From 902341565d8196ec4a1e2764f605e06d57f822ab Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 24 Mar 2025 10:20:45 +0000 Subject: [PATCH 01/11] Bump ch.qos.logback:logback-classic from 1.5.17 to 1.5.18 (#3222) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Bumps [ch.qos.logback:logback-classic](https://github.com/qos-ch/logback) from 1.5.17 to 1.5.18.
Release notes

Sourced from ch.qos.logback:logback-classic's releases.

Logback 1.5.18

2025-03-18 Release of logback version 1.5.18

• Added support for XZ compression for archived log files. Note that XZ compression requires Tukaani project's XZ library for Java. In case XZ compression is requested but the XZ library is missing, then logback will substitute GZ compression as a fallback. This feature was requested in issues/755.

• Removed references to java.security.AccessController class. This class has been deprecated for some time and is slated for removal in future JDK versions.

• A bit-wise identical binary of this version can be reproduced by building from source code at commit b2a02f065379a9b1ba5ff837fc08913b744774bc associated with the tag v_1.5.18. Release built using Java "21" 2023-10-17 LTS build 21.0.1.+12-LTS-29 under Linux Debian 11.6.

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=ch.qos.logback:logback-classic&package-manager=gradle&previous-version=1.5.17&new-version=1.5.18)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- build.gradle | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/build.gradle b/build.gradle index 3f91a9706..7b9329405 100644 --- a/build.gradle +++ b/build.gradle @@ -300,7 +300,7 @@ dependencies { //tmp for security bumps implementation 'ch.qos.logback:logback-core:1.5.17' - implementation 'ch.qos.logback:logback-classic:1.5.17' + implementation 'ch.qos.logback:logback-classic:1.5.18' // Exclude vulnerable BouncyCastle version used in tableau From b2ca70230185cb7eec58170c3cfb8176ec5f5bac Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 24 Mar 2025 10:21:36 +0000 Subject: [PATCH 02/11] Bump actions/upload-artifact from 4.6.1 to 4.6.2 (#3223) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.6.1 to 4.6.2.
Release notes

Sourced from actions/upload-artifact's releases.

v4.6.2

What's Changed

New Contributors

Full Changelog: https://github.com/actions/upload-artifact/compare/v4...v4.6.2

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/upload-artifact&package-manager=github_actions&previous-version=4.6.1&new-version=4.6.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/build.yml | 4 ++-- .github/workflows/licenses-update.yml | 2 +- .github/workflows/multiOSReleases.yml | 8 ++++---- .github/workflows/releaseArtifacts.yml | 4 ++-- .github/workflows/scorecards.yml | 2 +- .github/workflows/sonarqube.yml | 4 ++-- 6 files changed, 12 insertions(+), 12 deletions(-) diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index cbac6d3a9..a513a9c0e 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -49,7 +49,7 @@ jobs: - name: Upload Test Reports if: always() - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1 + uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2 with: name: test-reports-jdk-${{ matrix.jdk-version }} path: | @@ -80,7 +80,7 @@ jobs: - name: FAILED - check the licenses for compatibility if: failure() - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1 + uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2 with: name: dependencies-without-allowed-license.json path: | diff --git a/.github/workflows/licenses-update.yml b/.github/workflows/licenses-update.yml index 64f4527f6..4f1a3326d 100644 --- a/.github/workflows/licenses-update.yml +++ b/.github/workflows/licenses-update.yml @@ -45,7 +45,7 @@ jobs: - name: FAILED - check the licenses for compatibility if: failure() - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1 + uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2 with: name: dependencies-without-allowed-license.json path: | diff --git a/.github/workflows/multiOSReleases.yml b/.github/workflows/multiOSReleases.yml index f11f34e55..643b5db58 100644 --- a/.github/workflows/multiOSReleases.yml +++ b/.github/workflows/multiOSReleases.yml @@ -80,7 +80,7 @@ jobs: mv ./build/libs/Stirling-PDF-${{ needs.read_versions.outputs.version }}.jar ./binaries/Stirling-PDF${{ matrix.file_suffix }}.jar - name: Upload build artifacts - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1 + uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2 with: retention-days: 1 if-no-files-found: error @@ -114,7 +114,7 @@ jobs: run: ls -R - name: Upload signed artifacts - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1 + uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2 with: retention-days: 1 if-no-files-found: error @@ -188,7 +188,7 @@ jobs: run: ls -R ./binaries - name: Upload build artifacts - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1 + uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2 with: retention-days: 1 if-no-files-found: error @@ -255,7 +255,7 @@ jobs: run: ls -R - name: Upload signed artifacts - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1 + uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2 with: retention-days: 1 if-no-files-found: error diff --git a/.github/workflows/releaseArtifacts.yml b/.github/workflows/releaseArtifacts.yml index 834890c61..9abba4700 100644 --- a/.github/workflows/releaseArtifacts.yml +++ b/.github/workflows/releaseArtifacts.yml @@ -63,7 +63,7 @@ jobs: ls -R ./build/launch4j - name: Upload build artifacts - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1 + uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2 with: name: binaries${{ matrix.file_suffix }} path: | @@ -139,7 +139,7 @@ jobs: ./launch4j/Stirling-PDF-Server${{ matrix.file_suffix }}.exe - name: Upload signed artifacts - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1 + uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2 with: name: signed${{ matrix.file_suffix }} path: | diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml index 81ee15aa4..da12a06ff 100644 --- a/.github/workflows/scorecards.yml +++ b/.github/workflows/scorecards.yml @@ -66,7 +66,7 @@ jobs: # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF # format to the repository Actions tab. - name: "Upload artifact" - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1 + uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2 with: name: SARIF file path: results.sarif diff --git a/.github/workflows/sonarqube.yml b/.github/workflows/sonarqube.yml index 8881fcc44..0925d94c7 100644 --- a/.github/workflows/sonarqube.yml +++ b/.github/workflows/sonarqube.yml @@ -46,7 +46,7 @@ jobs: - name: Upload Problems Report on Failure if: failure() - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1 + uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2 with: name: gradle-problems-report path: build/reports/problems/problems-report.html @@ -54,7 +54,7 @@ jobs: - name: Upload Sonar Logs on Failure if: failure() - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1 + uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2 with: name: sonar-logs path: | From c6c195e9031767c5f1d0c149dce8acd6d5c0e0a9 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 24 Mar 2025 10:21:56 +0000 Subject: [PATCH 03/11] Bump springBootVersion from 3.4.3 to 3.4.4 (#3224) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit [//]: # (dependabot-start) ⚠️ **Dependabot is rebasing this PR** ⚠️ Rebasing might not happen immediately, so don't worry if this takes some time. Note: if you make any changes to this PR yourself, they will take precedence over the rebase. --- [//]: # (dependabot-end) Bumps `springBootVersion` from 3.4.3 to 3.4.4. Updates `org.springframework.boot:spring-boot-starter-web` from 3.4.3 to 3.4.4
Release notes

