003e\u003ccode\u003ea413e95\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.12.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/c1694b50c29e37a162a3d9ad43f4e4b434698247\"\u003e\u003ccode\u003ec1694b5\u003c/code\u003e\u003c/a\u003e Add missing Spring Integration test module to the relevant starter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/51ffdc6cd319fd70f8200ffd69dff0f79c3dfdb7\"\u003e\u003ccode\u003e51ffdc6\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ba70d41a998c8e77d185dd1d7e4ace80ed8cd7e2\"\u003e\u003ccode\u003eba70d41\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 11.0.20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fd94ca0a0baab48a055b3dfe8fd4d09daec766b9\"\u003e\u003ccode\u003efd94ca0\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.11.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/7e6833bc9c5b73bba6920cead989e28d64f982ff\"\u003e\u003ccode\u003e7e6833b\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.4...v4.0.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n","html_url":"https://github.com/mirkosertic/MCPLuceneServer/pull/36","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/mirkosertic%2FMCPLuceneServer/issues/36","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/36/packages"},{"uuid":"4168200554","node_id":"PR_kwDOOot3z87OhBWZ","number":82,"state":"closed","title":"build: bump the spring-ecosystem group across 1 directory with 3 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-03-31T09:00:00.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-30T07:21:47.000Z","updated_at":"2026-03-31T09:00:11.000Z","time_to_close":92293,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build: bump","group_name":"spring-ecosystem","update_count":3,"packages":[{"name":"org.springframework.boot:spring-boot-dependencies","old_version":"3.3.0","new_version":"3.5.13","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.cloud:spring-cloud-dependencies","old_version":"2023.0.3","new_version":"2023.0.6","repository_url":"https://github.com/spring-cloud/spring-cloud-release"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"3.3.0","new_version":"3.5.13"}],"path":null,"ecosystem":"maven"},"body":"Bumps the spring-ecosystem group with 2 updates in the / directory: [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot) and [org.springframework.cloud:spring-cloud-dependencies](https://github.com/spring-cloud/spring-cloud-release).\n\nUpdates `org.springframework.boot:spring-boot-dependencies` from 3.3.0 to 3.5.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.13\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eJackson has been upgraded to 2.21.2 in response to the Jackson team ending support for Jackson 2.19.x and 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49365\"\u003e#49365\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49750\"\u003e#49750\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49734\"\u003e#49734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49724\"\u003e#49724\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49716\"\u003e#49716\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49661\"\u003e#49661\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49660\"\u003e#49660\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49723\"\u003e#49723\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49710\"\u003e#49710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Hibernate 6.6.45.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49757\"\u003e#49757\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49758\"\u003e#49758\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.1.132.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49759\"\u003e#49759\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 10.1.53 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49760\"\u003e#49760\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Undertow 2.3.24.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49761\"\u003e#49761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49756\"\u003e#49756\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.5.12\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEndpointRequest request matcher for health groups is too complex \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49648\"\u003e#49648\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u0026quot;/cloudfoundryapplication\u0026quot; web path is not limited to Actuator \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49645\"\u003e#49645\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRSocket exposes duplicate endpoint for websocket setups \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49592\"\u003e#49592\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix EndpointRequest.toLinks() when base-path is '/' \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49591\"\u003e#49591\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpringBootContextLoader mentions class that no longer exists in message for classes or locations assertion \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49518\"\u003e#49518\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u0026quot;spring.main.cloud-platform=none\u0026quot; does not disable cloud features \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49478\"\u003e#49478\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUsing \u003ccode\u003e@AutoConfigureWebTestClient\u003c/code\u003e prevents separate configuration of spring.test.webtestclient.timeout from taking effect \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49340\"\u003e#49340\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOrdering of 'spring.config.import' is inconsistent when defined in environment or system properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49324\"\u003e#49324\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRouterFunctions descriptions in Actuator do not support nesting \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49289\"\u003e#49289\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMaven plugin does not set '-parameters' option when processing AOT code \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49268\"\u003e#49268\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSSL support with Docker Compose does not work as documented \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49210\"\u003e#49210\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker fails when a 'tcp://' address ends with a slash (for example 'tcp://docker:2375/') \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49055\"\u003e#49055\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a4c79fa691793be59361c31f4a6447bb0a48907\"\u003e\u003ccode\u003e4a4c79f\u003c/code\u003e\u003c/a\u003e Release v3.5.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4b37ecbf6db93913f811f4d3f64a7f800ea39573\"\u003e\u003ccode\u003e4b37ecb\u003c/code\u003e\u003c/a\u003e Upgrade to Undertow 2.3.24.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/32a51d5d709b758786f371e063754d99c0348755\"\u003e\u003ccode\u003e32a51d5\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 10.1.53\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/093429614119c03ab660e30fd21dacbd404a10fe\"\u003e\u003ccode\u003e0934296\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.1.132.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/851ddda4225a97ba8f5030454f276a559bcb3b71\"\u003e\u003ccode\u003e851ddda\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef876fe5d2648ec11eab45546725bd0f21c34870\"\u003e\u003ccode\u003eef876fe\u003c/code\u003e\u003c/a\u003e Upgrade to Hibernate 6.6.45.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/2841d874cfffed8f8c75bf631289aa4283281d3a\"\u003e\u003ccode\u003e2841d87\u003c/code\u003e\u003c/a\u003e Upgrade to Zipkin Reporter 3.5.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/025b527e87f9820c1142468fdcf0b21db3cd192d\"\u003e\u003ccode\u003e025b527\u003c/code\u003e\u003c/a\u003e Fix WebSocketMessagingAutoConfiguration in the absence of Jackson\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/328267249f71336f642effe8aaf80e39d9d9be65\"\u003e\u003ccode\u003e3282672\u003c/code\u003e\u003c/a\u003e Make DevTools tests more tolerant to wrapped DataSource\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.3.0...v3.5.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.cloud:spring-cloud-dependencies` from 2023.0.3 to 2023.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/releases\"\u003eorg.springframework.cloud:spring-cloud-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2023.0.4\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/compare/v2023.0.3...v2023.0.4\"\u003ehttps://github.com/spring-cloud/spring-cloud-release/compare/v2023.0.3...v2023.0.4\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/c8673669a8cd621a7b916408e03aa2fedac238dc\"\u003e\u003ccode\u003ec867366\u003c/code\u003e\u003c/a\u003e Update SNAPSHOT to 2023.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/b4c7d7c17b98abe1c78027c955269cf2ef8cf2d7\"\u003e\u003ccode\u003eb4c7d7c\u003c/code\u003e\u003c/a\u003e Adding license, scm, and developer information\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/add536008990c299d03ae838f99959f9a3d4499f\"\u003e\u003ccode\u003eadd5360\u003c/code\u003e\u003c/a\u003e Add maven central plugin\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/e4c0b4f54aee5b897c8d85823085cc119ad87ce6\"\u003e\u003ccode\u003ee4c0b4f\u003c/code\u003e\u003c/a\u003e Bumping versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/56c05091fd89f8dcd8aa6c1c3d3fc59f1ef85f05\"\u003e\u003ccode\u003e56c0509\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/issues/364\"\u003e#364\u003c/a\u003e from spring-cloud/dependabot/maven/2023.0.x/org.sprin...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/2744f815ec55fc87056310d59715d8968cdf82c6\"\u003e\u003ccode\u003e2744f81\u003c/code\u003e\u003c/a\u003e Bump org.springframework.cloud:spring-cloud-config-dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/b8d4e1e52d81f60395cba9e55c8ca6a7bfd805bf\"\u003e\u003ccode\u003eb8d4e1e\u003c/code\u003e\u003c/a\u003e Bumping versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/e70b235cd71a7d098fa2f8d001a8486c4823b06e\"\u003e\u003ccode\u003ee70b235\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/issues/363\"\u003e#363\u003c/a\u003e from spring-cloud/dependabot/maven/2023.0.x/org.apach...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/647b68551c88c9312ca73d5d62999411b6ce6040\"\u003e\u003ccode\u003e647b685\u003c/code\u003e\u003c/a\u003e Bump org.apache.maven:maven-model from 3.8.8 to 3.8.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/805792d36c0eb62ae7b174026b253f3430d1655e\"\u003e\u003ccode\u003e805792d\u003c/code\u003e\u003c/a\u003e Use Assert4J\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/compare/v2023.0.3...v2023.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 3.3.0 to 3.5.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.13\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eJackson has been upgraded to 2.21.2 in response to the Jackson team ending support for Jackson 2.19.x and 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49365\"\u003e#49365\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49750\"\u003e#49750\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49734\"\u003e#49734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49724\"\u003e#49724\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49716\"\u003e#49716\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49661\"\u003e#49661\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49660\"\u003e#49660\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49723\"\u003e#49723\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49710\"\u003e#49710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Hibernate 6.6.45.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49757\"\u003e#49757\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49758\"\u003e#49758\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.1.132.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49759\"\u003e#49759\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 10.1.53 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49760\"\u003e#49760\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Undertow 2.3.24.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49761\"\u003e#49761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49756\"\u003e#49756\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.5.12\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEndpointRequest request matcher for health groups is too complex \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49648\"\u003e#49648\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u0026quot;/cloudfoundryapplication\u0026quot; web path is not limited to Actuator \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49645\"\u003e#49645\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRSocket exposes duplicate endpoint for websocket setups \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49592\"\u003e#49592\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix EndpointRequest.toLinks() when base-path is '/' \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49591\"\u003e#49591\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpringBootContextLoader mentions class that no longer exists in message for classes or locations assertion \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49518\"\u003e#49518\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u0026quot;spring.main.cloud-platform=none\u0026quot; does not disable cloud features \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49478\"\u003e#49478\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUsing \u003ccode\u003e@AutoConfigureWebTestClient\u003c/code\u003e prevents separate configuration of spring.test.webtestclient.timeout from taking effect \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49340\"\u003e#49340\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOrdering of 'spring.config.import' is inconsistent when defined in environment or system properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49324\"\u003e#49324\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRouterFunctions descriptions in Actuator do not support nesting \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49289\"\u003e#49289\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMaven plugin does not set '-parameters' option when processing AOT code \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49268\"\u003e#49268\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSSL support with Docker Compose does not work as documented \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49210\"\u003e#49210\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker fails when a 'tcp://' address ends with a slash (for example 'tcp://docker:2375/') \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49055\"\u003e#49055\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a4c79fa691793be59361c31f4a6447bb0a48907\"\u003e\u003ccode\u003e4a4c79f\u003c/code\u003e\u003c/a\u003e Release v3.5.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4b37ecbf6db93913f811f4d3f64a7f800ea39573\"\u003e\u003ccode\u003e4b37ecb\u003c/code\u003e\u003c/a\u003e Upgrade to Undertow 2.3.24.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/32a51d5d709b758786f371e063754d99c0348755\"\u003e\u003ccode\u003e32a51d5\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 10.1.53\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/093429614119c03ab660e30fd21dacbd404a10fe\"\u003e\u003ccode\u003e0934296\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.1.132.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/851ddda4225a97ba8f5030454f276a559bcb3b71\"\u003e\u003ccode\u003e851ddda\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef876fe5d2648ec11eab45546725bd0f21c34870\"\u003e\u003ccode\u003eef876fe\u003c/code\u003e\u003c/a\u003e Upgrade to Hibernate 6.6.45.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/2841d874cfffed8f8c75bf631289aa4283281d3a\"\u003e\u003ccode\u003e2841d87\u003c/code\u003e\u003c/a\u003e Upgrade to Zipkin Reporter 3.5.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/025b527e87f9820c1142468fdcf0b21db3cd192d\"\u003e\u003ccode\u003e025b527\u003c/code\u003e\u003c/a\u003e Fix WebSocketMessagingAutoConfiguration in the absence of Jackson\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/328267249f71336f642effe8aaf80e39d9d9be65\"\u003e\u003ccode\u003e3282672\u003c/code\u003e\u003c/a\u003e Make DevTools tests more tolerant to wrapped DataSource\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.3.0...v3.5.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n","html_url":"https://github.com/Lolo179/billMate-app/pull/82","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Lolo179%2FbillMate-app/issues/82","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/82/packages"},{"uuid":"4167143974","node_id":"PR_kwDOLSA6Cs7OejR0","number":302,"state":"open","title":"Bump org.springframework.boot:spring-boot-maven-plugin from 4.0.4 to 4.0.5","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-03-30T04:16:57.000Z","updated_at":"2026-03-30T04:25:30.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.4","new_version":"4.0.5","repository_url":"https://github.com/spring-projects/spring-boot"}],"path":null,"ecosystem":"maven"},"body":"Bumps [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) from 4.0.4 to 4.0.5.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.5\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTest starter for Spring Integration does not include Spring Integration test module \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49784\"\u003e#49784\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49782\"\u003e#49782\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49753\"\u003e#49753\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket app fails to start when Jackson is on the classpath but there's no JsonMapper bean \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49749\"\u003e#49749\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49738\"\u003e#49738\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49731\"\u003e#49731\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49706\"\u003e#49706\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e@ConditionalOnWebApplication\u003c/code\u003e to NettyReactiveWebServerAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49695\"\u003e#49695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49672\"\u003e#49672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49727\"\u003e#49727\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49714\"\u003e#49714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverhaul Spring Session documentation following modularization \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49704\"\u003e#49704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Brave 6.3.1 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49763\"\u003e#49763\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson 2 Bom 2.21.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49764\"\u003e#49764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49765\"\u003e#49765\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49794\"\u003e#49794\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 11.0.20 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49767\"\u003e#49767\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49762\"\u003e#49762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/kwondh5217\"\u003e\u003ccode\u003e@​kwondh5217\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/quaff\"\u003e\u003ccode\u003e@​quaff\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fe74b311f4b2846848e678eaf7b3c6203ddae930\"\u003e\u003ccode\u003efe74b31\u003c/code\u003e\u003c/a\u003e Release v4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e1d6e5a7098d1e5d3403fb58387622b65d8e825f\"\u003e\u003ccode\u003ee1d6e5a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/6c9e52a1745d255e096d1334593636d005f68143\"\u003e\u003ccode\u003e6c9e52a\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.14-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/a413e9545fd1efe9a9548ec70c86f87559c907f1\"\u003e\u003ccode\u003ea413e95\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.12.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/c1694b50c29e37a162a3d9ad43f4e4b434698247\"\u003e\u003ccode\u003ec1694b5\u003c/code\u003e\u003c/a\u003e Add missing Spring Integration test module to the relevant starter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/51ffdc6cd319fd70f8200ffd69dff0f79c3dfdb7\"\u003e\u003ccode\u003e51ffdc6\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ba70d41a998c8e77d185dd1d7e4ace80ed8cd7e2\"\u003e\u003ccode\u003eba70d41\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 11.0.20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fd94ca0a0baab48a055b3dfe8fd4d09daec766b9\"\u003e\u003ccode\u003efd94ca0\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.11.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/7e6833bc9c5b73bba6920cead989e28d64f982ff\"\u003e\u003ccode\u003e7e6833b\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.4...v4.0.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.springframework.boot:spring-boot-maven-plugin\u0026package-manager=maven\u0026previous-version=4.0.4\u0026new-version=4.0.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/RETIT/opentelemetry-javaagent-extension/pull/302","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/RETIT%2Fopentelemetry-javaagent-extension/issues/302","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/302/packages"}],"issue_packages":[{"old_version":"4.0.6","new_version":"4.1.0","update_type":"minor","path":null,"pr_created_at":"2026-06-10T23:44:11.000Z","version_change":"4.0.6 → 4.1.0","issue":{"uuid":"4635895149","node_id":"PR_kwDOP5kYpc7lFp7e","number":96,"state":"open","title":"Bump the minor-and-patch group across 1 directory with 7 updates","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-06-10T23:44:11.000Z","updated_at":"2026-06-10T23:44:43.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"minor-and-patch","update_count":7,"packages":[{"name":"org.springframework.boot:spring-boot-dependencies","old_version":"4.0.6","new_version":"4.1.0","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.6","new_version":"4.1.0","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"io.jsonwebtoken:jjwt-api","old_version":"0.11.5","new_version":"0.13.0","repository_url":"https://github.com/jwtk/jjwt"},{"name":"io.jsonwebtoken:jjwt-impl","old_version":"0.11.5","new_version":"0.13.0","repository_url":"https://github.com/jwtk/jjwt"},{"name":"io.jsonwebtoken:jjwt-jackson","old_version":"0.11.5","new_version":"0.13.0"},{"name":"org.apache.maven.plugins:maven-compiler-plugin","old_version":"3.13.0","new_version":"3.15.0","repository_url":"https://github.com/apache/maven-compiler-plugin"},{"name":"org.jacoco:jacoco-maven-plugin","old_version":"0.8.14","new_version":"0.8.15","repository_url":"https://github.com/jacoco/jacoco"}],"path":null,"ecosystem":"maven"},"body":"Bumps the minor-and-patch group with 7 updates in the /Backend directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot) | `4.0.6` | `4.1.0` |\n| [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) | `4.0.6` | `4.1.0` |\n| [io.jsonwebtoken:jjwt-api](https://github.com/jwtk/jjwt) | `0.11.5` | `0.13.0` |\n| [io.jsonwebtoken:jjwt-impl](https://github.com/jwtk/jjwt) | `0.11.5` | `0.13.0` |\n| io.jsonwebtoken:jjwt-jackson | `0.11.5` | `0.13.0` |\n| [org.apache.maven.plugins:maven-compiler-plugin](https://github.com/apache/maven-compiler-plugin) | `3.13.0` | `3.15.0` |\n| [org.jacoco:jacoco-maven-plugin](https://github.com/jacoco/jacoco) | `0.8.14` | `0.8.15` |\n\n\nUpdates `org.springframework.boot:spring-boot-dependencies` from 4.0.6 to 4.1.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cp\u003eFull \u003ca href=\"https://github.com/spring-projects/spring-boot/wiki/Spring-Boot-4.1-Release-Notes\"\u003erelease notes for Spring Boot 4.1\u003c/a\u003e are available on the wiki.\u003c/p\u003e\n\u003ch2\u003e:star: New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd public constructor to InvalidConfigurationPropertyValueException that accepts a cause \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50211\"\u003e#50211\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReduce memory consumption when repeatedly calling WritableJson.toByteArray \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49428\"\u003e#49428\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMailSender auto-configuration does not enable hostname verification \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50747\"\u003e#50747\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eArtemis auto-configuration uses a predictable default location for the embedded broker's data \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50745\"\u003e#50745\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEmbedded LDAP SSL should not be enabled when its bundle is empty \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50700\"\u003e#50700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eInetAddressFilter.externalAddresses does not exclude special purpose addresses from RFC 6890 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50668\"\u003e#50668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNullPointerException in reactor-netty SniProvider and unmapped SSL bundle with RSocket \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50645\"\u003e#50645\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSSL should not be enabled when a SSL bundle is overridden to an empty string \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50635\"\u003e#50635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTest auto-configuration no longer integrates Spring Security with HtmlUnitDriver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50633\"\u003e#50633\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eConfiguration property metadata includes incorrect class references \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50632\"\u003e#50632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support does not restore thread interrupt flag when catching InterruptedException \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50618\"\u003e#50618\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRabbitProperties enables SSL even when spring.rabbitmq.ssl.bundle is overridden to an empty string \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50612\"\u003e#50612\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNullPointerException in reactor-netty SniProvider when SSL bundle uses client-auth or server truststore without server-name-bundles \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50610\"\u003e#50610\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpringJtaPlatform should have been deprecated since 4.1.0-M3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50592\"\u003e#50592\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLayer written outside the output location of '//' exception is thrown when using extract layers in root directory \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50510\"\u003e#50510\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eConfigurationPropertiesReportEndpoint exposes AOP proxy internals \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50417\"\u003e#50417\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCreated StackTracePrinter instances have no access to the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50414\"\u003e#50414\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMappingsEndpoint reports the context's own ID as parentId when a parent exists \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50412\"\u003e#50412\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBuildpack module does not validate long-to-int casts \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50410\"\u003e#50410\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGradle gRPC support fails if protobuf-java dependency is used instead of protobuf-java-util \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50405\"\u003e#50405\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGraphQL WebSocket support does not configure allowed origins \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50394\"\u003e#50394\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Boot Loader Does Not Support RSA and EC Signed Jars \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50298\"\u003e#50298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMeter registries are not removed from the global registry when the context is closed \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50287\"\u003e#50287\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDataSourceBuilder cannot derive a DataSource from a lazy connection proxy \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50271\"\u003e#50271\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNullable annotations from AbstractErrorController.getErrorAttributes are not aligned with implementation \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50266\"\u003e#50266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBean definitions can be added with an initializer before setAllowBeanDefinitionOverriding is called \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50264\"\u003e#50264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEndpointRequest links matcher unnecessarily matches HTTP methods other than GET  \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50261\"\u003e#50261\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eActuator's '/cloudfoundryapplication' endpoint does not work if restrictive CORS configuration is provided using a bean named corsConfigurationSource \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50258\"\u003e#50258\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThreadPoolTaskScheduleBuilder unnecessarily loses precision when configuring await termination time \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50234\"\u003e#50234\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNimbusJwtDecoder silently accepts unknown values for spring.security.oauth2.resourceserver.jwt.jws-algorithms \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50228\"\u003e#50228\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMissing dependency management for spring-boot-web-server-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50224\"\u003e#50224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Batch support for MongoDB modules are not included in dependency management \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50223\"\u003e#50223\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApply HTML escaping to timestamp attribute in Whitelabel error page \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50216\"\u003e#50216\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGrpcServerHealthScheduler is not started in servlet environments \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50209\"\u003e#50209\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSetting server.servlet.session.cookie.partitioned=true has no effect when using Tomcat \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50204\"\u003e#50204\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix reference to Gradle documentation for module replacement \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50647\"\u003e#50647\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument SSL reloading with Let's Encrypt \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50630\"\u003e#50630\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove the use of Optional from Data Neo4j repository examples \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50622\"\u003e#50622\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix typos in documentation \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50620\"\u003e#50620\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ac2cfe03538b87a0dc9d2619ed52a4c901eaea54\"\u003e\u003ccode\u003eac2cfe0\u003c/code\u003e\u003c/a\u003e Release v4.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/1a5815cf3183a0c9493cece8ba550a6e8b125d67\"\u003e\u003ccode\u003e1a5815c\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Batch 6.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/a8364ff9c2a0ca88541cc153f032089e063b797c\"\u003e\u003ccode\u003ea8364ff\u003c/code\u003e\u003c/a\u003e Merge branch '4.0.x'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9755ff29e7ce3a8ac4574e5b452bdfe1053718b1\"\u003e\u003ccode\u003e9755ff2\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Batch 6.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/6a6dedc4354cbafadaf8aab2803fc3acd7e6b8de\"\u003e\u003ccode\u003e6a6dedc\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Integration 7.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/db7b2b9fb0b3c623d707f2627f832b4dd5f2eb8c\"\u003e\u003ccode\u003edb7b2b9\u003c/code\u003e\u003c/a\u003e Merge branch '4.0.x'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/d549d077c03add0421464fcd0248bd8b76b41973\"\u003e\u003ccode\u003ed549d07\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Integration 7.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4d9e463dc3fefea2b73dcfbb15b4ced6b69dbaf9\"\u003e\u003ccode\u003e4d9e463\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/b0686478a71cceb977dc1ff5b4e69ef5eb052fcf\"\u003e\u003ccode\u003eb068647\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Integration 6.5.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/198af995dc03a09583c61bcd0b8ffda341055feb\"\u003e\u003ccode\u003e198af99\u003c/code\u003e\u003c/a\u003e Merge branch '4.0.x'\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.6...v4.1.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 4.0.6 to 4.1.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cp\u003eFull \u003ca href=\"https://github.com/spring-projects/spring-boot/wiki/Spring-Boot-4.1-Release-Notes\"\u003erelease notes for Spring Boot 4.1\u003c/a\u003e are available on the wiki.\u003c/p\u003e\n\u003ch2\u003e:star: New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd public constructor to InvalidConfigurationPropertyValueException that accepts a cause \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50211\"\u003e#50211\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReduce memory consumption when repeatedly calling WritableJson.toByteArray \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49428\"\u003e#49428\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMailSender auto-configuration does not enable hostname verification \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50747\"\u003e#50747\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eArtemis auto-configuration uses a predictable default location for the embedded broker's data \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50745\"\u003e#50745\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEmbedded LDAP SSL should not be enabled when its bundle is empty \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50700\"\u003e#50700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eInetAddressFilter.externalAddresses does not exclude special purpose addresses from RFC 6890 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50668\"\u003e#50668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNullPointerException in reactor-netty SniProvider and unmapped SSL bundle with RSocket \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50645\"\u003e#50645\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSSL should not be enabled when a SSL bundle is overridden to an empty string \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50635\"\u003e#50635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTest auto-configuration no longer integrates Spring Security with HtmlUnitDriver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50633\"\u003e#50633\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eConfiguration property metadata includes incorrect class references \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50632\"\u003e#50632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support does not restore thread interrupt flag when catching InterruptedException \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50618\"\u003e#50618\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRabbitProperties enables SSL even when spring.rabbitmq.ssl.bundle is overridden to an empty string \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50612\"\u003e#50612\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNullPointerException in reactor-netty SniProvider when SSL bundle uses client-auth or server truststore without server-name-bundles \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50610\"\u003e#50610\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpringJtaPlatform should have been deprecated since 4.1.0-M3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50592\"\u003e#50592\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLayer written outside the output location of '//' exception is thrown when using extract layers in root directory \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50510\"\u003e#50510\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eConfigurationPropertiesReportEndpoint exposes AOP proxy internals \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50417\"\u003e#50417\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCreated StackTracePrinter instances have no access to the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50414\"\u003e#50414\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMappingsEndpoint reports the context's own ID as parentId when a parent exists \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50412\"\u003e#50412\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBuildpack module does not validate long-to-int casts \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50410\"\u003e#50410\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGradle gRPC support fails if protobuf-java dependency is used instead of protobuf-java-util \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50405\"\u003e#50405\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGraphQL WebSocket support does not configure allowed origins \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50394\"\u003e#50394\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Boot Loader Does Not Support RSA and EC Signed Jars \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50298\"\u003e#50298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMeter registries are not removed from the global registry when the context is closed \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50287\"\u003e#50287\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDataSourceBuilder cannot derive a DataSource from a lazy connection proxy \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50271\"\u003e#50271\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNullable annotations from AbstractErrorController.getErrorAttributes are not aligned with implementation \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50266\"\u003e#50266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBean definitions can be added with an initializer before setAllowBeanDefinitionOverriding is called \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50264\"\u003e#50264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEndpointRequest links matcher unnecessarily matches HTTP methods other than GET  \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50261\"\u003e#50261\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eActuator's '/cloudfoundryapplication' endpoint does not work if restrictive CORS configuration is provided using a bean named corsConfigurationSource \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50258\"\u003e#50258\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThreadPoolTaskScheduleBuilder unnecessarily loses precision when configuring await termination time \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50234\"\u003e#50234\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNimbusJwtDecoder silently accepts unknown values for spring.security.oauth2.resourceserver.jwt.jws-algorithms \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50228\"\u003e#50228\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMissing dependency management for spring-boot-web-server-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50224\"\u003e#50224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Batch support for MongoDB modules are not included in dependency management \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50223\"\u003e#50223\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApply HTML escaping to timestamp attribute in Whitelabel error page \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50216\"\u003e#50216\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGrpcServerHealthScheduler is not started in servlet environments \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50209\"\u003e#50209\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSetting server.servlet.session.cookie.partitioned=true has no effect when using Tomcat \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50204\"\u003e#50204\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix reference to Gradle documentation for module replacement \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50647\"\u003e#50647\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument SSL reloading with Let's Encrypt \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50630\"\u003e#50630\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove the use of Optional from Data Neo4j repository examples \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50622\"\u003e#50622\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix typos in documentation \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50620\"\u003e#50620\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ac2cfe03538b87a0dc9d2619ed52a4c901eaea54\"\u003e\u003ccode\u003eac2cfe0\u003c/code\u003e\u003c/a\u003e Release v4.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/1a5815cf3183a0c9493cece8ba550a6e8b125d67\"\u003e\u003ccode\u003e1a5815c\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Batch 6.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/a8364ff9c2a0ca88541cc153f032089e063b797c\"\u003e\u003ccode\u003ea8364ff\u003c/code\u003e\u003c/a\u003e Merge branch '4.0.x'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9755ff29e7ce3a8ac4574e5b452bdfe1053718b1\"\u003e\u003ccode\u003e9755ff2\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Batch 6.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/6a6dedc4354cbafadaf8aab2803fc3acd7e6b8de\"\u003e\u003ccode\u003e6a6dedc\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Integration 7.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/db7b2b9fb0b3c623d707f2627f832b4dd5f2eb8c\"\u003e\u003ccode\u003edb7b2b9\u003c/code\u003e\u003c/a\u003e Merge branch '4.0.x'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/d549d077c03add0421464fcd0248bd8b76b41973\"\u003e\u003ccode\u003ed549d07\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Integration 7.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4d9e463dc3fefea2b73dcfbb15b4ced6b69dbaf9\"\u003e\u003ccode\u003e4d9e463\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/b0686478a71cceb977dc1ff5b4e69ef5eb052fcf\"\u003e\u003ccode\u003eb068647\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Integration 6.5.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/198af995dc03a09583c61bcd0b8ffda341055feb\"\u003e\u003ccode\u003e198af99\u003c/code\u003e\u003c/a\u003e Merge branch '4.0.x'\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.6...v4.1.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `io.jsonwebtoken:jjwt-api` from 0.11.5 to 0.13.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jwtk/jjwt/releases\"\u003eio.jsonwebtoken:jjwt-api's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.13.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eThis is the last minor JJWT release branch that will support Java 7\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eAny necessary emergency bug fixes will be fixed in subsequent \u003ccode\u003e0.13.x\u003c/code\u003e patch releases, but all new development, including \u003ca href=\"https://github.com/jwtk/jjwt/issues?q=is%3Aissue%20label%3Ajdk8\"\u003eJava 8 compatible changes\u003c/a\u003e, will be in the next minor (\u003ccode\u003e0.14.0\u003c/code\u003e) release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eAll future JJWT major and minor versions (  \u003ccode\u003e0.14.0\u003c/code\u003e and later) will require Java 8 or later.\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eThis release contains a single change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe previously private \u003ccode\u003eJacksonDeserializer(ObjectMapper objectMapper, Map\u0026lt;String, Class\u0026lt;?\u0026gt;\u0026gt; claimTypeMap)\u003c/code\u003e constructor is now \u003ccode\u003epublic\u003c/code\u003e for those that want register a claims  type converter on their own specified \u003ccode\u003eObjectMapper\u003c/code\u003e instance. Thank you to \u003ca href=\"https://github.com/kesrishubham2510\"\u003e\u003ccode\u003e@​kesrishubham2510\u003c/code\u003e\u003c/a\u003e for PR \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/972\"\u003e#972\u003c/a\u003e. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/914\"\u003eIssue 914\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.12.7...0.13.0\"\u003ehttps://github.com/jwtk/jjwt/compare/0.12.7...0.13.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.12.7\u003c/h2\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdds a new Maven BOM! This is useful for multi-module projects. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/967\"\u003eIssue 967\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAllows the \u003ccode\u003eJwtParserBuilder\u003c/code\u003e to have empty nested algorithm collections, effectively disabling the parser's associated feature:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEmptying the \u003ccode\u003ezip()\u003c/code\u003e nested collection disables JWT decompression.\u003c/li\u003e\n\u003cli\u003eEmptying the \u003ccode\u003esig()\u003c/code\u003e nested collection disables JWS mac/signature verification (i.e. all JWSs will be unsupported/rejected).\u003c/li\u003e\n\u003cli\u003eEmptying either the \u003ccode\u003eenc()\u003c/code\u003e or \u003ccode\u003ekey()\u003c/code\u003e nested collections disables JWE decryption (i.e. all JWEs will be unsupported/rejected)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/996\"\u003eIssue 996\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixes \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/961\"\u003ebug 961\u003c/a\u003e where \u003ccode\u003eJwtParserBuilder\u003c/code\u003e nested collection builders were not correctly replacing algorithms with the same id.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eEnsures a \u003ccode\u003eJwkSet\u003c/code\u003e's \u003ccode\u003ekeys\u003c/code\u003e collection is no longer entirely secret/redacted by default.  This was an overzealous default that was unnecessarily restrictive; the \u003ccode\u003ekeys\u003c/code\u003e collection itself should always be public, and each individual key within should determine which fields should be redacted when printed. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/976\"\u003eIssue 976\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImproves performance slightly by ensuring all \u003ccode\u003ejjwt-api\u003c/code\u003e utility methods that create \u003ccode\u003e*Builder\u003c/code\u003e instances (\u003ccode\u003eJwts.builder()\u003c/code\u003e, \u003ccode\u003eJwts.parserBuilder()\u003c/code\u003e, \u003ccode\u003eJwks.builder()\u003c/code\u003e, etc) no longer use reflection.\u003c/p\u003e\n\u003cp\u003eInstead,\u003ccode\u003estatic\u003c/code\u003e factories are created via reflection only once during initial \u003ccode\u003ejjwt-api\u003c/code\u003e classloading, and then \u003ccode\u003e*Builder\u003c/code\u003es are created via standard instantiation using the \u003ccode\u003enew\u003c/code\u003e operator thereafter.  This also benefits certain environments that may not have ideal \u003ccode\u003eClassLoader\u003c/code\u003e implementations (e.g. Tomcat in some cases).\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNOTE: because this changes which classes are loaded via reflection, any environments that must explicitly reference reflective class names (e.g. GraalVM applications) will need to be updated to reflect the new factory class names\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/988\"\u003eIssue 988\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the Gson dependency to \u003ccode\u003e2.11.0\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the BouncyCastle dependency to \u003ccode\u003e1.78.1\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigpwned\"\u003e\u003ccode\u003e@​sigpwned\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/968\"\u003ejwtk/jjwt#968\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TheMrMilchmann\"\u003e\u003ccode\u003e@​TheMrMilchmann\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/979\"\u003ejwtk/jjwt#979\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/atanasg\"\u003e\u003ccode\u003e@​atanasg\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/974\"\u003ejwtk/jjwt#974\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.12.6...0.12.7\"\u003ehttps://github.com/jwtk/jjwt/compare/0.12.6...0.12.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.12.6\u003c/h2\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEnsures that after successful JWS signature verification, an application-configured Base64Url \u003ccode\u003eDecoder\u003c/code\u003e output is\nused to construct a \u003ccode\u003eJws\u003c/code\u003e instance (instead of JJWT's default decoder). See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/947\"\u003ejwtk/jjwt#947\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jwtk/jjwt/blob/main/CHANGELOG.md\"\u003eio.jsonwebtoken:jjwt-api's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e0.13.0\u003c/h3\u003e\n\u003cp\u003eThis is the last minor JJWT release branch that will support Java 7. Any necessary emergency bug fixes will be fixed in subsequent \u003ccode\u003e0.13.x\u003c/code\u003e patch releases, but all new development, including Java 8 compatible changes, will be in the next minor (\u003ccode\u003e0.14.0\u003c/code\u003e) release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eAll future JJWT major and minor versions (  \u003ccode\u003e0.14.0\u003c/code\u003e and later) will require Java 8 or later.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eThis \u003ccode\u003e0.13.0\u003c/code\u003e minor release has only one change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe previously private \u003ccode\u003eJacksonDeserializer(ObjectMapper objectMapper, Map\u0026lt;String, Class\u0026lt;?\u0026gt;\u0026gt; claimTypeMap)\u003c/code\u003e constructor is now \u003ccode\u003epublic\u003c/code\u003e for those that want register a claims\ntype converter on their own specified \u003ccode\u003eObjectMapper\u003c/code\u003e instance.  See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/914\"\u003eIssue 914\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e0.12.7\u003c/h3\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdds a new Maven BOM, useful for multi-module projects. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/967\"\u003eIssue 967\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAllows the \u003ccode\u003eJwtParserBuilder\u003c/code\u003e to have empty nested algorithm collections, effectively disabling the parser's associated feature:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEmptying the \u003ccode\u003ezip()\u003c/code\u003e nested collection disables JWT decompression.\u003c/li\u003e\n\u003cli\u003eEmptying the \u003ccode\u003esig()\u003c/code\u003e nested collection disables JWS mac/signature verification (i.e. all JWSs will be unsupported/rejected).\u003c/li\u003e\n\u003cli\u003eEmptying either the \u003ccode\u003eenc()\u003c/code\u003e or \u003ccode\u003ekey()\u003c/code\u003e nested collections disables JWE decryption (i.e. all JWEs will be unsupported/rejected)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/996\"\u003eIssue 996\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixes \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/961\"\u003ebug 961\u003c/a\u003e where \u003ccode\u003eJwtParserBuilder\u003c/code\u003e nested collection builders were not correctly replacing algorithms with the same id.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eEnsures a \u003ccode\u003eJwkSet\u003c/code\u003e's \u003ccode\u003ekeys\u003c/code\u003e collection is no longer entirely secret/redacted by default.  This was an overzealous default that was unnecessarily restrictive; the \u003ccode\u003ekeys\u003c/code\u003e collection itself should always be public, and each individual key within should determine which fields should be redacted when printed. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/976\"\u003eIssue 976\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImproves performance slightly by ensuring all \u003ccode\u003ejjwt-api\u003c/code\u003e utility methods that create \u003ccode\u003e*Builder\u003c/code\u003e instances (\u003ccode\u003eJwts.builder()\u003c/code\u003e, \u003ccode\u003eJwts.parserBuilder()\u003c/code\u003e, \u003ccode\u003eJwks.builder()\u003c/code\u003e, etc) no longer use reflection.\u003c/p\u003e\n\u003cp\u003eInstead,\u003ccode\u003estatic\u003c/code\u003e factories are created via reflection only once during initial \u003ccode\u003ejjwt-api\u003c/code\u003e classloading, and then \u003ccode\u003e*Builder\u003c/code\u003es are created via standard instantiation using the \u003ccode\u003enew\u003c/code\u003e operator thereafter.  This also benefits certain environments that may not have ideal \u003ccode\u003eClassLoader\u003c/code\u003e implementations (e.g. Tomcat in some cases).\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNOTE: because this changes which classes are loaded via reflection, any environments that must explicitly reference reflective class names (e.g. GraalVM applications) will need to be updated to reflect the new factory class names\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/988\"\u003eIssue 988\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the Gson dependency to \u003ccode\u003e2.11.0\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the BouncyCastle dependency to \u003ccode\u003e1.78.1\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e0.12.6\u003c/h3\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEnsures that after successful JWS signature verification, an application-configured Base64Url \u003ccode\u003eDecoder\u003c/code\u003e output is\nused to construct a \u003ccode\u003eJws\u003c/code\u003e instance (instead of JJWT's default decoder). See\n\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/947\"\u003eIssue 947\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eFixes a decompression memory leak in concurrent/multi-threaded environments introduced in 0.12.0 when decompressing JWTs with a \u003ccode\u003ezip\u003c/code\u003e header of \u003ccode\u003eGZIP\u003c/code\u003e. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/949\"\u003eIssue 949\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eUpgrades BouncyCastle to 1.78 via \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/941\"\u003ePR 941\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eEnsures that a \u003ccode\u003eJwkSet\u003c/code\u003e's \u003ccode\u003ekeys\u003c/code\u003e list member is no longer considered secret and is not redacted by default. However, each individual JWK element within the \u003ccode\u003ekeys\u003c/code\u003e list may still have \u003ca href=\"https://github.com/jwtk/jjwt?tab=readme-ov-file#jwk-tostring-safety\"\u003eredacted private or secret members\u003c/a\u003e as expected. