Bump spring from 5.3.30 to 5.3.31 by dependabot[bot] · Pull Request #4384 · micrometer-metrics/micrometer (original) (raw)

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

Bumps spring from 5.3.30 to 5.3.31.
Updates org.springframework:spring-context from 5.3.30 to 5.3.31

Release notes

Sourced from org.springframework:spring-context's releases.

v5.3.31

⭐ New Features

• Log4jLog needs to re-resolve ExtendedLogger on deserialization (for compatibility with Log4J 2.21) #31583

🐞 Bug Fixes

• MessageBuilder#createMessage should not define the payload as @Nullable #31611
• Avoid duplicate JAR resources in PathMatchingResourcePatternResolver on MS Windows #31603
• Spring web integration commons fileupload receives files and other parameter uploads, with a null pointer #31564
• Function column out doesn't resolve to SqlOutParameter #31560
• Resolve to empty MultiValueMap when no matrix variables are provided #31484
• BeanUtils.copyProperties() consumes large amount of memory #31481
• CGLIB BeanCopier falls back to ClassLoader.defineClass for public target #31436
• R2DBC Connection is closed during transaction when using TransactionAwareConnectionFactoryProxy #31411
• HibernateJpaDialect and HibernateExceptionTranslator throw SQLExceptionTranslator-provided exception instead of returning it #31410
• NamedParameterJdbcTemplate throws unexpected exception for null query #31394
• LazyResolutionMessage does not implement proper toString #31385
• Illegal reflective access in ContextOverridingClassLoader.isEligibleForOverriding #31233

📔 Documentation

• Clarify documentation for @Transactional on interfaces #31401
• Default behavior of BeanPropertyRowMapper.getColumnValue(ResultSet, int, Class) inconsistent with code #31349
• Referencing a @Bean method in a @Configuration class' @PostConstruct method leads to circular reference #31339
• Incorrect reference information about CGLIB supported method visibility #31311

🔨 Dependency Upgrades

• Upgrade to Reactor 2020.0.38 #31584

Commits

• 8c85c31 Release v5.3.31
• b28a5f8 Upgrade to Reactor 2020.0.38 and Netty 4.1.101
• e660859 Consistent ordering of overloaded operations
• a6ab308 Fix wrong nullability requirement
• c489234 Polish contribution
• af59358 Avoid duplicate resources in PathMatchingResourcePatternResolver on Windows
• 75193b2 Upgrade to Log4J 2.21.1, Tomcat 9.0.82, Jetty 9.4.53, Undertow 2.2.28, Netty ...
• f97e819 Log4jLog re-resolves ExtendedLogger on deserialization
• f8e1ce3 Check for procedure vs function constants in CallMetaDataContext
• d3ec939 Guard for empty FileItems in CommonsFileUploadSupport
• Additional commits viewable in compare view

Updates org.springframework:spring-core from 5.3.30 to 5.3.31

Release notes

Sourced from org.springframework:spring-core's releases.

v5.3.31

⭐ New Features

• Log4jLog needs to re-resolve ExtendedLogger on deserialization (for compatibility with Log4J 2.21) #31583

🐞 Bug Fixes

• MessageBuilder#createMessage should not define the payload as @Nullable #31611
• Avoid duplicate JAR resources in PathMatchingResourcePatternResolver on MS Windows #31603
• Spring web integration commons fileupload receives files and other parameter uploads, with a null pointer #31564
• Function column out doesn't resolve to SqlOutParameter #31560
• Resolve to empty MultiValueMap when no matrix variables are provided #31484
• BeanUtils.copyProperties() consumes large amount of memory #31481
• CGLIB BeanCopier falls back to ClassLoader.defineClass for public target #31436
• R2DBC Connection is closed during transaction when using TransactionAwareConnectionFactoryProxy #31411
• HibernateJpaDialect and HibernateExceptionTranslator throw SQLExceptionTranslator-provided exception instead of returning it #31410
• NamedParameterJdbcTemplate throws unexpected exception for null query #31394
• LazyResolutionMessage does not implement proper toString #31385
• Illegal reflective access in ContextOverridingClassLoader.isEligibleForOverriding #31233

📔 Documentation

• Clarify documentation for @Transactional on interfaces #31401
• Default behavior of BeanPropertyRowMapper.getColumnValue(ResultSet, int, Class) inconsistent with code #31349
• Referencing a @Bean method in a @Configuration class' @PostConstruct method leads to circular reference #31339
• Incorrect reference information about CGLIB supported method visibility #31311

🔨 Dependency Upgrades

• Upgrade to Reactor 2020.0.38 #31584

Commits

• 8c85c31 Release v5.3.31
• b28a5f8 Upgrade to Reactor 2020.0.38 and Netty 4.1.101
• e660859 Consistent ordering of overloaded operations
• a6ab308 Fix wrong nullability requirement
• c489234 Polish contribution
• af59358 Avoid duplicate resources in PathMatchingResourcePatternResolver on Windows
• 75193b2 Upgrade to Log4J 2.21.1, Tomcat 9.0.82, Jetty 9.4.53, Undertow 2.2.28, Netty ...
• f97e819 Log4jLog re-resolves ExtendedLogger on deserialization
• f8e1ce3 Check for procedure vs function constants in CallMetaDataContext
• d3ec939 Guard for empty FileItems in CommonsFileUploadSupport
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)