Sourced from org.springframework.boot:spring-boot-starter-web's releases.

v3.4.4

❗ Noteworthy Changes

Tomcat APR support is now disabled by default if you are using Java 24 or higher. This change has been made to prevent JDK from issuing warnings.

Please see the updated release notes for details.

:lady_beetle: Bug Fixes

  • Actuator throws an exception when using prototype scoped DataSource bean #44706
  • Docker API error message is missing in some cases #44630
  • DefaultJmsListenerContainerFactoryConfigurer#setObservationRegistry should not be public #44585
  • When an application contains multiple DataSource beans, EntityManagerFactoryBuilder will default ddl-auto to a value that may only be appropriate for the primary DataSource #44516
  • When the main class is not proxied, native testing that uses the application's main method does not work #44481
  • When loading configuration from a Resource, Log4J2LoggingSystem may not close the InputStream #44473
  • When loading from a resource, PemContent does not close the InputStream #44454
  • ResourceBanner does not close the InputStream used to read the banner #44452
  • ConfigDataLocationResolvers and PropertySourceLoaders are loaded using a potentially different class loader #44450
  • Kafka message sending fails with 'class SslBundleSslEngineFactory could not be found' #44437
  • Kafka in native-image fails when using SSL bundles #44436
  • Nested test classes don't inherit properties from @DataJpaTest on enclosing class #44407
  • Failure diagnostics are poor when trying to use an image platform that is not supported by the builder #44059
  • Checking if APR is available logs a warning on Java 24 #44033

:notebook_with_decorative_cover: Documentation

  • Multiline properties in documentation are missing backslashes #44790
  • Polish javadoc of SqlR2dbcScriptDatabaseInitializer #44764
  • Document support for Java 24 #44754
  • Remove OpenShift link that 404s #44748
  • Fix link to javadoc for JavaExec.setArgsString #44536
  • Fix typo in documentation #44523
  • Update descriptions of properties that no longer require Flyway Teams #44483
  • Fix typo in javadoc of CommonStructuredLogFormat#ELASTIC_COMMON_SCHEMA #44469
  • Samples for metadata annotation processers have invalid fold attribute #44420
  • Clarify which Mongo properties are ignored when URI property is set #44404
  • Adapt Javadoc reference of JooqExceptionTranslator to use ExceptionTranslatorExecuteListener #44402

:hammer: Dependency Upgrades

  • Upgrade to ActiveMQ 6.1.6 #44663
  • Upgrade to AspectJ 1.9.23 #44720
  • Upgrade to Groovy 4.0.26 #44546
  • Upgrade to Hibernate 6.6.11.Final #44739
  • Upgrade to Infinispan 15.0.14.Final #44548
  • Upgrade to Jackson Bom 2.18.3 #44549
  • Upgrade to Jetty 12.0.18 #44774
  • Upgrade to Jetty Reactive HTTPClient 4.0.9 #44773
  • Upgrade to jOOQ 3.19.21 #44665
  • Upgrade to Logback 1.5.18 #44775
  • Upgrade to Maven Deploy Plugin 3.1.4 #44552

... (truncated)

Commits
  • d4eb556 Increase Nexus timeouts
  • 0226b6a Release v3.4.4
  • 6ba94ae Merge branch '3.3.x' into 3.4.x
  • 36a5936 Next development version (v3.3.11-SNAPSHOT)
  • 375aba6 Upgrade to Spring Framework 6.2.5
  • 37e4a3c Merge branch '3.3.x' into 3.4.x
  • 99fa21c Upgrade to asciidoctor-extensions 1.0.0-alpha.17
  • f86a6fb Upgrade to Spring Batch 5.2.2
  • 6567609 Merge branch '3.3.x' into 3.4.x
  • 80b6c59 Improve debuggability of DockerComposeTestExtension
  • Additional commits viewable in compare view

Updates `org.springframework.boot:spring-boot-starter-jetty` from 3.4.3 to 3.4.4
Release notes

Sourced from org.springframework.boot:spring-boot-starter-jetty's releases.

v3.4.4

❗ Noteworthy Changes

Tomcat APR support is now disabled by default if you are using Java 24 or higher. This change has been made to prevent JDK from issuing warnings.

Please see the updated release notes for details.