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/976\"\u003eIssue 976\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e0.12.5\u003c/h3\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEnsures that builders' \u003ccode\u003eNestedCollection\u003c/code\u003e changes are applied to the collection immediately as mutation methods are called, no longer\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/a757addce04f6b6d8086beeee8dafcf670550a5b\"\u003e\u003ccode\u003ea757add\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare release 0.13.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/e357463c59cf62c1f70503ac0102d10efcdfc37d\"\u003e\u003ccode\u003ee357463\u003c/code\u003e\u003c/a\u003e Preparing for the 0.13.0 release.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/b6f8cb82a9c2e9817d842bfe72d2c8fb03124342\"\u003e\u003ccode\u003eb6f8cb8\u003c/code\u003e\u003c/a\u003e Made constructor public to allow users their own objectMapper instance (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/972\"\u003e#972\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/03f088a4eb774bae2403c428aa885a12d3afde14\"\u003e\u003ccode\u003e03f088a\u003c/code\u003e\u003c/a\u003e Bumping development version to 0.13.0-SNAPSHOT (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1014\"\u003e#1014\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/3f2697f854bedebe63e9eddb8c596f76086d11ca\"\u003e\u003ccode\u003e3f2697f\u003c/code\u003e\u003c/a\u003e Release 0.12.7 (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1012\"\u003e#1012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/efed1cf56f9b9715e60eaac7fda6b2c4b62410b9\"\u003e\u003ccode\u003eefed1cf\u003c/code\u003e\u003c/a\u003e Updated 0.12.7 change list\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/ca27b122b7f44f3bdd4cd4f636d084f38cc3b3c8\"\u003e\u003ccode\u003eca27b12\u003c/code\u003e\u003c/a\u003e Resolves \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1010\"\u003e#1010\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1011\"\u003e#1011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/55c7b9adef88328f59534f232060830c34f25478\"\u003e\u003ccode\u003e55c7b9a\u003c/code\u003e\u003c/a\u003e Resolves \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/771\"\u003e#771\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1009\"\u003e#1009\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/6e9c6a5a825c5ec38f90006f48cc1f8640a6d82e\"\u003e\u003ccode\u003e6e9c6a5\u003c/code\u003e\u003c/a\u003e Bump org.bouncycastle:bcpkix-jdk18on from 1.78 to 1.78.1 (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1008\"\u003e#1008\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/7ec7dd1a19a38a1829903f88b9512697bfb7be3c\"\u003e\u003ccode\u003e7ec7dd1\u003c/code\u003e\u003c/a\u003e Enable JwtParser empty nested algorithm collections. (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1007\"\u003e#1007\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.11.5...0.13.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `io.jsonwebtoken:jjwt-impl` from 0.11.5 to 0.13.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jwtk/jjwt/releases\"\u003eio.jsonwebtoken:jjwt-impl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.13.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eThis is the last minor JJWT release branch that will support Java 7\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eAny necessary emergency bug fixes will be fixed in subsequent \u003ccode\u003e0.13.x\u003c/code\u003e patch releases, but all new development, including \u003ca href=\"https://github.com/jwtk/jjwt/issues?q=is%3Aissue%20label%3Ajdk8\"\u003eJava 8 compatible changes\u003c/a\u003e, will be in the next minor (\u003ccode\u003e0.14.0\u003c/code\u003e) release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eAll future JJWT major and minor versions (  \u003ccode\u003e0.14.0\u003c/code\u003e and later) will require Java 8 or later.\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eThis release contains a single change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe previously private \u003ccode\u003eJacksonDeserializer(ObjectMapper objectMapper, Map\u0026lt;String, Class\u0026lt;?\u0026gt;\u0026gt; claimTypeMap)\u003c/code\u003e constructor is now \u003ccode\u003epublic\u003c/code\u003e for those that want register a claims  type converter on their own specified \u003ccode\u003eObjectMapper\u003c/code\u003e instance. Thank you to \u003ca href=\"https://github.com/kesrishubham2510\"\u003e\u003ccode\u003e@​kesrishubham2510\u003c/code\u003e\u003c/a\u003e for PR \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/972\"\u003e#972\u003c/a\u003e. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/914\"\u003eIssue 914\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.12.7...0.13.0\"\u003ehttps://github.com/jwtk/jjwt/compare/0.12.7...0.13.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.12.7\u003c/h2\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdds a new Maven BOM! This is useful for multi-module projects. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/967\"\u003eIssue 967\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAllows the \u003ccode\u003eJwtParserBuilder\u003c/code\u003e to have empty nested algorithm collections, effectively disabling the parser's associated feature:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEmptying the \u003ccode\u003ezip()\u003c/code\u003e nested collection disables JWT decompression.\u003c/li\u003e\n\u003cli\u003eEmptying the \u003ccode\u003esig()\u003c/code\u003e nested collection disables JWS mac/signature verification (i.e. all JWSs will be unsupported/rejected).\u003c/li\u003e\n\u003cli\u003eEmptying either the \u003ccode\u003eenc()\u003c/code\u003e or \u003ccode\u003ekey()\u003c/code\u003e nested collections disables JWE decryption (i.e. all JWEs will be unsupported/rejected)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/996\"\u003eIssue 996\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixes \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/961\"\u003ebug 961\u003c/a\u003e where \u003ccode\u003eJwtParserBuilder\u003c/code\u003e nested collection builders were not correctly replacing algorithms with the same id.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eEnsures a \u003ccode\u003eJwkSet\u003c/code\u003e's \u003ccode\u003ekeys\u003c/code\u003e collection is no longer entirely secret/redacted by default.  This was an overzealous default that was unnecessarily restrictive; the \u003ccode\u003ekeys\u003c/code\u003e collection itself should always be public, and each individual key within should determine which fields should be redacted when printed. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/976\"\u003eIssue 976\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImproves performance slightly by ensuring all \u003ccode\u003ejjwt-api\u003c/code\u003e utility methods that create \u003ccode\u003e*Builder\u003c/code\u003e instances (\u003ccode\u003eJwts.builder()\u003c/code\u003e, \u003ccode\u003eJwts.parserBuilder()\u003c/code\u003e, \u003ccode\u003eJwks.builder()\u003c/code\u003e, etc) no longer use reflection.\u003c/p\u003e\n\u003cp\u003eInstead,\u003ccode\u003estatic\u003c/code\u003e factories are created via reflection only once during initial \u003ccode\u003ejjwt-api\u003c/code\u003e classloading, and then \u003ccode\u003e*Builder\u003c/code\u003es are created via standard instantiation using the \u003ccode\u003enew\u003c/code\u003e operator thereafter.  This also benefits certain environments that may not have ideal \u003ccode\u003eClassLoader\u003c/code\u003e implementations (e.g. Tomcat in some cases).\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNOTE: because this changes which classes are loaded via reflection, any environments that must explicitly reference reflective class names (e.g. GraalVM applications) will need to be updated to reflect the new factory class names\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/988\"\u003eIssue 988\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the Gson dependency to \u003ccode\u003e2.11.0\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the BouncyCastle dependency to \u003ccode\u003e1.78.1\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigpwned\"\u003e\u003ccode\u003e@​sigpwned\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/968\"\u003ejwtk/jjwt#968\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TheMrMilchmann\"\u003e\u003ccode\u003e@​TheMrMilchmann\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/979\"\u003ejwtk/jjwt#979\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/atanasg\"\u003e\u003ccode\u003e@​atanasg\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/974\"\u003ejwtk/jjwt#974\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.12.6...0.12.7\"\u003ehttps://github.com/jwtk/jjwt/compare/0.12.6...0.12.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.12.6\u003c/h2\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEnsures that after successful JWS signature verification, an application-configured Base64Url \u003ccode\u003eDecoder\u003c/code\u003e output is\nused to construct a \u003ccode\u003eJws\u003c/code\u003e instance (instead of JJWT's default decoder). See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/947\"\u003ejwtk/jjwt#947\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jwtk/jjwt/blob/main/CHANGELOG.md\"\u003eio.jsonwebtoken:jjwt-impl's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e0.13.0\u003c/h3\u003e\n\u003cp\u003eThis is the last minor JJWT release branch that will support Java 7. Any necessary emergency bug fixes will be fixed in subsequent \u003ccode\u003e0.13.x\u003c/code\u003e patch releases, but all new development, including Java 8 compatible changes, will be in the next minor (\u003ccode\u003e0.14.0\u003c/code\u003e) release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eAll future JJWT major and minor versions (  \u003ccode\u003e0.14.0\u003c/code\u003e and later) will require Java 8 or later.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eThis \u003ccode\u003e0.13.0\u003c/code\u003e minor release has only one change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe previously private \u003ccode\u003eJacksonDeserializer(ObjectMapper objectMapper, Map\u0026lt;String, Class\u0026lt;?\u0026gt;\u0026gt; claimTypeMap)\u003c/code\u003e constructor is now \u003ccode\u003epublic\u003c/code\u003e for those that want register a claims\ntype converter on their own specified \u003ccode\u003eObjectMapper\u003c/code\u003e instance.  See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/914\"\u003eIssue 914\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e0.12.7\u003c/h3\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdds a new Maven BOM, useful for multi-module projects. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/967\"\u003eIssue 967\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAllows the \u003ccode\u003eJwtParserBuilder\u003c/code\u003e to have empty nested algorithm collections, effectively disabling the parser's associated feature:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEmptying the \u003ccode\u003ezip()\u003c/code\u003e nested collection disables JWT decompression.\u003c/li\u003e\n\u003cli\u003eEmptying the \u003ccode\u003esig()\u003c/code\u003e nested collection disables JWS mac/signature verification (i.e. all JWSs will be unsupported/rejected).\u003c/li\u003e\n\u003cli\u003eEmptying either the \u003ccode\u003eenc()\u003c/code\u003e or \u003ccode\u003ekey()\u003c/code\u003e nested collections disables JWE decryption (i.e. all JWEs will be unsupported/rejected)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/996\"\u003eIssue 996\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixes \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/961\"\u003ebug 961\u003c/a\u003e where \u003ccode\u003eJwtParserBuilder\u003c/code\u003e nested collection builders were not correctly replacing algorithms with the same id.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eEnsures a \u003ccode\u003eJwkSet\u003c/code\u003e's \u003ccode\u003ekeys\u003c/code\u003e collection is no longer entirely secret/redacted by default.  This was an overzealous default that was unnecessarily restrictive; the \u003ccode\u003ekeys\u003c/code\u003e collection itself should always be public, and each individual key within should determine which fields should be redacted when printed. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/976\"\u003eIssue 976\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImproves performance slightly by ensuring all \u003ccode\u003ejjwt-api\u003c/code\u003e utility methods that create \u003ccode\u003e*Builder\u003c/code\u003e instances (\u003ccode\u003eJwts.builder()\u003c/code\u003e, \u003ccode\u003eJwts.parserBuilder()\u003c/code\u003e, \u003ccode\u003eJwks.builder()\u003c/code\u003e, etc) no longer use reflection.\u003c/p\u003e\n\u003cp\u003eInstead,\u003ccode\u003estatic\u003c/code\u003e factories are created via reflection only once during initial \u003ccode\u003ejjwt-api\u003c/code\u003e classloading, and then \u003ccode\u003e*Builder\u003c/code\u003es are created via standard instantiation using the \u003ccode\u003enew\u003c/code\u003e operator thereafter.  This also benefits certain environments that may not have ideal \u003ccode\u003eClassLoader\u003c/code\u003e implementations (e.g. Tomcat in some cases).\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNOTE: because this changes which classes are loaded via reflection, any environments that must explicitly reference reflective class names (e.g. GraalVM applications) will need to be updated to reflect the new factory class names\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/988\"\u003eIssue 988\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the Gson dependency to \u003ccode\u003e2.11.0\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the BouncyCastle dependency to \u003ccode\u003e1.78.1\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e0.12.6\u003c/h3\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEnsures that after successful JWS signature verification, an application-configured Base64Url \u003ccode\u003eDecoder\u003c/code\u003e output is\nused to construct a \u003ccode\u003eJws\u003c/code\u003e instance (instead of JJWT's default decoder). See\n\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/947\"\u003eIssue 947\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eFixes a decompression memory leak in concurrent/multi-threaded environments introduced in 0.12.0 when decompressing JWTs with a \u003ccode\u003ezip\u003c/code\u003e header of \u003ccode\u003eGZIP\u003c/code\u003e. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/949\"\u003eIssue 949\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eUpgrades BouncyCastle to 1.78 via \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/941\"\u003ePR 941\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eEnsures that a \u003ccode\u003eJwkSet\u003c/code\u003e's \u003ccode\u003ekeys\u003c/code\u003e list member is no longer considered secret and is not redacted by default. However, each individual JWK element within the \u003ccode\u003ekeys\u003c/code\u003e list may still have \u003ca href=\"https://github.com/jwtk/jjwt?tab=readme-ov-file#jwk-tostring-safety\"\u003eredacted private or secret members\u003c/a\u003e as expected. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/976\"\u003eIssue 976\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e0.12.5\u003c/h3\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEnsures that builders' \u003ccode\u003eNestedCollection\u003c/code\u003e changes are applied to the collection immediately as mutation methods are called, no longer\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/a757addce04f6b6d8086beeee8dafcf670550a5b\"\u003e\u003ccode\u003ea757add\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare release 0.13.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/e357463c59cf62c1f70503ac0102d10efcdfc37d\"\u003e\u003ccode\u003ee357463\u003c/code\u003e\u003c/a\u003e Preparing for the 0.13.0 release.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/b6f8cb82a9c2e9817d842bfe72d2c8fb03124342\"\u003e\u003ccode\u003eb6f8cb8\u003c/code\u003e\u003c/a\u003e Made constructor public to allow users their own objectMapper instance (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/972\"\u003e#972\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/03f088a4eb774bae2403c428aa885a12d3afde14\"\u003e\u003ccode\u003e03f088a\u003c/code\u003e\u003c/a\u003e Bumping development version to 0.13.0-SNAPSHOT (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1014\"\u003e#1014\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/3f2697f854bedebe63e9eddb8c596f76086d11ca\"\u003e\u003ccode\u003e3f2697f\u003c/code\u003e\u003c/a\u003e Release 0.12.7 (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1012\"\u003e#1012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/efed1cf56f9b9715e60eaac7fda6b2c4b62410b9\"\u003e\u003ccode\u003eefed1cf\u003c/code\u003e\u003c/a\u003e Updated 0.12.7 change list\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/ca27b122b7f44f3bdd4cd4f636d084f38cc3b3c8\"\u003e\u003ccode\u003eca27b12\u003c/code\u003e\u003c/a\u003e Resolves \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1010\"\u003e#1010\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1011\"\u003e#1011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/55c7b9adef88328f59534f232060830c34f25478\"\u003e\u003ccode\u003e55c7b9a\u003c/code\u003e\u003c/a\u003e Resolves \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/771\"\u003e#771\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1009\"\u003e#1009\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/6e9c6a5a825c5ec38f90006f48cc1f8640a6d82e\"\u003e\u003ccode\u003e6e9c6a5\u003c/code\u003e\u003c/a\u003e Bump org.bouncycastle:bcpkix-jdk18on from 1.78 to 1.78.1 (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1008\"\u003e#1008\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/7ec7dd1a19a38a1829903f88b9512697bfb7be3c\"\u003e\u003ccode\u003e7ec7dd1\u003c/code\u003e\u003c/a\u003e Enable JwtParser empty nested algorithm collections. (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1007\"\u003e#1007\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.11.5...0.13.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `io.jsonwebtoken:jjwt-jackson` from 0.11.5 to 0.13.0\n\nUpdates `org.apache.maven.plugins:maven-compiler-plugin` from 3.13.0 to 3.15.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/apache/maven-compiler-plugin/releases\"\u003eorg.apache.maven.plugins:maven-compiler-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.15.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix Java 25 compatibility during integration tests (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/1020\"\u003e#1020\u003c/a\u003e) \u003ca href=\"https://github.com/desruisseaux\"\u003e\u003ccode\u003e@​desruisseaux\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://issues.apache.org/jira/browse/MCOMPILER-540\"\u003e[MCOMPILER-540]\u003c/a\u003e - useIncrementalCompilation=false may add generated sources to the sources list (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/192\"\u003e#192\u003c/a\u003e) \u003ca href=\"https://github.com/mensinda\"\u003e\u003ccode\u003e@​mensinda\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e👻 Maintenance\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump org.apache.maven.plugins:maven-plugins from 45 to 46 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/1015\"\u003e#1015\u003c/a\u003e) \u003ca href=\"https://github.com/slachiewicz\"\u003e\u003ccode\u003e@​slachiewicz\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove declaration of \u0026quot;plexus-snapshots\u0026quot; repository (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/1010\"\u003e#1010\u003c/a\u003e) \u003ca href=\"https://github.com/desruisseaux\"\u003e\u003ccode\u003e@​desruisseaux\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWorks only with Maven 4.0.0 rc4 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/996\"\u003e#996\u003c/a\u003e) \u003ca href=\"https://github.com/slachiewicz\"\u003e\u003ccode\u003e@​slachiewicz\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable Java 25 and Maven 4 in CI (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/975\"\u003e#975\u003c/a\u003e) \u003ca href=\"https://github.com/slachiewicz\"\u003e\u003ccode\u003e@​slachiewicz\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Dependency updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.4.0 to 3.5.0 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/1016\"\u003e#1016\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump plexusCompilerVersion from 2.16.1 to 2.16.2 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/1021\"\u003e#1021\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven.plugins:maven-plugins from 46 to 47 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/1019\"\u003e#1019\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.plexus:plexus-java from 1.5.1 to 1.5.2 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/1008\"\u003e#1008\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.ow2.asm:asm from 9.9 to 9.9.1 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/1005\"\u003e#1005\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mavenVersion from 3.9.11 to 3.9.12 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/1007\"\u003e#1007\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump maven-plugin-testing-harness to 3.4.0 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/1001\"\u003e#1001\u003c/a\u003e) \u003ca href=\"https://github.com/slawekjaranowski\"\u003e\u003ccode\u003e@​slawekjaranowski\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump plexusCompilerVersion from 2.16.0 to 2.16.1 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/999\"\u003e#999\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.plexus:plexus-java from 1.5.0 to 1.5.1 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/993\"\u003e#993\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump plexusCompilerVersion from 2.15.0 to 2.16.0 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/992\"\u003e#992\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.ow2.asm:asm from 9.8 to 9.9 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/981\"\u003e#981\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.14.1\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e🚀 New features and improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImprove DeltaList behavior for large projects (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/335\"\u003e#335\u003c/a\u003e) \u003ca href=\"https://github.com/gsmet\"\u003e\u003ccode\u003e@​gsmet\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAllow to not use --module-version for the Java compiler (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/331\"\u003e#331\u003c/a\u003e) \u003ca href=\"https://github.com/pzygielo\"\u003e\u003ccode\u003e@​pzygielo\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd generatedSourcesPath back to the maven project (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/312\"\u003e#312\u003c/a\u003e) \u003ca href=\"https://github.com/mensinda\"\u003e\u003ccode\u003e@​mensinda\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://issues.apache.org/jira/browse/MCOMPILER-538\"\u003e[MCOMPILER-538]\u003c/a\u003e - Do not add target/generated-sources/annotations to the source roots (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/191\"\u003e#191\u003c/a\u003e) \u003ca href=\"https://github.com/mensinda\"\u003e\u003ccode\u003e@​mensinda\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Dependency updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEnforce asm version used here, to not depend on brittle transitive (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/964\"\u003e#964\u003c/a\u003e) \u003ca href=\"https://github.com/olamy\"\u003e\u003ccode\u003e@​olamy\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mavenVersion from 3.9.10 to 3.9.11 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/952\"\u003e#952\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven.plugins:maven-plugins from 44 to 45 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/935\"\u003e#935\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mavenVersion from 3.9.9 to 3.9.10 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/336\"\u003e#336\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.plexus:plexus-java from 1.4.0 to 1.5.0 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/324\"\u003e#324\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven.plugins:maven-plugins from 43 to 44 (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/pull/316\"\u003e#316\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.14.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-compiler-plugin/commit/9290cb337f199673e02b6beac0fba37d8066d72c\"\u003e\u003ccode\u003e9290cb3\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare release maven-compiler-plugin-3.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-compiler-plugin/commit/3657d40307e88d760e00bce785ad9ec70db33f95\"\u003e\u003ccode\u003e3657d40\u003c/code\u003e\u003c/a\u003e Bump org.apache.maven.plugin-testing:maven-plugin-testing-harness\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-compiler-plugin/commit/7bbf805c330756ea2f79c467657e42b0d27503e2\"\u003e\u003ccode\u003e7bbf805\u003c/code\u003e\u003c/a\u003e Bump plexusCompilerVersion from 2.16.1 to 2.16.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-compiler-plugin/commit/57fa93829b58ea293e978d1233c2f4b3cda83c17\"\u003e\u003ccode\u003e57fa938\u003c/code\u003e\u003c/a\u003e Bump org.apache.maven.plugins:maven-plugins from 46 to 47\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-compiler-plugin/commit/385e3f2809802c6908a36e8c17ef35ed7c869168\"\u003e\u003ccode\u003e385e3f2\u003c/code\u003e\u003c/a\u003e Fix Java 25 compatibility during integration tests (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/issues/1020\"\u003e#1020\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-compiler-plugin/commit/6b34423a7f1ad7db000fc5d64aa54052d5d88aa2\"\u003e\u003ccode\u003e6b34423\u003c/code\u003e\u003c/a\u003e Bump org.apache.maven.plugins:maven-plugins from 45 to 46\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-compiler-plugin/commit/aaeb9c6079c6ed012d71e660465d99ee1806a12b\"\u003e\u003ccode\u003eaaeb9c6\u003c/code\u003e\u003c/a\u003e [MCOMPILER-540] useIncrementalCompilation=false may add generated sources to ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-compiler-plugin/commit/6e3db9d2c13c7309f12e9dadc8eac985b4426554\"\u003e\u003ccode\u003e6e3db9d\u003c/code\u003e\u003c/a\u003e Bump org.codehaus.plexus:plexus-java from 1.5.1 to 1.5.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-compiler-plugin/commit/0fe9b843f9065fc40eebfddc7f5e0a479cc76c6d\"\u003e\u003ccode\u003e0fe9b84\u003c/code\u003e\u003c/a\u003e Remove declaration of \u0026quot;plexus-snapshots\u0026quot; repository (\u003ca href=\"https://redirect.github.com/apache/maven-compiler-plugin/issues/1010\"\u003e#1010\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-compiler-plugin/commit/35f68008c4025f7b7eb669303d315197b03cd5b4\"\u003e\u003ccode\u003e35f6800\u003c/code\u003e\u003c/a\u003e Bump org.ow2.asm:asm from 9.9 to 9.9.1\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/apache/maven-compiler-plugin/compare/maven-compiler-plugin-3.13.0...maven-compiler-plugin-3.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 4.0.6 to 4.1.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cp\u003eFull \u003ca href=\"https://github.com/spring-projects/spring-boot/wiki/Spring-Boot-4.1-Release-Notes\"\u003erelease notes for Spring Boot 4.1\u003c/a\u003e are available on the wiki.\u003c/p\u003e\n\u003ch2\u003e:star: New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd public constructor to InvalidConfigurationPropertyValueException that accepts a cause \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50211\"\u003e#50211\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReduce memory consumption when repeatedly calling WritableJson.toByteArray \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49428\"\u003e#49428\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMailSender auto-configuration does not enable hostname verification \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50747\"\u003e#50747\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eArtemis auto-configuration uses a predictable default location for the embedded broker's data \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50745\"\u003e#50745\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEmbedded LDAP SSL should not be enabled when its bundle is empty \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50700\"\u003e#50700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eInetAddressFilter.externalAddresses does not exclude special purpose addresses from RFC 6890 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50668\"\u003e#50668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNullPointerException in reactor-netty SniProvider and unmapped SSL bundle with RSocket \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50645\"\u003e#50645\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSSL should not be enabled when a SSL bundle is overridden to an empty string \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50635\"\u003e#50635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTest auto-configuration no longer integrates Spring Security with HtmlUnitDriver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50633\"\u003e#50633\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eConfiguration property metadata includes incorrect class references \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50632\"\u003e#50632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support does not restore thread interrupt flag when catching InterruptedException \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50618\"\u003e#50618\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRabbitProperties enables SSL even when spring.rabbitmq.ssl.bundle is overridden to an empty string \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50612\"\u003e#50612\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNullPointerException in reactor-netty SniProvider when SSL bundle uses client-auth or server truststore without server-name-bundles \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50610\"\u003e#50610\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpringJtaPlatform should have been deprecated since 4.1.0-M3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50592\"\u003e#50592\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLayer written outside the output location of '//' exception is thrown when using extract layers in root directory \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50510\"\u003e#50510\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eConfigurationPropertiesReportEndpoint exposes AOP proxy internals \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50417\"\u003e#50417\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCreated StackTracePrinter instances have no access to the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50414\"\u003e#50414\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMappingsEndpoint reports the context's own ID as parentId when a parent exists \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50412\"\u003e#50412\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBuildpack module does not validate long-to-int casts \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50410\"\u003e#50410\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGradle gRPC support fails if protobuf-java dependency is used instead of protobuf-java-util \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50405\"\u003e#50405\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGraphQL WebSocket support does not configure allowed origins \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50394\"\u003e#50394\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Boot Loader Does Not Support RSA and EC Signed Jars \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50298\"\u003e#50298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMeter registries are not removed from the global registry when the context is closed \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50287\"\u003e#50287\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDataSourceBuilder cannot derive a DataSource from a lazy connection proxy \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50271\"\u003e#50271\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNullable annotations from AbstractErrorController.getErrorAttributes are not aligned with implementation \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50266\"\u003e#50266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBean definitions can be added with an initializer before setAllowBeanDefinitionOverriding is called \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50264\"\u003e#50264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEndpointRequest links matcher unnecessarily matches HTTP methods other than GET  \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50261\"\u003e#50261\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eActuator's '/cloudfoundryapplication' endpoint does not work if restrictive CORS configuration is provided using a bean named corsConfigurationSource \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50258\"\u003e#50258\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThreadPoolTaskScheduleBuilder unnecessarily loses precision when configuring await termination time \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50234\"\u003e#50234\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNimbusJwtDecoder silently accepts unknown values for spring.security.oauth2.resourceserver.jwt.jws-algorithms \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50228\"\u003e#50228\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMissing dependency management for spring-boot-web-server-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50224\"\u003e#50224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Batch support for MongoDB modules are not included in dependency management \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50223\"\u003e#50223\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApply HTML escaping to timestamp attribute in Whitelabel error page \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50216\"\u003e#50216\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGrpcServerHealthScheduler is not started in servlet environments \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50209\"\u003e#50209\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSetting server.servlet.session.cookie.partitioned=true has no effect when using Tomcat \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50204\"\u003e#50204\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix reference to Gradle documentation for module replacement \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50647\"\u003e#50647\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument SSL reloading with Let's Encrypt \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50630\"\u003e#50630\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove the use of Optional from Data Neo4j repository examples \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50622\"\u003e#50622\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix typos in documentation \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50620\"\u003e#50620\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ac2cfe03538b87a0dc9d2619ed52a4c901eaea54\"\u003e\u003ccode\u003eac2cfe0\u003c/code\u003e\u003c/a\u003e Release v4.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/1a5815cf3183a0c9493cece8ba550a6e8b125d67\"\u003e\u003ccode\u003e1a5815c\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Batch 6.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/a8364ff9c2a0ca88541cc153f032089e063b797c\"\u003e\u003ccode\u003ea8364ff\u003c/code\u003e\u003c/a\u003e Merge branch '4.0.x'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9755ff29e7ce3a8ac4574e5b452bdfe1053718b1\"\u003e\u003ccode\u003e9755ff2\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Batch 6.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/6a6dedc4354cbafadaf8aab2803fc3acd7e6b8de\"\u003e\u003ccode\u003e6a6dedc\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Integration 7.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/db7b2b9fb0b3c623d707f2627f832b4dd5f2eb8c\"\u003e\u003ccode\u003edb7b2b9\u003c/code\u003e\u003c/a\u003e Merge branch '4.0.x'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/d549d077c03add0421464fcd0248bd8b76b41973\"\u003e\u003ccode\u003ed549d07\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Integration 7.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4d9e463dc3fefea2b73dcfbb15b4ced6b69dbaf9\"\u003e\u003ccode\u003e4d9e463\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/b0686478a71cceb977dc1ff5b4e69ef5eb052fcf\"\u003e\u003ccode\u003eb068647\u003c/code\u003e\u003c/a\u003e Upgrade to Spring Integration 6.5.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/198af995dc03a09583c61bcd0b8ffda341055feb\"\u003e\u003ccode\u003e198af99\u003c/code\u003e\u003c/a\u003e Merge branch '4.0.x'\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.6...v4.1.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.jacoco:jacoco-maven-plugin` from 0.8.14 to 0.8.15\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jacoco/jacoco/releases\"\u003eorg.jacoco:jacoco-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.8.15\u003c/h2\u003e\n\u003ch2\u003eNew Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eJaCoCo now officially supports Java 26 (GitHub \u003ca href=\"https://redirect.github.com/jacoco/jacoco/issues/2076\"\u003e#2076\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eExperimental support for Java 27 class files (GitHub \u003ca href=\"https://redirect.github.com/jacoco/jacoco/issues/2004\"\u003e#2004\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eCompatibility methods generated by Kotlin compiler for functions defined in interfaces are filtered out during generation of report (GitHub \u003ca href=\"https://redirect.github.com/jacoco/jacoco/issues/1905\"\u003e#1905\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eCompatibility methods generated by Kotlin compiler for exposed b...\n\n_Description has been truncated_","html_url":"https://github.com/dhbw-softwareengineering/caesars-gambit/pull/96","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/dhbw-softwareengineering%2Fcaesars-gambit/issues/96","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/96/packages"}},{"old_version":"3.5.11","new_version":"3.5.14","update_type":"patch","path":null,"pr_created_at":"2026-05-19T05:53:56.000Z","version_change":"3.5.11 → 3.5.14","issue":{"uuid":"4474783958","node_id":"PR_kwDOP91PzM7c72u6","number":39,"state":"closed","title":"Bump the all-maven-dependencies group across 2 directories with 7 updates","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-20T07:21:47.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-19T05:53:56.000Z","updated_at":"2026-05-20T07:21:49.000Z","time_to_close":91671,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"all-maven-dependencies","update_count":7,"packages":[{"name":"com.sap.cds:cds-services-bom","old_version":"4.8.0","new_version":"4.9.0"},{"name":"com.sap.cds:cds-maven-plugin","old_version":"4.8.0","new_version":"4.9.0"},{"name":"org.springframework.boot:spring-boot-dependencies","old_version":"3.5.11","new_version":"3.5.14","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"3.5.11","new_version":"3.5.14","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"com.sap.cloud.security:java-bom","old_version":"3.6.8","new_version":"4.0.5","repository_url":"https://github.com/SAP/cloud-security-xsuaa-integration"},{"name":"org.apache.maven.plugins:maven-enforcer-plugin","old_version":"3.6.2","new_version":"3.6.3","repository_url":"https://github.com/apache/maven-enforcer"},{"name":"com.diffplug.spotless:spotless-maven-plugin","old_version":"3.3.0","new_version":"3.5.1","repository_url":"https://github.com/diffplug/spotless"}],"path":null,"ecosystem":"maven"},"body":"Bumps the all-maven-dependencies group with 7 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| com.sap.cds:cds-services-bom | `4.8.0` | `4.9.0` |\n| com.sap.cds:cds-maven-plugin | `4.8.0` | `4.9.0` |\n| [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot) | `3.5.11` | `3.5.14` |\n| [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) | `3.5.11` | `3.5.14` |\n| [com.sap.cloud.security:java-bom](https://github.com/SAP/cloud-security-xsuaa-integration) | `3.6.8` | `4.0.5` |\n| [org.apache.maven.plugins:maven-enforcer-plugin](https://github.com/apache/maven-enforcer) | `3.6.2` | `3.6.3` |\n| [com.diffplug.spotless:spotless-maven-plugin](https://github.com/diffplug/spotless) | `3.3.0` | `3.5.1` |\n\nBumps the all-maven-dependencies group with 7 updates in the /srv directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| com.sap.cds:cds-maven-plugin | `4.8.0` | `4.9.0` |\n| com.sap.cds:cds-services-bom | `4.8.0` | `4.9.0` |\n| [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) | `3.5.11` | `3.5.14` |\n| [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot) | `3.5.11` | `3.5.14` |\n| [com.sap.cloud.security:java-bom](https://github.com/SAP/cloud-security-xsuaa-integration) | `3.6.8` | `4.0.5` |\n| [org.apache.maven.plugins:maven-enforcer-plugin](https://github.com/apache/maven-enforcer) | `3.6.2` | `3.6.3` |\n| [com.diffplug.spotless:spotless-maven-plugin](https://github.com/diffplug/spotless) | `3.3.0` | `3.5.1` |\n\n\nUpdates `com.sap.cds:cds-services-bom` from 4.8.0 to 4.9.0\n\nUpdates `com.sap.cds:cds-maven-plugin` from 4.8.0 to 4.9.0\n\nUpdates `org.springframework.boot:spring-boot-dependencies` from 3.5.11 to 3.5.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.14\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50173\"\u003e#50173\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50172\"\u003e#50172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50171\"\u003e#50171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50170\"\u003e#50170\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50169\"\u003e#50169\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50168\"\u003e#50168\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50035\"\u003e#50035\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50033\"\u003e#50033\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50021\"\u003e#50021\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50008\"\u003e#50008\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49942\"\u003e#49942\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49885\"\u003e#49885\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49865\"\u003e#49865\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49864\"\u003e#49864\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49863\"\u003e#49863\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49860\"\u003e#49860\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50092\"\u003e#50092\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50083\"\u003e#50083\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50023\"\u003e#50023\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50010\"\u003e#50010\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50007\"\u003e#50007\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49895\"\u003e#49895\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49835\"\u003e#49835\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Groovy 4.0.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49905\"\u003e#49905\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 6.6.49.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50140\"\u003e#50140\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50109\"\u003e#50109\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49907\"\u003e#49907\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jetty/jetty.project/releases/tag/jetty-12.0.34\"\u003eJetty 12.0.34\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49908\"\u003e#49908\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jOOQ/jOOQ/releases/tag/version-3.19.32\"\u003ejOOQ 3.19.32\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50110\"\u003e#50110\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Lombok 1.18.46 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50148\"\u003e#50148\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://mariadb.com/kb/en/mariadb-connector-j-3-5-8-release-notes\"\u003eMariaDB 3.5.8\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49909\"\u003e#49909\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/micrometer-metrics/micrometer/releases/tag/v1.15.11\"\u003eMicrometer 1.15.11\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49961\"\u003e#49961\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/micrometer-metrics/tracing/releases/tag/v1.5.11\"\u003eMicrometer Tracing 1.5.11\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49962\"\u003e#49962\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://dev.mysql.com/doc/relnotes/connector-j/en/news-9-7-0.html\"\u003eMySQL 9.7.0\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50161\"\u003e#50161\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Neo4j Java Driver 5.28.13 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50074\"\u003e#50074\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/reactor/reactor/releases/tag/2024.0.17\"\u003eReactor Bom 2024.0.17\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49963\"\u003e#49963\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-amqp/releases/tag/v3.2.10\"\u003eSpring AMQP 3.2.10\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49964\"\u003e#49964\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-authorization-server/releases/tag/1.5.7\"\u003eSpring Authorization Server 1.5.7\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49965\"\u003e#49965\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-data-bom/releases/tag/2025.0.11\"\u003eSpring Data Bom 2025.0.11\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49966\"\u003e#49966\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-framework/releases/tag/v6.2.18\"\u003eSpring Framework 6.2.18\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49967\"\u003e#49967\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-kafka/releases/tag/v3.3.15\"\u003eSpring Kafka 3.3.15\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50129\"\u003e#50129\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/7d7b3ac12735161f9c096ce6cb415bdd9fc4a0f4\"\u003e\u003ccode\u003e7d7b3ac\u003c/code\u003e\u003c/a\u003e Release v3.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f3b8eb0f2cd989dffe5dceefce80bde165328b31\"\u003e\u003ccode\u003ef3b8eb0\u003c/code\u003e\u003c/a\u003e Use SecureRandom in RandomValuePropertySource\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e22083a5684c3c65bcf2a9a90adcdecee6e85d50\"\u003e\u003ccode\u003ee22083a\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Cassandra\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/5ceb1a228932e35cc803d1c1fea68f0f984aaa90\"\u003e\u003ccode\u003e5ceb1a2\u003c/code\u003e\u003c/a\u003e Improve ApplicationTemp's temporary directory creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4b0862cc00815a47b22339d7eac7ddc3b6645bd4\"\u003e\u003ccode\u003e4b0862c\u003c/code\u003e\u003c/a\u003e Use constant-time comparison for remote DevTools secret\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e4febe2015d340ea9135437ee0659ea0f2260c31\"\u003e\u003ccode\u003ee4febe2\u003c/code\u003e\u003c/a\u003e Apply verify-hostname consistently\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/2c2ffe51c415f464fde6368fdd144b9551c3458c\"\u003e\u003ccode\u003e2c2ffe5\u003c/code\u003e\u003c/a\u003e Fix Windows test failure\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/0046a442f9ac5ae186359df575e68fab17d01646\"\u003e\u003ccode\u003e0046a44\u003c/code\u003e\u003c/a\u003e Protect against corrupt buildpack archives\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.5.11...v3.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 3.5.11 to 3.5.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.14\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50173\"\u003e#50173\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50172\"\u003e#50172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50171\"\u003e#50171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50170\"\u003e#50170\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50169\"\u003e#50169\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50168\"\u003e#50168\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50035\"\u003e#50035\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50033\"\u003e#50033\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50021\"\u003e#50021\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50008\"\u003e#50008\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49942\"\u003e#49942\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49885\"\u003e#49885\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49865\"\u003e#49865\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49864\"\u003e#49864\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49863\"\u003e#49863\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49860\"\u003e#49860\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50092\"\u003e#50092\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50083\"\u003e#50083\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50023\"\u003e#50023\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50010\"\u003e#50010\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50007\"\u003e#50007\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49895\"\u003e#49895\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49835\"\u003e#49835\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Groovy 4.0.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49905\"\u003e#49905\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 6.6.49.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50140\"\u003e#50140\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50109\"\u003e#50109\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49907\"\u003e#49907\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jetty/jetty.project/releases/tag/jetty-12.0.34\"\u003eJetty 12.0.34\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49908\"\u003e#49908\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jOOQ/jOOQ/releases/tag/version-3.19.32\"\u003ejOOQ 3.19.32\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50110\"\u003e#50110\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Lombok 1.18.46 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50148\"\u003e#50148\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://mariadb.com/kb/en/mariadb-connector-j-3-5-8-release-notes\"\u003eMariaDB 3.5.8\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49909\"\u003e#49909\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/micrometer-metrics/micrometer/releases/tag/v1.15.11\"\u003eMicrometer 1.15.11\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49961\"\u003e#49961\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/micrometer-metrics/tracing/releases/tag/v1.5.11\"\u003eMicrometer Tracing 1.5.11\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49962\"\u003e#49962\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://dev.mysql.com/doc/relnotes/connector-j/en/news-9-7-0.html\"\u003eMySQL 9.7.0\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50161\"\u003e#50161\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Neo4j Java Driver 5.28.13 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50074\"\u003e#50074\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/reactor/reactor/releases/tag/2024.0.17\"\u003eReactor Bom 2024.0.17\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49963\"\u003e#49963\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-amqp/releases/tag/v3.2.10\"\u003eSpring AMQP 3.2.10\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49964\"\u003e#49964\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-authorization-server/releases/tag/1.5.7\"\u003eSpring Authorization Server 1.5.7\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49965\"\u003e#49965\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-data-bom/releases/tag/2025.0.11\"\u003eSpring Data Bom 2025.0.11\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49966\"\u003e#49966\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-framework/releases/tag/v6.2.18\"\u003eSpring Framework 6.2.18\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49967\"\u003e#49967\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-kafka/releases/tag/v3.3.15\"\u003eSpring Kafka 3.3.15\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50129\"\u003e#50129\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/7d7b3ac12735161f9c096ce6cb415bdd9fc4a0f4\"\u003e\u003ccode\u003e7d7b3ac\u003c/code\u003e\u003c/a\u003e Release v3.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f3b8eb0f2cd989dffe5dceefce80bde165328b31\"\u003e\u003ccode\u003ef3b8eb0\u003c/code\u003e\u003c/a\u003e Use SecureRandom in RandomValuePropertySource\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e22083a5684c3c65bcf2a9a90adcdecee6e85d50\"\u003e\u003ccode\u003ee22083a\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Cassandra\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/5ceb1a228932e35cc803d1c1fea68f0f984aaa90\"\u003e\u003ccode\u003e5ceb1a2\u003c/code\u003e\u003c/a\u003e Improve ApplicationTemp's temporary directory creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4b0862cc00815a47b22339d7eac7ddc3b6645bd4\"\u003e\u003ccode\u003e4b0862c\u003c/code\u003e\u003c/a\u003e Use constant-time comparison for remote DevTools secret\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e4febe2015d340ea9135437ee0659ea0f2260c31\"\u003e\u003ccode\u003ee4febe2\u003c/code\u003e\u003c/a\u003e Apply verify-hostname consistently\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/2c2ffe51c415f464fde6368fdd144b9551c3458c\"\u003e\u003ccode\u003e2c2ffe5\u003c/code\u003e\u003c/a\u003e Fix Windows test failure\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/0046a442f9ac5ae186359df575e68fab17d01646\"\u003e\u003ccode\u003e0046a44\u003c/code\u003e\u003c/a\u003e Protect against corrupt buildpack archives\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.5.11...v3.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `com.sap.cloud.security:java-bom` from 3.6.8 to 4.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/SAP/cloud-security-xsuaa-integration/releases\"\u003ecom.sap.cloud.security:java-bom's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.0.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eRestore deprecated \u003ccode\u003eHttpClientFactory.services\u003c/code\u003e field and ServiceLoader-based factory discovery for backward compatibility\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eCustom \u003ccode\u003eHttpClientFactory\u003c/code\u003e implementations registered via \u003ccode\u003eMETA-INF/services\u003c/code\u003e are discovered again\u003c/li\u003e\n\u003cli\u003eA deprecation warning is logged when a custom factory is used, guiding users to migrate to \u003ccode\u003eSecurityHttpClientFactory\u003c/code\u003e with \u003ccode\u003eSecurityHttpClientProvider\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eToken services with default (no-arg) constructors continue to use the new \u003ccode\u003eSecurityHttpClientProvider\u003c/code\u003e internally\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix multi-tenant IAS token exchange by adding \u003ccode\u003eapp_tid\u003c/code\u003e parameter to the token exchange request in \u003ccode\u003eDefaultIdTokenExtension\u003c/code\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIn multi-tenant applications, IAS requires \u003ccode\u003eapp_tid\u003c/code\u003e in addition to \u003ccode\u003eclient_id\u003c/code\u003e to uniquely identify the application\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003eapp_tid\u003c/code\u003e is extracted from the incoming access token and included when present\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.0.4\u003c/h2\u003e\n\u003cp\u003eimprove domain validation handling\u003c/p\u003e\n\u003ch2\u003e4.0.3\u003c/h2\u003e\n\u003cp\u003eFix multi-tenant IAS token exchange to use token issuer URL instead of provider IAS URL from configuration in DefaultIdTokenExtension\u003c/p\u003e\n\u003ch2\u003e4.