:lady_beetle: Bug Fixes

  • Actuator throws an exception when using prototype scoped DataSource bean #44706
  • Docker API error message is missing in some cases #44630
  • DefaultJmsListenerContainerFactoryConfigurer#setObservationRegistry should not be public #44585
  • When an application contains multiple DataSource beans, EntityManagerFactoryBuilder will default ddl-auto to a value that may only be appropriate for the primary DataSource #44516
  • When the main class is not proxied, native testing that uses the application's main method does not work #44481
  • When loading configuration from a Resource, Log4J2LoggingSystem may not close the InputStream #44473
  • When loading from a resource, PemContent does not close the InputStream #44454
  • ResourceBanner does not close the InputStream used to read the banner #44452
  • ConfigDataLocationResolvers and PropertySourceLoaders are loaded using a potentially different class loader #44450
  • Kafka message sending fails with 'class SslBundleSslEngineFactory could not be found' #44437
  • Kafka in native-image fails when using SSL bundles #44436
  • Nested test classes don't inherit properties from @DataJpaTest on enclosing class #44407
  • Failure diagnostics are poor when trying to use an image platform that is not supported by the builder #44059
  • Checking if APR is available logs a warning on Java 24 #44033

:notebook_with_decorative_cover: Documentation

  • Multiline properties in documentation are missing backslashes #44790
  • Polish javadoc of SqlR2dbcScriptDatabaseInitializer #44764
  • Document support for Java 24 #44754
  • Remove OpenShift link that 404s #44748
  • Fix link to javadoc for JavaExec.setArgsString #44536
  • Fix typo in documentation #44523
  • Update descriptions of properties that no longer require Flyway Teams #44483
  • Fix typo in javadoc of CommonStructuredLogFormat#ELASTIC_COMMON_SCHEMA #44469
  • Samples for metadata annotation processers have invalid fold attribute #44420
  • Clarify which Mongo properties are ignored when URI property is set #44404
  • Adapt Javadoc reference of JooqExceptionTranslator to use ExceptionTranslatorExecuteListener #44402

:hammer: Dependency Upgrades

  • Upgrade to ActiveMQ 6.1.6 #44663
  • Upgrade to AspectJ 1.9.23 #44720
  • Upgrade to Groovy 4.0.26 #44546
  • Upgrade to Hibernate 6.6.11.Final #44739
  • Upgrade to Infinispan 15.0.14.Final #44548
  • Upgrade to Jackson Bom 2.18.3 #44549
  • Upgrade to Jetty 12.0.18 #44774
  • Upgrade to Jetty Reactive HTTPClient 4.0.9 #44773
  • Upgrade to jOOQ 3.19.21 #44665
  • Upgrade to Logback 1.5.18 #44775
  • Upgrade to Maven Deploy Plugin 3.1.4 #44552

... (truncated)

Commits
  • d4eb556 Increase Nexus timeouts
  • 0226b6a Release v3.4.4
  • 6ba94ae Merge branch '3.3.x' into 3.4.x
  • 36a5936 Next development version (v3.3.11-SNAPSHOT)
  • 375aba6 Upgrade to Spring Framework 6.2.5
  • 37e4a3c Merge branch '3.3.x' into 3.4.x
  • 99fa21c Upgrade to asciidoctor-extensions 1.0.0-alpha.17
  • f86a6fb Upgrade to Spring Batch 5.2.2
  • 6567609 Merge branch '3.3.x' into 3.4.x
  • 80b6c59 Improve debuggability of DockerComposeTestExtension
  • Additional commits viewable in compare view

Updates `org.springframework.boot:spring-boot-starter-thymeleaf` from 3.4.3 to 3.4.4
Release notes

Sourced from org.springframework.boot:spring-boot-starter-thymeleaf's releases.

v3.4.4

❗ Noteworthy Changes

Tomcat APR support is now disabled by default if you are using Java 24 or higher. This change has been made to prevent JDK from issuing warnings.

Please see the updated release notes for details.

:lady_beetle: Bug Fixes

  • Actuator throws an exception when using prototype scoped DataSource bean #44706
  • Docker API error message is missing in some cases #44630
  • DefaultJmsListenerContainerFactoryConfigurer#setObservationRegistry should not be public #44585
  • When an application contains multiple DataSource beans, EntityManagerFactoryBuilder will default ddl-auto to a value that may only be appropriate for the primary DataSource #44516
  • When the main class is not proxied, native testing that uses the application's main method does not work #44481
  • When loading configuration from a Resource, Log4J2LoggingSystem may not close the InputStream #44473
  • When loading from a resource, PemContent does not close the InputStream #44454
  • ResourceBanner does not close the InputStream used to read the banner #44452
  • ConfigDataLocationResolvers and PropertySourceLoaders are loaded using a potentially different class loader #44450
  • Kafka message sending fails with 'class SslBundleSslEngineFactory could not be found' #44437
  • Kafka in native-image fails when using SSL bundles #44436
  • Nested test classes don't inherit properties from @DataJpaTest on enclosing class #44407
  • Failure diagnostics are poor when trying to use an image platform that is not supported by the builder #44059
  • Checking if APR is available logs a warning on Java 24 #44033

:notebook_with_decorative_cover: Documentation

  • Multiline properties in documentation are missing backslashes #44790
  • Polish javadoc of SqlR2dbcScriptDatabaseInitializer #44764
  • Document support for Java 24 #44754
  • Remove OpenShift link that 404s #44748
  • Fix link to javadoc for JavaExec.setArgsString #44536
  • Fix typo in documentation #44523
  • Update descriptions of properties that no longer require Flyway Teams #44483
  • Fix typo in javadoc of CommonStructuredLogFormat#ELASTIC_COMMON_SCHEMA #44469
  • Samples for metadata annotation processers have invalid fold attribute #44420
  • Clarify which Mongo properties are ignored when URI property is set #44404
  • Adapt Javadoc reference of JooqExceptionTranslator to use ExceptionTranslatorExecuteListener #44402

:hammer: Dependency Upgrades

  • Upgrade to ActiveMQ 6.1.6 #44663
  • Upgrade to AspectJ 1.9.23 #44720
  • Upgrade to Groovy 4.0.26 #44546
  • Upgrade to Hibernate 6.6.11.Final #44739
  • Upgrade to Infinispan 15.0.14.Final #44548
  • Upgrade to Jackson Bom 2.18.3 #44549
  • Upgrade to Jetty 12.0.18 #44774
  • Upgrade to Jetty Reactive HTTPClient 4.0.9 #44773
  • Upgrade to jOOQ 3.19.21 #44665
  • Upgrade to Logback 1.5.18 #44775
  • Upgrade to Maven Deploy Plugin 3.1.4 #44552

... (truncated)