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix token exchange credential handling to use getClientIdentity() instead of manually checking for certificate vs client secret\u003c/li\u003e\n\u003cli\u003eAdd IAS certificate properties (certificate, key, credential-type, certurl) to IdentityServicesPropertySourceFactory to properly map X.509 credentials for IAS service bindings\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.0.1\u003c/h2\u003e\n\u003cp\u003eFix IAS token exchange to use \u003ccode\u003egetUrl()\u003c/code\u003e instead of \u003ccode\u003egetCertUrl()\u003c/code\u003e in \u003ccode\u003eDefaultIdTokenExtension\u003c/code\u003e\u003c/p\u003e\n\u003ch2\u003e4.0.0\u003c/h2\u003e\n\u003cp\u003eMajor release upgrading to Spring Boot 4.x and Jakarta EE 10. Spring Boot 3.x compatibility modules provided.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking Changes\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eFramework Upgrades:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eSpring Boot 3.x → 4.0.3\u003c/li\u003e\n\u003cli\u003eSpring Framework 6.x → 7.0.5\u003c/li\u003e\n\u003cli\u003eSpring Security 6.x → 7.0.3\u003c/li\u003e\n\u003cli\u003eJakarta Servlet API 6.0.0 → 6.1.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eToken Client HTTP Change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eNow uses Java 11 HttpClient by default (no Apache HttpClient dependency)\u003c/li\u003e\n\u003cli\u003eApache HttpClient 4 constructors deprecated (removed in 5.0.0)\u003c/li\u003e\n\u003cli\u003eCustom HTTP clients supported via SecurityHttpClientFactory\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eRemoved Modules:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003espring-xsuaa* → use spring-security or spring-security-3\u003c/li\u003e\n\u003cli\u003espring-security-compatibility → use spring-security-3\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eToken Client Spring Classes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eSpring-dependent classes moved to new token-client-spring module\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eNew Features\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eSpring Boot 3.x Compatibility:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003espring-security-3 - Core module for Spring Boot 3.5.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/SAP/cloud-security-services-integration-library/blob/main/CHANGELOG.md\"\u003ecom.sap.cloud.security:java-bom's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.0.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eRestore deprecated \u003ccode\u003eHttpClientFactory.services\u003c/code\u003e field and ServiceLoader-based factory discovery for backward compatibility\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eCustom \u003ccode\u003eHttpClientFactory\u003c/code\u003e implementations registered via \u003ccode\u003eMETA-INF/services\u003c/code\u003e are discovered again\u003c/li\u003e\n\u003cli\u003eA deprecation warning is logged when a custom factory is used, guiding users to migrate to \u003ccode\u003eSecurityHttpClientFactory\u003c/code\u003e with \u003ccode\u003eSecurityHttpClientProvider\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eToken services with default (no-arg) constructors continue to use the new \u003ccode\u003eSecurityHttpClientProvider\u003c/code\u003e internally\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix multi-tenant IAS token exchange by adding \u003ccode\u003eapp_tid\u003c/code\u003e parameter to the token exchange request in \u003ccode\u003eDefaultIdTokenExtension\u003c/code\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIn multi-tenant applications, IAS requires \u003ccode\u003eapp_tid\u003c/code\u003e in addition to \u003ccode\u003eclient_id\u003c/code\u003e to uniquely identify the application\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003eapp_tid\u003c/code\u003e is extracted from the incoming access token and included when present\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.0.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImprove domain validation handling in \u003ccode\u003eJwtValidatorBuilder\u003c/code\u003e for IAS tokens\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.0.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix multi-tenant IAS token exchange to use token issuer URL instead of provider IAS URL from configuration in \u003ccode\u003eDefaultIdTokenExtension\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix token exchange credential handling to use \u003ccode\u003egetClientIdentity()\u003c/code\u003e instead of manually checking for certificate vs client secret\u003c/li\u003e\n\u003cli\u003eAdd IAS certificate properties (\u003ccode\u003ecertificate\u003c/code\u003e, \u003ccode\u003ekey\u003c/code\u003e, \u003ccode\u003ecredential-type\u003c/code\u003e, \u003ccode\u003ecerturl\u003c/code\u003e) to \u003ccode\u003eIdentityServicesPropertySourceFactory\u003c/code\u003e to properly map X.509 credentials for IAS service bindings\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix IAS token exchange to use \u003ccode\u003egetUrl()\u003c/code\u003e instead of \u003ccode\u003egetCertUrl()\u003c/code\u003e in \u003ccode\u003eDefaultIdTokenExtension\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.0.0 - Major Release\u003c/h2\u003e\n\u003cp\u003eThis is a major release with breaking changes. The library has been upgraded to Spring Boot 4.x and Jakarta EE 10. For applications still on Spring Boot 3.x, compatibility modules are provided.\nPlease check the \u003ca href=\"https://github.com/SAP/cloud-security-services-integration-library/blob/main/MIGRATION_4.0.md\"\u003e4.0 Migration Guide\u003c/a\u003e for comprehensive upgrade instructions\u003c/p\u003e\n\u003ch3\u003e:warning: BREAKING CHANGES\u003c/h3\u003e\n\u003ch4\u003eSpring Boot and Jakarta EE Version Upgrades\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eSpring Boot\u003c/strong\u003e: Upgraded from 3.x to \u003cstrong\u003e4.0.3\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSpring Framework\u003c/strong\u003e: Upgraded from 6.x to \u003cstrong\u003e7.0.5\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSpring Security\u003c/strong\u003e: Upgraded from 6.x to \u003cstrong\u003e7.0.3\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eJakarta Servlet API\u003c/strong\u003e: Upgraded from 6.0.0 to \u003cstrong\u003e6.1.0\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eJava\u003c/strong\u003e: Minimum version remains \u003cstrong\u003eJava 17\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eJUnit Jupiter\u003c/strong\u003e: Upgraded from 5.12.2 to \u003cstrong\u003e6.0.3\u003c/strong\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eHTTP Client Default Changed\u003c/h4\u003e\n\u003cp\u003e\u003cstrong\u003eToken-client module\u003c/strong\u003e now uses \u003cstrong\u003eJava 11's HttpClient\u003c/strong\u003e as the default implementation. Apache HttpClient 4 remains available as a dependency for backward compatibility.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eImpact:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e✅ \u003cstrong\u003eNo code changes required\u003c/strong\u003e if you use the default (parameterless) constructors\u003c/li\u003e\n\u003cli\u003e⚠️ \u003cstrong\u003eDeprecated constructors\u003c/strong\u003e added for backward compatibility with Apache HttpClient 4\u003c/li\u003e\n\u003cli\u003e❌ \u003cstrong\u003eWill be removed in version 5.0.0\u003c/strong\u003e - Plan to migrate to Java HttpClient or custom implementation\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/SAP/cloud-security-services-integration-library/commit/2f9e42e70adef1cb4f3c994bc17c8cc73cf8f454\"\u003e\u003ccode\u003e2f9e42e\u003c/code\u003e\u003c/a\u003e Feature/restore httpclientfactory services (\u003ca href=\"https://redirect.github.com/SAP/cloud-security-xsuaa-integration/issues/1948\"\u003e#1948\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/SAP/cloud-security-services-integration-library/commit/eddb3a97467ab8de94077dab3a7cca60e6ce157e\"\u003e\u003ccode\u003eeddb3a9\u003c/code\u003e\u003c/a\u003e Bugfix/add app tid to id token exchange (\u003ca href=\"https://redirect.github.com/SAP/cloud-security-xsuaa-integration/issues/1949\"\u003e#1949\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/SAP/cloud-security-services-integration-library/commit/acb1d15476ca17e1868fdb5a648ce5c954be2f8f\"\u003e\u003ccode\u003eacb1d15\u003c/code\u003e\u003c/a\u003e improve domain validation handling (\u003ca href=\"https://redirect.github.com/SAP/cloud-security-xsuaa-integration/issues/1945\"\u003e#1945\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/SAP/cloud-security-services-integration-library/commit/ed3b9ef76f7e16d1d8ba8be551e58109d5f0d5bb\"\u003e\u003ccode\u003eed3b9ef\u003c/code\u003e\u003c/a\u003e Bugfix/4.0.2 (\u003ca href=\"https://redirect.github.com/SAP/cloud-security-xsuaa-integration/issues/1939\"\u003e#1939\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/SAP/cloud-security-services-integration-library/commit/ea432c80a625be5dff9444842a3481004df82b90\"\u003e\u003ccode\u003eea432c8\u003c/code\u003e\u003c/a\u003e Bugfix/4.0.2 (\u003ca href=\"https://redirect.github.com/SAP/cloud-security-xsuaa-integration/issues/1938\"\u003e#1938\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/SAP/cloud-security-services-integration-library/commit/4dce88bad75e91f820cff04bfbb8b640f8cc9799\"\u003e\u003ccode\u003e4dce88b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/SAP/cloud-security-xsuaa-integration/issues/1936\"\u003e#1936\u003c/a\u003e from SAP/feature/token-client-spring-3-module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/SAP/cloud-security-services-integration-library/commit/3073f80ffe87aae44fc17d449e91c07cb5afb723\"\u003e\u003ccode\u003e3073f80\u003c/code\u003e\u003c/a\u003e docs: Update migration guide with correct Spring Boot 3.x starter name\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/SAP/cloud-security-services-integration-library/commit/f25b05e62524809339a36ca5f97b63d28cba0daf\"\u003e\u003ccode\u003ef25b05e\u003c/code\u003e\u003c/a\u003e refactor: Centralize Spring Boot 3.x versions in parent POM\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/SAP/cloud-security-services-integration-library/commit/c3fba413e7da2d2efc59765bd7f6e4c27bc27c0b\"\u003e\u003ccode\u003ec3fba41\u003c/code\u003e\u003c/a\u003e feat: Add token-client-spring-3 module for Spring Boot 3.x compatibility\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/SAP/cloud-security-services-integration-library/commit/315650b50d40d27adb9f989955b156dbaff58861\"\u003e\u003ccode\u003e315650b\u003c/code\u003e\u003c/a\u003e Bugfix/id token exchange cert url and release 4.0.1 (\u003ca href=\"https://redirect.github.com/SAP/cloud-security-xsuaa-integration/issues/1935\"\u003e#1935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/SAP/cloud-security-xsuaa-integration/compare/3.6.8...4.0.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `com.sap.cds:cds-maven-plugin` from 4.8.0 to 4.9.0\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 3.5.11 to 3.5.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.14\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50173\"\u003e#50173\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50172\"\u003e#50172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50171\"\u003e#50171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50170\"\u003e#50170\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50169\"\u003e#50169\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50168\"\u003e#50168\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50035\"\u003e#50035\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50033\"\u003e#50033\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50021\"\u003e#50021\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50008\"\u003e#50008\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49942\"\u003e#49942\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49885\"\u003e#49885\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49865\"\u003e#49865\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49864\"\u003e#49864\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49863\"\u003e#49863\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49860\"\u003e#49860\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50092\"\u003e#50092\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50083\"\u003e#50083\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50023\"\u003e#50023\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50010\"\u003e#50010\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50007\"\u003e#50007\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49895\"\u003e#49895\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49835\"\u003e#49835\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Groovy 4.0.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49905\"\u003e#49905\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 6.6.49.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50140\"\u003e#50140\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50109\"\u003e#50109\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49907\"\u003e#49907\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jetty/jetty.project/releases/tag/jetty-12.0.34\"\u003eJetty 12.0.34\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49908\"\u003e#49908\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jOOQ/jOOQ/releases/tag/version-3.19.32\"\u003ejOOQ 3.19.32\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50110\"\u003e#50110\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Lombok 1.18.46 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50148\"\u003e#50148\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://mariadb.com/kb/en/mariadb-connector-j-3-5-8-release-notes\"\u003eMariaDB 3.5.8\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49909\"\u003e#49909\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/micrometer-metrics/micrometer/releases/tag/v1.15.11\"\u003eMicrometer 1.15.11\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49961\"\u003e#49961\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/micrometer-metrics/tracing/releases/tag/v1.5.11\"\u003eMicrometer Tracing 1.5.11\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49962\"\u003e#49962\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://dev.mysql.com/doc/relnotes/connector-j/en/news-9-7-0.html\"\u003eMySQL 9.7.0\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50161\"\u003e#50161\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Neo4j Java Driver 5.28.13 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50074\"\u003e#50074\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/reactor/reactor/releases/tag/2024.0.17\"\u003eReactor Bom 2024.0.17\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49963\"\u003e#49963\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-amqp/releases/tag/v3.2.10\"\u003eSpring AMQP 3.2.10\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49964\"\u003e#49964\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-authorization-server/releases/tag/1.5.7\"\u003eSpring Authorization Server 1.5.7\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49965\"\u003e#49965\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-data-bom/releases/tag/2025.0.11\"\u003eSpring Data Bom 2025.0.11\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49966\"\u003e#49966\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-framework/releases/tag/v6.2.18\"\u003eSpring Framework 6.2.18\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49967\"\u003e#49967\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/spring-projects/spring-kafka/releases/tag/v3.3.15\"\u003eSpring Kafka 3.3.15\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50129\"\u003e#50129\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/7d7b3ac12735161f9c096ce6cb415bdd9fc4a0f4\"\u003e\u003ccode\u003e7d7b3ac\u003c/code\u003e\u003c/a\u003e Release v3.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f3b8eb0f2cd989dffe5dceefce80bde165328b31\"\u003e\u003ccode\u003ef3b8eb0\u003c/code\u003e\u003c/a\u003e Use SecureRandom in RandomValuePropertySource\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e22083a5684c3c65bcf2a9a90adcdecee6e85d50\"\u003e\u003ccode\u003ee22083a\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Cassandra\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/5ceb1a228932e35cc803d1c1fea68f0f984aaa90\"\u003e\u003ccode\u003e5ceb1a2\u003c/code\u003e\u003c/a\u003e Improve ApplicationTemp's temporary directory creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4b0862cc00815a47b22339d7eac7ddc3b6645bd4\"\u003e\u003ccode\u003e4b0862c\u003c/code\u003e\u003c/a\u003e Use constant-time comparison for remote DevTools secret\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e4febe2015d340ea9135437ee0659ea0f2260c31\"\u003e\u003ccode\u003ee4febe2\u003c/code\u003e\u003c/a\u003e Apply verify-hostname consistently\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/2c2ffe51c415f464fde6368fdd144b9551c3458c\"\u003e\u003ccode\u003e2c2ffe5\u003c/code\u003e\u003c/a\u003e Fix Windows test failure\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/0046a442f9ac5ae186359df575e68fab17d01646\"\u003e\u003ccode\u003e0046a44\u003c/code\u003e\u003c/a\u003e Protect against corrupt buildpack archives\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.5.11...v3.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.apache.maven.plugins:maven-enforcer-plugin` from 3.6.2 to 3.6.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/apache/maven-enforcer/releases\"\u003eorg.apache.maven.plugins:maven-enforcer-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.6.3\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e🚀 New features and improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMake bannedDependencies report root and transitive dependency in case both are banned. (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/940\"\u003e#940\u003c/a\u003e) \u003ca href=\"https://github.com/hvoynov\"\u003e\u003ccode\u003e@​hvoynov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd enforceBytecodeVersion rule based on mojohaus (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/968\"\u003e#968\u003c/a\u003e) \u003ca href=\"https://github.com/cstamas\"\u003e\u003ccode\u003e@​cstamas\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove formatting of deprecated API warning (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/951\"\u003e#951\u003c/a\u003e) \u003ca href=\"https://github.com/mthmulders\"\u003e\u003ccode\u003e@​mthmulders\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix handling of Java versions like 21.0.10.0.1 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/967\"\u003e#967\u003c/a\u003e) \u003ca href=\"https://github.com/parttimenerd\"\u003e\u003ccode\u003e@​parttimenerd\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd null checks for modelId in PluginWrapper (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/974\"\u003e#974\u003c/a\u003e) \u003ca href=\"https://github.com/cpfeiffer\"\u003e\u003ccode\u003e@​cpfeiffer\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📝 Documentation updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDocument the banMavenDefaults option for the requirePluginVersions rule. (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/936\"\u003e#936\u003c/a\u003e) \u003ca href=\"https://github.com/rpkrajewski\"\u003e\u003ccode\u003e@​rpkrajewski\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e👻 Maintenance\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ePlexusStringUtils\u003c/code\u003e Refaster recipes (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/943\"\u003e#943\u003c/a\u003e) \u003ca href=\"https://github.com/slachiewicz\"\u003e\u003ccode\u003e@​slachiewicz\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJUnit Jupiter migration from JUnit 4.x (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/941\"\u003e#941\u003c/a\u003e) \u003ca href=\"https://github.com/slachiewicz\"\u003e\u003ccode\u003e@​slachiewicz\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Dependency updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump org.apache.logging.log4j:log4j-core from 2.25.3 to 2.25.4 in /maven-enforcer-plugin/src/it/projects/MENFORCER-434 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/970\"\u003e#970\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeps: Parent POM 48 and align deps (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/979\"\u003e#979\u003c/a\u003e) \u003ca href=\"https://github.com/cstamas\"\u003e\u003ccode\u003e@​cstamas\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump commons-codec:commons-codec from 1.21.0 to 1.22.0 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/976\"\u003e#976\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump commons-io:commons-io from 2.21.0 to 2.22.0 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/975\"\u003e#975\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mavenVersion from 3.9.14 to 3.9.15 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/973\"\u003e#973\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mavenVersion from 3.9.13 to 3.9.14 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/965\"\u003e#965\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mavenVersion from 3.9.12 to 3.9.13 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/964\"\u003e#964\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.5.0 to 3.5.1 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/963\"\u003e#963\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate log4j in test to avoid CVE (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/961\"\u003e#961\u003c/a\u003e) \u003ca href=\"https://github.com/Bukama\"\u003e\u003ccode\u003e@​Bukama\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump commons-codec:commons-codec from 1.20.0 to 1.21.0 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/962\"\u003e#962\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.assertj:assertj-core from 3.27.6 to 3.27.7 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/960\"\u003e#960\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.mojo:mrm-maven-plugin from 1.7.0 to 1.7.1 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/959\"\u003e#959\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven:maven-parent from 46 to 47 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/958\"\u003e#958\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.codehaus.plexus:plexus-archiver from 4.10.4 to 4.11.0 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/957\"\u003e#957\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate to 46 including fixes (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/955\"\u003e#955\u003c/a\u003e) \u003ca href=\"https://github.com/Bukama\"\u003e\u003ccode\u003e@​Bukama\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven.plugin-testing:maven-plugin-testing-harness from 3.3.0 to 3.5.0 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/956\"\u003e#956\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mavenVersion from 3.9.11 to 3.9.12 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/948\"\u003e#948\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.commons:commons-lang3 from 3.19.0 to 3.20.0 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/947\"\u003e#947\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump commons-io:commons-io from 2.20.0 to 2.21.0 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/946\"\u003e#946\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump commons-codec:commons-codec from 1.19.0 to 1.20.0 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/pull/945\"\u003e#945\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-enforcer/commit/c7daff33d46c9c3ee0666540c6857c66cf159e70\"\u003e\u003ccode\u003ec7daff3\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare release enforcer-3.6.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-enforcer/commit/ee46e78b046be9882a739c07556940329a7345d6\"\u003e\u003ccode\u003eee46e78\u003c/code\u003e\u003c/a\u003e Make bannedDependencies report root and transitive dependency in case both ar...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-enforcer/commit/0806924d8f6c5ad6105ac387bf323846e769b18c\"\u003e\u003ccode\u003e0806924\u003c/code\u003e\u003c/a\u003e Document the banMavenDefaults option for the requirePluginVersions rule. (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/issues/936\"\u003e#936\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-enforcer/commit/8e4f5b94453de97592cf3935b79319894f013329\"\u003e\u003ccode\u003e8e4f5b9\u003c/code\u003e\u003c/a\u003e Add better enforceBytecodeVersion rule based on mojohaus (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/issues/968\"\u003e#968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-enforcer/commit/fd4b1486dcc93394d5f6a11687efd51d0d30b22d\"\u003e\u003ccode\u003efd4b148\u003c/code\u003e\u003c/a\u003e Add fix for 21.0.10.0.1 issue (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/issues/967\"\u003e#967\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-enforcer/commit/f32d5979ef387668162c2beb905b368e25accd70\"\u003e\u003ccode\u003ef32d597\u003c/code\u003e\u003c/a\u003e Deps: Parent POM 48 and align deps (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/issues/979\"\u003e#979\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-enforcer/commit/df0f2a6d7fbbaf79914cdb56fa5899d99c8eaf19\"\u003e\u003ccode\u003edf0f2a6\u003c/code\u003e\u003c/a\u003e Bump commons-codec:commons-codec from 1.21.0 to 1.22.0 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/issues/976\"\u003e#976\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-enforcer/commit/2da7a68b4d8d9d2da866ffaf1e07a206c9b7115d\"\u003e\u003ccode\u003e2da7a68\u003c/code\u003e\u003c/a\u003e Add null checks for modelId in PluginWrapper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-enforcer/commit/91eb4d9fe1f6f65137991c1131131ceaca542245\"\u003e\u003ccode\u003e91eb4d9\u003c/code\u003e\u003c/a\u003e Bump commons-io:commons-io from 2.21.0 to 2.22.0 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/issues/975\"\u003e#975\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apache/maven-enforcer/commit/b6222459bf3256bfd747731a7f4ea81577777ffe\"\u003e\u003ccode\u003eb622245\u003c/code\u003e\u003c/a\u003e Bump mavenVersion from 3.9.14 to 3.9.15 (\u003ca href=\"https://redirect.github.com/apache/maven-enforcer/issues/973\"\u003e#973\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/apache/maven-enforcer/compare/enforcer-3.6.2...enforcer-3.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `com.diffplug.spotless:spotless-maven-plugin` from 3.3.0 to 3.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/diffplug/spotless/releases\"\u003ecom.diffplug.spotless:spotless-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eMaven Plugin v3.5.1\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e\u0026lt;licenseHeader\u0026gt;\u003c/code\u003e with \u003ccode\u003e\u0026lt;yearMode\u0026gt;SET_FROM_GIT\u0026lt;/yearMode\u0026gt;\u003c/code\u003e no longer runs \u003ccode\u003egit log\u003c/code\u003e through a shell, eliminating a shell-injection vector when formatting files whose names contain shell metacharacters.\u003c/li\u003e\n\u003cli\u003eBump transitive \u003ccode\u003eplexus-utils\u003c/code\u003e \u003ccode\u003e4.0.2\u003c/code\u003e -\u0026gt; \u003ccode\u003e4.0.3\u003c/code\u003e to address \u003ca href=\"https://github.com/advisories/GHSA-6fmv-xxpf-w3cw\"\u003eCVE-2025-67030\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/issues/2919\"\u003e#2919\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eMaven Plugin v3.5.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e\u0026lt;scalafmt\u0026gt;\u003c/code\u003e now reads the version from the \u003ccode\u003eversion\u003c/code\u003e field in the scalafmt config file when no \u003ccode\u003e\u0026lt;version\u0026gt;\u003c/code\u003e is explicitly set, falling back to the built-in default only if neither is available. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2922\"\u003e#2922\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e\u0026lt;toml\u0026gt;\u003c/code\u003e format type with \u003ccode\u003e\u0026lt;versionCatalog\u0026gt;\u003c/code\u003e step for formatting and sorting Gradle version catalog files. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/issues/2916\"\u003e#2916\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e\u0026lt;javaparserVersion\u0026gt;\u003c/code\u003e option to \u003ccode\u003e\u0026lt;cleanthat\u0026gt;\u003c/code\u003e, allowing users to override the JavaParser version pulled in transitively by Cleanthat. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2903\"\u003e#2903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd a \u003ccode\u003eexpandWildcardImports\u003c/code\u003e API for java (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2930\"\u003e#2829\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePreserve case of JDBI named bind params that collide with SQL keywords (e.g. \u003ccode\u003e:limit\u003c/code\u003e, \u003ccode\u003e:offset\u003c/code\u003e) in the DBeaver SQL formatter. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2899\"\u003e#2899\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003e-Dspotless.ratchetFrom=...\u003c/code\u003e user property now takes priority over \u003ccode\u003e\u0026lt;ratchetFrom\u0026gt;\u003c/code\u003e configured in the plugin or in individual formatters, instead of being overridden by them. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2896\"\u003e#2896\u003c/a\u003e, fixes \u003ca href=\"https://redirect.github.com/diffplug/spotless/issues/2842\"\u003e#2842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix non-idempotent formatting when \u003ccode\u003eimportOrder()\u003c/code\u003e is combined with \u003ccode\u003egreclipse()\u003c/code\u003e: a single catch-all group no longer strips blank lines that \u003ccode\u003egreclipse()\u003c/code\u003e independently inserted between import groups. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2914\"\u003e#2914\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003eexpandWildcardImports\u003c/code\u003e failing on JDK XML types such as \u003ccode\u003eorg.xml.sax.InputSource\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2921\"\u003e#2921\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse Eclipse JDT's collator-based comparison when sorting Java members to better match Eclipse save actions. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2920\"\u003e#2920\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump default \u003ccode\u003ecleanthat\u003c/code\u003e version \u003ccode\u003e2.24\u003c/code\u003e -\u0026gt; \u003ccode\u003e2.25\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2903\"\u003e#2903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump default \u003ccode\u003eeclipse-jdt\u003c/code\u003e version from \u003ccode\u003e4.35\u003c/code\u003e to \u003ccode\u003e4.39\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2912\"\u003e#2912\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eMaven Plugin v3.4.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003etableTest\u003c/code\u003e format type for standalone \u003ccode\u003e.table\u003c/code\u003e files. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2880\"\u003e#2880\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump default \u003ccode\u003etabletest-formatter\u003c/code\u003e version \u003ccode\u003e1.0.1\u003c/code\u003e -\u0026gt; \u003ccode\u003e1.1.1\u003c/code\u003e, now works with Java 17+. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2880\"\u003e#2880\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eLib v3.3.1\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eGitPrePushHookInstaller\u003c/code\u003e didn't work on windows, now fixed. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2562\"\u003e#2562\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/diffplug/spotless/blob/main/CHANGES.md\"\u003ecom.diffplug.spotless:spotless-maven-plugin's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003espotless-lib and spotless-lib-extra releases\u003c/h1\u003e\n\u003cp\u003eIf you are a Spotless user (as opposed to developer), then you are probably looking for:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diffplug/spotless/blob/main/plugin-gradle/CHANGES.md\"\u003ehttps://github.com/diffplug/spotless/blob/main/plugin-gradle/CHANGES.md\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diffplug/spotless/blob/main/plugin-maven/CHANGES.md\"\u003ehttps://github.com/diffplug/spotless/blob/main/plugin-maven/CHANGES.md\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThis document is intended for Spotless developers.\u003c/p\u003e\n\u003cp\u003eWe adhere to the \u003ca href=\"https://keepachangelog.com/en/1.0.0/\"\u003ekeepachangelog\u003c/a\u003e format (starting after version \u003ccode\u003e1.27.0\u003c/code\u003e).\u003c/p\u003e\n\u003ch2\u003e[Unreleased]\u003c/h2\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eFormatter\u003c/code\u003e no longer recomputes line-ending normalization (\u003ccode\u003eLineEnding.toUnix\u003c/code\u003e) a second time for every formatter step that changes content, removing redundant O(n) work from the core formatting loop. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2934\"\u003e#2934\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.6.1] - 2026-05-15\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eLicenseHeaderStep\u003c/code\u003e in \u003ccode\u003eSET_FROM_GIT\u003c/code\u003e year mode no longer invokes \u003ccode\u003egit log\u003c/code\u003e through \u003ccode\u003ebash -c\u003c/code\u003e / \u003ccode\u003ecmd /c\u003c/code\u003e, eliminating a shell-injection vector when processing repositories that contain files whose names include shell metacharacters.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.6.0] - 2026-05-14\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003escalafmt()\u003c/code\u003e now reads the version from the \u003ccode\u003eversion\u003c/code\u003e field in the scalafmt config file when no version is explicitly set in the plugin config, falling back to the built-in default only if neither is available. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2922\"\u003e#2922\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eversionCatalog\u003c/code\u003e step for formatting and sorting Gradle version catalog (\u003ccode\u003e.toml\u003c/code\u003e) files. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/issues/2916\"\u003e#2916\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003ejavaparserVersion\u003c/code\u003e option to the Cleanthat step, allowing callers to override the JavaParser version pulled in transitively by Cleanthat. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2903\"\u003e#2903\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePreserve case of JDBI named bind params that collide with SQL keywords (e.g. \u003ccode\u003e:limit\u003c/code\u003e, \u003ccode\u003e:offset\u003c/code\u003e) in the DBeaver SQL formatter. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2899\"\u003e#2899\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix non-idempotent formatting when \u003ccode\u003eimportOrder()\u003c/code\u003e is combined with \u003ccode\u003egreclipse()\u003c/code\u003e: a single catch-all group no longer strips blank lines that \u003ccode\u003egreclipse()\u003c/code\u003e independently inserted between import groups. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2914\"\u003e#2914\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003eexpandWildcardImports\u003c/code\u003e failing on JDK XML types such as \u003ccode\u003eorg.xml.sax.InputSource\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2921\"\u003e#2921\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse Eclipse JDT's collator-based comparison when sorting Java members to better match Eclipse save actions. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2920\"\u003e#2920\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump default \u003ccode\u003ecleanthat\u003c/code\u003e version \u003ccode\u003e2.24\u003c/code\u003e -\u0026gt; \u003ccode\u003e2.25\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2903\"\u003e#2903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump default \u003ccode\u003eeclipse-jdt\u003c/code\u003e version from \u003ccode\u003e4.35\u003c/code\u003e to \u003ccode\u003e4.39\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2912\"\u003e#2912\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.0] - 2026-03-18\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003etableTest\u003c/code\u003e format type for standalone \u003ccode\u003e.table\u003c/code\u003e files. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2880\"\u003e#2880\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump default \u003ccode\u003etabletest-formatter\u003c/code\u003e version \u003ccode\u003e1.0.1\u003c/code\u003e -\u0026gt; \u003ccode\u003e1.1.1\u003c/code\u003e, now works with Java 17+. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2880\"\u003e#2880\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.4.0] - 2026-03-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003etabletest-formatter\u003c/code\u003e support for Java and Kotlin. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2860\"\u003e#2860\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix the ability to specify a wildcard version (\u003ccode\u003e*\u003c/code\u003e) for external formatter executables, which did not work. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/pull/2848\"\u003e#2848\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[fix] \u003ccode\u003eConcurrentModificationException\u003c/code\u003e in \u003ccode\u003eexpandWildcardImports\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/diffplug/spotless/issues/2830\"\u003e#2830\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.3.0] - 2026-01-27\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eP2Provisioner\u003c/code\u003e interface in lib-extra to enable build-tool-specific caching strategies for Eclipse P2 dependencies, fixing OutOfMemoryError in large multi-project builds. (\u003ca href=\"https://redirect.github.com/diffplug/spotless/issues/2788\"\u003e#2788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diffplug/spotless/commit/0c48edf9597ec16e82e1a0b6da76a6a6dcc0d5de\"\u003e\u003ccode\u003e0c48edf\u003c/code\u003e\u003c/a\u003e Published maven/3.5.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diffplug/spotless/commit/c1595c815d5fdd344505792aa4df588f467f0ca9\"\u003e\u003ccode\u003ec1595c8\u003c/code\u003e\u003c/a\u003e Published gradle/8.5.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diffplug/spotless/commit/b26b570f7eba32554061b036206f675180cd2384\"\u003e\u003ccode\u003eb26b570\u003c/code\u003e\u003c/a\u003e Published lib/4.6.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diffplug/spotless/commit/ac3f6f14a2e007c2d36223335df96a2c9ba92719\"\u003e\u003ccode\u003eac3f6f1\u003c/code\u003e\u003c/a\u003e Bump plexus-utils to 4.0.3 to address CVE-2025-67030 (\u003ca href=\"https://redirect.github.com/diffplug/spotless/issues/2932\"\u003e#2932\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diffplug/spotless/commit/f5039f633d436a8831d09a934a3490d68968d684\"\u003e\u003ccode\u003ef5039f6\u003c/code\u003e\u003c/a\u003e Bump plexus-utils to 4.0.3 to address CVE-2025-67030\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diffplug/spotless/commit/0e77837d4789cb43b83c21d566fe4185adc4ae2b\"\u003e\u003ccode\u003e0e77837\u003c/code\u003e\u003c/a\u003e Fix shell-injection in LicenseHeaderStep SET_FROM_GIT mode (\u003ca href=\"https://redirect.github.com/diffplug/spotless/issues/2931\"\u003e#2931\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diffplug/spotless/commit/84f642329de804615ff16f34d12a2249f1890850\"\u003e\u003ccode\u003e84f6423\u003c/code\u003e\u003c/a\u003e Fix shell-injection in LicenseHeaderStep SET_FROM_GIT mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diffplug/spotless/commit/b87eb75efe54e94a7248ff5e2d07231bcc3a1b55\"\u003e\u003ccode\u003eb87eb75\u003c/code\u003e\u003c/a\u003e Published maven/3.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diffplug/spotless/commit/97c3baf34b79d0028a343776bb2c2fb223930355\"\u003e\u003ccode\u003e97c3baf\u003c/code\u003e\u003c/a\u003e Published gradle/8.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diffplug/spotless/commit/3dd1a9690270e7191f2c7db8314a9079b127ee76\"\u003e\u003ccode\u003e3dd1a96\u003c/code\u003e\u003c/a\u003e Published lib/4.6.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/diffplug/spotless/compare/lib/3.3.0...maven/3.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 3.5.11 to 3.5.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.14\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50173\"\u003e#50173\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50172\"\u003e#50172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50171\"\u003e#50171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50170\"\u003e#50170\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50169\"\u003e#50169\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50168\"\u003e#50168\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50035\"\u003e#50035\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50033\"\u003e#50033\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50021\"\u003e#50021\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50008\"\u003e#50008\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49942\"\u003e#49942\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49885\"\u003e#49885\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49865\"\u003e#49865\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49864\"\u003e#49864\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-proje...\n\n_Description has been truncated_","html_url":"https://github.com/capire/xflights-java/pull/39","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/capire%2Fxflights-java/issues/39","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/39/packages"}},{"old_version":"3.5.7","new_version":"4.0.6","update_type":"major","path":"/agent/backend","pr_created_at":"2026-05-11T05:50:12.000Z","version_change":"3.5.7 → 4.0.6","issue":{"uuid":"4418375734","node_id":"PR_kwDOO2iZlM7aH0ZY","number":496,"state":"open","title":"build(agent)(deps): bump the spring-framework group in /agent/backend with 3 updates","user":"dependabot[bot]","labels":["Agent","dependencies"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-11T05:50:12.000Z","updated_at":"2026-05-11T05:50:13.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(agent)(deps): bump","group_name":"spring-framework","update_count":3,"packages":[{"name":"org.springframework.boot:spring-boot-dependencies","old_version":"3.5.7","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"3.5.7","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.modulith:spring-modulith-bom","old_version":"1.4.4","new_version":"2.0.6","repository_url":"https://github.com/spring-projects/spring-modulith"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"3.5.7","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"}],"path":"/agent/backend","ecosystem":"maven"},"body":"Bumps the spring-framework group in /agent/backend with 3 updates: [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot), [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) and [org.springframework.modulith:spring-modulith-bom](https://github.com/spring-projects/spring-modulith).\n\nUpdates `org.springframework.boot:spring-boot-dependencies` from 3.5.7 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.5.7...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 3.5.7 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.5.7...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.modulith:spring-modulith-bom` from 1.4.4 to 2.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-modulith/releases\"\u003eorg.springframework.modulith:spring-modulith-bom's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.0.6\u003c/h2\u003e\n\u003ch2\u003e:bulb: Improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrefer \u003ccode\u003e@SpringBootApplication\u003c/code\u003e on explicitly declared classes in \u003ccode\u003e@ModuleSlicing\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1645\"\u003e#1645\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:beetle: Bugs\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eIncorrect parameters in documentation for staleness of event publications of resubmitted event publications \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1664\"\u003e#1664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eJdbcEventPublicationRepository\u003c/code\u003e deletes currently processing publication \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1653\"\u003e#1653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove batch handling in \u003ccode\u003eDefaultEventpublicationRegistry.processFailedPublications(…)\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1651\"\u003e#1651\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Spring Boot 4.0.6 \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1679\"\u003e#1679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to MongoDB 5.6.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1670\"\u003e#1670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Lombok 1.18.46 \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1669\"\u003e#1669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Testcontainers 2.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1668\"\u003e#1668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to ArchUnit 1.4.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1667\"\u003e#1667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Spring Framework 7.0.7 \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1666\"\u003e#1666\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Micrometer Tracing 1.6.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1665\"\u003e#1665\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.0.5\u003c/h2\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Spring Boot 4.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1635\"\u003e#1635\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.0.4\u003c/h2\u003e\n\u003ch2\u003e:bulb: Improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd details about the refined event publication lifecycle to the reference documentation \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1594\"\u003e#1594\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:beetle: Bugs\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect \u003ccode\u003eEventPublication.Status\u003c/code\u003e reference in \u003ccode\u003e….staleness.published\u003c/code\u003e metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1601\"\u003e#1601\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePackage-based named interfaces not properly merged \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1599\"\u003e#1599\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Spring Boot 4.0.4 \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1619\"\u003e#1619\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Testcontainers 2.0.4 \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1616\"\u003e#1616\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Spring Framework 7.0.6 \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1615\"\u003e#1615\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Micrometer Tracing 1.6.4 \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1614\"\u003e#1614\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.0.3\u003c/h2\u003e\n\u003ch2\u003e:bulb: Improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eHibernate schema validation fails with JPA event publication registry \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1570\"\u003e#1570\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpringModulithProcessor fails on Windows with KAPT - StringIndexOutOfBoundsException due to hardcoded forward slashes \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1546\"\u003e#1546\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:beetle: Bugs\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-modulith/commit/20a0cbaef6fdbc38daac3678e63b2c4e934e7289\"\u003e\u003ccode\u003e20a0cba\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1675\"\u003eGH-1675\u003c/a\u003e - Release version 2.0.6.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-modulith/commit/680a6a941ddefe606dde7b462fac0d6ba34d460a\"\u003e\u003ccode\u003e680a6a9\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1679\"\u003eGH-1679\u003c/a\u003e - Upgrade to Spring Boot 4.0.6.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-modulith/commit/a328cab6bb66e81151c98a968db34876bb84b174\"\u003e\u003ccode\u003ea328cab\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1666\"\u003eGH-1666\u003c/a\u003e - Remove explicit Spring Framework version from examples.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-modulith/commit/d0281dd6c62415c9847e2e2f5935f9a142a7cadd\"\u003e\u003ccode\u003ed0281dd\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1666\"\u003eGH-1666\u003c/a\u003e - Adapt to changes in ApplicationListenerMethodAdapter.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-modulith/commit/46c70e9f5f181804a362d08d7d9f9d7e24904d99\"\u003e\u003ccode\u003e46c70e9\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1668\"\u003eGH-1668\u003c/a\u003e - Upgrade to Testcontainers 2.0.5.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-modulith/commit/6745da6245a47d2878dc13cc915e23e6fbaca621\"\u003e\u003ccode\u003e6745da6\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1667\"\u003eGH-1667\u003c/a\u003e - Upgrade to ArchUnit 1.4.2.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-modulith/commit/d7e198358dd3713552b16474a8dbd8349235565d\"\u003e\u003ccode\u003ed7e1983\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1666\"\u003eGH-1666\u003c/a\u003e - Upgrade to Spring Framework 7.0.7.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-modulith/commit/ce6064be1fc37f4d7618258b3b5184faa4587006\"\u003e\u003ccode\u003ece6064b\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1665\"\u003eGH-1665\u003c/a\u003e - Upgrade to Micrometer Tracing 1.6.5.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-modulith/commit/5b63b840ba27189def6ce862f111ce07d19c303d\"\u003e\u003ccode\u003e5b63b84\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1664\"\u003eGH-1664\u003c/a\u003e - Fix resubmission staleness property naming.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-modulith/commit/d5a294fe68d21e1e2ad46a44959f2be6779a4292\"\u003e\u003ccode\u003ed5a294f\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-modulith/issues/1653\"\u003eGH-1653\u003c/a\u003e - Fix deletion of completed events in JdbcEventPublicationRepositoryV2.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-modulith/compare/1.4.4...2.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 3.5.7 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.5.7...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/BBMRI-cz/data-quality-framework/pull/496","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/BBMRI-cz%2Fdata-quality-framework/issues/496","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/496/packages"}},{"old_version":"3.1.2","new_version":"4.0.6","update_type":"major","path":null,"pr_created_at":"2026-05-06T14:21:53.000Z","version_change":"3.1.2 → 4.0.6","issue":{"uuid":"4392114910","node_id":"PR_kwDOReQyjs7Yzerh","number":72,"state":"closed","title":"Bump the spring-boot group across 1 directory with 4 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-05-26T08:50:31.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-06T14:21:53.000Z","updated_at":"2026-05-26T08:50:34.000Z","time_to_close":1708118,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"spring-boot","update_count":4,"packages":[{"name":"org.springframework.boot:spring-boot-starter-web","old_version":"3.1.2","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-starter-test","old_version":"3.1.2","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-starter-data-redis","old_version":"3.1.2","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"3.1.2","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"}],"path":null,"ecosystem":"maven"},"body":"Bumps the spring-boot group with 4 updates in the /backend/istudyspot-backend directory: [org.springframework.boot:spring-boot-starter-web](https://github.com/spring-projects/spring-boot), [org.springframework.boot:spring-boot-starter-test](https://github.com/spring-projects/spring-boot), [org.springframework.boot:spring-boot-starter-data-redis](https://github.com/spring-projects/spring-boot) and [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot).\n\nUpdates `org.springframework.boot:spring-boot-starter-web` from 3.1.2 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-web's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.1.2...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-starter-test` from 3.1.2 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-test's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.1.2...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-starter-data-redis` from 3.1.2 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-data-redis's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.1.2...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 3.1.2 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.1.2...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n","html_url":"https://github.com/yu086868-ui/iStudySpot/pull/72","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/yu086868-ui%2FiStudySpot/issues/72","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/72/packages"}},{"old_version":"4.0.5","new_version":"4.0.6","update_type":"patch","path":null,"pr_created_at":"2026-05-04T04:45:59.000Z","version_change":"4.0.5 → 4.0.6","issue":{"uuid":"4374065420","node_id":"PR_kwDOSQQ4Ac7X4NV5","number":26,"state":"closed","title":"deps(deps): bump the spring-boot group with 2 updates","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-04T10:09:52.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-04T04:45:59.000Z","updated_at":"2026-05-04T10:10:00.000Z","time_to_close":19433,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(deps): bump","group_name":"spring-boot","update_count":2,"packages":[{"name":"org.springframework.boot:spring-boot-dependencies","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"}],"path":null,"ecosystem":"maven"},"body":"Bumps the spring-boot group with 2 updates: [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot) and [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot).\n\nUpdates `org.springframework.boot:spring-boot-dependencies` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/iambilotta/spring-aiact/pull/26","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/iambilotta%2Fspring-aiact/issues/26","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/26/packages"}},{"old_version":"3.5.7","new_version":"4.0.6","update_type":"major","path":null,"pr_created_at":"2026-05-04T00:47:28.000Z","version_change":"3.5.7 → 4.0.6","issue":{"uuid":"4373443361","node_id":"PR_kwDOIhZj1M7X2Qt_","number":396,"state":"closed","title":"Bump the all group across 2 directories with 24 updates","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-18T00:52:56.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-04T00:47:28.000Z","updated_at":"2026-05-18T00:52:58.000Z","time_to_close":1209928,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"all","update_count":24,"packages":[{"name":"com.google.errorprone:error_prone_annotations","old_version":"2.44.0","new_version":"2.49.0","repository_url":"https://github.com/google/error-prone"},{"name":"com.google.guava:guava","old_version":"33.5.0-jre","new_version":"33.6.0-jre","repository_url":"https://github.com/google/guava"},{"name":"joda-time:joda-time","old_version":"2.14.0","new_version":"2.14.2","repository_url":"https://github.com/JodaOrg/joda-time"},{"name":"org.yaml:snakeyaml","old_version":"2.5","new_version":"2.6"},{"name":"org.jetbrains.kotlin:kotlin-bom","old_version":"2.2.21","new_version":"2.3.21","repository_url":"https://github.com/JetBrains/kotlin"},{"name":"com.fasterxml.jackson:jackson-bom","old_version":"2.20.1","new_version":"2.21.3","repository_url":"https://github.com/FasterXML/jackson-bom"},{"name":"org.apache.logging.log4j:log4j-bom","old_version":"0.0.0-SNAPSHOT","new_version":"2.25.4","repository_url":"https://github.com/apache/logging-log4j2"},{"name":"org.apache.logging.log4j:log4j-core","old_version":"2.25.2","new_version":"2.25.4"},{"name":"org.springframework.boot:spring-boot-dependencies","old_version":"3.5.7","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"3.5.7","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.cloud:spring-cloud-dependencies","old_version":"2025.0.0","new_version":"2025.1.1","repository_url":"https://github.com/spring-cloud/spring-cloud-release"},{"name":"org.aspectj:aspectjweaver","old_version":"1.9.25","new_version":"1.9.25.1","repository_url":"https://github.com/eclipse/org.aspectj"},{"name":"org.aspectj:aspectjrt","old_version":"1.9.25","new_version":"1.9.25.1","repository_url":"https://github.com/eclipse/org.aspectj"},{"name":"org.aspectj:aspectjtools","old_version":"1.9.25","new_version":"1.9.25.1","repository_url":"https://github.com/eclipse/org.aspectj"},{"name":"org.codehaus.mojo:aspectj-maven-plugin","old_version":"1.15.0","new_version":"1.16.0","repository_url":"https://github.com/mojohaus/aspectj-maven-plugin"},{"name":"org.apache.maven.plugins:maven-jlink-plugin","old_version":"3.2.0","new_version":"3.3.0","repository_url":"https://github.com/apache/maven-jlink-plugin"},{"name":"io.fabric8:kubernetes-client-bom","old_version":"7.4.0","new_version":"7.6.1","repository_url":"https://github.com/fabric8io/kubernetes-client"}],"path":null,"ecosystem":"maven"},"body":"Bumps the all group with 17 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [com.google.errorprone:error_prone_annotations](https://github.com/google/error-prone) | `2.44.0` | `2.49.0` |\n| [com.google.guava:guava](https://github.com/google/guava) | `33.5.0-jre` | `33.6.0-jre` |\n| [joda-time:joda-time](https://github.com/JodaOrg/joda-time) | `2.14.0` | `2.14.2` |\n| [org.yaml:snakeyaml](https://bitbucket.org/snakeyaml/snakeyaml) | `2.5` | `2.6` |\n| [org.jetbrains.kotlin:kotlin-bom](https://github.com/JetBrains/kotlin) | `2.2.21` | `2.3.21` |\n| [com.fasterxml.jackson:jackson-bom](https://github.com/FasterXML/jackson-bom) | `2.20.1` | `2.21.3` |\n| [org.apache.logging.log4j:log4j-bom](https://github.com/apache/logging-log4j2) | `0.0.0-SNAPSHOT` | `2.25.4` |\n| org.apache.logging.log4j:log4j-core | `2.25.2` | `2.25.4` |\n| [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot) | `3.5.7` | `4.0.6` |\n| [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) | `3.5.7` | `4.0.6` |\n| [org.springframework.cloud:spring-cloud-dependencies](https://github.com/spring-cloud/spring-cloud-release) | `2025.0.0` | `2025.1.1` |\n| [org.aspectj:aspectjweaver](https://github.com/eclipse/org.aspectj) | `1.9.25` | `1.9.25.1` |\n| [org.aspectj:aspectjrt](https://github.com/eclipse/org.aspectj) | `1.9.25` | `1.9.25.1` |\n| [org.aspectj:aspectjtools](https://github.com/eclipse/org.aspectj) | `1.9.25` | `1.9.25.1` |\n| [org.codehaus.mojo:aspectj-maven-plugin](https://github.com/mojohaus/aspectj-maven-plugin) | `1.15.0` | `1.16.0` |\n| [org.apache.maven.plugins:maven-jlink-plugin](https://github.com/apache/maven-jlink-plugin) | `3.2.0` | `3.3.0` |\n| [io.fabric8:kubernetes-client-bom](https://github.com/fabric8io/kubernetes-client) | `7.4.0` | `7.6.1` |\n\nBumps the all group with 8 updates in the /log4j-samples-graalvm directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [org.apache.logging.log4j:log4j-bom](https://github.com/apache/logging-log4j2) | `2.25.2` | `2.25.4` |\n| [org.codehaus.mojo:exec-maven-plugin](https://github.com/mojohaus/exec-maven-plugin) | `3.6.2` | `3.6.3` |\n| [org.assertj:assertj-bom](https://github.com/assertj/assertj) | `3.27.6` | `3.27.7` |\n| [org.junit:junit-bom](https://github.com/junit-team/junit-framework) | `6.0.1` | `6.0.3` |\n| [ch.qos.logback:logback-classic](https://github.com/qos-ch/logback) | `1.5.20` | `1.5.32` |\n| [org.json:json](https://github.com/douglascrockford/JSON-java) | `20250517` | `20251224` |\n| [net.javacrumbs.json-unit:json-unit-assertj](https://github.com/lukas-krecan/JsonUnit) | `5.0.0` | `5.1.1` |\n| [org.graalvm.buildtools:native-maven-plugin](https://github.com/graalvm/native-build-tools) | `0.11.2` | `1.1.0` |\n\n\nUpdates `com.google.errorprone:error_prone_annotations` from 2.44.0 to 2.49.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/error-prone/releases\"\u003ecom.google.errorprone:error_prone_annotations's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eError Prone 2.49.0\u003c/h2\u003e\n\u003cp\u003eThis release includes several changes to \u003ccode\u003eMatcher\u003c/code\u003e APIs, and removed some deprecated or problematic APIs:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRemove deprecated \u003ccode\u003eMethodMatchers.withSignature\u003c/code\u003e API, which relies on fragile \u003ccode\u003etoString\u003c/code\u003e behaviour. Alternatives for matching on method signatures with varargs and type parameters were added in \u003ca href=\"https://github.com/google/error-prone/commit/a98a1c55d92d343ae2c142485e8888cd46aa78b3\"\u003ehttps://github.com/google/error-prone/commit/a98a1c55d92d343ae2c142485e8888cd46aa78b3\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eRemoved \u003ccode\u003evariableType(Matcher)\u003c/code\u003e API. \u003ccode\u003eMatchers.variableType(Matcher)\u003c/code\u003e uses \u003ccode\u003eVariableTree#getType\u003c/code\u003e to match variable types, which own't work for lambda parameters with inferred types after \u003ca href=\"https://bugs.openjdk.org/browse/JDK-8268850\"\u003eJDK-8268850\u003c/a\u003e. The recommended replacement is \u003ccode\u003evariableType(TypePredicate)\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eMake \u003ccode\u003eenclosingPackage\u003c/code\u003e return an optional. Module elements are not enclosed by a package, checks using \u003ccode\u003eenclosingPackage\u003c/code\u003e shouldn't assume an enclosing package exists when processing arbitrary elements.\u003c/li\u003e\n\u003cli\u003eNew \u003ccode\u003eFieldMatchers\u003c/code\u003e API, similar to \u003ccode\u003eMethodMatchers\u003c/code\u003e (\u003ca href=\"https://github.com/google/error-prone/commit/1dd9c3a6bd76fca8104be6ae1c1004655d6a1745\"\u003ehttps://github.com/google/error-prone/commit/1dd9c3a6bd76fca8104be6ae1c1004655d6a1745\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eNew checks:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://errorprone.info/bugpattern/AssertThrowsBlockToExpression\"\u003e\u003ccode\u003eAssertThrowsBlockToExpression\u003c/code\u003e\u003c/a\u003e: Discourage unnecessary block lambdas in \u003ccode\u003eassertThrows\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://errorprone.info/bugpattern/AssertThrowsMinimizer\"\u003e\u003ccode\u003eAssertThrowsMinimizer\u003c/code\u003e\u003c/a\u003e: Suggest minimizing the amount of logic in \u003ccode\u003eassertThrows\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://errorprone.info/bugpattern/MemorySegmentReferenceEquality\"\u003e\u003ccode\u003eMemorySegmentReferenceEquality\u003c/code\u003e\u003c/a\u003e: Discourage using reference equality for \u003ccode\u003eMemorySegments\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://errorprone.info/bugpattern/PreferThrowsTag\"\u003e\u003ccode\u003ePreferThrowsTag\u003c/code\u003e\u003c/a\u003e: Recommends using \u003ccode\u003e@throws\u003c/code\u003e instead of the legacy \u003ccode\u003e@exception\u003c/code\u003e javadoc tag.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://errorprone.info/bugpattern/RecordAccessorInCompactConstructor\"\u003e\u003ccode\u003eRecordAccessorInCompactConstructor\u003c/code\u003e\u003c/a\u003e: detect record accessors inside the compact canonical ctors, which read uninitialized fields.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eClosed issues: \u003ca href=\"https://redirect.github.com/google/error-prone/issues/2283\"\u003e#2283\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/3503\"\u003e#3503\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5210\"\u003e#5210\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5289\"\u003e#5289\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5548\"\u003e#5548\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5548\"\u003e#5548\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5554\"\u003e#5554\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5609\"\u003e#5609\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5614\"\u003e#5614\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5656\"\u003e#5656\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eFull changelog: \u003ca href=\"https://github.com/google/error-prone/compare/v2.48.0...v2.49.0\"\u003ehttps://github.com/google/error-prone/compare/v2.48.0...v2.49.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eError Prone 2.48.0\u003c/h2\u003e\n\u003cp\u003eChanges:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdded support for passing flags with command-line argument files (\u003ccode\u003e@\u003c/code\u003e-files) (\u003ca href=\"https://github.com/google/error-prone/commit/8e84edf1beedc99ff2cff3c21a7adec578ad053e\"\u003ehttps://github.com/google/error-prone/commit/8e84edf1beedc99ff2cff3c21a7adec578ad053e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eNew checks:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://errorprone.info/bugpattern/AvoidValueSetter\"\u003e\u003ccode\u003eAvoidValueSetter\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://errorprone.info/bugpattern/UnnecessarySemicolon\"\u003e\u003ccode\u003eUnnecessarySemicolon\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eClosed issues: \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5529\"\u003e#5529\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5537\"\u003e#5537\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5522\"\u003e#5522\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5521\"\u003e#5521\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eFull changelog: \u003ca href=\"https://github.com/google/error-prone/compare/v2.47.0...v2.48.0\"\u003ehttps://github.com/google/error-prone/compare/v2.47.0...v2.48.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eError Prone 2.47.0\u003c/h2\u003e\n\u003cp\u003eNew checks:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://errorprone.info/bugpattern/InterruptedInCatchBlock\"\u003e\u003ccode\u003eInterruptedInCatchBlock\u003c/code\u003e\u003c/a\u003e: Detect accidental calls to \u003ccode\u003eThread.interrupted()\u003c/code\u003e inside of \u003ccode\u003ecatch(InterruptedException e)\u003c/code\u003e blocks.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://errorprone.info/bugpattern/RefactorSwitch\"\u003e\u003ccode\u003eRefactorSwitch\u003c/code\u003e\u003c/a\u003e: Refactorings to simplify arrow switches\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://errorprone.info/bugpattern/UnnamedVariable\"\u003e\u003ccode\u003eUnnamedVariable\u003c/code\u003e\u003c/a\u003e: Rename unused variables to \u003ccode\u003e_\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eClosed issues: \u003ca href=\"https://redirect.github.com/google/error-prone/issues/1811\"\u003e#1811\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/4168\"\u003e#4168\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5459\"\u003e#5459\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5460\"\u003e#5460\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eFull changelog: \u003ca href=\"https://github.com/google/error-prone/compare/v2.46.0...v2.47.0\"\u003ehttps://github.com/google/error-prone/compare/v2.46.0...v2.47.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eError Prone 2.46.0\u003c/h2\u003e\n\u003cp\u003eChanges:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe javac flag \u003ccode\u003e-XDaddTypeAnnotationsToSymbol=true\u003c/code\u003e is now required for Error Prone invocations on JDK 21, to enable the javac fix for \u003ca href=\"https://bugs.openjdk.org/browse/JDK-8225377\"\u003eJDK-8225377: type annotations are not visible to javac plugins across compilation boundaries\u003c/a\u003e. See \u003ca href=\"https://redirect.github.com/google/error-prone/issues/5426\"\u003egoogle/error-prone#5426\u003c/a\u003e for details.\u003c/li\u003e\n\u003cli\u003eRemove deprecated \u003ccode\u003evalue\u003c/code\u003e attribute from \u003ccode\u003e@IncompatibleModifiers\u003c/code\u003e and \u003ccode\u003e@RequiredModifiers\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/google/error-prone/issues/2122\"\u003egoogle/error-prone#2122\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/error-prone/commit/89d75c196f2bac93d7aab17db6d2d70a2ee55941\"\u003e\u003ccode\u003e89d75c1\u003c/code\u003e\u003c/a\u003e Release Error Prone 2.49.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/error-prone/commit/0b7b03b05d038f596e687e35fccd2cdc0356a7e2\"\u003e\u003ccode\u003e0b7b03b\u003c/code\u003e\u003c/a\u003e Fix up some javadoc on `ModifySourceCollectionInStream.isStreamApiInvocationO...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/error-prone/commit/fe5a7b1f4583db97387c46ed32ccd664d3f455f6\"\u003e\u003ccode\u003efe5a7b1\u003c/code\u003e\u003c/a\u003e Remove old FieldMatchers API\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/error-prone/commit/d54a1d1cd9b57dd49de585e21d0e315f3fb88c82\"\u003e\u003ccode\u003ed54a1d1\u003c/code\u003e\u003c/a\u003e Fix up some \u003ccode\u003eFinally\u003c/code\u003e javadocs.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/error-prone/commit/d93b31908fd361eb5e817a7dd18a1296f12f6414\"\u003e\u003ccode\u003ed93b319\u003c/code\u003e\u003c/a\u003e [RefactorSwitch] bugfix comment handling\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/error-prone/commit/ff59782c69b9394e14b11d0b17574fe5b3dafa9c\"\u003e\u003ccode\u003eff59782\u003c/code\u003e\u003c/a\u003e [IfChainToSwitch] cleanup redundant conditions in ternary.  No functional cha...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/error-prone/commit/43b6df64ed635e1fcabaabd9c884df5753aac26b\"\u003e\u003ccode\u003e43b6df6\u003c/code\u003e\u003c/a\u003e Generalise DuplicateAssertion to handle check* methods.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/error-prone/commit/2c4346f59fdcdda7bf17839b55d2d5e416c7d1d1\"\u003e\u003ccode\u003e2c4346f\u003c/code\u003e\u003c/a\u003e Fix a bug in \u003ccode\u003eBooleanLiteral\u003c/code\u003e: it currently suggests replacing `Boolean.FALSE...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/error-prone/commit/559039bcc26400cd725236bdffe7fc94c4519311\"\u003e\u003ccode\u003e559039b\u003c/code\u003e\u003c/a\u003e [IfChainToSwitch] doc-only change.  fix typo in code comments.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/error-prone/commit/393c61ce5b28fd5bcd1290ee831d3358d37cce16\"\u003e\u003ccode\u003e393c61c\u003c/code\u003e\u003c/a\u003e [IfChainToSwitch] enhance code generation to emit unnamed variables, when sup...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/google/error-prone/compare/v2.44.0...v2.49.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `com.google.guava:guava` from 33.5.0-jre to 33.6.0-jre\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/guava/releases\"\u003ecom.google.guava:guava's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e33.6.0\u003c/h2\u003e\n\u003ch3\u003eMaven\u003c/h3\u003e\n\u003cpre lang=\"xml\"\u003e\u003ccode\u003e\u0026lt;dependency\u0026gt;\r\n  \u0026lt;groupId\u0026gt;com.google.guava\u0026lt;/groupId\u0026gt;\r\n  \u0026lt;artifactId\u0026gt;guava\u0026lt;/artifactId\u0026gt;\r\n  \u0026lt;version\u0026gt;33.6.0-jre\u0026lt;/version\u0026gt;\r\n  \u0026lt;!-- or, for Android: --\u0026gt;\r\n  \u0026lt;version\u0026gt;33.6.0-android\u0026lt;/version\u0026gt;\r\n\u0026lt;/dependency\u0026gt;\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eJar files\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://repo1.maven.org/maven2/com/google/guava/guava/33.6.0-jre/guava-33.6.0-jre.jar\"\u003e33.6.0-jre.jar\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://repo1.maven.org/maven2/com/google/guava/guava/33.6.0-android/guava-33.6.0-android.jar\"\u003e33.6.0-android.jar\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eGuava requires \u003ca href=\"https://github.com/google/guava/wiki/UseGuavaInYourBuild#what-about-guavas-own-dependencies\"\u003eone runtime dependency\u003c/a\u003e, which you can download here:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://repo1.maven.org/maven2/com/google/guava/failureaccess/1.0.3/failureaccess-1.0.3.jar\"\u003efailureaccess-1.0.3.jar\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eJavadoc\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://guava.dev/releases/33.6.0-jre/api/docs/\"\u003e33.6.0-jre\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://guava.dev/releases/33.6.0-android/api/docs/\"\u003e33.6.0-android\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eJDiff\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://guava.dev/releases/33.6.0-jre/api/diffs/\"\u003e33.6.0-jre vs. 33.5.0-jre\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://guava.dev/releases/33.6.0-android/api/diffs/\"\u003e33.6.0-android vs. 33.5.0-android\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://guava.dev/releases/33.6.0-android/api/androiddiffs/\"\u003e33.6.0-android vs. 33.6.0-jre\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChangelog\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMigrated some classes from \u003ccode\u003efinalize()\u003c/code\u003e to \u003ccode\u003ePhantomReference\u003c/code\u003e in preparation for \u003ca href=\"https://openjdk.org/jeps/421\"\u003ethe removal of finalization\u003c/a\u003e. (786b619dd6, 7c6b17c, aeef90988d)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ecache\u003c/code\u003e: Deprecated \u003ccode\u003eCacheBuilder\u003c/code\u003e APIs that use \u003ccode\u003eTimeUnit\u003c/code\u003e in favor of those that use \u003ccode\u003eDuration\u003c/code\u003e. (73f8b0bb84)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ecollect\u003c/code\u003e: Added \u003ccode\u003etoImmutableSortedMap\u003c/code\u003e collectors that use the natural comparator. (64d70b9f94)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ecollect\u003c/code\u003e: Changed \u003ccode\u003eConcurrentHashMultiset\u003c/code\u003e, \u003ccode\u003eImmutableMap\u003c/code\u003e and \u003ccode\u003eTreeMultiset\u003c/code\u003e deserialization to \u003ca href=\"https://openjdk.org/jeps/500\"\u003eavoid mutating \u003ccode\u003efinal\u003c/code\u003e fields\u003c/a\u003e. In extremely unlikely scenarios in which an instance of that type contains an object that refers back to that instance, this could lead to \u003ca href=\"https://docs.oracle.com/en/java/javase/26/docs/specs/serialization/input.html#the-readresolve-method:~:text=in%20cases%20where%20an%20object%20being%20serialized%20nominates%20a%20replacement%20object%20whose%20object%20graph%20has%20a%20reference%20to%20the%20original%20object\"\u003ea broken instance\u003c/a\u003e that throws \u003ccode\u003eNullPointerException\u003c/code\u003e when used. (8240c7e596, 046468055f)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003egraph\u003c/code\u003e: Removed \u003ccode\u003e@Beta\u003c/code\u003e from all APIs in the package. (dae9566b73)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003egraph\u003c/code\u003e: Added support to \u003ccode\u003eGraphs.transitiveClosure()\u003c/code\u003e for different strategies for adding self-loops. (2e13df25b2)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003egraph\u003c/code\u003e: Added an \u003ccode\u003easNetwork()\u003c/code\u003e view to \u003ccode\u003eGraph\u003c/code\u003e and \u003ccode\u003eValueGraph\u003c/code\u003e. (909c593c61)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ehash\u003c/code\u003e: Added \u003ccode\u003eBloomFilter.serializedSize()\u003c/code\u003e. (df9bcc251a)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003enet\u003c/code\u003e: Added \u003ccode\u003eHttpHeaders.CDN_CACHE_CONTROL\u003c/code\u003e. (75331b5030)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/google/guava/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `joda-time:joda-time` from 2.14.0 to 2.14.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/JodaOrg/joda-time/releases\"\u003ejoda-time:joda-time's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v2.14.2\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://www.joda.org/joda-time/changes-report.html#a2.14.2\"\u003echange notes\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate time zone data to 2026bgtz by \u003ca href=\"https://github.com/jodastephen\"\u003e\u003ccode\u003e@​jodastephen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/pull/831\"\u003eJodaOrg/joda-time#831\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/JodaOrg/joda-time/compare/v2.14.1...v2.14.2\"\u003ehttps://github.com/JodaOrg/joda-time/compare/v2.14.1...v2.14.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v2.14.1\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://www.joda.org/joda-time/changes-report.html#a2.14.1\"\u003echange notes\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix build by \u003ca href=\"https://github.com/jodastephen\"\u003e\u003ccode\u003e@​jodastephen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/pull/811\"\u003eJodaOrg/joda-time#811\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: correct typo in README (appropriate) by \u003ca href=\"https://github.com/nabilshafi\"\u003e\u003ccode\u003e@​nabilshafi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/pull/818\"\u003eJodaOrg/joda-time#818\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAuto-merge tzdb updates by \u003ca href=\"https://github.com/jodastephen\"\u003e\u003ccode\u003e@​jodastephen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/pull/819\"\u003eJodaOrg/joda-time#819\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate deployment from OSSRH by \u003ca href=\"https://github.com/jodastephen\"\u003e\u003ccode\u003e@​jodastephen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/pull/820\"\u003eJodaOrg/joda-time#820\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate time zone data to 2025cgtz by \u003ca href=\"https://github.com/jodastephen\"\u003e\u003ccode\u003e@​jodastephen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/pull/826\"\u003eJodaOrg/joda-time#826\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix time zone name key by \u003ca href=\"https://github.com/jodastephen\"\u003e\u003ccode\u003e@​jodastephen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/pull/827\"\u003eJodaOrg/joda-time#827\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate time zone data to 2026agtz by \u003ca href=\"https://github.com/jodastephen\"\u003e\u003ccode\u003e@​jodastephen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/pull/829\"\u003eJodaOrg/joda-time#829\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nabilshafi\"\u003e\u003ccode\u003e@​nabilshafi\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/pull/818\"\u003eJodaOrg/joda-time#818\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/JodaOrg/joda-time/compare/v2.14.0...v2.14.1\"\u003ehttps://github.com/JodaOrg/joda-time/compare/v2.14.0...v2.14.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JodaOrg/joda-time/commit/d6ba4f03c242c12feac308ac25b841a8c9457674\"\u003e\u003ccode\u003ed6ba4f0\u003c/code\u003e\u003c/a\u003e Release v2.14.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JodaOrg/joda-time/commit/43ea40b0c2117e272dbef2b20fd675b43378c8fd\"\u003e\u003ccode\u003e43ea40b\u003c/code\u003e\u003c/a\u003e Update time zone data to 2026bgtz (\u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/issues/831\"\u003e#831\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JodaOrg/joda-time/commit/c377753444ba79cccc0c6c4806ba6fd0a800e629\"\u003e\u003ccode\u003ec377753\u003c/code\u003e\u003c/a\u003e Release v2.14.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JodaOrg/joda-time/commit/3fd08d499067667fb51d210870e2c6bf19651bd3\"\u003e\u003ccode\u003e3fd08d4\u003c/code\u003e\u003c/a\u003e Update time zone data to 2026agtz (\u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/issues/829\"\u003e#829\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JodaOrg/joda-time/commit/c4bf8778152f20aba5a320316e11d05776fae7f5\"\u003e\u003ccode\u003ec4bf877\u003c/code\u003e\u003c/a\u003e Fix name key (\u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/issues/827\"\u003e#827\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JodaOrg/joda-time/commit/8b11cfacc4e8cef281385e7f051132f32583748f\"\u003e\u003ccode\u003e8b11cfa\u003c/code\u003e\u003c/a\u003e Update time zone data to 2025cgtz (\u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/issues/826\"\u003e#826\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JodaOrg/joda-time/commit/7088d772689b751d3e182833970290d05311bf35\"\u003e\u003ccode\u003e7088d77\u003c/code\u003e\u003c/a\u003e Update deployment from OSSRH (\u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JodaOrg/joda-time/commit/34181198cb234fc5b3b3c17ef7ab820b36c3dc84\"\u003e\u003ccode\u003e3418119\u003c/code\u003e\u003c/a\u003e Auto-merge tzdb updates (\u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/issues/819\"\u003e#819\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JodaOrg/joda-time/commit/6c95155c42bfaa49565d371ff3d686b00934d0c3\"\u003e\u003ccode\u003e6c95155\u003c/code\u003e\u003c/a\u003e Fix website commit message\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JodaOrg/joda-time/commit/c1d7f97f72d2c0f8537b6315fe0698a02d55a73c\"\u003e\u003ccode\u003ec1d7f97\u003c/code\u003e\u003c/a\u003e Fix typo in README (\u003ca href=\"https://redirect.github.com/JodaOrg/joda-time/issues/818\"\u003e#818\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/JodaOrg/joda-time/compare/v2.14.0...v2.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.yaml:snakeyaml` from 2.5 to 2.6\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://bitbucket.org/snakeyaml/snakeyaml/commits/cc19a61c191ebc111ad1e22e83f75b18f27531cf\"\u003e\u003ccode\u003ecc19a61\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare for next development iteration\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://bitbucket.org/snakeyaml/snakeyaml/commits/bc4a8f4cf64c79e6a8ce9c51940f0dbea42ba707\"\u003e\u003ccode\u003ebc4a8f4\u003c/code\u003e\u003c/a\u003e Minor fixes in Javadoc\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://bitbucket.org/snakeyaml/snakeyaml/commits/f18203a60abb0427910821855a106bfcd4920457\"\u003e\u003ccode\u003ef18203a\u003c/code\u003e\u003c/a\u003e Add a test for Y79Y-003\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://bitbucket.org/snakeyaml/snakeyaml/commits/ad1fceb1baf04a81f83f65795fc11252f9027c2b\"\u003e\u003ccode\u003ead1fceb\u003c/code\u003e\u003c/a\u003e Less output in tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://bitbucket.org/snakeyaml/snakeyaml/commits/1db66b79fc9bd1760d4f7f5878ad5eac13201d57\"\u003e\u003ccode\u003e1db66b7\u003c/code\u003e\u003c/a\u003e Add (failing) build with JDK 25\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://bitbucket.org/snakeyaml/snakeyaml/commits/88ebaa8210f00b3665ff03680cd770f6762c8507\"\u003e\u003ccode\u003e88ebaa8\u003c/code\u003e\u003c/a\u003e build: fix JKD 25 tests compilation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://bitbucket.org/snakeyaml/snakeyaml/commits/6af8790448b7bcfec3fdcdc6053be49bb8176455\"\u003e\u003ccode\u003e6af8790\u003c/code\u003e\u003c/a\u003e Update Javadoc\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://bitbucket.org/snakeyaml/snakeyaml/commits/a006b7a163c843df70aa0b2fd35e06345a0fe152\"\u003e\u003ccode\u003ea006b7a\u003c/code\u003e\u003c/a\u003e Update Javadoc\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://bitbucket.org/snakeyaml/snakeyaml/commits/c143db209b05a4246b12cf9ea2c121e1301b1616\"\u003e\u003ccode\u003ec143db2\u003c/code\u003e\u003c/a\u003e Update changes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://bitbucket.org/snakeyaml/snakeyaml/commits/d78d11f9665a4a8322af15915047b7c55aefb6cc\"\u003e\u003ccode\u003ed78d11f\u003c/code\u003e\u003c/a\u003e Update changes\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://bitbucket.org/snakeyaml/snakeyaml/branches/compare/snakeyaml-2.6..snakeyaml-2.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.jetbrains.kotlin:kotlin-bom` from 2.2.21 to 2.3.21\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/JetBrains/kotlin/releases\"\u003eorg.jetbrains.kotlin:kotlin-bom's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eKotlin 2.3.21\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eBackend. Wasm\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84610\"\u003e\u003ccode\u003eKT-84610\u003c/code\u003e\u003c/a\u003e [Wasm] Failed to compile klibs in IC mode\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCompiler\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84566\"\u003e\u003ccode\u003eKT-84566\u003c/code\u003e\u003c/a\u003e Prevent launching Default dispatcher threads from IJ SDK in kotlin compiler\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85358\"\u003e\u003ccode\u003eKT-85358\u003c/code\u003e\u003c/a\u003e Native: roll back the workaround for KT-84678 once MapLibre has been properly fixed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85626\"\u003e\u003ccode\u003eKT-85626\u003c/code\u003e\u003c/a\u003e  \u003ccode\u003e@JvmRecord\u003c/code\u003e in commonMain breaks compileCommonMainKotlinMetadata with \u0026quot;Cannot access 'java.lang.Record'\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85405\"\u003e\u003ccode\u003eKT-85405\u003c/code\u003e\u003c/a\u003e Postpone/Revert \u003ccode\u003eDontIgnoreUpperBoundViolatedOnImplicitArguments\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84678\"\u003e\u003ccode\u003eKT-84678\u003c/code\u003e\u003c/a\u003e K/N: Undefined symbol from SPM-added ObjC frameworks when linking iOS target\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85021\"\u003e\u003ccode\u003eKT-85021\u003c/code\u003e\u003c/a\u003e False positive SUBCLASS_CANT_CALL_COMPANION_PROTECTED_NON_STATIC error in multi-module project\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eJavaScript\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-82395\"\u003e\u003ccode\u003eKT-82395\u003c/code\u003e\u003c/a\u003e Support top-level declarations from compiler plugins in JS incremental compilation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84475\"\u003e\u003ccode\u003eKT-84475\u003c/code\u003e\u003c/a\u003e K/JS: false-positive exportability warnings in multi-module project\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84633\"\u003e\u003ccode\u003eKT-84633\u003c/code\u003e\u003c/a\u003e Kotlin/JS: \u0026quot;Serializer for class not found\u0026quot; error when IR output granularity is \u003ccode\u003ewhole-program\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85047\"\u003e\u003ccode\u003eKT-85047\u003c/code\u003e\u003c/a\u003e Kotlin/JS: \u003ccode\u003e@JsStatic\u003c/code\u003e on suspend fun of class companion generates incorrect d.ts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84517\"\u003e\u003ccode\u003eKT-84517\u003c/code\u003e\u003c/a\u003e K/JS: bad mappings data in outputted Kotlin stdlib source map\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eLibraries\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-71848\"\u003e\u003ccode\u003eKT-71848\u003c/code\u003e\u003c/a\u003e Kotlinx.metadata: Add \u003ccode\u003eCompilerPluginData\u003c/code\u003e into Km API\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eNative. C and ObjC Import\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85399\"\u003e\u003ccode\u003eKT-85399\u003c/code\u003e\u003c/a\u003e Kotlin/Native: TypeCastException when casting ObjC Protocol MetaClass with genericSafeCasts enabled\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85508\"\u003e\u003ccode\u003eKT-85508\u003c/code\u003e\u003c/a\u003e K/N: TypeCastException when using nw_parameters_create_secure_tcp block parameter on 2.3.20\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eTools. Gradle\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84729\"\u003e\u003ccode\u003eKT-84729\u003c/code\u003e\u003c/a\u003e Update Gradle plugin-publish version to enable configuration cache badge on Gradle plugins portal\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eTools. Gradle. Compiler plugins\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85257\"\u003e\u003ccode\u003eKT-85257\u003c/code\u003e\u003c/a\u003e AGP/Compose: MergeMappingFileTask clears R8 artifacts due to \u003ccode\u003e@OutputDirectory\u003c/code\u003e annotation on AGP 9.1+\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eTools. Scripts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85105\"\u003e\u003ccode\u003eKT-85105\u003c/code\u003e\u003c/a\u003e Scripts: JVM backend internal error (IR lowering) when scratch file contains anonymous object\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85103\"\u003e\u003ccode\u003eKT-85103\u003c/code\u003e\u003c/a\u003e Exception while generating code when explain destructuring decls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84842\"\u003e\u003ccode\u003eKT-84842\u003c/code\u003e\u003c/a\u003e scriptCompilationClasspathFromContext behavior changed from 2.3.10 to 2.3.20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85029\"\u003e\u003ccode\u003eKT-85029\u003c/code\u003e\u003c/a\u003e Kotlin Scripting: ScriptDiagnostic reports \u0026quot;at null\u0026quot; instead of error location\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eTools. Statistics (FUS)\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/JetBrains/kotlin/blob/master/ChangeLog.md\"\u003eorg.jetbrains.kotlin:kotlin-bom's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.3.21\u003c/h2\u003e\n\u003ch3\u003eBackend. Wasm\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84610\"\u003e\u003ccode\u003eKT-84610\u003c/code\u003e\u003c/a\u003e [Wasm] Failed to compile klibs in IC mode\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCompiler\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84566\"\u003e\u003ccode\u003eKT-84566\u003c/code\u003e\u003c/a\u003e Prevent launching Default dispatcher threads from IJ SDK in kotlin compiler\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85358\"\u003e\u003ccode\u003eKT-85358\u003c/code\u003e\u003c/a\u003e Native: roll back the workaround for KT-84678 once MapLibre has been properly fixed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85626\"\u003e\u003ccode\u003eKT-85626\u003c/code\u003e\u003c/a\u003e  \u003ccode\u003e@JvmRecord\u003c/code\u003e in commonMain breaks compileCommonMainKotlinMetadata with \u0026quot;Cannot access 'java.lang.Record'\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85405\"\u003e\u003ccode\u003eKT-85405\u003c/code\u003e\u003c/a\u003e Postpone/Revert \u003ccode\u003eDontIgnoreUpperBoundViolatedOnImplicitArguments\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84678\"\u003e\u003ccode\u003eKT-84678\u003c/code\u003e\u003c/a\u003e K/N: Undefined symbol from SPM-added ObjC frameworks when linking iOS target\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85021\"\u003e\u003ccode\u003eKT-85021\u003c/code\u003e\u003c/a\u003e False positive SUBCLASS_CANT_CALL_COMPANION_PROTECTED_NON_STATIC error in multi-module project\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eJavaScript\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-82395\"\u003e\u003ccode\u003eKT-82395\u003c/code\u003e\u003c/a\u003e Support top-level declarations from compiler plugins in JS incremental compilation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84475\"\u003e\u003ccode\u003eKT-84475\u003c/code\u003e\u003c/a\u003e K/JS: false-positive exportability warnings in multi-module project\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84633\"\u003e\u003ccode\u003eKT-84633\u003c/code\u003e\u003c/a\u003e Kotlin/JS: \u0026quot;Serializer for class not found\u0026quot; error when IR output granularity is \u003ccode\u003ewhole-program\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85047\"\u003e\u003ccode\u003eKT-85047\u003c/code\u003e\u003c/a\u003e Kotlin/JS: \u003ccode\u003e@JsStatic\u003c/code\u003e on suspend fun of class companion generates incorrect d.ts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84517\"\u003e\u003ccode\u003eKT-84517\u003c/code\u003e\u003c/a\u003e K/JS: bad mappings data in outputted Kotlin stdlib source map\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eLibraries\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-71848\"\u003e\u003ccode\u003eKT-71848\u003c/code\u003e\u003c/a\u003e Kotlinx.metadata: Add \u003ccode\u003eCompilerPluginData\u003c/code\u003e into Km API\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eNative. C and ObjC Import\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85399\"\u003e\u003ccode\u003eKT-85399\u003c/code\u003e\u003c/a\u003e Kotlin/Native: TypeCastException when casting ObjC Protocol MetaClass with genericSafeCasts enabled\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85508\"\u003e\u003ccode\u003eKT-85508\u003c/code\u003e\u003c/a\u003e K/N: TypeCastException when using nw_parameters_create_secure_tcp block parameter on 2.3.20\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eTools. Gradle\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84729\"\u003e\u003ccode\u003eKT-84729\u003c/code\u003e\u003c/a\u003e Update Gradle plugin-publish version to enable configuration cache badge on Gradle plugins portal\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eTools. Gradle. Compiler plugins\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85257\"\u003e\u003ccode\u003eKT-85257\u003c/code\u003e\u003c/a\u003e AGP/Compose: MergeMappingFileTask clears R8 artifacts due to \u003ccode\u003e@OutputDirectory\u003c/code\u003e annotation on AGP 9.1+\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eTools. Scripts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85105\"\u003e\u003ccode\u003eKT-85105\u003c/code\u003e\u003c/a\u003e Scripts: JVM backend internal error (IR lowering) when scratch file contains anonymous object\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85103\"\u003e\u003ccode\u003eKT-85103\u003c/code\u003e\u003c/a\u003e Exception while generating code when explain destructuring decls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-84842\"\u003e\u003ccode\u003eKT-84842\u003c/code\u003e\u003c/a\u003e scriptCompilationClasspathFromContext behavior changed from 2.3.10 to 2.3.20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85029\"\u003e\u003ccode\u003eKT-85029\u003c/code\u003e\u003c/a\u003e Kotlin Scripting: ScriptDiagnostic reports \u0026quot;at null\u0026quot; instead of error location\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eTools. Statistics (FUS)\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://youtrack.jetbrains.com/issue/KT-85628\"\u003e\u003ccode\u003eKT-85628\u003c/code\u003e\u003c/a\u003e KGP: composite build FUS metrics fail on access of 'configurationTimeMetrics'\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JetBrains/kotlin/commit/fea1ad8c18995b80d1ca0e3917056104613d23db\"\u003e\u003ccode\u003efea1ad8\u003c/code\u003e\u003c/a\u003e Add ChangeLog for 2.3.21-RC2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JetBrains/kotlin/commit/09c341e858b8f70d92955fc6b67d6a04962760b4\"\u003e\u003ccode\u003e09c341e\u003c/code\u003e\u003c/a\u003e disable swift export execution tests in order to update macos\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JetBrains/kotlin/commit/67a08681cdd53b318217e6f35d835e0ab3b2e31c\"\u003e\u003ccode\u003e67a0868\u003c/code\u003e\u003c/a\u003e Avoid accessing KotlinNativeLink taskProvider when task was not executed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JetBrains/kotlin/commit/f89e5dbc1867714116e17be1066d6c68e30cc2d4\"\u003e\u003ccode\u003ef89e5db\u003c/code\u003e\u003c/a\u003e [K/N] Disable TSAN in runtime tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JetBrains/kotlin/commit/45d6c859c027c4e82b14b4861e36bc125600e2b0\"\u003e\u003ccode\u003e45d6c85\u003c/code\u003e\u003c/a\u003e [K/N] Don't generate generic safe casts for Objective-C types\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JetBrains/kotlin/commit/9261a6f0790b7504e0223e9e0a0dd242fe0cc3f7\"\u003e\u003ccode\u003e9261a6f\u003c/code\u003e\u003c/a\u003e [K/N][tests] Add a reproducer for KT-85508\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JetBrains/kotlin/commit/c9ab9db37a191f2eb1ce0f5b7ff502ca9d4b3a0d\"\u003e\u003ccode\u003ec9ab9db\u003c/code\u003e\u003c/a\u003e [K/N][tests] Add a reproducer for KT-85399\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JetBrains/kotlin/commit/502e84484e520fbe1a93958be8da97e06a04d7ed\"\u003e\u003ccode\u003e502e844\u003c/code\u003e\u003c/a\u003e Explain: fix for destructuring declarations\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JetBrains/kotlin/commit/0c26485d83f532aa8afbb868895061b7132fd7c8\"\u003e\u003ccode\u003e0c26485\u003c/code\u003e\u003c/a\u003e Explain: fix for object literals\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JetBrains/kotlin/commit/68a9e3f99fcd59c5440970f5f34aff09ce462a69\"\u003e\u003ccode\u003e68a9e3f\u003c/code\u003e\u003c/a\u003e [minor] fix testdata name in explain test\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/JetBrains/kotlin/compare/v2.2.21...v2.3.21\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `com.fasterxml.jackson:jackson-bom` from 2.20.1 to 2.21.3\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FasterXML/jackson-bom/commit/374fbd08ee91a6c91626bae1d6497df21c89b541\"\u003e\u003ccode\u003e374fbd0\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare release jackson-bom-2.21.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FasterXML/jackson-bom/commit/7059df78cc36832349acad026169ff890f4c718c\"\u003e\u003ccode\u003e7059df7\u003c/code\u003e\u003c/a\u003e Prep for 2.21.3 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FasterXML/jackson-bom/commit/2fd60bdab3228f6b99dce81326d9fd7eaf587401\"\u003e\u003ccode\u003e2fd60bd\u003c/code\u003e\u003c/a\u003e Merge branch '2.20' into 2.21\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FasterXML/jackson-bom/commit/b82a3640491f66be2e56bef377b5002cd9d1567b\"\u003e\u003ccode\u003eb82a364\u003c/code\u003e\u003c/a\u003e Merge branch '2.19' into 2.20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FasterXML/jackson-bom/commit/ef4e013e95fc64583b0a414711648a84fc50be46\"\u003e\u003ccode\u003eef4e013\u003c/code\u003e\u003c/a\u003e Merge branch '2.18' into 2.19\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FasterXML/jackson-bom/commit/536ae51c1db9dfbfc8dda697ccfd6545cf626d2b\"\u003e\u003ccode\u003e536ae51\u003c/code\u003e\u003c/a\u003e Post-release dep version bump\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FasterXML/jackson-bom/commit/536c5339035643fdca46ddd947f253afd072f764\"\u003e\u003ccode\u003e536c533\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare for next development iteration\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FasterXML/jackson-bom/commit/426b778e5ea490d164e572a63319c7cf2f362f2f\"\u003e\u003ccode\u003e426b778\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare release jackson-bom-2.18.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FasterXML/jackson-bom/commit/a73cda9be3e57f29c53fea748f1f867eaa1457ab\"\u003e\u003ccode\u003ea73cda9\u003c/code\u003e\u003c/a\u003e Prep for 2.18.7 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FasterXML/jackson-bom/commit/76b4a05087a9e42eb1b26f59d5b7028b0496da5e\"\u003e\u003ccode\u003e76b4a05\u003c/code\u003e\u003c/a\u003e Post-release dep version bump\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/FasterXML/jackson-bom/compare/jackson-bom-2.20.1...jackson-bom-2.21.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.apache.logging.log4j:log4j-bom` from 0.0.0-SNAPSHOT to 2.25.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/apache/logging-log4j2/releases\"\u003eorg.apache.logging.log4j:log4j-bom's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.25.4\u003c/h2\u003e\n\u003cp\u003eThis patch release delivers fixes for configuration inconsistencies and formatting issues across several layouts.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRestores alignment between documented and actual configuration attributes.\u003c/li\u003e\n\u003cli\u003eFixes formatting and sanitization issues in XML and RFC5424 layouts.\u003c/li\u003e\n\u003cli\u003eImproves handling of invalid characters and non-standard values.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThe authoritative list of recognized configuration attributes is available in the \u003ca href=\"https://logging.apache.org/log4j/2.x/plugin-reference.html\"\u003ePluginReference\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDon't issue warnings if extra argument in parameterized logging is \u003ccode\u003enull\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3975\"\u003e#3975\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4014\"\u003e#4014\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRestore support for documented \u003ccode\u003eRfc5424Layout\u003c/code\u003e parameter names. (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4022\"\u003e#4022\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4074\"\u003e#4074\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTake \u003ccode\u003eThrowable#toString()\u003c/code\u003e into account while rendering stack traces in Pattern Layout. (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3623\"\u003e#3623\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4033\"\u003e#4033\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdded debug level logs for successful resource loading in \u003ccode\u003eLoader\u003c/code\u003e class. (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4058\"\u003e#4058\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4060\"\u003e#4060\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAlign \u003ccode\u003eSslConfiguration\u003c/code\u003e factory method usage with Log4j 2.12+ API. The \u003ccode\u003everifyHostname\u003c/code\u003e attribute is now correctly recognized. (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4061\"\u003e#4061\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4075\"\u003e#4075\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix sanitization of structured data parameter names in RFC5424 layout. (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4073\"\u003e#4073\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReplace invalid characters in XmlLayout output with the Unicode replacement character (U+FFFD). (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4077\"\u003e#4077\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReplace invalid characters in Log4j1XmlLayout output with the Unicode replacement character (U+FFFD). (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4078\"\u003e#4078\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReplace invalid characters in MapMessage.asXml() output with the Unicode replacement character (U+FFFD). (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4079\"\u003e#4079\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eWrite non-finite floating-point numbers as strings in \u003ccode\u003eJsonWriter\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4080\"\u003e#4080\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.25.3\u003c/h2\u003e\n\u003cp\u003eThis patch release addresses issues detailed in the changelog below. In particular, it includes an important fix for the host name verification in SSL/TLS configuration. This is used by Socket Appender.\u003c/p\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize \u003ccode\u003eDefaultThreadContextMap.getCopy()\u003c/code\u003e performance by avoiding megamorphic calls in \u003ccode\u003eHashMap\u003c/code\u003e constructor (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3935\"\u003e#3935\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3939\"\u003e#3939\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix GraalVM metadata for nested classes to use binary names instead of canonical names (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3871\"\u003e#3871\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3996\"\u003e#3996\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix failures caused by null \u003ccode\u003eSslConfiguration\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3947\"\u003e#3947\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3953\"\u003e#3953\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix incorrect handling of the host name verification in SSL/TLS configuration, which is used by Socket Appender when SSL/TLS is enabled (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/4002\"\u003e#4002\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRemoved\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the \u003ccode\u003ecom.github.spotbugs:spotbugs-annotations\u003c/code\u003e dependency (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3984\"\u003e#3984\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3985\"\u003e#3985\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.25.2\u003c/h2\u003e\n\u003cp\u003eThis patch release addresses certain minor issues detailed in the changelog.\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix potential memory leak involving \u003ccode\u003eLogBuilder\u003c/code\u003e in Log4j API to Logback bridge (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3819\"\u003e#3819\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3824\"\u003e#3824\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePrevent unnecessary warnings in \u003ccode\u003eAbstractDriverManagerConnectionSource\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3828\"\u003e#3828\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3831\"\u003e#3831\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing newlines in default logging configuration for \u003ccode\u003elog4j-core\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3835\"\u003e#3835\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3851\"\u003e#3851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing default \u003ccode\u003eTarget\u003c/code\u003e value in Console Appender (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3852\"\u003e#3852\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDiscard the sub-second part while obtaining the initial time (i.e., creation time) of a file in \u003ccode\u003eRollingFileManager\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3068\"\u003e#3068\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3872\"\u003e#3872\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix Pattern Layout exception stack trace converters to no longer prepend newlines based on context (\u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3873\"\u003e#3873\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/apache/logging-log4j2/issues/3919\"\u003e#3919\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/apache/logging-log4j2/commits/rel/2.25.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.apache.logging.log4j:log4j-core` from 2.25.2 to 2.25.4\n\nUpdates `org.springframework.boot:spring-boot-dependencies` from 3.5.7 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.5.7...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 3.5.7 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.5.7...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.cloud:spring-cloud-dependencies` from 2025.0.0 to 2025.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/releases\"\u003eorg.springframework.cloud:spring-cloud-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2025.1.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump antora from 3.2.0-alpha.10 to 3.2.0-alpha.11 in /docs by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/447\"\u003espring-cloud/spring-cloud-release#447\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.springframework.cloud:spring-cloud-contract-dependencies from 5.0.1-SNAPSHOT to 5.0.2-SNAPSHOT by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/454\"\u003espring-cloud/spring-cloud-release#454\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.springframework.cloud:spring-cloud-contract-dependencies from 5.0.1-SNAPSHOT to 5.0.2-SNAPSHOT by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/453\"\u003espring-cloud/spring-cloud-release#453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/cache from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/456\"\u003espring-cloud/spring-cloud-release#456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven:maven-model from 3.9.11 to 3.9.12 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/461\"\u003espring-cloud/spring-cloud-release#461\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven:maven-model from 3.9.11 to 3.9.12 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/460\"\u003espring-cloud/spring-cloud-release#460\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/compare/v2025.1.0...v2025.1.1\"\u003ehttps://github.com/spring-cloud/spring-cloud-release/compare/v2025.1.0...v2025.1.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/dbb12bfc2b899fb0845fe4b3c6dc07bc3c1828e2\"\u003e\u003ccode\u003edbb12bf\u003c/code\u003e\u003c/a\u003e Update SNAPSHOT to 2025.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/edc8bcb1d195cb0a9fa96efc82ccb3dfdaf2fd39\"\u003e\u003ccode\u003eedc8bcb\u003c/code\u003e\u003c/a\u003e Bumping versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/a9f418316485581438af2fa1db54f7ff5e80b17e\"\u003e\u003ccode\u003ea9f4183\u003c/code\u003e\u003c/a\u003e Use Spring Boot 4.0.2-SNAPSHOT\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/da7ad033005dd53554ad5aea9eeefab9416c1661\"\u003e\u003ccode\u003eda7ad03\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/issues/460\"\u003e#460\u003c/a\u003e from spring-cloud/dependabot/maven/org.apache.maven-m...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/49b10e643ffdb36873b3abb0bcd0539e0942f0c6\"\u003e\u003ccode\u003e49b10e6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/issues/461\"\u003e#461\u003c/a\u003e from spring-cloud/dependabot/maven/main/org.apache.ma...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/59782becdf97cb4db3693fc9d3688e85fde493b5\"\u003e\u003ccode\u003e59782be\u003c/code\u003e\u003c/a\u003e Bump org.apache.maven:maven-model from 3.9.11 to 3.9.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/89c8dd1e2610118b12e9d9ccb64945833a0ade22\"\u003e\u003ccode\u003e89c8dd1\u003c/code\u003e\u003c/a\u003e Bump org.apache.maven:maven-model from 3.9.11 to 3.9.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/96a5fb078d5eb2d80baec60004f1cb2518290afe\"\u003e\u003ccode\u003e96a5fb0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/issues/456\"\u003e#456\u003c/a\u003e from spring-cloud/dependabot/github_actions/main/acti...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spri...