Commits
  • d4eb556 Increase Nexus timeouts
  • 0226b6a Release v3.4.4
  • 6ba94ae Merge branch '3.3.x' into 3.4.x
  • 36a5936 Next development version (v3.3.11-SNAPSHOT)
  • 375aba6 Upgrade to Spring Framework 6.2.5
  • 37e4a3c Merge branch '3.3.x' into 3.4.x
  • 99fa21c Upgrade to asciidoctor-extensions 1.0.0-alpha.17
  • f86a6fb Upgrade to Spring Batch 5.2.2
  • 6567609 Merge branch '3.3.x' into 3.4.x
  • 80b6c59 Improve debuggability of DockerComposeTestExtension
  • Additional commits viewable in compare view

Updates `org.springframework.boot:spring-boot-starter-security` from 3.4.3 to 3.4.4
Release notes

Sourced from org.springframework.boot:spring-boot-starter-security's releases.

v3.4.4

❗ Noteworthy Changes

Tomcat APR support is now disabled by default if you are using Java 24 or higher. This change has been made to prevent JDK from issuing warnings.

Please see the updated release notes for details.

:lady_beetle: Bug Fixes

  • Actuator throws an exception when using prototype scoped DataSource bean #44706
  • Docker API error message is missing in some cases #44630
  • DefaultJmsListenerContainerFactoryConfigurer#setObservationRegistry should not be public #44585
  • When an application contains multiple DataSource beans, EntityManagerFactoryBuilder will default ddl-auto to a value that may only be appropriate for the primary DataSource #44516
  • When the main class is not proxied, native testing that uses the application's main method does not work #44481
  • When loading configuration from a Resource, Log4J2LoggingSystem may not close the InputStream #44473
  • When loading from a resource, PemContent does not close the InputStream #44454
  • ResourceBanner does not close the InputStream used to read the banner #44452
  • ConfigDataLocationResolvers and PropertySourceLoaders are loaded using a potentially different class loader #44450
  • Kafka message sending fails with 'class SslBundleSslEngineFactory could not be found' #44437
  • Kafka in native-image fails when using SSL bundles #44436
  • Nested test classes don't inherit properties from @DataJpaTest on enclosing class #44407
  • Failure diagnostics are poor when trying to use an image platform that is not supported by the builder #44059
  • Checking if APR is available logs a warning on Java 24 #44033

:notebook_with_decorative_cover: Documentation

  • Multiline properties in documentation are missing backslashes #44790
  • Polish javadoc of SqlR2dbcScriptDatabaseInitializer #44764
  • Document support for Java 24 #44754
  • Remove OpenShift link that 404s #44748
  • Fix link to javadoc for JavaExec.setArgsString #44536
  • Fix typo in documentation #44523
  • Update descriptions of properties that no longer require Flyway Teams #44483
  • Fix typo in javadoc of CommonStructuredLogFormat#ELASTIC_COMMON_SCHEMA #44469
  • Samples for metadata annotation processers have invalid fold attribute #44420
  • Clarify which Mongo properties are ignored when URI property is set #44404
  • Adapt Javadoc reference of JooqExceptionTranslator to use ExceptionTranslatorExecuteListener #44402

:hammer: Dependency Upgrades

  • Upgrade to ActiveMQ 6.1.6 #44663
  • Upgrade to AspectJ 1.9.23 #44720
  • Upgrade to Groovy 4.0.26 #44546
  • Upgrade to Hibernate 6.6.11.Final #44739
  • Upgrade to Infinispan 15.0.14.Final #44548
  • Upgrade to Jackson Bom 2.18.3 #44549
  • Upgrade to Jetty 12.0.18 #44774
  • Upgrade to Jetty Reactive HTTPClient 4.0.9 #44773
  • Upgrade to jOOQ 3.19.21 #44665
  • Upgrade to Logback 1.5.18 #44775
  • Upgrade to Maven Deploy Plugin 3.1.4 #44552

... (truncated)

Commits
  • d4eb556 Increase Nexus timeouts
  • 0226b6a Release v3.4.4
  • 6ba94ae Merge branch '3.3.x' into 3.4.x
  • 36a5936 Next development version (v3.3.11-SNAPSHOT)
  • 375aba6 Upgrade to Spring Framework 6.2.5
  • 37e4a3c Merge branch '3.3.x' into 3.4.x
  • 99fa21c Upgrade to asciidoctor-extensions 1.0.0-alpha.17
  • f86a6fb Upgrade to Spring Batch 5.2.2
  • 6567609 Merge branch '3.3.x' into 3.4.x
  • 80b6c59 Improve debuggability of DockerComposeTestExtension
  • Additional commits viewable in compare view

Updates `org.springframework.boot:spring-boot-starter-data-jpa` from 3.4.3 to 3.4.4
Release notes

Sourced from org.springframework.boot:spring-boot-starter-data-jpa's releases.

v3.4.4

❗ Noteworthy Changes

Tomcat APR support is now disabled by default if you are using Java 24 or higher. This change has been made to prevent JDK from issuing warnings.

Please see the updated release notes for details.

:lady_beetle: Bug Fixes

  • Actuator throws an exception when using prototype scoped DataSource bean #44706
  • Docker API error message is missing in some cases #44630
  • DefaultJmsListenerContainerFactoryConfigurer#setObservationRegistry should not be public #44585
  • When an application contains multiple DataSource beans, EntityManagerFactoryBuilder will default ddl-auto to a value that may only be appropriate for the primary DataSource #44516
  • When the main class is not proxied, native testing that uses the application's main method does not work #44481
  • When loading configuration from a Resource, Log4J2LoggingSystem may not close the InputStream #44473
  • When loading from a resource, PemContent does not close the InputStream #44454
  • ResourceBanner does not close the InputStream used to read the banner #44452
  • ConfigDataLocationResolvers and PropertySourceLoaders are loaded using a potentially different class loader #44450
  • Kafka message sending fails with 'class SslBundleSslEngineFactory could not be found' #44437
  • Kafka in native-image fails when using SSL bundles #44436
  • Nested test classes don't inherit properties from @DataJpaTest on enclosing class #44407
  • Failure diagnostics are poor when trying to use an image platform that is not supported by the builder #44059
  • Checking if APR is available logs a warning on Java 24 #44033