\n\n_Description has been truncated_","html_url":"https://github.com/apache/logging-log4j-samples/pull/396","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/apache%2Flogging-log4j-samples/issues/396","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/396/packages"}},{"old_version":"3.3.12","new_version":"4.0.6","update_type":"major","path":"/backend","pr_created_at":"2026-05-01T22:51:35.000Z","version_change":"3.3.12 → 4.0.6","issue":{"uuid":"4367011209","node_id":"PR_kwDORTiAr87XjJdQ","number":34,"state":"closed","title":"deps: Bump the all-dependencies group in /backend with 10 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-05-01T22:52:38.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-01T22:51:35.000Z","updated_at":"2026-05-01T22:52:47.000Z","time_to_close":63,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps: Bump","group_name":"all-dependencies","update_count":10,"packages":[{"name":"org.springframework.boot:spring-boot-starter-parent","old_version":"3.3.12","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"io.jsonwebtoken:jjwt-api","old_version":"0.12.6","new_version":"0.13.0","repository_url":"https://github.com/jwtk/jjwt"},{"name":"io.jsonwebtoken:jjwt-impl","old_version":"0.12.6","new_version":"0.13.0","repository_url":"https://github.com/jwtk/jjwt"},{"name":"io.jsonwebtoken:jjwt-jackson","old_version":"0.12.6","new_version":"0.13.0"},{"name":"org.projectlombok:lombok","old_version":"1.18.34","new_version":"1.18.46","repository_url":"https://github.com/projectlombok/lombok"},{"name":"org.springdoc:springdoc-openapi-starter-webmvc-ui","old_version":"2.6.0","new_version":"3.0.3","repository_url":"https://github.com/springdoc/springdoc-openapi"},{"name":"software.amazon.awssdk:s3","old_version":"2.29.1","new_version":"2.43.2"},{"name":"com.stripe:stripe-java","old_version":"28.3.0","new_version":"32.1.0","repository_url":"https://github.com/stripe/stripe-java"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"3.3.12","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.jacoco:jacoco-maven-plugin","old_version":"0.8.12","new_version":"0.8.14","repository_url":"https://github.com/jacoco/jacoco"}],"path":"/backend","ecosystem":"maven"},"body":"Bumps the all-dependencies group in /backend with 10 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [org.springframework.boot:spring-boot-starter-parent](https://github.com/spring-projects/spring-boot) | `3.3.12` | `4.0.6` |\n| [io.jsonwebtoken:jjwt-api](https://github.com/jwtk/jjwt) | `0.12.6` | `0.13.0` |\n| [io.jsonwebtoken:jjwt-impl](https://github.com/jwtk/jjwt) | `0.12.6` | `0.13.0` |\n| io.jsonwebtoken:jjwt-jackson | `0.12.6` | `0.13.0` |\n| [org.projectlombok:lombok](https://github.com/projectlombok/lombok) | `1.18.34` | `1.18.46` |\n| [org.springdoc:springdoc-openapi-starter-webmvc-ui](https://github.com/springdoc/springdoc-openapi) | `2.6.0` | `3.0.3` |\n| software.amazon.awssdk:s3 | `2.29.1` | `2.43.2` |\n| [com.stripe:stripe-java](https://github.com/stripe/stripe-java) | `28.3.0` | `32.1.0` |\n| [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) | `3.3.12` | `4.0.6` |\n| [org.jacoco:jacoco-maven-plugin](https://github.com/jacoco/jacoco) | `0.8.12` | `0.8.14` |\n\nUpdates `org.springframework.boot:spring-boot-starter-parent` from 3.3.12 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-parent's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.3.12...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `io.jsonwebtoken:jjwt-api` from 0.12.6 to 0.13.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jwtk/jjwt/releases\"\u003eio.jsonwebtoken:jjwt-api's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.13.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eThis is the last minor JJWT release branch that will support Java 7\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eAny necessary emergency bug fixes will be fixed in subsequent \u003ccode\u003e0.13.x\u003c/code\u003e patch releases, but all new development, including \u003ca href=\"https://github.com/jwtk/jjwt/issues?q=is%3Aissue%20label%3Ajdk8\"\u003eJava 8 compatible changes\u003c/a\u003e, will be in the next minor (\u003ccode\u003e0.14.0\u003c/code\u003e) release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eAll future JJWT major and minor versions (  \u003ccode\u003e0.14.0\u003c/code\u003e and later) will require Java 8 or later.\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eThis release contains a single change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe previously private \u003ccode\u003eJacksonDeserializer(ObjectMapper objectMapper, Map\u0026lt;String, Class\u0026lt;?\u0026gt;\u0026gt; claimTypeMap)\u003c/code\u003e constructor is now \u003ccode\u003epublic\u003c/code\u003e for those that want register a claims  type converter on their own specified \u003ccode\u003eObjectMapper\u003c/code\u003e instance. Thank you to \u003ca href=\"https://github.com/kesrishubham2510\"\u003e\u003ccode\u003e@​kesrishubham2510\u003c/code\u003e\u003c/a\u003e for PR \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/972\"\u003e#972\u003c/a\u003e. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/914\"\u003eIssue 914\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.12.7...0.13.0\"\u003ehttps://github.com/jwtk/jjwt/compare/0.12.7...0.13.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.12.7\u003c/h2\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdds a new Maven BOM! This is useful for multi-module projects. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/967\"\u003eIssue 967\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAllows the \u003ccode\u003eJwtParserBuilder\u003c/code\u003e to have empty nested algorithm collections, effectively disabling the parser's associated feature:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEmptying the \u003ccode\u003ezip()\u003c/code\u003e nested collection disables JWT decompression.\u003c/li\u003e\n\u003cli\u003eEmptying the \u003ccode\u003esig()\u003c/code\u003e nested collection disables JWS mac/signature verification (i.e. all JWSs will be unsupported/rejected).\u003c/li\u003e\n\u003cli\u003eEmptying either the \u003ccode\u003eenc()\u003c/code\u003e or \u003ccode\u003ekey()\u003c/code\u003e nested collections disables JWE decryption (i.e. all JWEs will be unsupported/rejected)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/996\"\u003eIssue 996\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixes \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/961\"\u003ebug 961\u003c/a\u003e where \u003ccode\u003eJwtParserBuilder\u003c/code\u003e nested collection builders were not correctly replacing algorithms with the same id.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eEnsures a \u003ccode\u003eJwkSet\u003c/code\u003e's \u003ccode\u003ekeys\u003c/code\u003e collection is no longer entirely secret/redacted by default.  This was an overzealous default that was unnecessarily restrictive; the \u003ccode\u003ekeys\u003c/code\u003e collection itself should always be public, and each individual key within should determine which fields should be redacted when printed. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/976\"\u003eIssue 976\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImproves performance slightly by ensuring all \u003ccode\u003ejjwt-api\u003c/code\u003e utility methods that create \u003ccode\u003e*Builder\u003c/code\u003e instances (\u003ccode\u003eJwts.builder()\u003c/code\u003e, \u003ccode\u003eJwts.parserBuilder()\u003c/code\u003e, \u003ccode\u003eJwks.builder()\u003c/code\u003e, etc) no longer use reflection.\u003c/p\u003e\n\u003cp\u003eInstead,\u003ccode\u003estatic\u003c/code\u003e factories are created via reflection only once during initial \u003ccode\u003ejjwt-api\u003c/code\u003e classloading, and then \u003ccode\u003e*Builder\u003c/code\u003es are created via standard instantiation using the \u003ccode\u003enew\u003c/code\u003e operator thereafter.  This also benefits certain environments that may not have ideal \u003ccode\u003eClassLoader\u003c/code\u003e implementations (e.g. Tomcat in some cases).\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNOTE: because this changes which classes are loaded via reflection, any environments that must explicitly reference reflective class names (e.g. GraalVM applications) will need to be updated to reflect the new factory class names\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/988\"\u003eIssue 988\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the Gson dependency to \u003ccode\u003e2.11.0\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the BouncyCastle dependency to \u003ccode\u003e1.78.1\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigpwned\"\u003e\u003ccode\u003e@​sigpwned\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/968\"\u003ejwtk/jjwt#968\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TheMrMilchmann\"\u003e\u003ccode\u003e@​TheMrMilchmann\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/979\"\u003ejwtk/jjwt#979\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/atanasg\"\u003e\u003ccode\u003e@​atanasg\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/974\"\u003ejwtk/jjwt#974\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.12.6...0.12.7\"\u003ehttps://github.com/jwtk/jjwt/compare/0.12.6...0.12.7\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jwtk/jjwt/blob/master/CHANGELOG.md\"\u003eio.jsonwebtoken:jjwt-api's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e0.13.0\u003c/h3\u003e\n\u003cp\u003eThis is the last minor JJWT release branch that will support Java 7. Any necessary emergency bug fixes will be fixed in subsequent \u003ccode\u003e0.13.x\u003c/code\u003e patch releases, but all new development, including Java 8 compatible changes, will be in the next minor (\u003ccode\u003e0.14.0\u003c/code\u003e) release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eAll future JJWT major and minor versions (  \u003ccode\u003e0.14.0\u003c/code\u003e and later) will require Java 8 or later.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eThis \u003ccode\u003e0.13.0\u003c/code\u003e minor release has only one change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe previously private \u003ccode\u003eJacksonDeserializer(ObjectMapper objectMapper, Map\u0026lt;String, Class\u0026lt;?\u0026gt;\u0026gt; claimTypeMap)\u003c/code\u003e constructor is now \u003ccode\u003epublic\u003c/code\u003e for those that want register a claims\ntype converter on their own specified \u003ccode\u003eObjectMapper\u003c/code\u003e instance.  See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/914\"\u003eIssue 914\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e0.12.7\u003c/h3\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdds a new Maven BOM, useful for multi-module projects. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/967\"\u003eIssue 967\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAllows the \u003ccode\u003eJwtParserBuilder\u003c/code\u003e to have empty nested algorithm collections, effectively disabling the parser's associated feature:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEmptying the \u003ccode\u003ezip()\u003c/code\u003e nested collection disables JWT decompression.\u003c/li\u003e\n\u003cli\u003eEmptying the \u003ccode\u003esig()\u003c/code\u003e nested collection disables JWS mac/signature verification (i.e. all JWSs will be unsupported/rejected).\u003c/li\u003e\n\u003cli\u003eEmptying either the \u003ccode\u003eenc()\u003c/code\u003e or \u003ccode\u003ekey()\u003c/code\u003e nested collections disables JWE decryption (i.e. all JWEs will be unsupported/rejected)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/996\"\u003eIssue 996\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixes \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/961\"\u003ebug 961\u003c/a\u003e where \u003ccode\u003eJwtParserBuilder\u003c/code\u003e nested collection builders were not correctly replacing algorithms with the same id.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eEnsures a \u003ccode\u003eJwkSet\u003c/code\u003e's \u003ccode\u003ekeys\u003c/code\u003e collection is no longer entirely secret/redacted by default.  This was an overzealous default that was unnecessarily restrictive; the \u003ccode\u003ekeys\u003c/code\u003e collection itself should always be public, and each individual key within should determine which fields should be redacted when printed. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/976\"\u003eIssue 976\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImproves performance slightly by ensuring all \u003ccode\u003ejjwt-api\u003c/code\u003e utility methods that create \u003ccode\u003e*Builder\u003c/code\u003e instances (\u003ccode\u003eJwts.builder()\u003c/code\u003e, \u003ccode\u003eJwts.parserBuilder()\u003c/code\u003e, \u003ccode\u003eJwks.builder()\u003c/code\u003e, etc) no longer use reflection.\u003c/p\u003e\n\u003cp\u003eInstead,\u003ccode\u003estatic\u003c/code\u003e factories are created via reflection only once during initial \u003ccode\u003ejjwt-api\u003c/code\u003e classloading, and then \u003ccode\u003e*Builder\u003c/code\u003es are created via standard instantiation using the \u003ccode\u003enew\u003c/code\u003e operator thereafter.  This also benefits certain environments that may not have ideal \u003ccode\u003eClassLoader\u003c/code\u003e implementations (e.g. Tomcat in some cases).\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNOTE: because this changes which classes are loaded via reflection, any environments that must explicitly reference reflective class names (e.g. GraalVM applications) will need to be updated to reflect the new factory class names\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/988\"\u003eIssue 988\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the Gson dependency to \u003ccode\u003e2.11.0\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the BouncyCastle dependency to \u003ccode\u003e1.78.1\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/a757addce04f6b6d8086beeee8dafcf670550a5b\"\u003e\u003ccode\u003ea757add\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare release 0.13.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/e357463c59cf62c1f70503ac0102d10efcdfc37d\"\u003e\u003ccode\u003ee357463\u003c/code\u003e\u003c/a\u003e Preparing for the 0.13.0 release.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/b6f8cb82a9c2e9817d842bfe72d2c8fb03124342\"\u003e\u003ccode\u003eb6f8cb8\u003c/code\u003e\u003c/a\u003e Made constructor public to allow users their own objectMapper instance (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/972\"\u003e#972\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/03f088a4eb774bae2403c428aa885a12d3afde14\"\u003e\u003ccode\u003e03f088a\u003c/code\u003e\u003c/a\u003e Bumping development version to 0.13.0-SNAPSHOT (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1014\"\u003e#1014\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/3f2697f854bedebe63e9eddb8c596f76086d11ca\"\u003e\u003ccode\u003e3f2697f\u003c/code\u003e\u003c/a\u003e Release 0.12.7 (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1012\"\u003e#1012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/efed1cf56f9b9715e60eaac7fda6b2c4b62410b9\"\u003e\u003ccode\u003eefed1cf\u003c/code\u003e\u003c/a\u003e Updated 0.12.7 change list\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/ca27b122b7f44f3bdd4cd4f636d084f38cc3b3c8\"\u003e\u003ccode\u003eca27b12\u003c/code\u003e\u003c/a\u003e Resolves \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1010\"\u003e#1010\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1011\"\u003e#1011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/55c7b9adef88328f59534f232060830c34f25478\"\u003e\u003ccode\u003e55c7b9a\u003c/code\u003e\u003c/a\u003e Resolves \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/771\"\u003e#771\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1009\"\u003e#1009\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/6e9c6a5a825c5ec38f90006f48cc1f8640a6d82e\"\u003e\u003ccode\u003e6e9c6a5\u003c/code\u003e\u003c/a\u003e Bump org.bouncycastle:bcpkix-jdk18on from 1.78 to 1.78.1 (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1008\"\u003e#1008\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/7ec7dd1a19a38a1829903f88b9512697bfb7be3c\"\u003e\u003ccode\u003e7ec7dd1\u003c/code\u003e\u003c/a\u003e Enable JwtParser empty nested algorithm collections. (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1007\"\u003e#1007\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.12.6...0.13.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `io.jsonwebtoken:jjwt-impl` from 0.12.6 to 0.13.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jwtk/jjwt/releases\"\u003eio.jsonwebtoken:jjwt-impl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.13.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eThis is the last minor JJWT release branch that will support Java 7\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eAny necessary emergency bug fixes will be fixed in subsequent \u003ccode\u003e0.13.x\u003c/code\u003e patch releases, but all new development, including \u003ca href=\"https://github.com/jwtk/jjwt/issues?q=is%3Aissue%20label%3Ajdk8\"\u003eJava 8 compatible changes\u003c/a\u003e, will be in the next minor (\u003ccode\u003e0.14.0\u003c/code\u003e) release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eAll future JJWT major and minor versions (  \u003ccode\u003e0.14.0\u003c/code\u003e and later) will require Java 8 or later.\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eThis release contains a single change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe previously private \u003ccode\u003eJacksonDeserializer(ObjectMapper objectMapper, Map\u0026lt;String, Class\u0026lt;?\u0026gt;\u0026gt; claimTypeMap)\u003c/code\u003e constructor is now \u003ccode\u003epublic\u003c/code\u003e for those that want register a claims  type converter on their own specified \u003ccode\u003eObjectMapper\u003c/code\u003e instance. Thank you to \u003ca href=\"https://github.com/kesrishubham2510\"\u003e\u003ccode\u003e@​kesrishubham2510\u003c/code\u003e\u003c/a\u003e for PR \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/972\"\u003e#972\u003c/a\u003e. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/914\"\u003eIssue 914\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.12.7...0.13.0\"\u003ehttps://github.com/jwtk/jjwt/compare/0.12.7...0.13.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.12.7\u003c/h2\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdds a new Maven BOM! This is useful for multi-module projects. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/967\"\u003eIssue 967\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAllows the \u003ccode\u003eJwtParserBuilder\u003c/code\u003e to have empty nested algorithm collections, effectively disabling the parser's associated feature:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEmptying the \u003ccode\u003ezip()\u003c/code\u003e nested collection disables JWT decompression.\u003c/li\u003e\n\u003cli\u003eEmptying the \u003ccode\u003esig()\u003c/code\u003e nested collection disables JWS mac/signature verification (i.e. all JWSs will be unsupported/rejected).\u003c/li\u003e\n\u003cli\u003eEmptying either the \u003ccode\u003eenc()\u003c/code\u003e or \u003ccode\u003ekey()\u003c/code\u003e nested collections disables JWE decryption (i.e. all JWEs will be unsupported/rejected)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/996\"\u003eIssue 996\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixes \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/961\"\u003ebug 961\u003c/a\u003e where \u003ccode\u003eJwtParserBuilder\u003c/code\u003e nested collection builders were not correctly replacing algorithms with the same id.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eEnsures a \u003ccode\u003eJwkSet\u003c/code\u003e's \u003ccode\u003ekeys\u003c/code\u003e collection is no longer entirely secret/redacted by default.  This was an overzealous default that was unnecessarily restrictive; the \u003ccode\u003ekeys\u003c/code\u003e collection itself should always be public, and each individual key within should determine which fields should be redacted when printed. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/976\"\u003eIssue 976\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImproves performance slightly by ensuring all \u003ccode\u003ejjwt-api\u003c/code\u003e utility methods that create \u003ccode\u003e*Builder\u003c/code\u003e instances (\u003ccode\u003eJwts.builder()\u003c/code\u003e, \u003ccode\u003eJwts.parserBuilder()\u003c/code\u003e, \u003ccode\u003eJwks.builder()\u003c/code\u003e, etc) no longer use reflection.\u003c/p\u003e\n\u003cp\u003eInstead,\u003ccode\u003estatic\u003c/code\u003e factories are created via reflection only once during initial \u003ccode\u003ejjwt-api\u003c/code\u003e classloading, and then \u003ccode\u003e*Builder\u003c/code\u003es are created via standard instantiation using the \u003ccode\u003enew\u003c/code\u003e operator thereafter.  This also benefits certain environments that may not have ideal \u003ccode\u003eClassLoader\u003c/code\u003e implementations (e.g. Tomcat in some cases).\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNOTE: because this changes which classes are loaded via reflection, any environments that must explicitly reference reflective class names (e.g. GraalVM applications) will need to be updated to reflect the new factory class names\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/988\"\u003eIssue 988\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the Gson dependency to \u003ccode\u003e2.11.0\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the BouncyCastle dependency to \u003ccode\u003e1.78.1\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigpwned\"\u003e\u003ccode\u003e@​sigpwned\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/968\"\u003ejwtk/jjwt#968\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TheMrMilchmann\"\u003e\u003ccode\u003e@​TheMrMilchmann\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/979\"\u003ejwtk/jjwt#979\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/atanasg\"\u003e\u003ccode\u003e@​atanasg\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/974\"\u003ejwtk/jjwt#974\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.12.6...0.12.7\"\u003ehttps://github.com/jwtk/jjwt/compare/0.12.6...0.12.7\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jwtk/jjwt/blob/master/CHANGELOG.md\"\u003eio.jsonwebtoken:jjwt-impl's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e0.13.0\u003c/h3\u003e\n\u003cp\u003eThis is the last minor JJWT release branch that will support Java 7. Any necessary emergency bug fixes will be fixed in subsequent \u003ccode\u003e0.13.x\u003c/code\u003e patch releases, but all new development, including Java 8 compatible changes, will be in the next minor (\u003ccode\u003e0.14.0\u003c/code\u003e) release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eAll future JJWT major and minor versions (  \u003ccode\u003e0.14.0\u003c/code\u003e and later) will require Java 8 or later.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eThis \u003ccode\u003e0.13.0\u003c/code\u003e minor release has only one change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe previously private \u003ccode\u003eJacksonDeserializer(ObjectMapper objectMapper, Map\u0026lt;String, Class\u0026lt;?\u0026gt;\u0026gt; claimTypeMap)\u003c/code\u003e constructor is now \u003ccode\u003epublic\u003c/code\u003e for those that want register a claims\ntype converter on their own specified \u003ccode\u003eObjectMapper\u003c/code\u003e instance.  See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/914\"\u003eIssue 914\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e0.12.7\u003c/h3\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdds a new Maven BOM, useful for multi-module projects. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/967\"\u003eIssue 967\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAllows the \u003ccode\u003eJwtParserBuilder\u003c/code\u003e to have empty nested algorithm collections, effectively disabling the parser's associated feature:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEmptying the \u003ccode\u003ezip()\u003c/code\u003e nested collection disables JWT decompression.\u003c/li\u003e\n\u003cli\u003eEmptying the \u003ccode\u003esig()\u003c/code\u003e nested collection disables JWS mac/signature verification (i.e. all JWSs will be unsupported/rejected).\u003c/li\u003e\n\u003cli\u003eEmptying either the \u003ccode\u003eenc()\u003c/code\u003e or \u003ccode\u003ekey()\u003c/code\u003e nested collections disables JWE decryption (i.e. all JWEs will be unsupported/rejected)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/996\"\u003eIssue 996\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixes \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/961\"\u003ebug 961\u003c/a\u003e where \u003ccode\u003eJwtParserBuilder\u003c/code\u003e nested collection builders were not correctly replacing algorithms with the same id.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eEnsures a \u003ccode\u003eJwkSet\u003c/code\u003e's \u003ccode\u003ekeys\u003c/code\u003e collection is no longer entirely secret/redacted by default.  This was an overzealous default that was unnecessarily restrictive; the \u003ccode\u003ekeys\u003c/code\u003e collection itself should always be public, and each individual key within should determine which fields should be redacted when printed. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/976\"\u003eIssue 976\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImproves performance slightly by ensuring all \u003ccode\u003ejjwt-api\u003c/code\u003e utility methods that create \u003ccode\u003e*Builder\u003c/code\u003e instances (\u003ccode\u003eJwts.builder()\u003c/code\u003e, \u003ccode\u003eJwts.parserBuilder()\u003c/code\u003e, \u003ccode\u003eJwks.builder()\u003c/code\u003e, etc) no longer use reflection.\u003c/p\u003e\n\u003cp\u003eInstead,\u003ccode\u003estatic\u003c/code\u003e factories are created via reflection only once during initial \u003ccode\u003ejjwt-api\u003c/code\u003e classloading, and then \u003ccode\u003e*Builder\u003c/code\u003es are created via standard instantiation using the \u003ccode\u003enew\u003c/code\u003e operator thereafter.  This also benefits certain environments that may not have ideal \u003ccode\u003eClassLoader\u003c/code\u003e implementations (e.g. Tomcat in some cases).\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNOTE: because this changes which classes are loaded via reflection, any environments that must explicitly reference reflective class names (e.g. GraalVM applications) will need to be updated to reflect the new factory class names\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/988\"\u003eIssue 988\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the Gson dependency to \u003ccode\u003e2.11.0\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the BouncyCastle dependency to \u003ccode\u003e1.78.1\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/a757addce04f6b6d8086beeee8dafcf670550a5b\"\u003e\u003ccode\u003ea757add\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare release 0.13.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/e357463c59cf62c1f70503ac0102d10efcdfc37d\"\u003e\u003ccode\u003ee357463\u003c/code\u003e\u003c/a\u003e Preparing for the 0.13.0 release.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/b6f8cb82a9c2e9817d842bfe72d2c8fb03124342\"\u003e\u003ccode\u003eb6f8cb8\u003c/code\u003e\u003c/a\u003e Made constructor public to allow users their own objectMapper instance (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/972\"\u003e#972\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/03f088a4eb774bae2403c428aa885a12d3afde14\"\u003e\u003ccode\u003e03f088a\u003c/code\u003e\u003c/a\u003e Bumping development version to 0.13.0-SNAPSHOT (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1014\"\u003e#1014\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/3f2697f854bedebe63e9eddb8c596f76086d11ca\"\u003e\u003ccode\u003e3f2697f\u003c/code\u003e\u003c/a\u003e Release 0.12.7 (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1012\"\u003e#1012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/efed1cf56f9b9715e60eaac7fda6b2c4b62410b9\"\u003e\u003ccode\u003eefed1cf\u003c/code\u003e\u003c/a\u003e Updated 0.12.7 change list\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/ca27b122b7f44f3bdd4cd4f636d084f38cc3b3c8\"\u003e\u003ccode\u003eca27b12\u003c/code\u003e\u003c/a\u003e Resolves \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1010\"\u003e#1010\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1011\"\u003e#1011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/55c7b9adef88328f59534f232060830c34f25478\"\u003e\u003ccode\u003e55c7b9a\u003c/code\u003e\u003c/a\u003e Resolves \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/771\"\u003e#771\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1009\"\u003e#1009\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/6e9c6a5a825c5ec38f90006f48cc1f8640a6d82e\"\u003e\u003ccode\u003e6e9c6a5\u003c/code\u003e\u003c/a\u003e Bump org.bouncycastle:bcpkix-jdk18on from 1.78 to 1.78.1 (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1008\"\u003e#1008\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/7ec7dd1a19a38a1829903f88b9512697bfb7be3c\"\u003e\u003ccode\u003e7ec7dd1\u003c/code\u003e\u003c/a\u003e Enable JwtParser empty nested algorithm collections. (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1007\"\u003e#1007\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.12.6...0.13.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `io.jsonwebtoken:jjwt-jackson` from 0.12.6 to 0.13.0\n\nUpdates `io.jsonwebtoken:jjwt-impl` from 0.12.6 to 0.13.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jwtk/jjwt/releases\"\u003eio.jsonwebtoken:jjwt-impl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.13.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eThis is the last minor JJWT release branch that will support Java 7\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eAny necessary emergency bug fixes will be fixed in subsequent \u003ccode\u003e0.13.x\u003c/code\u003e patch releases, but all new development, including \u003ca href=\"https://github.com/jwtk/jjwt/issues?q=is%3Aissue%20label%3Ajdk8\"\u003eJava 8 compatible changes\u003c/a\u003e, will be in the next minor (\u003ccode\u003e0.14.0\u003c/code\u003e) release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eAll future JJWT major and minor versions (  \u003ccode\u003e0.14.0\u003c/code\u003e and later) will require Java 8 or later.\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eThis release contains a single change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe previously private \u003ccode\u003eJacksonDeserializer(ObjectMapper objectMapper, Map\u0026lt;String, Class\u0026lt;?\u0026gt;\u0026gt; claimTypeMap)\u003c/code\u003e constructor is now \u003ccode\u003epublic\u003c/code\u003e for those that want register a claims  type converter on their own specified \u003ccode\u003eObjectMapper\u003c/code\u003e instance. Thank you to \u003ca href=\"https://github.com/kesrishubham2510\"\u003e\u003ccode\u003e@​kesrishubham2510\u003c/code\u003e\u003c/a\u003e for PR \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/972\"\u003e#972\u003c/a\u003e. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/914\"\u003eIssue 914\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.12.7...0.13.0\"\u003ehttps://github.com/jwtk/jjwt/compare/0.12.7...0.13.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.12.7\u003c/h2\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdds a new Maven BOM! This is useful for multi-module projects. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/967\"\u003eIssue 967\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAllows the \u003ccode\u003eJwtParserBuilder\u003c/code\u003e to have empty nested algorithm collections, effectively disabling the parser's associated feature:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEmptying the \u003ccode\u003ezip()\u003c/code\u003e nested collection disables JWT decompression.\u003c/li\u003e\n\u003cli\u003eEmptying the \u003ccode\u003esig()\u003c/code\u003e nested collection disables JWS mac/signature verification (i.e. all JWSs will be unsupported/rejected).\u003c/li\u003e\n\u003cli\u003eEmptying either the \u003ccode\u003eenc()\u003c/code\u003e or \u003ccode\u003ekey()\u003c/code\u003e nested collections disables JWE decryption (i.e. all JWEs will be unsupported/rejected)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/996\"\u003eIssue 996\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixes \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/961\"\u003ebug 961\u003c/a\u003e where \u003ccode\u003eJwtParserBuilder\u003c/code\u003e nested collection builders were not correctly replacing algorithms with the same id.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eEnsures a \u003ccode\u003eJwkSet\u003c/code\u003e's \u003ccode\u003ekeys\u003c/code\u003e collection is no longer entirely secret/redacted by default.  This was an overzealous default that was unnecessarily restrictive; the \u003ccode\u003ekeys\u003c/code\u003e collection itself should always be public, and each individual key within should determine which fields should be redacted when printed. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/976\"\u003eIssue 976\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImproves performance slightly by ensuring all \u003ccode\u003ejjwt-api\u003c/code\u003e utility methods that create \u003ccode\u003e*Builder\u003c/code\u003e instances (\u003ccode\u003eJwts.builder()\u003c/code\u003e, \u003ccode\u003eJwts.parserBuilder()\u003c/code\u003e, \u003ccode\u003eJwks.builder()\u003c/code\u003e, etc) no longer use reflection.\u003c/p\u003e\n\u003cp\u003eInstead,\u003ccode\u003estatic\u003c/code\u003e factories are created via reflection only once during initial \u003ccode\u003ejjwt-api\u003c/code\u003e classloading, and then \u003ccode\u003e*Builder\u003c/code\u003es are created via standard instantiation using the \u003ccode\u003enew\u003c/code\u003e operator thereafter.  This also benefits certain environments that may not have ideal \u003ccode\u003eClassLoader\u003c/code\u003e implementations (e.g. Tomcat in some cases).\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNOTE: because this changes which classes are loaded via reflection, any environments that must explicitly reference reflective class names (e.g. GraalVM applications) will need to be updated to reflect the new factory class names\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/988\"\u003eIssue 988\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the Gson dependency to \u003ccode\u003e2.11.0\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the BouncyCastle dependency to \u003ccode\u003e1.78.1\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigpwned\"\u003e\u003ccode\u003e@​sigpwned\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/968\"\u003ejwtk/jjwt#968\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TheMrMilchmann\"\u003e\u003ccode\u003e@​TheMrMilchmann\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/979\"\u003ejwtk/jjwt#979\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/atanasg\"\u003e\u003ccode\u003e@​atanasg\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/jwtk/jjwt/pull/974\"\u003ejwtk/jjwt#974\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.12.6...0.12.7\"\u003ehttps://github.com/jwtk/jjwt/compare/0.12.6...0.12.7\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jwtk/jjwt/blob/master/CHANGELOG.md\"\u003eio.jsonwebtoken:jjwt-impl's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e0.13.0\u003c/h3\u003e\n\u003cp\u003eThis is the last minor JJWT release branch that will support Java 7. Any necessary emergency bug fixes will be fixed in subsequent \u003ccode\u003e0.13.x\u003c/code\u003e patch releases, but all new development, including Java 8 compatible changes, will be in the next minor (\u003ccode\u003e0.14.0\u003c/code\u003e) release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eAll future JJWT major and minor versions (  \u003ccode\u003e0.14.0\u003c/code\u003e and later) will require Java 8 or later.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eThis \u003ccode\u003e0.13.0\u003c/code\u003e minor release has only one change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe previously private \u003ccode\u003eJacksonDeserializer(ObjectMapper objectMapper, Map\u0026lt;String, Class\u0026lt;?\u0026gt;\u0026gt; claimTypeMap)\u003c/code\u003e constructor is now \u003ccode\u003epublic\u003c/code\u003e for those that want register a claims\ntype converter on their own specified \u003ccode\u003eObjectMapper\u003c/code\u003e instance.  See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/914\"\u003eIssue 914\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e0.12.7\u003c/h3\u003e\n\u003cp\u003eThis patch release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdds a new Maven BOM, useful for multi-module projects. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/967\"\u003eIssue 967\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAllows the \u003ccode\u003eJwtParserBuilder\u003c/code\u003e to have empty nested algorithm collections, effectively disabling the parser's associated feature:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEmptying the \u003ccode\u003ezip()\u003c/code\u003e nested collection disables JWT decompression.\u003c/li\u003e\n\u003cli\u003eEmptying the \u003ccode\u003esig()\u003c/code\u003e nested collection disables JWS mac/signature verification (i.e. all JWSs will be unsupported/rejected).\u003c/li\u003e\n\u003cli\u003eEmptying either the \u003ccode\u003eenc()\u003c/code\u003e or \u003ccode\u003ekey()\u003c/code\u003e nested collections disables JWE decryption (i.e. all JWEs will be unsupported/rejected)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/996\"\u003eIssue 996\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixes \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/961\"\u003ebug 961\u003c/a\u003e where \u003ccode\u003eJwtParserBuilder\u003c/code\u003e nested collection builders were not correctly replacing algorithms with the same id.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eEnsures a \u003ccode\u003eJwkSet\u003c/code\u003e's \u003ccode\u003ekeys\u003c/code\u003e collection is no longer entirely secret/redacted by default.  This was an overzealous default that was unnecessarily restrictive; the \u003ccode\u003ekeys\u003c/code\u003e collection itself should always be public, and each individual key within should determine which fields should be redacted when printed. See \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/976\"\u003eIssue 976\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImproves performance slightly by ensuring all \u003ccode\u003ejjwt-api\u003c/code\u003e utility methods that create \u003ccode\u003e*Builder\u003c/code\u003e instances (\u003ccode\u003eJwts.builder()\u003c/code\u003e, \u003ccode\u003eJwts.parserBuilder()\u003c/code\u003e, \u003ccode\u003eJwks.builder()\u003c/code\u003e, etc) no longer use reflection.\u003c/p\u003e\n\u003cp\u003eInstead,\u003ccode\u003estatic\u003c/code\u003e factories are created via reflection only once during initial \u003ccode\u003ejjwt-api\u003c/code\u003e classloading, and then \u003ccode\u003e*Builder\u003c/code\u003es are created via standard instantiation using the \u003ccode\u003enew\u003c/code\u003e operator thereafter.  This also benefits certain environments that may not have ideal \u003ccode\u003eClassLoader\u003c/code\u003e implementations (e.g. Tomcat in some cases).\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNOTE: because this changes which classes are loaded via reflection, any environments that must explicitly reference reflective class names (e.g. GraalVM applications) will need to be updated to reflect the new factory class names\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/988\"\u003eIssue 988\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the Gson dependency to \u003ccode\u003e2.11.0\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrades the BouncyCastle dependency to \u003ccode\u003e1.78.1\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/a757addce04f6b6d8086beeee8dafcf670550a5b\"\u003e\u003ccode\u003ea757add\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare release 0.13.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/e357463c59cf62c1f70503ac0102d10efcdfc37d\"\u003e\u003ccode\u003ee357463\u003c/code\u003e\u003c/a\u003e Preparing for the 0.13.0 release.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/b6f8cb82a9c2e9817d842bfe72d2c8fb03124342\"\u003e\u003ccode\u003eb6f8cb8\u003c/code\u003e\u003c/a\u003e Made constructor public to allow users their own objectMapper instance (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/972\"\u003e#972\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/03f088a4eb774bae2403c428aa885a12d3afde14\"\u003e\u003ccode\u003e03f088a\u003c/code\u003e\u003c/a\u003e Bumping development version to 0.13.0-SNAPSHOT (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1014\"\u003e#1014\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/3f2697f854bedebe63e9eddb8c596f76086d11ca\"\u003e\u003ccode\u003e3f2697f\u003c/code\u003e\u003c/a\u003e Release 0.12.7 (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1012\"\u003e#1012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/efed1cf56f9b9715e60eaac7fda6b2c4b62410b9\"\u003e\u003ccode\u003eefed1cf\u003c/code\u003e\u003c/a\u003e Updated 0.12.7 change list\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/ca27b122b7f44f3bdd4cd4f636d084f38cc3b3c8\"\u003e\u003ccode\u003eca27b12\u003c/code\u003e\u003c/a\u003e Resolves \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1010\"\u003e#1010\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1011\"\u003e#1011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/55c7b9adef88328f59534f232060830c34f25478\"\u003e\u003ccode\u003e55c7b9a\u003c/code\u003e\u003c/a\u003e Resolves \u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/771\"\u003e#771\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1009\"\u003e#1009\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/6e9c6a5a825c5ec38f90006f48cc1f8640a6d82e\"\u003e\u003ccode\u003e6e9c6a5\u003c/code\u003e\u003c/a\u003e Bump org.bouncycastle:bcpkix-jdk18on from 1.78 to 1.78.1 (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1008\"\u003e#1008\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jwtk/jjwt/commit/7ec7dd1a19a38a1829903f88b9512697bfb7be3c\"\u003e\u003ccode\u003e7ec7dd1\u003c/code\u003e\u003c/a\u003e Enable JwtParser empty nested algorithm collections. (\u003ca href=\"https://redirect.github.com/jwtk/jjwt/issues/1007\"\u003e#1007\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jwtk/jjwt/compare/0.12.6...0.13.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `io.jsonwebtoken:jjwt-jackson` from 0.12.6 to 0.13.0\n\nUpdates `org.projectlombok:lombok` from 1.18.34 to 1.18.46\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/projectlombok/lombok/blob/master/doc/changelog.markdown\"\u003eorg.projectlombok:lombok's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003ev1.18.46 (April 22nd, 2026)\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePLATFORM: JDK26 support added \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/4019\"\u003e#4019\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003ePLATFORM: Spring Tools Suite 5 supported \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3985\"\u003e#3985\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eBUGFIX: \u003ccode\u003e@Jacksonized\u003c/code\u003e no longer stops generating \u003ccode\u003e@JsonProperty\u003c/code\u003e once an explicit \u003ccode\u003e@JsonIgnore\u003c/code\u003e annotations is encountered \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/4022\"\u003e#4022\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eBUGFIX: In eclipse, mixing \u003ccode\u003e@Jacksonized\u003c/code\u003e and \u003ccode\u003efluent = true\u003c/code\u003e no longer causes the error \u003ccode\u003ecom.fasterxml.jackson.annotation.JsonProperty is not a repeatable annotation interface\u003c/code\u003e. \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3934\"\u003e#3934\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eBUGFIX: Some finishing touches for v1.18.44's support of Jackson3 \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/4004\"\u003e#4004\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ev1.18.44 (March 11th, 2026)\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFEATURE: \u003ccode\u003e@Jacksonized\u003c/code\u003e now supports both Jackson2 and Jackson3; you'll get a warning until you configure which one (or even both!) you want lombok to generate. \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3950\"\u003e#3950\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eBUGFIX: On JDK25, \u003ccode\u003eval\u003c/code\u003e and \u003ccode\u003e@ExtensionMethod\u003c/code\u003e could sometimes cause erroneous errors (in that you see errors but compilation succeeds anyway) using javac. \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3947\"\u003e#3947\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eBUGFIX: \u003ccode\u003e@Jacksonized\u003c/code\u003e + fields marked \u003ccode\u003etransient\u003c/code\u003e would result in those transient fields being serialised which is surprising (and thus undesired) behaviour. \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3936\"\u003e#3936\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ev1.18.42 (September 18th, 2025)\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFEATURE: All the various \u003ccode\u003e@Log\u003c/code\u003e annotations now allow you to change their access level (they still default to \u003ccode\u003eprivate\u003c/code\u003e). \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/2280\"\u003e#2280\u003c/a\u003e. Thanks to new contributor Liam Pace!\u003c/li\u003e\n\u003cli\u003eBUGFIX: Javadoc parsing was broken in Netbeans and ErrorProne for JDK25 \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3940\"\u003e#3940\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ev1.18.40 (September 4th, 2025)\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePLATFORM: JDK25 support added \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3859\"\u003e#3859\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eBUGFIX: Recent versions of eclipse (or the eclipse-based java lang server for VSCode) caused \u003ccode\u003ejava.lang.IllegalArgumentException: Document does not match the AST\u003c/code\u003e. [Issue \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3886\"\u003e#3886\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3886\"\u003eprojectlombok/lombok#3886\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003ePERFORMANCE: \u003ccode\u003e@ExtensionMethod\u003c/code\u003e is now significantly faster [Issue \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3866\"\u003e#3866\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3866\"\u003eprojectlombok/lombok#3866\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eBUGFIX: the command line \u003ccode\u003econfig\u003c/code\u003e tool would emit incorrect output for nullity annotations. [Issue \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3931\"\u003e#3931\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3931\"\u003eprojectlombok/lombok#3931\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFEATURE: \u003ccode\u003e@Jacksonized @Accessors(fluent=true)\u003c/code\u003e automatically creates the relevant annotations such that Jackson correctly identifies fluent accessors. [Issue \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3265\"\u003e#3265\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3265\"\u003eprojectlombok/lombok#3265\u003c/a\u003e), [Issue \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3270\"\u003e#3270\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3270\"\u003eprojectlombok/lombok#3270\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eIMPROBABLE BREAKING CHANGE: From versions 1.18.16 to 1.18.38, lombok automatically copies certain Jackson annotations (e.g., \u003ccode\u003e@JsonProperty\u003c/code\u003e) from fields to the corresponding accessors (getters/setters). However, it turned out to be harmful in certain situations. Thus, Lombok does not automatically copy those annotations any more. You can restore the old behavior using the \u003ca href=\"https://projectlombok.org/features/configuration\"\u003econfig key\u003c/a\u003e \u003ccode\u003elombok.copyJacksonAnnotationsToAccessors = true\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ev1.18.38 (March 31st, 2025)\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePLATFORM: JDK24 support added.\u003c/li\u003e\n\u003cli\u003eFEATURE: Lombok's nullity annotation now supports \u003ca href=\"https://jspecify.dev\"\u003eJSpecify\u003c/a\u003e out of the box, using \u003ca href=\"https://projectlombok.org/features/configuration\"\u003econfig key\u003c/a\u003e \u003ccode\u003ejspecify\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eBUGFIX: Recent eclipse releases would get you 'negative length' error. The bug had always been in lombok but didn't matter until recent releases. [Issue \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3823\"\u003e#3823\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3823\"\u003eprojectlombok/lombok#3823\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eBUGFIX: The 'extract local variable' refactor script of VSCode wouldn't replace all occurrences if run on a method call to a lombok generated method. [Issue \u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3783\"\u003e#3783\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/3783\"\u003eprojectlombok/lombok#3783\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ev1.18.36 (November 15th, 2024)\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePLATFORM: JDK23 support added.\u003c/li\u003e\n\u003cli\u003eBUGFIX: Eclipse projects using the \u003ccode\u003ecom.pro-crafting.tools:jasperreports-maven-plugin\u003c/code\u003e will now compile.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/projectlombok/lombok/commit/936ca59baf844fd6c0ad641974295498785d8091\"\u003e\u003ccode\u003e936ca59\u003c/code\u003e\u003c/a\u003e [build] lombok's launcher is still intended to be 1.4 compatible, or at least...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/projectlombok/lombok/commit/fcdab3f29e1b48c8f4b33ef9231ec2587a43d122\"\u003e\u003ccode\u003efcdab3f\u003c/code\u003e\u003c/a\u003e [version] pre-release version bump\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/projectlombok/lombok/commit/1cb7d49c5d2dc98af7a66413d8119dec285d0666\"\u003e\u003ccode\u003e1cb7d49\u003c/code\u003e\u003c/a\u003e [changelog]\u003ca href=\"https://redirect.github.com/projectlombok/lombok/issues/4004\"\u003e#4004\u003c/a\u003e Mention Jackson3 final touches in changelog.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/projectlombok/lombok/commit/12a15b00555ec8097eca2bf7d77c2c2124e13e0e\"\u003e\u003ccode\u003e12a15b0\u003c/code\u003e\u003c/a\u003e Fix: Bump EA_JDK to 27 (25 and 26 have been released)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/projectlombok/lombok/commit/2be766cfc2ef56f2d986f28f734c98535d611aee\"\u003e\u003ccode\u003e2be766c\u003c/code\u003e\u003c/a\u003e Merge branch 'jackson3-final-touches'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/projectlombok/lombok/commit/290fa4c8539c7e97b47f7e80033e078127050eb5\"\u003e\u003ccode\u003e290fa4c\u003c/code\u003e\u003c/a\u003e [trivial] constantize the warning we spit out for ambiguous jackson2/3, and m...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/projectlombok/lombok/commit/e6567b6621f86b43033ab4a75e0273780e18e998\"\u003e\u003ccode\u003ee6567b6\u003c/code\u003e\u003c/a\u003e test: Add Jackson 3 test cases and version ambiguity warnings\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/projectlombok/lombok/commit/45e72e241abe98dcfb66408402da825dd2b8e925\"\u003e\u003ccode\u003e45e72e2\u003c/code\u003e\u003c/a\u003e feat: Add Jackson 3 databind/dataformat annotations to HandlerUtil copy lists\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/projectlombok/lombok/commit/184d42363d86446a63b6270ac1eb352dc43ae76c\"\u003e\u003ccode\u003e184d423\u003c/code\u003e\u003c/a\u003e feat: Add Jackson 3 support to \u003ca href=\"https://github.com/Jacksonized\"\u003e\u003ccode\u003e@​Jacksonized\u003c/code\u003e\u003c/a\u003e handlers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/projectlombok/lombok/commit/e027ad0f1515bd33d4d329d90e59dccbaf44651e\"\u003e\u003ccode\u003ee027ad0\u003c/code\u003e\u003c/a\u003e refactored to ShadowClassLoader use Collections::enumeration instead of Vector\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/projectlombok/lombok/compare/v1.18.34...v1.18.46\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springdoc:springdoc-openapi-starter-webmvc-ui` from 2.6.0 to 3.0.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/springdoc/springdoc-openapi/releases\"\u003eorg.springdoc:springdoc-openapi-starter-webmvc-ui's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003espringdoc-openapi v3.0.3 released!\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3246\"\u003e#3246\u003c/a\u003e – Add Springdoc OpenAPI MCP (Model Context Protocol) support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3256\"\u003e#3256\u003c/a\u003e – Auto-set \u003ccode\u003enullable: true\u003c/code\u003e for Kotlin nullable types in schema properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3239\"\u003e#3239\u003c/a\u003e – Add support for the \u003ccode\u003e@Range\u003c/code\u003e constraint validation annotation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3244\"\u003e#3244\u003c/a\u003e – Handle default values for \u003ccode\u003eLocalDate\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade Spring Boot to version \u003cstrong\u003e4.0.5\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-core to version \u003cstrong\u003e2.2.47\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-ui to version \u003cstrong\u003e5.32.2\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3260\"\u003e#3260\u003c/a\u003e – \u003ccode\u003e@ConditionalOnClass(HateoasProperties.class)\u003c/code\u003e in \u003ccode\u003eSpringDocHateoasConfiguration\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eForwards all MCP non-transport headers to downstream methods\u003c/li\u003e\n\u003cli\u003eDynamically resolve the base path from \u003ccode\u003ewindow.location.pathname\u003c/code\u003e for MCP UI\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3258\"\u003e#3258\u003c/a\u003e – Setting API Version Required when using WebFlux breaks the Swagger UI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3259\"\u003e#3259\u003c/a\u003e – Annotated Generic properties getting applied to sibling properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3255\"\u003e#3255\u003c/a\u003e – \u003ccode\u003eDirection\u003c/code\u003e enum: fixed visibility scope of group order so that \u003ccode\u003esetGroupsOrder\u003c/code\u003e method can be used\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3247\"\u003e#3247\u003c/a\u003e – Preserve YAML group URLs in Swagger UI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3245\"\u003e#3245\u003c/a\u003e – Upgrade swagger-core from version 2.2.43 to 2.2.45\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3235\"\u003e#3235\u003c/a\u003e – \u003ccode\u003ePropertyResolverUtils\u003c/code\u003e retains a \u003ccode\u003eJsonNode\u003c/code\u003e when reading an \u003ccode\u003eExtensionProperty\u003c/code\u003e annotation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3226\"\u003e#3226\u003c/a\u003e – Propagate \u003ccode\u003eJsonView\u003c/code\u003e context when resolving \u003ccode\u003ePage\u0026lt;T\u0026gt;\u003c/code\u003e schema\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/seregamorph\"\u003e\u003ccode\u003e@​seregamorph\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/pull/3260\"\u003espringdoc/springdoc-openapi#3260\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/springdoc/springdoc-openapi/compare/v3.0.2...v3.0.3\"\u003ehttps://github.com/springdoc/springdoc-openapi/compare/v3.0.2...v3.0.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003espringdoc-openapi v3.0.2 released!\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3229\"\u003e#3229\u003c/a\u003e – Add support for Spring Framework API Versioning with Functional Endpoints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3208\"\u003e#3208\u003c/a\u003e – Add \u003ccode\u003espringdoc.swagger-ui.document-title\u003c/code\u003e property\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade Spring Boot to version \u003cstrong\u003e4.0.3\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-core to version \u003cstrong\u003e2.2.43\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-ui to version \u003cstrong\u003e5.32.0\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade Scalar to version \u003cstrong\u003e0.5.55\u003c/strong\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3232\"\u003e#3232\u003c/a\u003e – Gracefully handle springdoc endpoint paths during API version resolution\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3230\"\u003e#3230\u003c/a\u003e – Scalar source URLs resolve to \u003ccode\u003enull/\u0026lt;groupName\u0026gt;\u003c/code\u003e on second request when using \u003ccode\u003eGroupedOpenApi\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3228\"\u003e#3228\u003c/a\u003e – springdoc-openapi-starter 3.x doesn't depend on \u003ccode\u003eorg.springframework.boot:spring-boot-starter\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/springdoc/springdoc-openapi/blob/v3.0.3/CHANGELOG.md\"\u003eorg.springdoc:springdoc-openapi-starter-webmvc-ui's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.0.3] - 2026-04-12\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3246\"\u003e#3246\u003c/a\u003e – Add Springdoc OpenAPI MCP (Model Context Protocol) support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3256\"\u003e#3256\u003c/a\u003e – Auto-set \u003ccode\u003enullable: true\u003c/code\u003e for Kotlin nullable types in schema properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3239\"\u003e#3239\u003c/a\u003e – Add support for the \u003ccode\u003e@Range\u003c/code\u003e constraint validation annotation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3244\"\u003e#3244\u003c/a\u003e – Handle default values for \u003ccode\u003eLocalDate\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade Spring Boot to version \u003cstrong\u003e4.0.5\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-core to version \u003cstrong\u003e2.2.47\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-ui to version \u003cstrong\u003e5.32.2\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3260\"\u003e#3260\u003c/a\u003e – \u003ccode\u003e@ConditionalOnClass(HateoasProperties.class)\u003c/code\u003e in \u003ccode\u003eSpringDocHateoasConfiguration\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eForwards all MCP non-transport headers to downstream methods\u003c/li\u003e\n\u003cli\u003eDynamically resolve the base path from \u003ccode\u003ewindow.location.pathname\u003c/code\u003e for MCP UI\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3258\"\u003e#3258\u003c/a\u003e – Setting API Version Required when using WebFlux breaks the Swagger UI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3259\"\u003e#3259\u003c/a\u003e – Annotated Generic properties getting applied to sibling properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3255\"\u003e#3255\u003c/a\u003e – \u003ccode\u003eDirection\u003c/code\u003e enum: fixed visibility scope of group order so that \u003ccode\u003esetGroupsOrder\u003c/code\u003e method can be used\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3247\"\u003e#3247\u003c/a\u003e – Preserve YAML group URLs in Swagger UI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3245\"\u003e#3245\u003c/a\u003e – Upgrade swagger-core from version 2.2.43 to 2.2.45\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3235\"\u003e#3235\u003c/a\u003e – \u003ccode\u003ePropertyResolverUtils\u003c/code\u003e retains a \u003ccode\u003eJsonNode\u003c/code\u003e when reading an \u003ccode\u003eExtensionProperty\u003c/code\u003e annotation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3226\"\u003e#3226\u003c/a\u003e – Propagate \u003ccode\u003eJsonView\u003c/code\u003e context when resolving \u003ccode\u003ePage\u0026lt;T\u0026gt;\u003c/code\u003e schema\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.2] - 2026-02-27\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3229\"\u003e#3229\u003c/a\u003e – Add support for Spring Framework API Versioning with Functional Endpoints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3208\"\u003e#3208\u003c/a\u003e – Add \u003ccode\u003espringdoc.swagger-ui.document-title\u003c/code\u003e property\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade Spring Boot to version \u003cstrong\u003e4.0.3\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-core to version \u003cstrong\u003e2.2.43\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-ui to version \u003cstrong\u003e5.32.0\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade Scalar to version \u003cstrong\u003e0.5.55\u003c/strong\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3232\"\u003e#3232\u003c/a\u003e – Gracefully handle springdoc endpoint paths during API version resolution\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3230\"\u003e#3230\u003c/a\u003e – Scalar source URLs resolve to \u003ccode\u003enull/\u0026lt;groupName\u0026gt;\u003c/code\u003e on second request when using \u003ccode\u003eGroupedOpenApi\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3228\"\u003e#3228\u003c/a\u003e – springdoc-openapi-starter 3.x doesn't depend on \u003ccode\u003eorg.springframework.boot:spring-boot-starter\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3220\"\u003e#3220\u003c/a\u003e – Reachability metadata not compatible with GraalVM 25\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3195\"\u003e#3195\u003c/a\u003e – Application won't compile when OpenApi and spring-boot-data-rest is present\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3193\"\u003e#3193\u003c/a\u003e – \u003ccode\u003eOpenApi\u003c/code\u003e field in \u003ccode\u003eSpringDocConfigProperties\u003c/code\u003e does not comply with camel case naming conventions\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/3c30283fb33ced3b8368c7a890ee05d23119322a\"\u003e\u003ccode\u003e3c30283\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare release v3.0.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/4184c05db39e96e8d1ce1287d5f58f242a4c8165\"\u003e\u003ccode\u003e4184c05\u003c/code\u003e\u003c/a\u003e update .gitignore\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/89745c20c3695b9b934cbf77f96ef1cd1df9fac7\"\u003e\u003ccode\u003e89745c2\u003c/code\u003e\u003c/a\u003e CHANGELOG.md update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/4d1a730134720740ed3b9a2831d14e97dbe28780\"\u003e\u003ccode\u003e4d1a730\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3260\"\u003e#3260\u003c/a\u003e from seregamorph/SpringDocHateoasConfiguration-class...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/54e765036d9d49935a97e3ccebd875581efcc8ed\"\u003e\u003ccode\u003e54e7650\u003c/code\u003e\u003c/a\u003e ConditionalOnClass (HateoasProperties.class) in SpringDocHateoasConfiguration\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/9f354b2a3cb92a8caa1d0518b1916ac4f79fbd71\"\u003e\u003ccode\u003e9f354b2\u003c/code\u003e\u003c/a\u003e Spring-boot upgrade to version 4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/14df32f99179db89967a6260562775cd6b883128\"\u003e\u003ccode\u003e14df32f\u003c/code\u003e\u003c/a\u003e Forwards all MCP non-transport headers, to downstream methods\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/3ee9a44547f44fb4982c98b7a5dbc1f6f9aff1a3\"\u003e\u003ccode\u003e3ee9a44\u003c/code\u003e\u003c/a\u003e Forwards all MCP non-transport headers, to downstream methods\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/df99408a7674af5ea3fc40f79d81bfef372e7c0e\"\u003e\u003ccode\u003edf99408\u003c/code\u003e\u003c/a\u003e upgrade swagger-ui to version 5.32.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/6ee70f4074e76d3d8554487e4318681d95e444d7\"\u003e\u003ccode\u003e6ee70f4\u003c/code\u003e\u003c/a\u003e upgrade swagger-api to version 2.2.47\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/springdoc/springdoc-openapi/compare/v2.6.0...v3.0.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `software.amazon.awssdk:s3` from 2.29.1 to 2.43.2\n\nUpdates `com.stripe:stripe-java` from 28.3.0 to 32.1.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/stripe/stripe-java/releases\"\u003ecom.stripe:stripe-java's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev32.1.0\u003c/h2\u003e\n\u003cp\u003eThis release changes the pinned API version to 2026-04-22.dahlia.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/stripe/stripe-java/pull/2203\"\u003e#2203\u003c/a\u003e Update generated code\n\u003cul\u003e\n\u003cli\u003eAdd support for \u003ccode\u003ebalanceReport\u003c/code\u003e and \u003ccode\u003epayoutReconciliationReport\u003c/code\u003e on \u003ccode\u003eAccountSession.components\u003c/code\u003e and \u003ccode\u003eAccountSessionCreateParams.components\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003eappDistribution\u003c/code\u003e and \u003ccode\u003esunbitPayments\u003c/code\u003e on \u003ccode\u003eAccount.capabilities\u003c/code\u003e, \u003ccode\u003eAccountCreateParams.capabilities\u003c/code\u003e, and \u003ccode\u003eAccountUpdateParams.capabilities\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003esunbit\u003c/code\u003e on \u003ccode\u003eCharge.payment_method_details\u003c/code\u003e, \u003ccode\u003eConfirmationToken.payment_method_preview\u003c/code\u003e, \u003ccode\u003eConfirmationTokenCreateParams.payment_method_data\u003c/code\u003e, \u003ccode\u003ePaymentAttemptRecord.payment_method_details\u003c/code\u003e, \u003ccode\u003ePaymentIntentConfirmParams.payment_method_data\u003c/code\u003e, \u003ccode\u003ePaymentIntentCreateParams.payment_method_data\u003c/code\u003e, \u003ccode\u003ePay...\n\n_Description has been truncated_","html_url":"https://github.com/CjlConsultoria/convivium2/pull/34","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/CjlConsultoria%2Fconvivium2/issues/34","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/34/packages"}},{"old_version":"4.0.5","new_version":"4.0.6","update_type":"patch","path":null,"pr_created_at":"2026-05-01T09:22:39.000Z","version_change":"4.0.5 → 4.0.6","issue":{"uuid":"4363728840","node_id":"PR_kwDOC3am1M7XYpeX","number":80,"state":"open","title":"dependencies upgrade(dashboard-service): bump the all group across 1 directory with 2 updates","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-01T09:22:39.000Z","updated_at":"2026-05-01T17:37:29.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"dependencies upgrade(dashboard-service): bump","group_name":"all","update_count":2,"packages":[{"name":"org.springframework.boot:spring-boot-starter-parent","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"}],"path":null,"ecosystem":"maven"},"body":"Bumps the all group with 2 updates in the /dashboard-service directory: [org.springframework.boot:spring-boot-starter-parent](https://github.com/spring-projects/spring-boot) and [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot).\n\nUpdates `org.springframework.boot:spring-boot-starter-parent` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-parent's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n","html_url":"https://github.com/zak905/keycloak-api-key-demo/pull/80","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/zak905%2Fkeycloak-api-key-demo/issues/80","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/80/packages"}},{"old_version":"4.0.4","new_version":"4.0.6","update_type":"patch","path":null,"pr_created_at":"2026-04-29T13:57:22.000Z","version_change":"4.0.4 → 4.0.6","issue":{"uuid":"4351110245","node_id":"PR_kwDOPM9ABM7WvebK","number":127,"state":"closed","title":"Bump the maven-deps group across 1 directory with 8 updates","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-11T21:45:07.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-29T13:57:22.000Z","updated_at":"2026-05-11T21:45:09.000Z","time_to_close":1064865,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"maven-deps","update_count":8,"packages":[{"name":"org.springframework.boot:spring-boot-starter-parent","old_version":"4.0.4","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-starter","old_version":"4.0.4","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-starter-log4j2","old_version":"4.0.4","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.4","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springdoc:springdoc-openapi-starter-webmvc-ui","old_version":"3.0.2","new_version":"3.0.3","repository_url":"https://github.com/springdoc/springdoc-openapi"},{"name":"org.springdoc:springdoc-openapi-starter-common","old_version":"3.0.2","new_version":"3.0.3","repository_url":"https://github.com/springdoc/springdoc-openapi"},{"name":"org.postgresql:postgresql","old_version":"42.7.10","new_version":"42.7.11","repository_url":"https://github.com/pgjdbc/pgjdbc"},{"name":"org.apache.httpcomponents.client5:httpclient5","old_version":"5.6","new_version":"5.6.1","repository_url":"https://github.com/apache/httpcomponents-client"}],"path":null,"ecosystem":"maven"},"body":"Bumps the maven-deps group with 8 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [org.springframework.boot:spring-boot-starter-parent](https://github.com/spring-projects/spring-boot) | `4.0.4` | `4.0.6` |\n| [org.springframework.boot:spring-boot-starter](https://github.com/spring-projects/spring-boot) | `4.0.4` | `4.0.6` |\n| [org.springframework.boot:spring-boot-starter-log4j2](https://github.com/spring-projects/spring-boot) | `4.0.4` | `4.0.6` |\n| [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) | `4.0.4` | `4.0.6` |\n| [org.springdoc:springdoc-openapi-starter-webmvc-ui](https://github.com/springdoc/springdoc-openapi) | `3.0.2` | `3.0.3` |\n| [org.springdoc:springdoc-openapi-starter-common](https://github.com/springdoc/springdoc-openapi) | `3.0.2` | `3.0.3` |\n| [org.postgresql:postgresql](https://github.com/pgjdbc/pgjdbc) | `42.7.10` | `42.7.11` |\n| [org.apache.httpcomponents.client5:httpclient5](https://github.com/apache/httpcomponents-client) | `5.6` | `5.6.1` |\n\n\nUpdates `org.springframework.boot:spring-boot-starter-parent` from 4.0.4 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-parent's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.4...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-starter` from 4.0.4 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.4...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-starter-log4j2` from 4.0.4 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-log4j2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.4...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 4.0.4 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.4...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-starter-log4j2` from 4.0.4 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-log4j2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.4...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springdoc:springdoc-openapi-starter-webmvc-ui` from 3.0.2 to 3.0.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/springdoc/springdoc-openapi/releases\"\u003eorg.springdoc:springdoc-openapi-starter-webmvc-ui's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003espringdoc-openapi v3.0.3 released!\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3246\"\u003e#3246\u003c/a\u003e – Add Springdoc OpenAPI MCP (Model Context Protocol) support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3256\"\u003e#3256\u003c/a\u003e – Auto-set \u003ccode\u003enullable: true\u003c/code\u003e for Kotlin nullable types in schema properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3239\"\u003e#3239\u003c/a\u003e – Add support for the \u003ccode\u003e@Range\u003c/code\u003e constraint validation annotation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3244\"\u003e#3244\u003c/a\u003e – Handle default values for \u003ccode\u003eLocalDate\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade Spring Boot to version \u003cstrong\u003e4.0.5\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-core to version \u003cstrong\u003e2.2.47\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-ui to version \u003cstrong\u003e5.32.2\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3260\"\u003e#3260\u003c/a\u003e – \u003ccode\u003e@ConditionalOnClass(HateoasProperties.class)\u003c/code\u003e in \u003ccode\u003eSpringDocHateoasConfiguration\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eForwards all MCP non-transport headers to downstream methods\u003c/li\u003e\n\u003cli\u003eDynamically resolve the base path from \u003ccode\u003ewindow.location.pathname\u003c/code\u003e for MCP UI\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3258\"\u003e#3258\u003c/a\u003e – Setting API Version Required when using WebFlux breaks the Swagger UI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3259\"\u003e#3259\u003c/a\u003e – Annotated Generic properties getting applied to sibling properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3255\"\u003e#3255\u003c/a\u003e – \u003ccode\u003eDirection\u003c/code\u003e enum: fixed visibility scope of group order so that \u003ccode\u003esetGroupsOrder\u003c/code\u003e method can be used\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3247\"\u003e#3247\u003c/a\u003e – Preserve YAML group URLs in Swagger UI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3245\"\u003e#3245\u003c/a\u003e – Upgrade swagger-core from version 2.2.43 to 2.2.45\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3235\"\u003e#3235\u003c/a\u003e – \u003ccode\u003ePropertyResolverUtils\u003c/code\u003e retains a \u003ccode\u003eJsonNode\u003c/code\u003e when reading an \u003ccode\u003eExtensionProperty\u003c/code\u003e annotation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3226\"\u003e#3226\u003c/a\u003e – Propagate \u003ccode\u003eJsonView\u003c/code\u003e context when resolving \u003ccode\u003ePage\u0026lt;T\u0026gt;\u003c/code\u003e schema\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/seregamorph\"\u003e\u003ccode\u003e@​seregamorph\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/pull/3260\"\u003espringdoc/springdoc-openapi#3260\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/springdoc/springdoc-openapi/compare/v3.0.2...v3.0.3\"\u003ehttps://github.com/springdoc/springdoc-openapi/compare/v3.0.2...v3.0.3\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/springdoc/springdoc-openapi/blob/v3.0.3/CHANGELOG.md\"\u003eorg.springdoc:springdoc-openapi-starter-webmvc-ui's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.0.3] - 2026-04-12\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3246\"\u003e#3246\u003c/a\u003e – Add Springdoc OpenAPI MCP (Model Context Protocol) support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3256\"\u003e#3256\u003c/a\u003e – Auto-set \u003ccode\u003enullable: true\u003c/code\u003e for Kotlin nullable types in schema properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3239\"\u003e#3239\u003c/a\u003e – Add support for the \u003ccode\u003e@Range\u003c/code\u003e constraint validation annotation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3244\"\u003e#3244\u003c/a\u003e – Handle default values for \u003ccode\u003eLocalDate\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade Spring Boot to version \u003cstrong\u003e4.0.5\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-core to version \u003cstrong\u003e2.2.47\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-ui to version \u003cstrong\u003e5.32.2\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3260\"\u003e#3260\u003c/a\u003e – \u003ccode\u003e@ConditionalOnClass(HateoasProperties.class)\u003c/code\u003e in \u003ccode\u003eSpringDocHateoasConfiguration\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eForwards all MCP non-transport headers to downstream methods\u003c/li\u003e\n\u003cli\u003eDynamically resolve the base path from \u003ccode\u003ewindow.location.pathname\u003c/code\u003e for MCP UI\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3258\"\u003e#3258\u003c/a\u003e – Setting API Version Required when using WebFlux breaks the Swagger UI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3259\"\u003e#3259\u003c/a\u003e – Annotated Generic properties getting applied to sibling properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3255\"\u003e#3255\u003c/a\u003e – \u003ccode\u003eDirection\u003c/code\u003e enum: fixed visibility scope of group order so that \u003ccode\u003esetGroupsOrder\u003c/code\u003e method can be used\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3247\"\u003e#3247\u003c/a\u003e – Preserve YAML group URLs in Swagger UI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3245\"\u003e#3245\u003c/a\u003e – Upgrade swagger-core from version 2.2.43 to 2.2.45\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3235\"\u003e#3235\u003c/a\u003e – \u003ccode\u003ePropertyResolverUtils\u003c/code\u003e retains a \u003ccode\u003eJsonNode\u003c/code\u003e when reading an \u003ccode\u003eExtensionProperty\u003c/code\u003e annotation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3226\"\u003e#3226\u003c/a\u003e – Propagate \u003ccode\u003eJsonView\u003c/code\u003e context when resolving \u003ccode\u003ePage\u0026lt;T\u0026gt;\u003c/code\u003e schema\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/3c30283fb33ced3b8368c7a890ee05d23119322a\"\u003e\u003ccode\u003e3c30283\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare release v3.0.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/4184c05db39e96e8d1ce1287d5f58f242a4c8165\"\u003e\u003ccode\u003e4184c05\u003c/code\u003e\u003c/a\u003e update .gitignore\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/89745c20c3695b9b934cbf77f96ef1cd1df9fac7\"\u003e\u003ccode\u003e89745c2\u003c/code\u003e\u003c/a\u003e CHANGELOG.md update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/4d1a730134720740ed3b9a2831d14e97dbe28780\"\u003e\u003ccode\u003e4d1a730\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3260\"\u003e#3260\u003c/a\u003e from seregamorph/SpringDocHateoasConfiguration-class...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/54e765036d9d49935a97e3ccebd875581efcc8ed\"\u003e\u003ccode\u003e54e7650\u003c/code\u003e\u003c/a\u003e ConditionalOnClass (HateoasProperties.class) in SpringDocHateoasConfiguration\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/9f354b2a3cb92a8caa1d0518b1916ac4f79fbd71\"\u003e\u003ccode\u003e9f354b2\u003c/code\u003e\u003c/a\u003e Spring-boot upgrade to version 4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/14df32f99179db89967a6260562775cd6b883128\"\u003e\u003ccode\u003e14df32f\u003c/code\u003e\u003c/a\u003e Forwards all MCP non-transport headers, to downstream methods\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/3ee9a44547f44fb4982c98b7a5dbc1f6f9aff1a3\"\u003e\u003ccode\u003e3ee9a44\u003c/code\u003e\u003c/a\u003e Forwards all MCP non-transport headers, to downstream methods\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/df99408a7674af5ea3fc40f79d81bfef372e7c0e\"\u003e\u003ccode\u003edf99408\u003c/code\u003e\u003c/a\u003e upgrade swagger-ui to version 5.32.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/6ee70f4074e76d3d8554487e4318681d95e444d7\"\u003e\u003ccode\u003e6ee70f4\u003c/code\u003e\u003c/a\u003e upgrade swagger-api to version 2.2.47\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/springdoc/springdoc-openapi/compare/v3.0.2...v3.0.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springdoc:springdoc-openapi-starter-common` from 3.0.2 to 3.0.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/springdoc/springdoc-openapi/releases\"\u003eorg.springdoc:springdoc-openapi-starter-common's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003espringdoc-openapi v3.0.3 released!\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3246\"\u003e#3246\u003c/a\u003e – Add Springdoc OpenAPI MCP (Model Context Protocol) support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3256\"\u003e#3256\u003c/a\u003e – Auto-set \u003ccode\u003enullable: true\u003c/code\u003e for Kotlin nullable types in schema properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3239\"\u003e#3239\u003c/a\u003e – Add support for the \u003ccode\u003e@Range\u003c/code\u003e constraint validation annotation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3244\"\u003e#3244\u003c/a\u003e – Handle default values for \u003ccode\u003eLocalDate\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade Spring Boot to version \u003cstrong\u003e4.0.5\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-core to version \u003cstrong\u003e2.2.47\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-ui to version \u003cstrong\u003e5.32.2\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3260\"\u003e#3260\u003c/a\u003e – \u003ccode\u003e@ConditionalOnClass(HateoasProperties.class)\u003c/code\u003e in \u003ccode\u003eSpringDocHateoasConfiguration\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eForwards all MCP non-transport headers to downstream methods\u003c/li\u003e\n\u003cli\u003eDynamically resolve the base path from \u003ccode\u003ewindow.location.pathname\u003c/code\u003e for MCP UI\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3258\"\u003e#3258\u003c/a\u003e – Setting API Version Required when using WebFlux breaks the Swagger UI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3259\"\u003e#3259\u003c/a\u003e – Annotated Generic properties getting applied to sibling properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3255\"\u003e#3255\u003c/a\u003e – \u003ccode\u003eDirection\u003c/code\u003e enum: fixed visibility scope of group order so that \u003ccode\u003esetGroupsOrder\u003c/code\u003e method can be used\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3247\"\u003e#3247\u003c/a\u003e – Preserve YAML group URLs in Swagger UI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3245\"\u003e#3245\u003c/a\u003e – Upgrade swagger-core from version 2.2.43 to 2.2.45\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3235\"\u003e#3235\u003c/a\u003e – \u003ccode\u003ePropertyResolverUtils\u003c/code\u003e retains a \u003ccode\u003eJsonNode\u003c/code\u003e when reading an \u003ccode\u003eExtensionProperty\u003c/code\u003e annotation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3226\"\u003e#3226\u003c/a\u003e – Propagate \u003ccode\u003eJsonView\u003c/code\u003e context when resolving \u003ccode\u003ePage\u0026lt;T\u0026gt;\u003c/code\u003e schema\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/seregamorph\"\u003e\u003ccode\u003e@​seregamorph\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/pull/3260\"\u003espringdoc/springdoc-openapi#3260\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/springdoc/springdoc-openapi/compare/v3.0.2...v3.0.3\"\u003ehttps://github.com/springdoc/springdoc-openapi/compare/v3.0.2...v3.0.3\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/springdoc/springdoc-openapi/blob/v3.0.3/CHANGELOG.md\"\u003eorg.springdoc:springdoc-openapi-starter-common's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.0.3] - 2026-04-12\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3246\"\u003e#3246\u003c/a\u003e – Add Springdoc OpenAPI MCP (Model Context Protocol) support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3256\"\u003e#3256\u003c/a\u003e – Auto-set \u003ccode\u003enullable: true\u003c/code\u003e for Kotlin nullable types in schema properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3239\"\u003e#3239\u003c/a\u003e – Add support for the \u003ccode\u003e@Range\u003c/code\u003e constraint validation annotation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3244\"\u003e#3244\u003c/a\u003e – Handle default values for \u003ccode\u003eLocalDate\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade Spring Boot to version \u003cstrong\u003e4.0.5\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-core to version \u003cstrong\u003e2.2.47\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-ui to version \u003cstrong\u003e5.32.2\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3260\"\u003e#3260\u003c/a\u003e – \u003ccode\u003e@ConditionalOnClass(HateoasProperties.class)\u003c/code\u003e in \u003ccode\u003eSpringDocHateoasConfiguration\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eForwards all MCP non-transport headers to downstream methods\u003c/li\u003e\n\u003cli\u003eDynamically resolve the base path from \u003ccode\u003ewindow.location.pathname\u003c/code\u003e for MCP UI\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3258\"\u003e#3258\u003c/a\u003e – Setting API Version Required when using WebFlux breaks the Swagger UI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3259\"\u003e#3259\u003c/a\u003e – Annotated Generic properties getting applied to sibling properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3255\"\u003e#3255\u003c/a\u003e – \u003ccode\u003eDirection\u003c/code\u003e enum: fixed visibility scope of group order so that \u003ccode\u003esetGroupsOrder\u003c/code\u003e method can be used\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3247\"\u003e#3247\u003c/a\u003e – Preserve YAML group URLs in Swagger UI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3245\"\u003e#3245\u003c/a\u003e – Upgrade swagger-core from version 2.2.43 to 2.2.45\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3235\"\u003e#3235\u003c/a\u003e – \u003ccode\u003ePropertyResolverUtils\u003c/code\u003e retains a \u003ccode\u003eJsonNode\u003c/code\u003e when reading an \u003ccode\u003eExtensionProperty\u003c/code\u003e annotation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3226\"\u003e#3226\u003c/a\u003e – Propagate \u003ccode\u003eJsonView\u003c/code\u003e context when resolving \u003ccode\u003ePage\u0026lt;T\u0026gt;\u003c/code\u003e schema\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/3c30283fb33ced3b8368c7a890ee05d23119322a\"\u003e\u003ccode\u003e3c30283\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare release v3.0.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/4184c05db39e96e8d1ce1287d5f58f242a4c8165\"\u003e\u003ccode\u003e4184c05\u003c/code\u003e\u003c/a\u003e update .gitignore\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/89745c20c3695b9b934cbf77f96ef1cd1df9fac7\"\u003e\u003ccode\u003e89745c2\u003c/code\u003e\u003c/a\u003e CHANGELOG.md update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/4d1a730134720740ed3b9a2831d14e97dbe28780\"\u003e\u003ccode\u003e4d1a730\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3260\"\u003e#3260\u003c/a\u003e from seregamorph/SpringDocHateoasConfiguration-class...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/54e765036d9d49935a97e3ccebd875581efcc8ed\"\u003e\u003ccode\u003e54e7650\u003c/code\u003e\u003c/a\u003e ConditionalOnClass (HateoasProperties.class) in SpringDocHateoasConfiguration\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/9f354b2a3cb92a8caa1d0518b1916ac4f79fbd71\"\u003e\u003ccode\u003e9f354b2\u003c/code\u003e\u003c/a\u003e Spring-boot upgrade to version 4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/14df32f99179db89967a6260562775cd6b883128\"\u003e\u003ccode\u003e14df32f\u003c/code\u003e\u003c/a\u003e Forwards all MCP non-transport headers, to downstream methods\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/3ee9a44547f44fb4982c98b7a5dbc1f6f9aff1a3\"\u003e\u003ccode\u003e3ee9a44\u003c/code\u003e\u003c/a\u003e Forwards all MCP non-transport headers, to downstream methods\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/df99408a7674af5ea3fc40f79d81bf...\n\n_Description has been truncated_","html_url":"https://github.com/starwit/Urbalytix/pull/127","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/starwit%2FUrbalytix/issues/127","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/127/packages"}},{"old_version":"4.0.1","new_version":"4.0.6","update_type":"patch","path":null,"pr_created_at":"2026-04-29T01:23:16.000Z","version_change":"4.0.1 → 4.0.6","issue":{"uuid":"4347265321","node_id":"PR_kwDOQYaGK87WiwvV","number":46,"state":"open","title":"build(deps-dev): bump org.springframework.boot:spring-boot-maven-plugin from 4.0.1 to 4.0.6","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-29T01:23:16.000Z","updated_at":"2026-04-29T01:23:54.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps-dev)","packages":[{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.1","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"}],"path":null,"ecosystem":"maven"},"body":"Bumps [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) from 4.0.1 to 4.0.6.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.1...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.springframework.boot:spring-boot-maven-plugin\u0026package-manager=maven\u0026previous-version=4.0.1\u0026new-version=4.0.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/gryphus-lab/kafdrop/pull/46","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/gryphus-lab%2Fkafdrop/issues/46","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/46/packages"}},{"old_version":"4.0.5","new_version":"4.0.6","update_type":"patch","path":null,"pr_created_at":"2026-04-27T02:19:07.000Z","version_change":"4.0.5 → 4.0.6","issue":{"uuid":"4332701679","node_id":"PR_kwDOAUOTqM7VzeNh","number":34,"state":"open","title":"build(deps): bump the spring group with 3 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-27T02:19:07.000Z","updated_at":"2026-04-27T02:19:07.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"spring","update_count":3,"packages":[{"name":"org.springframework.boot:spring-boot-dependencies","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-configuration-processor","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-configuration-processor","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"}],"path":null,"ecosystem":"maven"},"body":"Bumps the spring group with 3 updates: [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot), [org.springframework.boot:spring-boot-configuration-processor](https://github.com/spring-projects/spring-boot) and [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot).\n\nUpdates `org.springframework.boot:spring-boot-dependencies` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-configuration-processor` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-configuration-processor's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-configuration-processor` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-configuration-processor's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/prasadus92/face-recognition/pull/34","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/prasadus92%2Fface-recognition/issues/34","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/34/packages"}},{"old_version":"4.0.5","new_version":"4.0.6","update_type":"patch","path":"the dev-deps group","pr_created_at":"2026-04-26T00:12:36.000Z","version_change":"4.0.5 → 4.0.6","issue":{"uuid":"4329586175","node_id":"PR_kwDOLwFaOs7VqS4B","number":219,"state":"open","title":"chore(deps-dev): bump org.springframework.boot:spring-boot-maven-plugin from 4.0.5 to 4.0.6 in the dev-deps group","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-26T00:12:36.000Z","updated_at":"2026-04-26T00:17:28.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps-dev)","packages":[{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"}],"path":"the dev-deps group","ecosystem":"maven"},"body":"Bumps the dev-deps group with 1 update: [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot).\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.springframework.boot:spring-boot-maven-plugin\u0026package-manager=maven\u0026previous-version=4.0.5\u0026new-version=4.0.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/folio-org/mod-record-specifications/pull/219","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/folio-org%2Fmod-record-specifications/issues/219","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/219/packages"}},{"old_version":"3.2.5","new_version":"4.0.6","update_type":"major","path":null,"pr_created_at":"2026-04-24T16:52:34.000Z","version_change":"3.2.5 → 4.0.6","issue":{"uuid":"4324379641","node_id":"PR_kwDOPcwqW87VaCGj","number":46,"state":"open","title":"deps: bump the spring-boot group across 1 directory with 3 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-24T16:52:34.000Z","updated_at":"2026-04-26T13:10:41.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps: bump","group_name":"spring-boot","update_count":3,"packages":[{"name":"org.springframework.boot:spring-boot-dependencies","old_version":"3.2.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"3.2.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.cloud:spring-cloud-dependencies","old_version":"2023.0.1","new_version":"2025.1.1","repository_url":"https://github.com/spring-cloud/spring-cloud-release"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"3.2.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"}],"path":null,"ecosystem":"maven"},"body":"Bumps the spring-boot group with 3 updates in the / directory: [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot), [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) and [org.springframework.cloud:spring-cloud-dependencies](https://github.com/spring-cloud/spring-cloud-release).\n\nUpdates `org.springframework.boot:spring-boot-dependencies` from 3.2.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.2.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 3.2.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.2.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.cloud:spring-cloud-dependencies` from 2023.0.1 to 2025.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/releases\"\u003eorg.springframework.cloud:spring-cloud-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2025.1.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump antora from 3.2.0-alpha.10 to 3.2.0-alpha.11 in /docs by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/447\"\u003espring-cloud/spring-cloud-release#447\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.springframework.cloud:spring-cloud-contract-dependencies from 5.0.1-SNAPSHOT to 5.0.2-SNAPSHOT by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/454\"\u003espring-cloud/spring-cloud-release#454\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.springframework.cloud:spring-cloud-contract-dependencies from 5.0.1-SNAPSHOT to 5.0.2-SNAPSHOT by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/453\"\u003espring-cloud/spring-cloud-release#453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/cache from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/456\"\u003espring-cloud/spring-cloud-release#456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven:maven-model from 3.9.11 to 3.9.12 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/461\"\u003espring-cloud/spring-cloud-release#461\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven:maven-model from 3.9.11 to 3.9.12 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/460\"\u003espring-cloud/spring-cloud-release#460\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/compare/v2025.1.0...v2025.1.1\"\u003ehttps://github.com/spring-cloud/spring-cloud-release/compare/v2025.1.0...v2025.1.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e2025.0.0\u003c/h2\u003e\n\u003ch2\u003eBreaking Changes\u003c/h2\u003e\n\u003ch3\u003eSpring Cloud Gateway\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eNew Module and Starter names have been created, and the old names are deprecated. The new and deprecated artifacts are listed in the table below \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-gateway/pull/3645\"\u003e#3645\u003c/a\u003e. These new names clarify the two styles of gateway (server or proxy exchange) as well as the two web stacks from Spring Framework (Web MCV and WebFlux). Use of the deprecated artifacts will add a warning message in the logs.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ctable\u003e\n\u003cthead\u003e\n\u003ctr\u003e\n\u003cth\u003eDeprecated Artifact\u003c/th\u003e\n\u003cth\u003eNew Artifact\u003c/th\u003e\n\u003c/tr\u003e\n\u003c/thead\u003e\n\u003ctbody\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-gateway-server\u003c/td\u003e\n\u003ctd\u003espring-cloud-gateway-server-webflux\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-gateway-server-mvc\u003c/td\u003e\n\u003ctd\u003espring-cloud-gateway-server-webmvc\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-starter-gateway-server\u003c/td\u003e\n\u003ctd\u003espring-cloud-starter-gateway-server-webflux\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-starter-gateway-server-mvc\u003c/td\u003e\n\u003ctd\u003espring-cloud-starter-gateway-server-webmvc\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-gateway-mvc\u003c/td\u003e\n\u003ctd\u003espring-cloud-gateway-proxyexchange-webmvc\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-gateway-webflux\u003c/td\u003e\n\u003ctd\u003espring-cloud-gateway-proxyexchange-webflux\u003c/td\u003e\n\u003c/tr\u003e\n\u003c/tbody\u003e\n\u003c/table\u003e\n\u003cul\u003e\n\u003cli\u003eMigration to new property prefixes to match the new module names: \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-gateway/issues/3361\"\u003e#3361\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-gateway/issues/3362\"\u003e#3362\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-gateway/issues/3363\"\u003e#3363\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-gateway/issues/3647\"\u003e#3647\u003c/a\u003e. Use \u003ccode\u003espring-boot-properties-migrator\u003c/code\u003e to support the deprecated prefixes. The table below lists the module or starter, its old prefix, and the new replacement prefix.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ctable\u003e\n\u003cthead\u003e\n\u003ctr\u003e\n\u003cth\u003eModule/Starter\u003c/th\u003e\n\u003cth\u003eDeprecated prefix\u003c/th\u003e\n\u003cth\u003eNew prefix\u003c/th\u003e\n\u003c/tr\u003e\n\u003c/thead\u003e\n\u003ctbody\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-starter-gateway-server-webflux\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.*\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.server.webflux.*\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-starter-gateway-server-webmvc\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.mvc.*\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.server.webmvc.*\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-gateway-proxyexchange-webflux\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.proxy.*\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.proxy-exchange.webflux.*\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-gateway-proxyexchange-webmvc\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.proxy.*\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.proxy-exchange.webmvc.*\u003c/td\u003e\n\u003c/tr\u003e\n\u003c/tbody\u003e\n\u003c/table\u003e\n\u003cul\u003e\n\u003cli\u003eThe \u003ccode\u003eX-Forwarded-*\u003c/code\u003e and \u003ccode\u003eForwarded\u003c/code\u003e header functionality will be disabled by default with the fix versions. If you require \u003ccode\u003eX-Forwarded-*\u003c/code\u003e or \u003ccode\u003eForwarded\u003c/code\u003e header functionality, set \u003ccode\u003espring.cloud.gateway.server.webflux.trusted-proxies\u003c/code\u003e to a Java Regular Expression that specifies the proxies whose headers you trust. If you are using Spring Cloud Gateway Server MVC (only available from 4.1.x onward) set \u003ccode\u003espring.cloud.gateway.mvc.trusted-proxies\u003c/code\u003e. For example for Spring Cloud Gateway Server:\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre lang=\"properties\"\u003e\u003ccode\u003espring.cloud.gateway.server.webflux.trusted-proxies=10\\.0\\.0\\..*\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eFor example, for Spring Cloud Gateway Server WebMVC:\u003c/p\u003e\n\u003cpre lang=\"properties\"\u003e\u003ccode\u003espring.cloud.gateway.server.webmvc.trusted-proxies=10\\.0\\.0\\..*\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eSpring Cloud Kubernetes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/dbb12bfc2b899fb0845fe4b3c6dc07bc3c1828e2\"\u003e\u003ccode\u003edbb12bf\u003c/code\u003e\u003c/a\u003e Update SNAPSHOT to 2025.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/edc8bcb1d195cb0a9fa96efc82ccb3dfdaf2fd39\"\u003e\u003ccode\u003eedc8bcb\u003c/code\u003e\u003c/a\u003e Bumping versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/a9f418316485581438af2fa1db54f7ff5e80b17e\"\u003e\u003ccode\u003ea9f4183\u003c/code\u003e\u003c/a\u003e Use Spring Boot 4.0.2-SNAPSHOT\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/da7ad033005dd53554ad5aea9eeefab9416c1661\"\u003e\u003ccode\u003eda7ad03\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/issues/460\"\u003e#460\u003c/a\u003e from spring-cloud/dependabot/maven/org.apache.maven-m...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/49b10e643ffdb36873b3abb0bcd0539e0942f0c6\"\u003e\u003ccode\u003e49b10e6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/issues/461\"\u003e#461\u003c/a\u003e from spring-cloud/dependabot/maven/main/org.apache.ma...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/59782becdf97cb4db3693fc9d3688e85fde493b5\"\u003e\u003ccode\u003e59782be\u003c/code\u003e\u003c/a\u003e Bump org.apache.maven:maven-model from 3.9.11 to 3.9.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/89c8dd1e2610118b12e9d9ccb64945833a0ade22\"\u003e\u003ccode\u003e89c8dd1\u003c/code\u003e\u003c/a\u003e Bump org.apache.maven:maven-model from 3.9.11 to 3.9.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/96a5fb078d5eb2d80baec60004f1cb2518290afe\"\u003e\u003ccode\u003e96a5fb0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/issues/456\"\u003e#456\u003c/a\u003e from spring-cloud/dependabot/github_actions/main/acti...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/5d22a1d1f65df1f7a8c5bc021f5cc5dc44398072\"\u003e\u003ccode\u003e5d22a1d\u003c/code\u003e\u003c/a\u003e Bump actions/cache from 4 to 5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/ec45c6d4c7d7e49695e3c6c9fa68abd3823a770d\"\u003e\u003ccode\u003eec45c6d\u003c/code\u003e\u003c/a\u003e Bumping versions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/compare/v2023.0.1...v2025.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 3.2.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.2.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n","html_url":"https://github.com/Drive10/payflow/pull/46","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Drive10%2Fpayflow/issues/46","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/46/packages"}},{"old_version":"4.0.5","new_version":"4.0.6","update_type":"patch","path":null,"pr_created_at":"2026-04-24T00:03:08.000Z","version_change":"4.0.5 → 4.0.6","issue":{"uuid":"4319579260","node_id":"PR_kwDOB3jAEs7VKQM-","number":1411,"state":"closed","title":"Bump org.springframework.boot:spring-boot-maven-plugin from 4.0.5 to 4.0.6","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-06-11T00:02:48.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-24T00:03:08.000Z","updated_at":"2026-06-11T00:02:50.000Z","time_to_close":4147180,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"}],"path":null,"ecosystem":"maven"},"body":"Bumps [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) from 4.0.5 to 4.0.6.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.springframework.boot:spring-boot-maven-plugin\u0026package-manager=maven\u0026previous-version=4.0.5\u0026new-version=4.0.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/camel-tooling/camel-language-server/pull/1411","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/camel-tooling%2Fcamel-language-server/issues/1411","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1411/packages"}},{"old_version":"4.0.5","new_version":"4.0.6","update_type":"patch","path":null,"pr_created_at":"2026-04-23T16:38:13.000Z","version_change":"4.0.5 → 4.0.6","issue":{"uuid":"4317444282","node_id":"PR_kwDOHBnDWc7VDRC-","number":682,"state":"open","title":"Bump the spring-boot group with 2 updates","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-23T16:38:13.000Z","updated_at":"2026-04-23T16:48:23.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"spring-boot","update_count":2,"packages":[{"name":"org.springframework.boot:spring-boot-dependencies","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.5","new_version":"4.0.6","repository_url":"https://github.com/spring-projects/spring-boot"}],"path":null,"ecosystem":"maven"},"body":"Bumps the spring-boot group with 2 updates: [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot) and [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot).\n\nUpdates `org.springframework.boot:spring-boot-dependencies` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 4.0.5 to 4.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.6\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDefault security is misconfigured when spring-boot-actuator-autoconfigure is present and spring-boot-health is not \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50188\"\u003e#50188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eElasticsearch Rest5Client auto-configuration misconfigures underlying HTTP client \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50187\"\u003e#50187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationPidFileWriter does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50185\"\u003e#50185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRandomValuePropertySource is not suitable for secrets \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50183\"\u003e#50183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCassandra auto-configuration misconfigures CqlSessionBuilder \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50180\"\u003e#50180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApplicationTemp does not handle symlinks correctly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50178\"\u003e#50178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemote DevTools performs comparison incorrectly \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50176\"\u003e#50176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003espring.rabbitmq.ssl.verify-hostname is applied inconsistently \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50174\"\u003e#50174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhole number values are ignored when configuring min and max expected values and SLO boundaries for a distribution summary meter \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50077\"\u003e#50077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClassic starters are missing several modules \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50071\"\u003e#50071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModule spring-boot-resttestclient is missing from spring-boot-starter-test-classic \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/50069\"\u003e#50069\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAnnotations like \u003ccode\u003e@Ssl\u003c/code\u003e don't work on \u003ccode\u003e@Bean\u003c/code\u003e methods when using \u003ccode\u003e@ServiceConnection\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50064\"\u003e#50064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnversRevisionRepositoriesRegistrar should reuse \u003ccode\u003e@EnableEnversRepositories\u003c/code\u003e rather than configuring the JPA counterpart \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50039\"\u003e#50039\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebFlux Cloud Foundry links endpoint includes query string from received request in resolved links \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50017\"\u003e#50017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImports on a containing test class are ignored when a nested class has imports \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50012\"\u003e#50012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith spring.jackson.use-jackson2-defaults set to true, FAIL_ON_UNKNOWN_PROPERTIES is enabled \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49951\"\u003e#49951\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e500 response from env endpoint when supplied pattern is invalid \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49946\"\u003e#49946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReactive MongoDB starter has a transitive dependency on the synchronous MongoDB driver \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49945\"\u003e#49945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP method is lost when configuring excludes in EndpointRequest \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49943\"\u003e#49943\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHonor HttpMethod for reactive additional endpoint paths \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49880\"\u003e#49880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/artemis image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49869\"\u003e#49869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker Compose support doesn't work with apache/activemq image \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49866\"\u003e#49866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpring Security's PathPatternRequestMatcher.Builder is not auto-configured when using WebMvcTest and spring-boot-security-test \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49854\"\u003e#49854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAPI versioning path strategy should be applied path last as it is not meant to yield \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49800\"\u003e#49800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate docs to encourage Java fundamentals for beginners that prefer to learn that way \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50146\"\u003e#50146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHTTP Service Interface Clients still document that API versioning can be configured via properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50126\"\u003e#50126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the observability section of the Lettuce documentation is broken \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50097\"\u003e#50097\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJavadoc for StaticResourceLocation.FAVICON doesn't describe icons location \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50085\"\u003e#50085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMySamlRelyingPartyConfiguration is missing a Kotlin sample \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50024\"\u003e#50024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncorrect default value for management.httpexchanges.recording.include in configuration metadata \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50019\"\u003e#50019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLink to the Kubernetes documentation when discussing startup probes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50015\"\u003e#50015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in JdbcSessionAutoConfiguration Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49873\"\u003e#49873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify that configuration property default values are not available through the Environment \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49851\"\u003e#49851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument the need for Liquibase and Flyway starters \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49839\"\u003e#49839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKafka documentation refers to deprecated JSON serializer and deserializer classes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49826\"\u003e#49826\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Elasticsearch Client 9.2.8 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50027\"\u003e#50027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Groovy 5.0.5 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49911\"\u003e#49911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Hibernate 7.