:notebook_with_decorative_cover: Documentation

  • Multiline properties in documentation are missing backslashes #44790
  • Polish javadoc of SqlR2dbcScriptDatabaseInitializer #44764
  • Document support for Java 24 #44754
  • Remove OpenShift link that 404s #44748
  • Fix link to javadoc for JavaExec.setArgsString #44536
  • Fix typo in documentation #44523
  • Update descriptions of properties that no longer require Flyway Teams #44483
  • Fix typo in javadoc of CommonStructuredLogFormat#ELASTIC_COMMON_SCHEMA #44469
  • Samples for metadata annotation processers have invalid fold attribute #44420
  • Clarify which Mongo properties are ignored when URI property is set #44404
  • Adapt Javadoc reference of JooqExceptionTranslator to use ExceptionTranslatorExecuteListener #44402

:hammer: Dependency Upgrades

  • Upgrade to ActiveMQ 6.1.6 #44663
  • Upgrade to AspectJ 1.9.23 #44720
  • Upgrade to Groovy 4.0.26 #44546
  • Upgrade to Hibernate 6.6.11.Final #44739
  • Upgrade to Infinispan 15.0.14.Final #44548
  • Upgrade to Jackson Bom 2.18.3 #44549
  • Upgrade to Jetty 12.0.18 #44774
  • Upgrade to Jetty Reactive HTTPClient 4.0.9 #44773
  • Upgrade to jOOQ 3.19.21 #44665
  • Upgrade to Logback 1.5.18 #44775
  • Upgrade to Maven Deploy Plugin 3.1.4 #44552

... (truncated)

Commits
  • d4eb556 Increase Nexus timeouts
  • 0226b6a Release v3.4.4
  • 6ba94ae Merge branch '3.3.x' into 3.4.x
  • 36a5936 Next development version (v3.3.11-SNAPSHOT)
  • 375aba6 Upgrade to Spring Framework 6.2.5
  • 37e4a3c Merge branch '3.3.x' into 3.4.x
  • 99fa21c Upgrade to asciidoctor-extensions 1.0.0-alpha.17
  • f86a6fb Upgrade to Spring Batch 5.2.2
  • 6567609 Merge branch '3.3.x' into 3.4.x
  • 80b6c59 Improve debuggability of DockerComposeTestExtension
  • Additional commits viewable in compare view

Updates `org.springframework.boot:spring-boot-starter-oauth2-client` from 3.4.3 to 3.4.4
Release notes

Sourced from org.springframework.boot:spring-boot-starter-oauth2-client's releases.

v3.4.4

❗ Noteworthy Changes

Tomcat APR support is now disabled by default if you are using Java 24 or higher. This change has been made to prevent JDK from issuing warnings.

Please see the updated release notes for details.

:lady_beetle: Bug Fixes

  • Actuator throws an exception when using prototype scoped DataSource bean #44706
  • Docker API error message is missing in some cases #44630
  • DefaultJmsListenerContainerFactoryConfigurer#setObservationRegistry should not be public #44585
  • When an application contains multiple DataSource beans, EntityManagerFactoryBuilder will default ddl-auto to a value that may only be appropriate for the primary DataSource #44516
  • When the main class is not proxied, native testing that uses the application's main method does not work #44481
  • When loading configuration from a Resource, Log4J2LoggingSystem may not close the InputStream #44473
  • When loading from a resource, PemContent does not close the InputStream #44454
  • ResourceBanner does not close the InputStream used to read the banner #44452
  • ConfigDataLocationResolvers and PropertySourceLoaders are loaded using a potentially different class loader #44450
  • Kafka message sending fails with 'class SslBundleSslEngineFactory could not be found' #44437
  • Kafka in native-image fails when using SSL bundles #44436
  • Nested test classes don't inherit properties from @DataJpaTest on enclosing class #44407
  • Failure diagnostics are poor when trying to use an image platform that is not supported by the builder #44059
  • Checking if APR is available logs a warning on Java 24 #44033

:notebook_with_decorative_cover: Documentation

  • Multiline properties in documentation are missing backslashes #44790
  • Polish javadoc of SqlR2dbcScriptDatabaseInitializer #44764
  • Document support for Java 24 #44754
  • Remove OpenShift link that 404s #44748
  • Fix link to javadoc for JavaExec.setArgsString #44536
  • Fix typo in documentation #44523
  • Update descriptions of properties that no longer require Flyway Teams #44483
  • Fix typo in javadoc of CommonStructuredLogFormat#ELASTIC_COMMON_SCHEMA #44469
  • Samples for metadata annotation processers have invalid fold attribute #44420
  • Clarify which Mongo properties are ignored when URI property is set #44404
  • Adapt Javadoc reference of JooqExceptionTranslator to use ExceptionTranslatorExecuteListener #44402

:hammer: Dependency Upgrades

  • Upgrade to ActiveMQ 6.1.6 #44663
  • Upgrade to AspectJ 1.9.23 #44720
  • Upgrade to Groovy 4.0.26 #44546
  • Upgrade to Hibernate 6.6.11.Final #44739
  • Upgrade to Infinispan 15.0.14.Final #44548
  • Upgrade to Jackson Bom 2.18.3 #44549
  • Upgrade to Jetty 12.0.18 #44774
  • Upgrade to Jetty Reactive HTTPClient 4.0.9 #44773
  • Upgrade to jOOQ 3.19.21 #44665
  • Upgrade to Logback 1.5.18 #44775
  • Upgrade to Maven Deploy Plugin 3.1.4 #44552

... (truncated)

Commits
  • d4eb556 Increase Nexus timeouts
  • 0226b6a Release v3.4.4
  • 6ba94ae Merge branch '3.3.x' into 3.4.x
  • 36a5936 Next development version (v3.3.11-SNAPSHOT)
  • 375aba6 Upgrade to Spring Framework 6.2.5
  • 37e4a3c Merge branch '3.3.x' into 3.4.x
  • 99fa21c Upgrade to asciidoctor-extensions 1.0.0-alpha.17
  • f86a6fb Upgrade to Spring Batch 5.2.2
  • 6567609 Merge branch '3.3.x' into 3.4.x
  • 80b6c59 Improve debuggability of DockerComposeTestExtension
  • Additional commits viewable in compare view

Updates `org.springframework.boot:spring-boot-starter-test` from 3.4.3 to 3.4.4
Release notes

Sourced from org.springframework.boot:spring-boot-starter-test's releases.

v3.4.4

❗ Noteworthy Changes

Tomcat APR support is now disabled by default if you are using Java 24 or higher. This change has been made to prevent JDK from issuing warnings.