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50134\"\u003e#50134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson Bom 3.1.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50051\"\u003e#50051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/jaxen-xpath/jaxen/releases/tag/v2.0.1\"\u003eJaxen 2.0.1\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/50104\"\u003e#50104\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to \u003ca href=\"https://github.com/FirebirdSQL/jaybird/releases/tag/v6.0.5\"\u003eJaybird 6.0.5\u003c/a\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49914\"\u003e#49914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/8821ad2cd381bb4b9615a61479e1de7305a8ba39\"\u003e\u003ccode\u003e8821ad2\u003c/code\u003e\u003c/a\u003e Release v4.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9e4048a03f17adfe78057a3c4d5b4693305c0ae0\"\u003e\u003ccode\u003e9e4048a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/20bb11c3984802990572ddbeae8b66885a8f2462\"\u003e\u003ccode\u003e20bb11c\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.15-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/98daa8ea30f39a5b0ca6768b5cbc2dc8698ef4e1\"\u003e\u003ccode\u003e98daa8e\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/9dc5aa2863f598a15d3dfa116f4b89249daba7e7\"\u003e\u003ccode\u003e9dc5aa2\u003c/code\u003e\u003c/a\u003e Polish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/874f6294b91da18367b8b5ab7b2fad3fa23cfba6\"\u003e\u003ccode\u003e874f629\u003c/code\u003e\u003c/a\u003e Fix default security with actuator but without health\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e41b3bf731d1134bc18ec1f68ac01e0fe1c54923\"\u003e\u003ccode\u003ee41b3bf\u003c/code\u003e\u003c/a\u003e Enable hostname verification for SSL connections to Elasticsearch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef8527bb0ef8f564f4f9c57a7be99a7aa96c6ab0\"\u003e\u003ccode\u003eef8527b\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/f533a4549c3999aac30cb5830f07dc304933e93d\"\u003e\u003ccode\u003ef533a45\u003c/code\u003e\u003c/a\u003e Do not follow symlinks when writing PID file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a7bd332b6d19fef1aa4cf28434985f2b03a2e0f\"\u003e\u003ccode\u003e4a7bd33\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.5...v4.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/cjmalloy/jasper/pull/682","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/cjmalloy%2Fjasper/issues/682","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/682/packages"}},{"old_version":"3.5.12","new_version":"3.5.13","update_type":"patch","path":null,"pr_created_at":"2026-04-13T08:56:09.000Z","version_change":"3.5.12 → 3.5.13","issue":{"uuid":"4252902457","node_id":"PR_kwDODLsxAM7R673C","number":1619,"state":"open","title":"Bump the spring group across 1 directory with 4 updates","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-13T08:56:09.000Z","updated_at":"2026-04-13T09:08:13.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"spring","update_count":4,"packages":[{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"3.5.12","new_version":"3.5.13","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-dependencies","old_version":"3.5.12","new_version":"3.5.13","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-starter-logging","old_version":"3.5.12","new_version":"3.5.13","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-dependencies","old_version":"3.5.12","new_version":"3.5.13","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-starter-logging","old_version":"3.5.12","new_version":"3.5.13","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springdoc:springdoc-openapi-starter-webmvc-ui","old_version":"2.8.16","new_version":"2.8.17","repository_url":"https://github.com/springdoc/springdoc-openapi"}],"path":null,"ecosystem":"maven"},"body":"Bumps the spring group with 4 updates in the / directory: [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot), [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot), [org.springframework.boot:spring-boot-starter-logging](https://github.com/spring-projects/spring-boot) and [org.springdoc:springdoc-openapi-starter-webmvc-ui](https://github.com/springdoc/springdoc-openapi).\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 3.5.12 to 3.5.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.13\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eJackson has been upgraded to 2.21.2 in response to the Jackson team ending support for Jackson 2.19.x and 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49365\"\u003e#49365\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49750\"\u003e#49750\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49734\"\u003e#49734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49724\"\u003e#49724\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49716\"\u003e#49716\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49661\"\u003e#49661\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49660\"\u003e#49660\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49723\"\u003e#49723\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49710\"\u003e#49710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Hibernate 6.6.45.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49757\"\u003e#49757\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49758\"\u003e#49758\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.1.132.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49759\"\u003e#49759\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 10.1.53 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49760\"\u003e#49760\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Undertow 2.3.24.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49761\"\u003e#49761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49756\"\u003e#49756\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a4c79fa691793be59361c31f4a6447bb0a48907\"\u003e\u003ccode\u003e4a4c79f\u003c/code\u003e\u003c/a\u003e Release v3.5.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4b37ecbf6db93913f811f4d3f64a7f800ea39573\"\u003e\u003ccode\u003e4b37ecb\u003c/code\u003e\u003c/a\u003e Upgrade to Undertow 2.3.24.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/32a51d5d709b758786f371e063754d99c0348755\"\u003e\u003ccode\u003e32a51d5\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 10.1.53\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/093429614119c03ab660e30fd21dacbd404a10fe\"\u003e\u003ccode\u003e0934296\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.1.132.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/851ddda4225a97ba8f5030454f276a559bcb3b71\"\u003e\u003ccode\u003e851ddda\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef876fe5d2648ec11eab45546725bd0f21c34870\"\u003e\u003ccode\u003eef876fe\u003c/code\u003e\u003c/a\u003e Upgrade to Hibernate 6.6.45.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/2841d874cfffed8f8c75bf631289aa4283281d3a\"\u003e\u003ccode\u003e2841d87\u003c/code\u003e\u003c/a\u003e Upgrade to Zipkin Reporter 3.5.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/025b527e87f9820c1142468fdcf0b21db3cd192d\"\u003e\u003ccode\u003e025b527\u003c/code\u003e\u003c/a\u003e Fix WebSocketMessagingAutoConfiguration in the absence of Jackson\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/328267249f71336f642effe8aaf80e39d9d9be65\"\u003e\u003ccode\u003e3282672\u003c/code\u003e\u003c/a\u003e Make DevTools tests more tolerant to wrapped DataSource\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.5.12...v3.5.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-dependencies` from 3.5.12 to 3.5.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.13\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eJackson has been upgraded to 2.21.2 in response to the Jackson team ending support for Jackson 2.19.x and 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49365\"\u003e#49365\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49750\"\u003e#49750\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49734\"\u003e#49734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49724\"\u003e#49724\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49716\"\u003e#49716\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49661\"\u003e#49661\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49660\"\u003e#49660\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49723\"\u003e#49723\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49710\"\u003e#49710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Hibernate 6.6.45.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49757\"\u003e#49757\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49758\"\u003e#49758\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.1.132.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49759\"\u003e#49759\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 10.1.53 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49760\"\u003e#49760\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Undertow 2.3.24.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49761\"\u003e#49761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49756\"\u003e#49756\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a4c79fa691793be59361c31f4a6447bb0a48907\"\u003e\u003ccode\u003e4a4c79f\u003c/code\u003e\u003c/a\u003e Release v3.5.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4b37ecbf6db93913f811f4d3f64a7f800ea39573\"\u003e\u003ccode\u003e4b37ecb\u003c/code\u003e\u003c/a\u003e Upgrade to Undertow 2.3.24.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/32a51d5d709b758786f371e063754d99c0348755\"\u003e\u003ccode\u003e32a51d5\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 10.1.53\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/093429614119c03ab660e30fd21dacbd404a10fe\"\u003e\u003ccode\u003e0934296\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.1.132.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/851ddda4225a97ba8f5030454f276a559bcb3b71\"\u003e\u003ccode\u003e851ddda\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef876fe5d2648ec11eab45546725bd0f21c34870\"\u003e\u003ccode\u003eef876fe\u003c/code\u003e\u003c/a\u003e Upgrade to Hibernate 6.6.45.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/2841d874cfffed8f8c75bf631289aa4283281d3a\"\u003e\u003ccode\u003e2841d87\u003c/code\u003e\u003c/a\u003e Upgrade to Zipkin Reporter 3.5.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/025b527e87f9820c1142468fdcf0b21db3cd192d\"\u003e\u003ccode\u003e025b527\u003c/code\u003e\u003c/a\u003e Fix WebSocketMessagingAutoConfiguration in the absence of Jackson\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/328267249f71336f642effe8aaf80e39d9d9be65\"\u003e\u003ccode\u003e3282672\u003c/code\u003e\u003c/a\u003e Make DevTools tests more tolerant to wrapped DataSource\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.5.12...v3.5.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-starter-logging` from 3.5.12 to 3.5.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-logging's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.13\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eJackson has been upgraded to 2.21.2 in response to the Jackson team ending support for Jackson 2.19.x and 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49365\"\u003e#49365\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49750\"\u003e#49750\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49734\"\u003e#49734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49724\"\u003e#49724\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49716\"\u003e#49716\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49661\"\u003e#49661\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49660\"\u003e#49660\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49723\"\u003e#49723\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49710\"\u003e#49710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Hibernate 6.6.45.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49757\"\u003e#49757\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49758\"\u003e#49758\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.1.132.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49759\"\u003e#49759\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 10.1.53 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49760\"\u003e#49760\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Undertow 2.3.24.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49761\"\u003e#49761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49756\"\u003e#49756\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a4c79fa691793be59361c31f4a6447bb0a48907\"\u003e\u003ccode\u003e4a4c79f\u003c/code\u003e\u003c/a\u003e Release v3.5.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4b37ecbf6db93913f811f4d3f64a7f800ea39573\"\u003e\u003ccode\u003e4b37ecb\u003c/code\u003e\u003c/a\u003e Upgrade to Undertow 2.3.24.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/32a51d5d709b758786f371e063754d99c0348755\"\u003e\u003ccode\u003e32a51d5\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 10.1.53\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/093429614119c03ab660e30fd21dacbd404a10fe\"\u003e\u003ccode\u003e0934296\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.1.132.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/851ddda4225a97ba8f5030454f276a559bcb3b71\"\u003e\u003ccode\u003e851ddda\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef876fe5d2648ec11eab45546725bd0f21c34870\"\u003e\u003ccode\u003eef876fe\u003c/code\u003e\u003c/a\u003e Upgrade to Hibernate 6.6.45.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/2841d874cfffed8f8c75bf631289aa4283281d3a\"\u003e\u003ccode\u003e2841d87\u003c/code\u003e\u003c/a\u003e Upgrade to Zipkin Reporter 3.5.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/025b527e87f9820c1142468fdcf0b21db3cd192d\"\u003e\u003ccode\u003e025b527\u003c/code\u003e\u003c/a\u003e Fix WebSocketMessagingAutoConfiguration in the absence of Jackson\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/328267249f71336f642effe8aaf80e39d9d9be65\"\u003e\u003ccode\u003e3282672\u003c/code\u003e\u003c/a\u003e Make DevTools tests more tolerant to wrapped DataSource\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.5.12...v3.5.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-dependencies` from 3.5.12 to 3.5.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.13\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eJackson has been upgraded to 2.21.2 in response to the Jackson team ending support for Jackson 2.19.x and 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49365\"\u003e#49365\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49750\"\u003e#49750\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49734\"\u003e#49734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49724\"\u003e#49724\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49716\"\u003e#49716\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49661\"\u003e#49661\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49660\"\u003e#49660\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49723\"\u003e#49723\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49710\"\u003e#49710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Hibernate 6.6.45.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49757\"\u003e#49757\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49758\"\u003e#49758\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.1.132.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49759\"\u003e#49759\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 10.1.53 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49760\"\u003e#49760\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Undertow 2.3.24.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49761\"\u003e#49761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49756\"\u003e#49756\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a4c79fa691793be59361c31f4a6447bb0a48907\"\u003e\u003ccode\u003e4a4c79f\u003c/code\u003e\u003c/a\u003e Release v3.5.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4b37ecbf6db93913f811f4d3f64a7f800ea39573\"\u003e\u003ccode\u003e4b37ecb\u003c/code\u003e\u003c/a\u003e Upgrade to Undertow 2.3.24.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/32a51d5d709b758786f371e063754d99c0348755\"\u003e\u003ccode\u003e32a51d5\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 10.1.53\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/093429614119c03ab660e30fd21dacbd404a10fe\"\u003e\u003ccode\u003e0934296\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.1.132.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/851ddda4225a97ba8f5030454f276a559bcb3b71\"\u003e\u003ccode\u003e851ddda\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef876fe5d2648ec11eab45546725bd0f21c34870\"\u003e\u003ccode\u003eef876fe\u003c/code\u003e\u003c/a\u003e Upgrade to Hibernate 6.6.45.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/2841d874cfffed8f8c75bf631289aa4283281d3a\"\u003e\u003ccode\u003e2841d87\u003c/code\u003e\u003c/a\u003e Upgrade to Zipkin Reporter 3.5.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/025b527e87f9820c1142468fdcf0b21db3cd192d\"\u003e\u003ccode\u003e025b527\u003c/code\u003e\u003c/a\u003e Fix WebSocketMessagingAutoConfiguration in the absence of Jackson\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/328267249f71336f642effe8aaf80e39d9d9be65\"\u003e\u003ccode\u003e3282672\u003c/code\u003e\u003c/a\u003e Make DevTools tests more tolerant to wrapped DataSource\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.5.12...v3.5.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-starter-logging` from 3.5.12 to 3.5.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-logging's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.13\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eJackson has been upgraded to 2.21.2 in response to the Jackson team ending support for Jackson 2.19.x and 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49365\"\u003e#49365\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49750\"\u003e#49750\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49734\"\u003e#49734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49724\"\u003e#49724\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49716\"\u003e#49716\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49661\"\u003e#49661\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49660\"\u003e#49660\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49723\"\u003e#49723\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49710\"\u003e#49710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Hibernate 6.6.45.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49757\"\u003e#49757\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49758\"\u003e#49758\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.1.132.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49759\"\u003e#49759\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 10.1.53 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49760\"\u003e#49760\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Undertow 2.3.24.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49761\"\u003e#49761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49756\"\u003e#49756\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a4c79fa691793be59361c31f4a6447bb0a48907\"\u003e\u003ccode\u003e4a4c79f\u003c/code\u003e\u003c/a\u003e Release v3.5.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4b37ecbf6db93913f811f4d3f64a7f800ea39573\"\u003e\u003ccode\u003e4b37ecb\u003c/code\u003e\u003c/a\u003e Upgrade to Undertow 2.3.24.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/32a51d5d709b758786f371e063754d99c0348755\"\u003e\u003ccode\u003e32a51d5\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 10.1.53\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/093429614119c03ab660e30fd21dacbd404a10fe\"\u003e\u003ccode\u003e0934296\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.1.132.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/851ddda4225a97ba8f5030454f276a559bcb3b71\"\u003e\u003ccode\u003e851ddda\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef876fe5d2648ec11eab45546725bd0f21c34870\"\u003e\u003ccode\u003eef876fe\u003c/code\u003e\u003c/a\u003e Upgrade to Hibernate 6.6.45.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/2841d874cfffed8f8c75bf631289aa4283281d3a\"\u003e\u003ccode\u003e2841d87\u003c/code\u003e\u003c/a\u003e Upgrade to Zipkin Reporter 3.5.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/025b527e87f9820c1142468fdcf0b21db3cd192d\"\u003e\u003ccode\u003e025b527\u003c/code\u003e\u003c/a\u003e Fix WebSocketMessagingAutoConfiguration in the absence of Jackson\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/328267249f71336f642effe8aaf80e39d9d9be65\"\u003e\u003ccode\u003e3282672\u003c/code\u003e\u003c/a\u003e Make DevTools tests more tolerant to wrapped DataSource\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.5.12...v3.5.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springdoc:springdoc-openapi-starter-webmvc-ui` from 2.8.16 to 2.8.17\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/springdoc/springdoc-openapi/releases\"\u003eorg.springdoc:springdoc-openapi-starter-webmvc-ui's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003espringdoc-openapi v2.8.17 released!\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for the \u003ccode\u003e@Range\u003c/code\u003e constraint validation annotation\u003c/li\u003e\n\u003cli\u003eAuto-set \u003ccode\u003enullable: true\u003c/code\u003e for Kotlin nullable types in schema properties\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade Spring Boot to version \u003cstrong\u003e3.5.13\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-core to version \u003cstrong\u003e2.2.47\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-ui to version \u003cstrong\u003e5.32.2\u003c/strong\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3259\"\u003e#3259\u003c/a\u003e – Fix an issue with annotated types with generics on parameters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3255\"\u003e#3255\u003c/a\u003e – Handle \u003ccode\u003e$ref\u003c/code\u003e nullable wrapping and OAS 3.1 support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3245\"\u003e#3245\u003c/a\u003e – Upgrade swagger-core from 2.2.43 to 2.2.45 (fixes schema resolution issues)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3241\"\u003e#3241\u003c/a\u003e – Generic error responses from multiple \u003ccode\u003e@ControllerAdvice\u003c/code\u003e are still nondeterministic across OS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3236\"\u003e#3236\u003c/a\u003e – Preserve YAML group URLs in Swagger UI\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003ePropertyResolverUtils\u003c/code\u003e to retain a \u003ccode\u003eJsonNode\u003c/code\u003e when reading an \u003ccode\u003eExtensionProperty\u003c/code\u003e annotation\u003c/li\u003e\n\u003cli\u003eFix handling of default values for \u003ccode\u003eLocalDate\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/soowanx\"\u003e\u003ccode\u003e@​soowanx\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/pull/3247\"\u003espringdoc/springdoc-openapi#3247\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pcalouche\"\u003e\u003ccode\u003e@​pcalouche\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/pull/3254\"\u003espringdoc/springdoc-openapi#3254\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sisco70\"\u003e\u003ccode\u003e@​sisco70\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/pull/3255\"\u003espringdoc/springdoc-openapi#3255\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/thejeff77\"\u003e\u003ccode\u003e@​thejeff77\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/pull/3256\"\u003espringdoc/springdoc-openapi#3256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mcclellanmj\"\u003e\u003ccode\u003e@​mcclellanmj\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/pull/3259\"\u003espringdoc/springdoc-openapi#3259\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/springdoc/springdoc-openapi/compare/v2.8.16...v2.8.17\"\u003ehttps://github.com/springdoc/springdoc-openapi/compare/v2.8.16...v2.8.17\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/springdoc/springdoc-openapi/blob/main/CHANGELOG.md\"\u003eorg.springdoc:springdoc-openapi-starter-webmvc-ui's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[2.8.17] - 2026-04-12\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for the \u003ccode\u003e@Range\u003c/code\u003e constraint validation annotation\u003c/li\u003e\n\u003cli\u003eAuto-set \u003ccode\u003enullable: true\u003c/code\u003e for Kotlin nullable types in schema properties\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade Spring Boot to version \u003cstrong\u003e3.5.13\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-core to version \u003cstrong\u003e2.2.47\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade swagger-ui to version \u003cstrong\u003e5.32.2\u003c/strong\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3259\"\u003e#3259\u003c/a\u003e – Fix an issue with annotated types with generics on parameters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3255\"\u003e#3255\u003c/a\u003e – Handle \u003ccode\u003e$ref\u003c/code\u003e nullable wrapping and OAS 3.1 support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3245\"\u003e#3245\u003c/a\u003e – Upgrade swagger-core from 2.2.43 to 2.2.45 (fixes schema resolution issues)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3241\"\u003e#3241\u003c/a\u003e – Generic error responses from multiple \u003ccode\u003e@ControllerAdvice\u003c/code\u003e are still nondeterministic across OS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3236\"\u003e#3236\u003c/a\u003e – Preserve YAML group URLs in Swagger UI\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003ePropertyResolverUtils\u003c/code\u003e to retain a \u003ccode\u003eJsonNode\u003c/code\u003e when reading an \u003ccode\u003eExtensionProperty\u003c/code\u003e annotation\u003c/li\u003e\n\u003cli\u003eFix handling of default values for \u003ccode\u003eLocalDate\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/07e7739daa0dce4acfa68178f2407d8339836ded\"\u003e\u003ccode\u003e07e7739\u003c/code\u003e\u003c/a\u003e [maven-release-plugin] prepare release v2.8.17\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/2019f83dcb4123ef923a2544db5ccbd51c77bed4\"\u003e\u003ccode\u003e2019f83\u003c/code\u003e\u003c/a\u003e CHANGELOG.md update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/90db507fa2262fa675f7138e5ea1ba82cf6f809f\"\u003e\u003ccode\u003e90db507\u003c/code\u003e\u003c/a\u003e upgrade swagger-ui to version 5.32.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/5964baa6001ac5d89e4d0c16e21153cb4798b298\"\u003e\u003ccode\u003e5964baa\u003c/code\u003e\u003c/a\u003e Upgrade swagger-api.version to 2.2.47\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/7a19bca127ced0660b4fab1c6a977e5bdc0886b2\"\u003e\u003ccode\u003e7a19bca\u003c/code\u003e\u003c/a\u003e Fixes tests for \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3255\"\u003e#3255\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/0b0ebab65d1e29118f82133ed8556d4e81582a4c\"\u003e\u003ccode\u003e0b0ebab\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3259\"\u003e#3259\u003c/a\u003e from mcclellanmj/bug-parameterized-types\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/6b9b69ef192416676ba66ce0c2de03773ce78d13\"\u003e\u003ccode\u003e6b9b69e\u003c/code\u003e\u003c/a\u003e Fixes tests for \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3255\"\u003e#3255\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/6462e32eac9310db46cc468f2e357151272c3c48\"\u003e\u003ccode\u003e6462e32\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3256\"\u003e#3256\u003c/a\u003e from thejeff77/feat/kotlin-nullable-schema-properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/f634f5437e95c62bcb0839fba7d6e6eaeb312eb7\"\u003e\u003ccode\u003ef634f54\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3255\"\u003e#3255\u003c/a\u003e from sisco70/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/springdoc/springdoc-openapi/commit/386e4599d0e14a7ccc5fb06623ff0509b387246c\"\u003e\u003ccode\u003e386e459\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/springdoc/springdoc-openapi/issues/3254\"\u003e#3254\u003c/a\u003e from pcalouche/update-spring-boot\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/springdoc/springdoc-openapi/compare/v2.8.16...v2.8.17\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\u003cdetails\u003e\n\u003csummary\u003eMost Recent Ignore Conditions Applied to This Pull Request\u003c/summary\u003e\n\n| Dependency Name | Ignore Conditions |\n| --- | --- |\n| org.springframework.boot:spring-boot-dependencies | [\u003e= 3.3.a0, \u003c 3.4] |\n| org.springframework.boot:spring-boot-maven-plugin | [\u003e= 3.3.a0, \u003c 3.4] |\n| org.springframework.boot:spring-boot-starter-logging | [\u003e= 3.3.a0, \u003c 3.4] |\n\u003c/details\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/ehrbase/ehrbase/pull/1619","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ehrbase%2Fehrbase/issues/1619","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1619/packages"}},{"old_version":"3.2.5","new_version":"4.0.5","update_type":"major","path":null,"pr_created_at":"2026-04-13T06:23:32.000Z","version_change":"3.2.5 → 4.0.5","issue":{"uuid":"4251829036","node_id":"PR_kwDOPcwqW87R4pMx","number":29,"state":"open","title":"deps: bump the spring-boot group with 9 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-13T06:23:32.000Z","updated_at":"2026-04-13T06:24:48.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps: bump","group_name":"spring-boot","update_count":9,"packages":[{"name":"org.springframework.boot:spring-boot-dependencies","old_version":"3.2.5","new_version":"4.0.5","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"3.2.5","new_version":"4.0.5","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.cloud:spring-cloud-dependencies","old_version":"2023.0.0","new_version":"2025.1.1","repository_url":"https://github.com/spring-cloud/spring-cloud-release"},{"name":"org.springframework.boot:spring-boot-starter-security","old_version":"3.3.0","new_version":"4.0.5","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-starter-actuator","old_version":"3.3.0","new_version":"4.0.5","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-starter-test","old_version":"3.3.0","new_version":"4.0.5","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-starter-webflux","old_version":"3.3.0","new_version":"4.0.5","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.boot:spring-boot-starter-data-redis-reactive","old_version":"3.3.0","new_version":"4.0.5","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.cloud:spring-cloud-starter-gateway","old_version":"4.2.0","new_version":"4.3.4","repository_url":"https://github.com/spring-cloud/spring-cloud-gateway"}],"path":null,"ecosystem":"maven"},"body":"Bumps the spring-boot group with 9 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot) | `3.2.5` | `4.0.5` |\n| [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) | `3.2.5` | `4.0.5` |\n| [org.springframework.cloud:spring-cloud-dependencies](https://github.com/spring-cloud/spring-cloud-release) | `2023.0.0` | `2025.1.1` |\n| [org.springframework.boot:spring-boot-starter-security](https://github.com/spring-projects/spring-boot) | `3.3.0` | `4.0.5` |\n| [org.springframework.boot:spring-boot-starter-actuator](https://github.com/spring-projects/spring-boot) | `3.3.0` | `4.0.5` |\n| [org.springframework.boot:spring-boot-starter-test](https://github.com/spring-projects/spring-boot) | `3.3.0` | `4.0.5` |\n| [org.springframework.boot:spring-boot-starter-webflux](https://github.com/spring-projects/spring-boot) | `3.3.0` | `4.0.5` |\n| [org.springframework.boot:spring-boot-starter-data-redis-reactive](https://github.com/spring-projects/spring-boot) | `3.3.0` | `4.0.5` |\n| [org.springframework.cloud:spring-cloud-starter-gateway](https://github.com/spring-cloud/spring-cloud-gateway) | `4.2.0` | `4.3.4` |\n\nUpdates `org.springframework.boot:spring-boot-dependencies` from 3.2.5 to 4.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.5\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTest starter for Spring Integration does not include Spring Integration test module \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49784\"\u003e#49784\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49782\"\u003e#49782\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49753\"\u003e#49753\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket app fails to start when Jackson is on the classpath but there's no JsonMapper bean \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49749\"\u003e#49749\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49738\"\u003e#49738\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49731\"\u003e#49731\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49706\"\u003e#49706\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e@ConditionalOnWebApplication\u003c/code\u003e to NettyReactiveWebServerAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49695\"\u003e#49695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49672\"\u003e#49672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49727\"\u003e#49727\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49714\"\u003e#49714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverhaul Spring Session documentation following modularization \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49704\"\u003e#49704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Brave 6.3.1 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49763\"\u003e#49763\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson 2 Bom 2.21.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49764\"\u003e#49764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49765\"\u003e#49765\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49794\"\u003e#49794\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 11.0.20 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49767\"\u003e#49767\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49762\"\u003e#49762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/kwondh5217\"\u003e\u003ccode\u003e@​kwondh5217\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/quaff\"\u003e\u003ccode\u003e@​quaff\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.0.4\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOpenTelemetry's ZipkinSpanExporter has been deprecated and its support will be removed in Spring Boot 4.2. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49453\"\u003e#49453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson 2 has been upgraded to 2.21.1 in response to the Jackson team ending support for Jackson 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49389\"\u003e#49389\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson has been upgraded to 3.1.0 in response to the Jackson team ending support for Jackson 3.0.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49383\"\u003e#49383\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe default value for \u003ccode\u003eserver.tomcat.max-part-count\u003c/code\u003e has been increased from 10 to 50. This aligns it with Tomcat's own default and the default in Spring Boot 3.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49311\"\u003e#49311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEndpointRequest request matcher for health groups is too complex \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49649\"\u003e#49649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u0026quot;/cloudfoundryapplication\u0026quot; web path is not limited to Actuator \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49646\"\u003e#49646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix EndpointRequest.toLinks() when base-path is '/' \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49617\"\u003e#49617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker fails when a 'tcp://' address ends with a slash (for example 'tcp://docker:2375/') \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49596\"\u003e#49596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRSocket exposes duplicate endpoint for websocket setups \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49593\"\u003e#49593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFailure analysis for a missing mail sender is misleading \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49582\"\u003e#49582\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fe74b311f4b2846848e678eaf7b3c6203ddae930\"\u003e\u003ccode\u003efe74b31\u003c/code\u003e\u003c/a\u003e Release v4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e1d6e5a7098d1e5d3403fb58387622b65d8e825f\"\u003e\u003ccode\u003ee1d6e5a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/6c9e52a1745d255e096d1334593636d005f68143\"\u003e\u003ccode\u003e6c9e52a\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.14-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/a413e9545fd1efe9a9548ec70c86f87559c907f1\"\u003e\u003ccode\u003ea413e95\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.12.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/c1694b50c29e37a162a3d9ad43f4e4b434698247\"\u003e\u003ccode\u003ec1694b5\u003c/code\u003e\u003c/a\u003e Add missing Spring Integration test module to the relevant starter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/51ffdc6cd319fd70f8200ffd69dff0f79c3dfdb7\"\u003e\u003ccode\u003e51ffdc6\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ba70d41a998c8e77d185dd1d7e4ace80ed8cd7e2\"\u003e\u003ccode\u003eba70d41\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 11.0.20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fd94ca0a0baab48a055b3dfe8fd4d09daec766b9\"\u003e\u003ccode\u003efd94ca0\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.11.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/7e6833bc9c5b73bba6920cead989e28d64f982ff\"\u003e\u003ccode\u003e7e6833b\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.2.5...v4.0.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 3.2.5 to 4.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.5\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTest starter for Spring Integration does not include Spring Integration test module \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49784\"\u003e#49784\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49782\"\u003e#49782\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49753\"\u003e#49753\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket app fails to start when Jackson is on the classpath but there's no JsonMapper bean \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49749\"\u003e#49749\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49738\"\u003e#49738\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49731\"\u003e#49731\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49706\"\u003e#49706\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e@ConditionalOnWebApplication\u003c/code\u003e to NettyReactiveWebServerAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49695\"\u003e#49695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49672\"\u003e#49672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49727\"\u003e#49727\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49714\"\u003e#49714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverhaul Spring Session documentation following modularization \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49704\"\u003e#49704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Brave 6.3.1 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49763\"\u003e#49763\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson 2 Bom 2.21.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49764\"\u003e#49764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49765\"\u003e#49765\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49794\"\u003e#49794\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 11.0.20 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49767\"\u003e#49767\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49762\"\u003e#49762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/kwondh5217\"\u003e\u003ccode\u003e@​kwondh5217\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/quaff\"\u003e\u003ccode\u003e@​quaff\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.0.4\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOpenTelemetry's ZipkinSpanExporter has been deprecated and its support will be removed in Spring Boot 4.2. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49453\"\u003e#49453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson 2 has been upgraded to 2.21.1 in response to the Jackson team ending support for Jackson 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49389\"\u003e#49389\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson has been upgraded to 3.1.0 in response to the Jackson team ending support for Jackson 3.0.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49383\"\u003e#49383\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe default value for \u003ccode\u003eserver.tomcat.max-part-count\u003c/code\u003e has been increased from 10 to 50. This aligns it with Tomcat's own default and the default in Spring Boot 3.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49311\"\u003e#49311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEndpointRequest request matcher for health groups is too complex \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49649\"\u003e#49649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u0026quot;/cloudfoundryapplication\u0026quot; web path is not limited to Actuator \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49646\"\u003e#49646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix EndpointRequest.toLinks() when base-path is '/' \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49617\"\u003e#49617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker fails when a 'tcp://' address ends with a slash (for example 'tcp://docker:2375/') \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49596\"\u003e#49596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRSocket exposes duplicate endpoint for websocket setups \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49593\"\u003e#49593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFailure analysis for a missing mail sender is misleading \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49582\"\u003e#49582\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fe74b311f4b2846848e678eaf7b3c6203ddae930\"\u003e\u003ccode\u003efe74b31\u003c/code\u003e\u003c/a\u003e Release v4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e1d6e5a7098d1e5d3403fb58387622b65d8e825f\"\u003e\u003ccode\u003ee1d6e5a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/6c9e52a1745d255e096d1334593636d005f68143\"\u003e\u003ccode\u003e6c9e52a\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.14-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/a413e9545fd1efe9a9548ec70c86f87559c907f1\"\u003e\u003ccode\u003ea413e95\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.12.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/c1694b50c29e37a162a3d9ad43f4e4b434698247\"\u003e\u003ccode\u003ec1694b5\u003c/code\u003e\u003c/a\u003e Add missing Spring Integration test module to the relevant starter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/51ffdc6cd319fd70f8200ffd69dff0f79c3dfdb7\"\u003e\u003ccode\u003e51ffdc6\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ba70d41a998c8e77d185dd1d7e4ace80ed8cd7e2\"\u003e\u003ccode\u003eba70d41\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 11.0.20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fd94ca0a0baab48a055b3dfe8fd4d09daec766b9\"\u003e\u003ccode\u003efd94ca0\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.11.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/7e6833bc9c5b73bba6920cead989e28d64f982ff\"\u003e\u003ccode\u003e7e6833b\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.2.5...v4.0.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.cloud:spring-cloud-dependencies` from 2023.0.0 to 2025.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/releases\"\u003eorg.springframework.cloud:spring-cloud-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2025.1.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump antora from 3.2.0-alpha.10 to 3.2.0-alpha.11 in /docs by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/447\"\u003espring-cloud/spring-cloud-release#447\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.springframework.cloud:spring-cloud-contract-dependencies from 5.0.1-SNAPSHOT to 5.0.2-SNAPSHOT by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/454\"\u003espring-cloud/spring-cloud-release#454\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.springframework.cloud:spring-cloud-contract-dependencies from 5.0.1-SNAPSHOT to 5.0.2-SNAPSHOT by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/453\"\u003espring-cloud/spring-cloud-release#453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/cache from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/456\"\u003espring-cloud/spring-cloud-release#456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven:maven-model from 3.9.11 to 3.9.12 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/461\"\u003espring-cloud/spring-cloud-release#461\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump org.apache.maven:maven-model from 3.9.11 to 3.9.12 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/pull/460\"\u003espring-cloud/spring-cloud-release#460\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/compare/v2025.1.0...v2025.1.1\"\u003ehttps://github.com/spring-cloud/spring-cloud-release/compare/v2025.1.0...v2025.1.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e2025.0.0\u003c/h2\u003e\n\u003ch2\u003eBreaking Changes\u003c/h2\u003e\n\u003ch3\u003eSpring Cloud Gateway\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eNew Module and Starter names have been created, and the old names are deprecated. The new and deprecated artifacts are listed in the table below \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-gateway/pull/3645\"\u003e#3645\u003c/a\u003e. These new names clarify the two styles of gateway (server or proxy exchange) as well as the two web stacks from Spring Framework (Web MCV and WebFlux). Use of the deprecated artifacts will add a warning message in the logs.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ctable\u003e\n\u003cthead\u003e\n\u003ctr\u003e\n\u003cth\u003eDeprecated Artifact\u003c/th\u003e\n\u003cth\u003eNew Artifact\u003c/th\u003e\n\u003c/tr\u003e\n\u003c/thead\u003e\n\u003ctbody\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-gateway-server\u003c/td\u003e\n\u003ctd\u003espring-cloud-gateway-server-webflux\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-gateway-server-mvc\u003c/td\u003e\n\u003ctd\u003espring-cloud-gateway-server-webmvc\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-starter-gateway-server\u003c/td\u003e\n\u003ctd\u003espring-cloud-starter-gateway-server-webflux\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-starter-gateway-server-mvc\u003c/td\u003e\n\u003ctd\u003espring-cloud-starter-gateway-server-webmvc\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-gateway-mvc\u003c/td\u003e\n\u003ctd\u003espring-cloud-gateway-proxyexchange-webmvc\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-gateway-webflux\u003c/td\u003e\n\u003ctd\u003espring-cloud-gateway-proxyexchange-webflux\u003c/td\u003e\n\u003c/tr\u003e\n\u003c/tbody\u003e\n\u003c/table\u003e\n\u003cul\u003e\n\u003cli\u003eMigration to new property prefixes to match the new module names: \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-gateway/issues/3361\"\u003e#3361\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-gateway/issues/3362\"\u003e#3362\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-gateway/issues/3363\"\u003e#3363\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-gateway/issues/3647\"\u003e#3647\u003c/a\u003e. Use \u003ccode\u003espring-boot-properties-migrator\u003c/code\u003e to support the deprecated prefixes. The table below lists the module or starter, its old prefix, and the new replacement prefix.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ctable\u003e\n\u003cthead\u003e\n\u003ctr\u003e\n\u003cth\u003eModule/Starter\u003c/th\u003e\n\u003cth\u003eDeprecated prefix\u003c/th\u003e\n\u003cth\u003eNew prefix\u003c/th\u003e\n\u003c/tr\u003e\n\u003c/thead\u003e\n\u003ctbody\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-starter-gateway-server-webflux\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.*\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.server.webflux.*\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-starter-gateway-server-webmvc\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.mvc.*\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.server.webmvc.*\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-gateway-proxyexchange-webflux\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.proxy.*\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.proxy-exchange.webflux.*\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003espring-cloud-gateway-proxyexchange-webmvc\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.proxy.*\u003c/td\u003e\n\u003ctd\u003espring.cloud.gateway.proxy-exchange.webmvc.*\u003c/td\u003e\n\u003c/tr\u003e\n\u003c/tbody\u003e\n\u003c/table\u003e\n\u003cul\u003e\n\u003cli\u003eThe \u003ccode\u003eX-Forwarded-*\u003c/code\u003e and \u003ccode\u003eForwarded\u003c/code\u003e header functionality will be disabled by default with the fix versions. If you require \u003ccode\u003eX-Forwarded-*\u003c/code\u003e or \u003ccode\u003eForwarded\u003c/code\u003e header functionality, set \u003ccode\u003espring.cloud.gateway.server.webflux.trusted-proxies\u003c/code\u003e to a Java Regular Expression that specifies the proxies whose headers you trust. If you are using Spring Cloud Gateway Server MVC (only available from 4.1.x onward) set \u003ccode\u003espring.cloud.gateway.mvc.trusted-proxies\u003c/code\u003e. For example for Spring Cloud Gateway Server:\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre lang=\"properties\"\u003e\u003ccode\u003espring.cloud.gateway.server.webflux.trusted-proxies=10\\.0\\.0\\..*\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eFor example, for Spring Cloud Gateway Server WebMVC:\u003c/p\u003e\n\u003cpre lang=\"properties\"\u003e\u003ccode\u003espring.cloud.gateway.server.webmvc.trusted-proxies=10\\.0\\.0\\..*\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eSpring Cloud Kubernetes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/dbb12bfc2b899fb0845fe4b3c6dc07bc3c1828e2\"\u003e\u003ccode\u003edbb12bf\u003c/code\u003e\u003c/a\u003e Update SNAPSHOT to 2025.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/edc8bcb1d195cb0a9fa96efc82ccb3dfdaf2fd39\"\u003e\u003ccode\u003eedc8bcb\u003c/code\u003e\u003c/a\u003e Bumping versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/a9f418316485581438af2fa1db54f7ff5e80b17e\"\u003e\u003ccode\u003ea9f4183\u003c/code\u003e\u003c/a\u003e Use Spring Boot 4.0.2-SNAPSHOT\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/da7ad033005dd53554ad5aea9eeefab9416c1661\"\u003e\u003ccode\u003eda7ad03\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/issues/460\"\u003e#460\u003c/a\u003e from spring-cloud/dependabot/maven/org.apache.maven-m...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/49b10e643ffdb36873b3abb0bcd0539e0942f0c6\"\u003e\u003ccode\u003e49b10e6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/issues/461\"\u003e#461\u003c/a\u003e from spring-cloud/dependabot/maven/main/org.apache.ma...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/59782becdf97cb4db3693fc9d3688e85fde493b5\"\u003e\u003ccode\u003e59782be\u003c/code\u003e\u003c/a\u003e Bump org.apache.maven:maven-model from 3.9.11 to 3.9.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/89c8dd1e2610118b12e9d9ccb64945833a0ade22\"\u003e\u003ccode\u003e89c8dd1\u003c/code\u003e\u003c/a\u003e Bump org.apache.maven:maven-model from 3.9.11 to 3.9.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/96a5fb078d5eb2d80baec60004f1cb2518290afe\"\u003e\u003ccode\u003e96a5fb0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/issues/456\"\u003e#456\u003c/a\u003e from spring-cloud/dependabot/github_actions/main/acti...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/5d22a1d1f65df1f7a8c5bc021f5cc5dc44398072\"\u003e\u003ccode\u003e5d22a1d\u003c/code\u003e\u003c/a\u003e Bump actions/cache from 4 to 5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/ec45c6d4c7d7e49695e3c6c9fa68abd3823a770d\"\u003e\u003ccode\u003eec45c6d\u003c/code\u003e\u003c/a\u003e Bumping versions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/compare/v2023.0.0...v2025.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 3.2.5 to 4.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.5\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTest starter for Spring Integration does not include Spring Integration test module \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49784\"\u003e#49784\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49782\"\u003e#49782\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49753\"\u003e#49753\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket app fails to start when Jackson is on the classpath but there's no JsonMapper bean \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49749\"\u003e#49749\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49738\"\u003e#49738\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49731\"\u003e#49731\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49706\"\u003e#49706\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e@ConditionalOnWebApplication\u003c/code\u003e to NettyReactiveWebServerAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49695\"\u003e#49695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49672\"\u003e#49672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49727\"\u003e#49727\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49714\"\u003e#49714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverhaul Spring Session documentation following modularization \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49704\"\u003e#49704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Brave 6.3.1 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49763\"\u003e#49763\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson 2 Bom 2.21.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49764\"\u003e#49764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49765\"\u003e#49765\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49794\"\u003e#49794\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 11.0.20 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49767\"\u003e#49767\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49762\"\u003e#49762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/kwondh5217\"\u003e\u003ccode\u003e@​kwondh5217\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/quaff\"\u003e\u003ccode\u003e@​quaff\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.0.4\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOpenTelemetry's ZipkinSpanExporter has been deprecated and its support will be removed in Spring Boot 4.2. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49453\"\u003e#49453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson 2 has been upgraded to 2.21.1 in response to the Jackson team ending support for Jackson 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49389\"\u003e#49389\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson has been upgraded to 3.1.0 in response to the Jackson team ending support for Jackson 3.0.