Please see the updated release notes for details.

:lady_beetle: Bug Fixes

  • Actuator throws an exception when using prototype scoped DataSource bean #44706
  • Docker API error message is missing in some cases #44630
  • DefaultJmsListenerContainerFactoryConfigurer#setObservationRegistry should not be public #44585
  • When an application contains multiple DataSource beans, EntityManagerFactoryBuilder will default ddl-auto to a value that may only be appropriate for the primary DataSource #44516
  • When the main class is not proxied, native testing that uses the application's main method does not work #44481
  • When loading configuration from a Resource, Log4J2LoggingSystem may not close the InputStream #44473
  • When loading from a resource, PemContent does not close the InputStream #44454
  • ResourceBanner does not close the InputStream used to read the banner #44452
  • ConfigDataLocationResolvers and PropertySourceLoaders are loaded using a potentially different class loader #44450
  • Kafka message sending fails with 'class SslBundleSslEngineFactory could not be found' #44437
  • Kafka in native-image fails when using SSL bundles #44436
  • Nested test classes don't inherit properties from @DataJpaTest on enclosing class #44407
  • Failure diagnostics are poor when trying to use an image platform that is not supported by the builder #44059
  • Checking if APR is available logs a warning on Java 24 #44033

:notebook_with_decorative_cover: Documentation

  • Multiline properties in documentation are missing backslashes #44790
  • Polish javadoc of SqlR2dbcScriptDatabaseInitializer #44764
  • Document support for Java 24 #44754
  • Remove OpenShift link that 404s #44748
  • Fix link to javadoc for JavaExec.setArgsString #44536
  • Fix typo in documentation #44523
  • Update descriptions of properties that no longer require Flyway Teams #44483
  • Fix typo in javadoc of CommonStructuredLogFormat#ELASTIC_COMMON_SCHEMA #44469
  • Samples for metadata annotation processers have invalid fold attribute #44420
  • Clarify which Mongo properties are ignored when URI property is set #44404
  • Adapt Javadoc reference of JooqExceptionTranslator to use ExceptionTranslatorExecuteListener #44402

:hammer: Dependency Upgrades

  • Upgrade to ActiveMQ 6.1.6 #44663
  • Upgrade to AspectJ 1.9.23 #44720
  • Upgrade to Groovy 4.0.26 #44546
  • Upgrade to Hibernate 6.6.11.Final #44739
  • Upgrade to Infinispan 15.0.14.Final #44548
  • Upgrade to Jackson Bom 2.18.3 #44549
  • Upgrade to Jetty 12.0.18 #44774
  • Upgrade to Jetty Reactive HTTPClient 4.0.9 #44773
  • Upgrade to jOOQ 3.19.21 #44665
  • Upgrade to Logback 1.5.18 #44775
  • Upgrade to Maven Deploy Plugin 3.1.4 #44552

... (truncated)

Commits
  • d4eb556 Increase Nexus timeouts
  • 0226b6a Release v3.4.4
  • 6ba94ae Merge branch '3.3.x' into 3.4.x
  • 36a5936 Next development version (v3.3.11-SNAPSHOT)
  • 375aba6 Upgrade to Spring Framework 6.2.5
  • 37e4a3c Merge branch '3.3.x' into 3.4.x
  • 99fa21c Upgrade to asciidoctor-extensions 1.0.0-alpha.17
  • f86a6fb Upgrade to Spring Batch 5.2.2
  • 6567609 Merge branch '3.3.x' into 3.4.x
  • 80b6c59 Improve debuggability of DockerComposeTestExtension
  • Additional commits viewable in compare view

Updates `org.springframework.boot:spring-boot-starter-actuator` from 3.4.3 to 3.4.4
Release notes

Sourced from org.springframework.boot:spring-boot-starter-actuator's releases.

v3.4.4

❗ Noteworthy Changes

Tomcat APR support is now disabled by default if you are using Java 24 or higher. This change has been made to prevent JDK from issuing warnings.

Please see the updated release notes for details.

:lady_beetle: Bug Fixes

  • Actuator throws an exception when using prototype scoped DataSource bean #44706
  • Docker API error message is missing in some cases #44630
  • DefaultJmsListenerContainerFactoryConfigurer#setObservationRegistry should not be public #44585
  • When an application contains multiple DataSource beans, EntityManagerFactoryBuilder will default ddl-auto to a value that may only be appropriate for the primary DataSource #44516
  • When the main class is not proxied, native testing that uses the application's main method does not work #44481
  • When loading configuration from a Resource, Log4J2LoggingSystem may not close the InputStream #44473
  • When loading from a resource, PemContent does not close the InputStream #44454
  • ResourceBanner does not close the InputStream used to read the banner #44452
  • ConfigDataLocationResolvers and PropertySourceLoaders are loaded using a potentially different class loader #44450
  • Kafka message sending fails with 'class SslBundleSslEngineFactory could not be found' #44437
  • Kafka in native-image fails when using SSL bundles #44436
  • Nested test classes don't inherit properties from @DataJpaTest on enclosing class #44407
  • Failure diagnostics are poor when trying to use an image platform that is not supported by the builder #44059
  • Checking if APR is available logs a warning on Java 24 #44033

:notebook_with_decorative_cover: Documentation

  • Multiline properties in documentation are missing backslashes #44790
  • Polish javadoc of SqlR2dbcScriptDatabaseInitializer #44764
  • Document support for Java 24 #44754
  • Remove OpenShift link that 404s #44748
  • Fix link to javadoc for JavaExec.setArgsString #44536
  • Fix typo in documentation #44523
  • Update descriptions of properties that no longer require Flyway Teams #44483
  • Fix typo in javadoc of CommonStructuredLogFormat#ELASTIC_COMMON_SCHEMA #44469
  • Samples for metadata annotation processers have invalid fold attribute #44420
  • Clarify which Mongo properties are ignored when URI property is set #44404
  • Adapt Javadoc reference of JooqExceptionTranslator to use ExceptionTranslatorExecuteListener #44402

:hammer: Dependency Upgrades

  • Upgrade to ActiveMQ 6.1.6 #44663
  • Upgrade to AspectJ 1.9.23 #44720
  • Upgrade t... _Description has been truncated_ Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- build.gradle | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/build.gradle b/build.gradle index 7b9329405..c711d298e 100644 --- a/build.gradle +++ b/build.gradle @@ -15,7 +15,7 @@ plugins { import com.github.jk1.license.render.* ext { - springBootVersion = "3.4.3" + springBootVersion = "3.4.4" pdfboxVersion = "3.0.4" imageioVersion = "3.12.0" lombokVersion = "1.18.36" From f159c62a36119d9922c0fcb75e3f85565cad0475 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 24 Mar 2025 10:22:46 +0000 Subject: [PATCH 04/11] Bump actions/download-artifact from 4.1.9 to 4.2.1 (#3225) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit [//]: # (dependabot-start) ⚠️ **Dependabot is rebasing this PR** ⚠️ Rebasing might not happen immediately, so don't worry if this takes some time. Note: if you make any changes to this PR yourself, they will take precedence over the rebase. --- [//]: # (dependabot-end) Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 4.1.9 to 4.2.1.
    Release notes

    Sourced from actions/download-artifact's releases.

    v4.2.1

    What's Changed

    Full Changelog: https://github.com/actions/download-artifact/compare/v4.2.0...v4.2.1

    v4.2.0

    What's Changed

    New Contributors

    Full Changelog: https://github.com/actions/download-artifact/compare/v4.1.9...v4.2.0

    Commits

    [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/download-artifact&package-manager=github_actions&previous-version=4.1.9&new-version=4.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
    Dependabot commands and options
    You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/multiOSReleases.yml | 6 +++--- .github/workflows/releaseArtifacts.yml | 4 ++-- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/.github/workflows/multiOSReleases.yml b/.github/workflows/multiOSReleases.yml index 643b5db58..12c36510f 100644 --- a/.github/workflows/multiOSReleases.yml +++ b/.github/workflows/multiOSReleases.yml @@ -106,7 +106,7 @@ jobs: egress-policy: audit - name: Download build artifacts - uses: actions/download-artifact@cc203385981b70ca67e1cc392babf9cc229d5806 # v4.1.9 + uses: actions/download-artifact@95815c38cf2ff2164869cbab79da8d1f422bc89e # v4.2.1 with: name: stirling-${{ matrix.file_suffix }}binaries @@ -215,7 +215,7 @@ jobs: egress-policy: audit - name: Download build artifacts - uses: actions/download-artifact@cc203385981b70ca67e1cc392babf9cc229d5806 # v4.1.9 + uses: actions/download-artifact@95815c38cf2ff2164869cbab79da8d1f422bc89e # v4.2.1 with: name: ${{ matrix.platform }}binaries @@ -276,7 +276,7 @@ jobs: egress-policy: audit - name: Download signed artifacts - uses: actions/download-artifact@cc203385981b70ca67e1cc392babf9cc229d5806 # v4.1.9 + uses: actions/download-artifact@95815c38cf2ff2164869cbab79da8d1f422bc89e # v4.2.1 - name: Display structure of downloaded files run: ls -R - name: Upload binaries, attestations and signatures to Release and create GitHub Release diff --git a/.github/workflows/releaseArtifacts.yml b/.github/workflows/releaseArtifacts.yml index 9abba4700..6253b8eb0 100644 --- a/.github/workflows/releaseArtifacts.yml +++ b/.github/workflows/releaseArtifacts.yml @@ -88,7 +88,7 @@ jobs: egress-policy: audit - name: Download build artifacts - uses: actions/download-artifact@cc203385981b70ca67e1cc392babf9cc229d5806 # v4.1.9 + uses: actions/download-artifact@95815c38cf2ff2164869cbab79da8d1f422bc89e # v4.2.1 with: name: binaries${{ matrix.file_suffix }} - name: Display structure of downloaded files @@ -166,7 +166,7 @@ jobs: egress-policy: audit - name: Download signed artifacts - uses: actions/download-artifact@cc203385981b70ca67e1cc392babf9cc229d5806 # v4.1.9 + uses: actions/download-artifact@95815c38cf2ff2164869cbab79da8d1f422bc89e # v4.2.1 with: name: signed${{ matrix.file_suffix }} From fa2a43912141dba882afab7a5e5db9d2308a07af Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 24 Mar 2025 10:37:09 +0000 Subject: [PATCH 05/11] Bump github/codeql-action from 3.28.11 to 3.28.12 (#3226) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.28.11 to 3.28.12.
    Release notes

    Sourced from github/codeql-action's releases.

    v3.28.12

    CodeQL Action Changelog

    See the releases page for the relevant changes to the CodeQL CLI and language packs.

    3.28.12 - 19 Mar 2025

    • Dependency caching should now cache more dependencies for Java build-mode: none extractions. This should speed up workflows and avoid inconsistent alerts in some cases.
    • Update default CodeQL bundle version to 2.20.7. #2810

    See the full CHANGELOG.md for more information.