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49383\"\u003e#49383\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe default value for \u003ccode\u003eserver.tomcat.max-part-count\u003c/code\u003e has been increased from 10 to 50. This aligns it with Tomcat's own default and the default in Spring Boot 3.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49311\"\u003e#49311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEndpointRequest request matcher for health groups is too complex \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49649\"\u003e#49649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u0026quot;/cloudfoundryapplication\u0026quot; web path is not limited to Actuator \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49646\"\u003e#49646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix EndpointRequest.toLinks() when base-path is '/' \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49617\"\u003e#49617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker fails when a 'tcp://' address ends with a slash (for example 'tcp://docker:2375/') \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49596\"\u003e#49596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRSocket exposes duplicate endpoint for websocket setups \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49593\"\u003e#49593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFailure analysis for a missing mail sender is misleading \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49582\"\u003e#49582\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fe74b311f4b2846848e678eaf7b3c6203ddae930\"\u003e\u003ccode\u003efe74b31\u003c/code\u003e\u003c/a\u003e Release v4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e1d6e5a7098d1e5d3403fb58387622b65d8e825f\"\u003e\u003ccode\u003ee1d6e5a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/6c9e52a1745d255e096d1334593636d005f68143\"\u003e\u003ccode\u003e6c9e52a\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.14-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/a413e9545fd1efe9a9548ec70c86f87559c907f1\"\u003e\u003ccode\u003ea413e95\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.12.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/c1694b50c29e37a162a3d9ad43f4e4b434698247\"\u003e\u003ccode\u003ec1694b5\u003c/code\u003e\u003c/a\u003e Add missing Spring Integration test module to the relevant starter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/51ffdc6cd319fd70f8200ffd69dff0f79c3dfdb7\"\u003e\u003ccode\u003e51ffdc6\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ba70d41a998c8e77d185dd1d7e4ace80ed8cd7e2\"\u003e\u003ccode\u003eba70d41\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 11.0.20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fd94ca0a0baab48a055b3dfe8fd4d09daec766b9\"\u003e\u003ccode\u003efd94ca0\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.11.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/7e6833bc9c5b73bba6920cead989e28d64f982ff\"\u003e\u003ccode\u003e7e6833b\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.2.5...v4.0.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-starter-security` from 3.3.0 to 4.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-security's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.5\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTest starter for Spring Integration does not include Spring Integration test module \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49784\"\u003e#49784\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49782\"\u003e#49782\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49753\"\u003e#49753\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket app fails to start when Jackson is on the classpath but there's no JsonMapper bean \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49749\"\u003e#49749\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49738\"\u003e#49738\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49731\"\u003e#49731\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49706\"\u003e#49706\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e@ConditionalOnWebApplication\u003c/code\u003e to NettyReactiveWebServerAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49695\"\u003e#49695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49672\"\u003e#49672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49727\"\u003e#49727\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49714\"\u003e#49714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverhaul Spring Session documentation following modularization \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49704\"\u003e#49704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Brave 6.3.1 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49763\"\u003e#49763\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson 2 Bom 2.21.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49764\"\u003e#49764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49765\"\u003e#49765\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49794\"\u003e#49794\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 11.0.20 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49767\"\u003e#49767\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49762\"\u003e#49762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/kwondh5217\"\u003e\u003ccode\u003e@​kwondh5217\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/quaff\"\u003e\u003ccode\u003e@​quaff\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.0.4\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOpenTelemetry's ZipkinSpanExporter has been deprecated and its support will be removed in Spring Boot 4.2. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49453\"\u003e#49453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson 2 has been upgraded to 2.21.1 in response to the Jackson team ending support for Jackson 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49389\"\u003e#49389\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson has been upgraded to 3.1.0 in response to the Jackson team ending support for Jackson 3.0.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49383\"\u003e#49383\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe default value for \u003ccode\u003eserver.tomcat.max-part-count\u003c/code\u003e has been increased from 10 to 50. This aligns it with Tomcat's own default and the default in Spring Boot 3.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49311\"\u003e#49311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEndpointRequest request matcher for health groups is too complex \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49649\"\u003e#49649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u0026quot;/cloudfoundryapplication\u0026quot; web path is not limited to Actuator \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49646\"\u003e#49646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix EndpointRequest.toLinks() when base-path is '/' \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49617\"\u003e#49617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker fails when a 'tcp://' address ends with a slash (for example 'tcp://docker:2375/') \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49596\"\u003e#49596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRSocket exposes duplicate endpoint for websocket setups \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49593\"\u003e#49593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFailure analysis for a missing mail sender is misleading \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49582\"\u003e#49582\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fe74b311f4b2846848e678eaf7b3c6203ddae930\"\u003e\u003ccode\u003efe74b31\u003c/code\u003e\u003c/a\u003e Release v4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e1d6e5a7098d1e5d3403fb58387622b65d8e825f\"\u003e\u003ccode\u003ee1d6e5a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/6c9e52a1745d255e096d1334593636d005f68143\"\u003e\u003ccode\u003e6c9e52a\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.14-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/a413e9545fd1efe9a9548ec70c86f87559c907f1\"\u003e\u003ccode\u003ea413e95\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.12.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/c1694b50c29e37a162a3d9ad43f4e4b434698247\"\u003e\u003ccode\u003ec1694b5\u003c/code\u003e\u003c/a\u003e Add missing Spring Integration test module to the relevant starter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/51ffdc6cd319fd70f8200ffd69dff0f79c3dfdb7\"\u003e\u003ccode\u003e51ffdc6\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ba70d41a998c8e77d185dd1d7e4ace80ed8cd7e2\"\u003e\u003ccode\u003eba70d41\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 11.0.20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fd94ca0a0baab48a055b3dfe8fd4d09daec766b9\"\u003e\u003ccode\u003efd94ca0\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.11.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/7e6833bc9c5b73bba6920cead989e28d64f982ff\"\u003e\u003ccode\u003e7e6833b\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.3.0...v4.0.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-starter-actuator` from 3.3.0 to 4.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-actuator's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.5\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTest starter for Spring Integration does not include Spring Integration test module \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49784\"\u003e#49784\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49782\"\u003e#49782\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49753\"\u003e#49753\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket app fails to start when Jackson is on the classpath but there's no JsonMapper bean \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49749\"\u003e#49749\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49738\"\u003e#49738\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49731\"\u003e#49731\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49706\"\u003e#49706\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e@ConditionalOnWebApplication\u003c/code\u003e to NettyReactiveWebServerAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49695\"\u003e#49695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49672\"\u003e#49672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49727\"\u003e#49727\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49714\"\u003e#49714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverhaul Spring Session documentation following modularization \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49704\"\u003e#49704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Brave 6.3.1 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49763\"\u003e#49763\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson 2 Bom 2.21.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49764\"\u003e#49764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49765\"\u003e#49765\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49794\"\u003e#49794\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 11.0.20 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49767\"\u003e#49767\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49762\"\u003e#49762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/kwondh5217\"\u003e\u003ccode\u003e@​kwondh5217\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/quaff\"\u003e\u003ccode\u003e@​quaff\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.0.4\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOpenTelemetry's ZipkinSpanExporter has been deprecated and its support will be removed in Spring Boot 4.2. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49453\"\u003e#49453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson 2 has been upgraded to 2.21.1 in response to the Jackson team ending support for Jackson 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49389\"\u003e#49389\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson has been upgraded to 3.1.0 in response to the Jackson team ending support for Jackson 3.0.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49383\"\u003e#49383\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe default value for \u003ccode\u003eserver.tomcat.max-part-count\u003c/code\u003e has been increased from 10 to 50. This aligns it with Tomcat's own default and the default in Spring Boot 3.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49311\"\u003e#49311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEndpointRequest request matcher for health groups is too complex \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49649\"\u003e#49649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u0026quot;/cloudfoundryapplication\u0026quot; web path is not limited to Actuator \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49646\"\u003e#49646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix EndpointRequest.toLinks() when base-path is '/' \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49617\"\u003e#49617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker fails when a 'tcp://' address ends with a slash (for example 'tcp://docker:2375/') \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49596\"\u003e#49596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRSocket exposes duplicate endpoint for websocket setups \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49593\"\u003e#49593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFailure analysis for a missing mail sender is misleading \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49582\"\u003e#49582\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fe74b311f4b2846848e678eaf7b3c6203ddae930\"\u003e\u003ccode\u003efe74b31\u003c/code\u003e\u003c/a\u003e Release v4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e1d6e5a7098d1e5d3403fb58387622b65d8e825f\"\u003e\u003ccode\u003ee1d6e5a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/6c9e52a1745d255e096d1334593636d005f68143\"\u003e\u003ccode\u003e6c9e52a\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.14-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/a413e9545fd1efe9a9548ec70c86f87559c907f1\"\u003e\u003ccode\u003ea413e95\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.12.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/c1694b50c29e37a162a3d9ad43f4e4b434698247\"\u003e\u003ccode\u003ec1694b5\u003c/code\u003e\u003c/a\u003e Add missing Spring Integration test module to the relevant starter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/51ffdc6cd319fd70f8200ffd69dff0f79c3dfdb7\"\u003e\u003ccode\u003e51ffdc6\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ba70d41a998c8e77d185dd1d7e4ace80ed8cd7e2\"\u003e\u003ccode\u003eba70d41\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 11.0.20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fd94ca0a0baab48a055b3dfe8fd4d09daec766b9\"\u003e\u003ccode\u003efd94ca0\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.11.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/7e6833bc9c5b73bba6920cead989e28d64f982ff\"\u003e\u003ccode\u003e7e6833b\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.3.0...v4.0.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-starter-test` from 3.3.0 to 4.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-test's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.5\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTest starter for Spring Integration does not include Spring Integration test module \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49784\"\u003e#49784\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49782\"\u003e#49782\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49753\"\u003e#49753\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket app fails to start when Jackson is on the classpath but there's no JsonMapper bean \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49749\"\u003e#49749\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49738\"\u003e#49738\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49731\"\u003e#49731\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49706\"\u003e#49706\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e@ConditionalOnWebApplication\u003c/code\u003e to NettyReactiveWebServerAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49695\"\u003e#49695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49672\"\u003e#49672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49727\"\u003e#49727\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49714\"\u003e#49714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverhaul Spring Session documentation following modularization \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49704\"\u003e#49704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Brave 6.3.1 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49763\"\u003e#49763\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson 2 Bom 2.21.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49764\"\u003e#49764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49765\"\u003e#49765\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49794\"\u003e#49794\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 11.0.20 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49767\"\u003e#49767\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49762\"\u003e#49762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/kwondh5217\"\u003e\u003ccode\u003e@​kwondh5217\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/quaff\"\u003e\u003ccode\u003e@​quaff\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.0.4\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOpenTelemetry's ZipkinSpanExporter has been deprecated and its support will be removed in Spring Boot 4.2. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49453\"\u003e#49453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson 2 has been upgraded to 2.21.1 in response to the Jackson team ending support for Jackson 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49389\"\u003e#49389\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson has been upgraded to 3.1.0 in response to the Jackson team ending support for Jackson 3.0.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49383\"\u003e#49383\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe default value for \u003ccode\u003eserver.tomcat.max-part-count\u003c/code\u003e has been increased from 10 to 50. This aligns it with Tomcat's own default and the default in Spring Boot 3.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49311\"\u003e#49311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEndpointRequest request matcher for health groups is too complex \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49649\"\u003e#49649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u0026quot;/cloudfoundryapplication\u0026quot; web path is not limited to Actuator \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49646\"\u003e#49646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix EndpointRequest.toLinks() when base-path is '/' \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49617\"\u003e#49617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker fails when a 'tcp://' address ends with a slash (for example 'tcp://docker:2375/') \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49596\"\u003e#49596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRSocket exposes duplicate endpoint for websocket setups \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49593\"\u003e#49593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFailure analysis for a missing mail sender is misleading \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49582\"\u003e#49582\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fe74b311f4b2846848e678eaf7b3c6203ddae930\"\u003e\u003ccode\u003efe74b31\u003c/code\u003e\u003c/a\u003e Release v4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e1d6e5a7098d1e5d3403fb58387622b65d8e825f\"\u003e\u003ccode\u003ee1d6e5a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/6c9e52a1745d255e096d1334593636d005f68143\"\u003e\u003ccode\u003e6c9e52a\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.14-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/a413e9545fd1efe9a9548ec70c86f87559c907f1\"\u003e\u003ccode\u003ea413e95\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.12.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/c1694b50c29e37a162a3d9ad43f4e4b434698247\"\u003e\u003ccode\u003ec1694b5\u003c/code\u003e\u003c/a\u003e Add missing Spring Integration test module to the relevant starter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/51ffdc6cd319fd70f8200ffd69dff0f79c3dfdb7\"\u003e\u003ccode\u003e51ffdc6\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ba70d41a998c8e77d185dd1d7e4ace80ed8cd7e2\"\u003e\u003ccode\u003eba70d41\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 11.0.20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fd94ca0a0baab48a055b3dfe8fd4d09daec766b9\"\u003e\u003ccode\u003efd94ca0\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.11.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/7e6833bc9c5b73bba6920cead989e28d64f982ff\"\u003e\u003ccode\u003e7e6833b\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.3.0...v4.0.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-starter-webflux` from 3.3.0 to 4.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-starter-webflux's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.5\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTest starter for Spring Integration does not include Spring Integration test module \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49784\"\u003e#49784\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49782\"\u003e#49782\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49753\"\u003e#49753\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket app fails to start when Jackson is on the classpath but there's no JsonMapper bean \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49749\"\u003e#49749\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49738\"\u003e#49738\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49731\"\u003e#49731\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49706\"\u003e#49706\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e@ConditionalOnWebApplication\u003c/code\u003e to NettyReactiveWebServerAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49695\"\u003e#49695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49672\"\u003e#49672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49727\"\u003e#49727\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49714\"\u003e#49714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverhaul Spring Session documentation following modularization \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49704\"\u003e#49704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Brave 6.3.1 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49763\"\u003e#49763\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson 2 Bom 2.21.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49764\"\u003e#49764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49765\"\u003e#49765\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49794\"\u003e#49794\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 11.0.20 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49767\"\u003e#49767\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49762\"\u003e#49762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/kwondh5217\"\u003e\u003ccode\u003e@​kwondh5217\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/quaff\"\u003e\u003ccode\u003e@​quaff\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.0.4\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOpenTelemetry's ZipkinSpanExporter has been deprecated and its support will be removed in Spring Boot 4.2. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49453\"\u003e#49453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson 2 has been upgraded to 2.21.1 in response to the Jackson team ending support for Jackson 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49389\"\u003e#49389\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJackson has been upgraded to 3.1.0 in response to the Jackson team ending support for Jackson 3.0.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49383\"\u003e#49383\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe default value for \u003ccode\u003eserver.tomcat.max-part-count\u003c/code\u003e has been increased from 10 to 50. This aligns it with Tomcat's own default and the default in Spring Boot 3.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49311\"\u003e#49311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEndpointRequest request matcher for health groups is too complex \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49649\"\u003e#49649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u0026quot;/cloudfoundryapplication\u0026quot; web path is not limited to Actuator \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49646\"\u003e#49646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix EndpointRequest.toLinks() when base-path is '/' \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49617\"\u003e#49617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker fails when a 'tcp://' address ends with a slash (for example 'tcp://docker:2375/') \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49596\"\u003e#49596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRSocket exposes duplicate endpoint for websocket setups \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49593\"\u003e#49593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFailure analysis for a missing mail sender is misleading \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49582\"\u003e#49582\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fe74b311f4b2846848e678eaf7b3c6203ddae930\"\u003e\u003ccode\u003efe74b31\u003c/code\u003e\u003c/a\u003e Release v4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e1d6e5a7098d1e5d3403fb58387622b65d8e825f\"\u003e\u003ccode\u003ee1d6e5a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/6c9e52a1745d255e096d1334593636d005f68143\"\u003e\u003ccode\u003e6c9e52a\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.14-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/a413e9545fd1efe9a9548ec70c86f87559c907f1\"\u003e\u003ccode\u003ea413e95\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.12.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/c1694b50c29e37a162a3d9ad43f4e4b434698247\"\u003e\u003ccode\u003ec1694b5\u003c/code\u003e\u003c/a\u003e Add missing Spring Integration test module to the relevant starter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/51ffdc6cd319fd70f8200ffd69dff0f79c3dfdb7\"\u003e\u003ccode\u003e51ffdc6\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ba70d41a998c8e77d185dd1d7e4ace80ed8cd7e2\"\u003e\u003ccode\u003eba70d41\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 11.0.20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fd94ca0a0baab48a055b3dfe8fd4d09daec766b9\"\u003e\u003ccode\u003efd94ca0\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.11.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/7e6833bc9c5b73bba6920cead989e28d64f982ff\"\u003e\u003ccode\u003e7e6833b\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli...\n\n_Description has been truncated_","html_url":"https://github.com/Drive10/payflow/pull/29","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Drive10%2Fpayflow/issues/29","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/29/packages"}},{"old_version":"4.0.4","new_version":"4.0.5","update_type":"patch","path":null,"pr_created_at":"2026-04-07T22:25:39.000Z","version_change":"4.0.4 → 4.0.5","issue":{"uuid":"4220931220","node_id":"PR_kwDORCe1787Qo1cq","number":36,"state":"open","title":"chore(deps-dev): bump org.springframework.boot:spring-boot-maven-plugin from 4.0.4 to 4.0.5","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-07T22:25:39.000Z","updated_at":"2026-04-08T22:11:58.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps-dev)","packages":[{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.4","new_version":"4.0.5","repository_url":"https://github.com/spring-projects/spring-boot"}],"path":null,"ecosystem":"maven"},"body":"Bumps [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) from 4.0.4 to 4.0.5.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.5\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTest starter for Spring Integration does not include Spring Integration test module \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49784\"\u003e#49784\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49782\"\u003e#49782\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49753\"\u003e#49753\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket app fails to start when Jackson is on the classpath but there's no JsonMapper bean \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49749\"\u003e#49749\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49738\"\u003e#49738\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49731\"\u003e#49731\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49706\"\u003e#49706\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e@ConditionalOnWebApplication\u003c/code\u003e to NettyReactiveWebServerAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49695\"\u003e#49695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49672\"\u003e#49672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49727\"\u003e#49727\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49714\"\u003e#49714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverhaul Spring Session documentation following modularization \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49704\"\u003e#49704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Brave 6.3.1 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49763\"\u003e#49763\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson 2 Bom 2.21.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49764\"\u003e#49764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49765\"\u003e#49765\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49794\"\u003e#49794\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 11.0.20 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49767\"\u003e#49767\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49762\"\u003e#49762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/kwondh5217\"\u003e\u003ccode\u003e@​kwondh5217\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/quaff\"\u003e\u003ccode\u003e@​quaff\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fe74b311f4b2846848e678eaf7b3c6203ddae930\"\u003e\u003ccode\u003efe74b31\u003c/code\u003e\u003c/a\u003e Release v4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e1d6e5a7098d1e5d3403fb58387622b65d8e825f\"\u003e\u003ccode\u003ee1d6e5a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/6c9e52a1745d255e096d1334593636d005f68143\"\u003e\u003ccode\u003e6c9e52a\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.14-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/a413e9545fd1efe9a9548ec70c86f87559c907f1\"\u003e\u003ccode\u003ea413e95\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.12.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/c1694b50c29e37a162a3d9ad43f4e4b434698247\"\u003e\u003ccode\u003ec1694b5\u003c/code\u003e\u003c/a\u003e Add missing Spring Integration test module to the relevant starter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/51ffdc6cd319fd70f8200ffd69dff0f79c3dfdb7\"\u003e\u003ccode\u003e51ffdc6\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ba70d41a998c8e77d185dd1d7e4ace80ed8cd7e2\"\u003e\u003ccode\u003eba70d41\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 11.0.20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fd94ca0a0baab48a055b3dfe8fd4d09daec766b9\"\u003e\u003ccode\u003efd94ca0\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.11.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/7e6833bc9c5b73bba6920cead989e28d64f982ff\"\u003e\u003ccode\u003e7e6833b\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.4...v4.0.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n","html_url":"https://github.com/mirkosertic/MCPLuceneServer/pull/36","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/mirkosertic%2FMCPLuceneServer/issues/36","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/36/packages"}},{"old_version":"3.3.0","new_version":"3.5.13","update_type":"minor","path":null,"pr_created_at":"2026-03-30T07:21:47.000Z","version_change":"3.3.0 → 3.5.13","issue":{"uuid":"4168200554","node_id":"PR_kwDOOot3z87OhBWZ","number":82,"state":"closed","title":"build: bump the spring-ecosystem group across 1 directory with 3 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-03-31T09:00:00.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-30T07:21:47.000Z","updated_at":"2026-03-31T09:00:11.000Z","time_to_close":92293,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build: bump","group_name":"spring-ecosystem","update_count":3,"packages":[{"name":"org.springframework.boot:spring-boot-dependencies","old_version":"3.3.0","new_version":"3.5.13","repository_url":"https://github.com/spring-projects/spring-boot"},{"name":"org.springframework.cloud:spring-cloud-dependencies","old_version":"2023.0.3","new_version":"2023.0.6","repository_url":"https://github.com/spring-cloud/spring-cloud-release"},{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"3.3.0","new_version":"3.5.13"}],"path":null,"ecosystem":"maven"},"body":"Bumps the spring-ecosystem group with 2 updates in the / directory: [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot) and [org.springframework.cloud:spring-cloud-dependencies](https://github.com/spring-cloud/spring-cloud-release).\n\nUpdates `org.springframework.boot:spring-boot-dependencies` from 3.3.0 to 3.5.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.13\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eJackson has been upgraded to 2.21.2 in response to the Jackson team ending support for Jackson 2.19.x and 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49365\"\u003e#49365\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49750\"\u003e#49750\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49734\"\u003e#49734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49724\"\u003e#49724\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49716\"\u003e#49716\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49661\"\u003e#49661\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49660\"\u003e#49660\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49723\"\u003e#49723\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49710\"\u003e#49710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Hibernate 6.6.45.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49757\"\u003e#49757\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49758\"\u003e#49758\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.1.132.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49759\"\u003e#49759\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 10.1.53 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49760\"\u003e#49760\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Undertow 2.3.24.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49761\"\u003e#49761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49756\"\u003e#49756\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.5.12\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEndpointRequest request matcher for health groups is too complex \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49648\"\u003e#49648\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u0026quot;/cloudfoundryapplication\u0026quot; web path is not limited to Actuator \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49645\"\u003e#49645\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRSocket exposes duplicate endpoint for websocket setups \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49592\"\u003e#49592\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix EndpointRequest.toLinks() when base-path is '/' \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49591\"\u003e#49591\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpringBootContextLoader mentions class that no longer exists in message for classes or locations assertion \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49518\"\u003e#49518\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u0026quot;spring.main.cloud-platform=none\u0026quot; does not disable cloud features \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49478\"\u003e#49478\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUsing \u003ccode\u003e@AutoConfigureWebTestClient\u003c/code\u003e prevents separate configuration of spring.test.webtestclient.timeout from taking effect \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49340\"\u003e#49340\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOrdering of 'spring.config.import' is inconsistent when defined in environment or system properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49324\"\u003e#49324\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRouterFunctions descriptions in Actuator do not support nesting \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49289\"\u003e#49289\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMaven plugin does not set '-parameters' option when processing AOT code \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49268\"\u003e#49268\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSSL support with Docker Compose does not work as documented \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49210\"\u003e#49210\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker fails when a 'tcp://' address ends with a slash (for example 'tcp://docker:2375/') \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49055\"\u003e#49055\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a4c79fa691793be59361c31f4a6447bb0a48907\"\u003e\u003ccode\u003e4a4c79f\u003c/code\u003e\u003c/a\u003e Release v3.5.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4b37ecbf6db93913f811f4d3f64a7f800ea39573\"\u003e\u003ccode\u003e4b37ecb\u003c/code\u003e\u003c/a\u003e Upgrade to Undertow 2.3.24.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/32a51d5d709b758786f371e063754d99c0348755\"\u003e\u003ccode\u003e32a51d5\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 10.1.53\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/093429614119c03ab660e30fd21dacbd404a10fe\"\u003e\u003ccode\u003e0934296\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.1.132.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/851ddda4225a97ba8f5030454f276a559bcb3b71\"\u003e\u003ccode\u003e851ddda\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef876fe5d2648ec11eab45546725bd0f21c34870\"\u003e\u003ccode\u003eef876fe\u003c/code\u003e\u003c/a\u003e Upgrade to Hibernate 6.6.45.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/2841d874cfffed8f8c75bf631289aa4283281d3a\"\u003e\u003ccode\u003e2841d87\u003c/code\u003e\u003c/a\u003e Upgrade to Zipkin Reporter 3.5.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/025b527e87f9820c1142468fdcf0b21db3cd192d\"\u003e\u003ccode\u003e025b527\u003c/code\u003e\u003c/a\u003e Fix WebSocketMessagingAutoConfiguration in the absence of Jackson\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/328267249f71336f642effe8aaf80e39d9d9be65\"\u003e\u003ccode\u003e3282672\u003c/code\u003e\u003c/a\u003e Make DevTools tests more tolerant to wrapped DataSource\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.3.0...v3.5.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.cloud:spring-cloud-dependencies` from 2023.0.3 to 2023.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/releases\"\u003eorg.springframework.cloud:spring-cloud-dependencies's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2023.0.4\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/compare/v2023.0.3...v2023.0.4\"\u003ehttps://github.com/spring-cloud/spring-cloud-release/compare/v2023.0.3...v2023.0.4\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/c8673669a8cd621a7b916408e03aa2fedac238dc\"\u003e\u003ccode\u003ec867366\u003c/code\u003e\u003c/a\u003e Update SNAPSHOT to 2023.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/b4c7d7c17b98abe1c78027c955269cf2ef8cf2d7\"\u003e\u003ccode\u003eb4c7d7c\u003c/code\u003e\u003c/a\u003e Adding license, scm, and developer information\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/add536008990c299d03ae838f99959f9a3d4499f\"\u003e\u003ccode\u003eadd5360\u003c/code\u003e\u003c/a\u003e Add maven central plugin\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/e4c0b4f54aee5b897c8d85823085cc119ad87ce6\"\u003e\u003ccode\u003ee4c0b4f\u003c/code\u003e\u003c/a\u003e Bumping versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/56c05091fd89f8dcd8aa6c1c3d3fc59f1ef85f05\"\u003e\u003ccode\u003e56c0509\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/issues/364\"\u003e#364\u003c/a\u003e from spring-cloud/dependabot/maven/2023.0.x/org.sprin...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/2744f815ec55fc87056310d59715d8968cdf82c6\"\u003e\u003ccode\u003e2744f81\u003c/code\u003e\u003c/a\u003e Bump org.springframework.cloud:spring-cloud-config-dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/b8d4e1e52d81f60395cba9e55c8ca6a7bfd805bf\"\u003e\u003ccode\u003eb8d4e1e\u003c/code\u003e\u003c/a\u003e Bumping versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/e70b235cd71a7d098fa2f8d001a8486c4823b06e\"\u003e\u003ccode\u003ee70b235\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spring-cloud/spring-cloud-release/issues/363\"\u003e#363\u003c/a\u003e from spring-cloud/dependabot/maven/2023.0.x/org.apach...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/647b68551c88c9312ca73d5d62999411b6ce6040\"\u003e\u003ccode\u003e647b685\u003c/code\u003e\u003c/a\u003e Bump org.apache.maven:maven-model from 3.8.8 to 3.8.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/commit/805792d36c0eb62ae7b174026b253f3430d1655e\"\u003e\u003ccode\u003e805792d\u003c/code\u003e\u003c/a\u003e Use Assert4J\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-cloud/spring-cloud-release/compare/v2023.0.3...v2023.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `org.springframework.boot:spring-boot-maven-plugin` from 3.3.0 to 3.5.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.13\u003c/h2\u003e\n\u003ch2\u003e:warning: Attention Required\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eJackson has been upgraded to 2.21.2 in response to the Jackson team ending support for Jackson 2.19.x and 2.20.x. \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49365\"\u003e#49365\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49750\"\u003e#49750\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49734\"\u003e#49734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49724\"\u003e#49724\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49716\"\u003e#49716\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49661\"\u003e#49661\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49660\"\u003e#49660\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49723\"\u003e#49723\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49710\"\u003e#49710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Hibernate 6.6.45.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49757\"\u003e#49757\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49758\"\u003e#49758\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.1.132.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49759\"\u003e#49759\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 10.1.53 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49760\"\u003e#49760\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Undertow 2.3.24.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49761\"\u003e#49761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49756\"\u003e#49756\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.5.12\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEndpointRequest request matcher for health groups is too complex \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49648\"\u003e#49648\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u0026quot;/cloudfoundryapplication\u0026quot; web path is not limited to Actuator \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49645\"\u003e#49645\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRSocket exposes duplicate endpoint for websocket setups \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49592\"\u003e#49592\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix EndpointRequest.toLinks() when base-path is '/' \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49591\"\u003e#49591\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpringBootContextLoader mentions class that no longer exists in message for classes or locations assertion \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49518\"\u003e#49518\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u0026quot;spring.main.cloud-platform=none\u0026quot; does not disable cloud features \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49478\"\u003e#49478\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUsing \u003ccode\u003e@AutoConfigureWebTestClient\u003c/code\u003e prevents separate configuration of spring.test.webtestclient.timeout from taking effect \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49340\"\u003e#49340\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOrdering of 'spring.config.import' is inconsistent when defined in environment or system properties \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49324\"\u003e#49324\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRouterFunctions descriptions in Actuator do not support nesting \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49289\"\u003e#49289\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMaven plugin does not set '-parameters' option when processing AOT code \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49268\"\u003e#49268\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSSL support with Docker Compose does not work as documented \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49210\"\u003e#49210\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocker fails when a 'tcp://' address ends with a slash (for example 'tcp://docker:2375/') \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49055\"\u003e#49055\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4a4c79fa691793be59361c31f4a6447bb0a48907\"\u003e\u003ccode\u003e4a4c79f\u003c/code\u003e\u003c/a\u003e Release v3.5.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/4b37ecbf6db93913f811f4d3f64a7f800ea39573\"\u003e\u003ccode\u003e4b37ecb\u003c/code\u003e\u003c/a\u003e Upgrade to Undertow 2.3.24.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/32a51d5d709b758786f371e063754d99c0348755\"\u003e\u003ccode\u003e32a51d5\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 10.1.53\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/093429614119c03ab660e30fd21dacbd404a10fe\"\u003e\u003ccode\u003e0934296\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.1.132.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/851ddda4225a97ba8f5030454f276a559bcb3b71\"\u003e\u003ccode\u003e851ddda\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ef876fe5d2648ec11eab45546725bd0f21c34870\"\u003e\u003ccode\u003eef876fe\u003c/code\u003e\u003c/a\u003e Upgrade to Hibernate 6.6.45.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/2841d874cfffed8f8c75bf631289aa4283281d3a\"\u003e\u003ccode\u003e2841d87\u003c/code\u003e\u003c/a\u003e Upgrade to Zipkin Reporter 3.5.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/025b527e87f9820c1142468fdcf0b21db3cd192d\"\u003e\u003ccode\u003e025b527\u003c/code\u003e\u003c/a\u003e Fix WebSocketMessagingAutoConfiguration in the absence of Jackson\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/328267249f71336f642effe8aaf80e39d9d9be65\"\u003e\u003ccode\u003e3282672\u003c/code\u003e\u003c/a\u003e Make DevTools tests more tolerant to wrapped DataSource\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v3.3.0...v3.5.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n","html_url":"https://github.com/Lolo179/billMate-app/pull/82","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Lolo179%2FbillMate-app/issues/82","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/82/packages"}},{"old_version":"4.0.4","new_version":"4.0.5","update_type":"patch","path":null,"pr_created_at":"2026-03-30T04:16:57.000Z","version_change":"4.0.4 → 4.0.5","issue":{"uuid":"4167143974","node_id":"PR_kwDOLSA6Cs7OejR0","number":302,"state":"open","title":"Bump org.springframework.boot:spring-boot-maven-plugin from 4.0.4 to 4.0.5","user":"dependabot[bot]","labels":["dependencies","java"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-03-30T04:16:57.000Z","updated_at":"2026-03-30T04:25:30.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"org.springframework.boot:spring-boot-maven-plugin","old_version":"4.0.4","new_version":"4.0.5","repository_url":"https://github.com/spring-projects/spring-boot"}],"path":null,"ecosystem":"maven"},"body":"Bumps [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) from 4.0.4 to 4.0.5.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spring-projects/spring-boot/releases\"\u003eorg.springframework.boot:spring-boot-maven-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.5\u003c/h2\u003e\n\u003ch2\u003e:lady_beetle: Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTest starter for Spring Integration does not include Spring Integration test module \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49784\"\u003e#49784\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSome sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49782\"\u003e#49782\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49753\"\u003e#49753\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWebSocket app fails to start when Jackson is on the classpath but there's no JsonMapper bean \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49749\"\u003e#49749\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMetadata annotation processor ignores method-level \u003ccode\u003e@NestedConfigurationProperty\u003c/code\u003e when using constructor binding \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49738\"\u003e#49738\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverride of property in external 'application.properties' or 'application.yaml' is ignored \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49731\"\u003e#49731\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNativeImageResourceProvider does not find Flyway migration scripts in subdirectories \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49706\"\u003e#49706\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e@ConditionalOnWebApplication\u003c/code\u003e to NettyReactiveWebServerAutoConfiguration \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/pull/49695\"\u003e#49695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@GraphQlTest\u003c/code\u003e does not include \u003ccode\u003e@ControllerAdvice\u003c/code\u003e \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49672\"\u003e#49672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:notebook_with_decorative_cover: Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect indefinite articles in Javadoc \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49727\"\u003e#49727\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd some more Kotlin examples and trivial style fixes \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49714\"\u003e#49714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOverhaul Spring Session documentation following modularization \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49704\"\u003e#49704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:hammer: Dependency Upgrades\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to Brave 6.3.1 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49763\"\u003e#49763\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Jackson 2 Bom 2.21.2 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49764\"\u003e#49764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to jOOQ 3.19.31 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49765\"\u003e#49765\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Netty 4.2.12.Final \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49794\"\u003e#49794\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Tomcat 11.0.20 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49767\"\u003e#49767\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to Zipkin Reporter 3.5.3 \u003ca href=\"https://redirect.github.com/spring-projects/spring-boot/issues/49762\"\u003e#49762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e:heart: Contributors\u003c/h2\u003e\n\u003cp\u003eThank you to all the contributors who worked on this release:\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/Joowon-Seo\"\u003e\u003ccode\u003e@​Joowon-Seo\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/deejay1\"\u003e\u003ccode\u003e@​deejay1\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/dlwldnjs1009\"\u003e\u003ccode\u003e@​dlwldnjs1009\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/kwondh5217\"\u003e\u003ccode\u003e@​kwondh5217\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/ljrmorgan\"\u003e\u003ccode\u003e@​ljrmorgan\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/quaff\"\u003e\u003ccode\u003e@​quaff\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fe74b311f4b2846848e678eaf7b3c6203ddae930\"\u003e\u003ccode\u003efe74b31\u003c/code\u003e\u003c/a\u003e Release v4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/e1d6e5a7098d1e5d3403fb58387622b65d8e825f\"\u003e\u003ccode\u003ee1d6e5a\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/6c9e52a1745d255e096d1334593636d005f68143\"\u003e\u003ccode\u003e6c9e52a\u003c/code\u003e\u003c/a\u003e Next development version (v3.5.14-SNAPSHOT)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/a413e9545fd1efe9a9548ec70c86f87559c907f1\"\u003e\u003ccode\u003ea413e95\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.12.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/c1694b50c29e37a162a3d9ad43f4e4b434698247\"\u003e\u003ccode\u003ec1694b5\u003c/code\u003e\u003c/a\u003e Add missing Spring Integration test module to the relevant starter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/51ffdc6cd319fd70f8200ffd69dff0f79c3dfdb7\"\u003e\u003ccode\u003e51ffdc6\u003c/code\u003e\u003c/a\u003e Merge branch '3.5.x' into 4.0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/696a60e8fd2ce2bff1cf96c2706a97cf64b49a76\"\u003e\u003ccode\u003e696a60e\u003c/code\u003e\u003c/a\u003e Full auto-configure transaction management in slice tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/ba70d41a998c8e77d185dd1d7e4ace80ed8cd7e2\"\u003e\u003ccode\u003eba70d41\u003c/code\u003e\u003c/a\u003e Upgrade to Tomcat 11.0.20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/fd94ca0a0baab48a055b3dfe8fd4d09daec766b9\"\u003e\u003ccode\u003efd94ca0\u003c/code\u003e\u003c/a\u003e Upgrade to Netty 4.2.11.Final\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spring-projects/spring-boot/commit/7e6833bc9c5b73bba6920cead989e28d64f982ff\"\u003e\u003ccode\u003e7e6833b\u003c/code\u003e\u003c/a\u003e Upgrade to jOOQ 3.19.31\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spring-projects/spring-boot/compare/v4.0.4...v4.0.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.springframework.boot:spring-boot-maven-plugin\u0026package-manager=maven\u0026previous-version=4.0.4\u0026new-version=4.0.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/RETIT/opentelemetry-javaagent-extension/pull/302","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/RETIT%2Fopentelemetry-javaagent-extension/issues/302","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/302/packages"}}]}