    Changelog

    Sourced from github/codeql-action's changelog.

    CodeQL Action Changelog

    See the releases page for the relevant changes to the CodeQL CLI and language packs.

    [UNRELEASED]

    No user facing changes.

    3.28.12 - 19 Mar 2025

    • Dependency caching should now cache more dependencies for Java build-mode: none extractions. This should speed up workflows and avoid inconsistent alerts in some cases.
    • Update default CodeQL bundle version to 2.20.7. #2810

    3.28.11 - 07 Mar 2025

    • Update default CodeQL bundle version to 2.20.6. #2793

    3.28.10 - 21 Feb 2025

    • Update default CodeQL bundle version to 2.20.5. #2772
    • Address an issue where the CodeQL Bundle would occasionally fail to decompress on macOS. #2768

    3.28.9 - 07 Feb 2025

    • Update default CodeQL bundle version to 2.20.4. #2753

    3.28.8 - 29 Jan 2025

    • Enable support for Kotlin 2.1.10 when running with CodeQL CLI v2.20.3. #2744

    3.28.7 - 29 Jan 2025

    No user facing changes.

    3.28.6 - 27 Jan 2025

    • Re-enable debug artifact upload for CLI versions 2.20.3 or greater. #2726

    3.28.5 - 24 Jan 2025

    • Update default CodeQL bundle version to 2.20.3. #2717

    3.28.4 - 23 Jan 2025

    No user facing changes.

    3.28.3 - 22 Jan 2025

    • Update default CodeQL bundle version to 2.20.2. #2707
    • Fix an issue downloading the CodeQL Bundle from a GitHub Enterprise Server instance which occurred when the CodeQL Bundle had been synced to the instance using the CodeQL Action sync tool and the Actions runner did not have Zstandard installed. #2710

    ... (truncated)

    Commits
    • 5f8171a Merge pull request #2814 from github/update-v3.28.12-6349095d1
    • bb59f77 Update changelog for v3.28.12
    • 6349095 Merge pull request #2810 from github/update-bundle/codeql-bundle-v2.20.7
    • d7d03fd Add changelog note
    • 4e3a534 Update default bundle to codeql-bundle-v2.20.7
    • 55f0237 Merge pull request #2802 from github/mbg/dependency-caching/java-buildless
    • 6a151cd Merge pull request #2811 from github/dependabot/github_actions/actions-c2c311...
    • 7866bcd Manually bump workflow to match autogenerated file
    • 611289e build(deps): bump ruby/setup-ruby in the actions group
    • 4c409a5 Remove temporary dependency directory in analyze post action
    • Additional commits viewable in compare view

    [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github/codeql-action&package-manager=github_actions&previous-version=3.28.11&new-version=3.28.12)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
    Dependabot commands and options
    You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/scorecards.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml index da12a06ff..37ff7cea6 100644 --- a/.github/workflows/scorecards.yml +++ b/.github/workflows/scorecards.yml @@ -74,6 +74,6 @@ jobs: # Upload the results to GitHub's code scanning dashboard. - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@6bb031afdd8eb862ea3fc1848194185e076637e5 # v3.28.11 + uses: github/codeql-action/upload-sarif@5f8171a638ada777af81d42b55959a643bb29017 # v3.28.12 with: sarif_file: results.sarif From 1f8b5ce41e57bb3bbbd17bb47c979cebfcf204c2 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 24 Mar 2025 10:37:23 +0000 Subject: [PATCH 06/11] Bump actions/create-github-app-token from 1.11.6 to 1.11.7 (#3227) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit [//]: # (dependabot-start) ⚠️ **Dependabot is rebasing this PR** ⚠️ Rebasing might not happen immediately, so don't worry if this takes some time. Note: if you make any changes to this PR yourself, they will take precedence over the rebase. --- [//]: # (dependabot-end) Bumps [actions/create-github-app-token](https://github.com/actions/create-github-app-token) from 1.11.6 to 1.11.7.
    Release notes

    Sourced from actions/create-github-app-token's releases.

    v1.11.7

    1.11.7 (2025-03-20)

    Bug Fixes

    • deps: bump undici from 5.28.4 to 7.5.0 (#214) (a24b46a)
    Commits

    [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/create-github-app-token&package-manager=github_actions&previous-version=1.11.6&new-version=1.11.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
    Dependabot commands and options
    You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/licenses-update.yml | 2 +- .github/workflows/pre_commit.yml | 2 +- .github/workflows/sync_files.yml | 4 ++-- 3 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/licenses-update.yml b/.github/workflows/licenses-update.yml index 4f1a3326d..96bdfd411 100644 --- a/.github/workflows/licenses-update.yml +++ b/.github/workflows/licenses-update.yml @@ -24,7 +24,7 @@ jobs: - name: Generate GitHub App Token id: generate-token - uses: actions/create-github-app-token@21cfef2b496dd8ef5b904c159339626a10ad380e # v1.11.6 + uses: actions/create-github-app-token@af35edadc00be37caa72ed9f3e6d5f7801bfdf09 # v1.11.7 with: app-id: ${{ secrets.GH_APP_ID }} private-key: ${{ secrets.GH_APP_PRIVATE_KEY }} diff --git a/.github/workflows/pre_commit.yml b/.github/workflows/pre_commit.yml index b395153ee..f99e9bfc9 100644 --- a/.github/workflows/pre_commit.yml +++ b/.github/workflows/pre_commit.yml @@ -22,7 +22,7 @@ jobs: - name: Generate GitHub App Token id: generate-token - uses: actions/create-github-app-token@21cfef2b496dd8ef5b904c159339626a10ad380e # v1.11.6 + uses: actions/create-github-app-token@af35edadc00be37caa72ed9f3e6d5f7801bfdf09 # v1.11.7 with: app-id: ${{ secrets.GH_APP_ID }} private-key: ${{ secrets.GH_APP_PRIVATE_KEY }} diff --git a/.github/workflows/sync_files.yml b/.github/workflows/sync_files.yml index 7b43a2175..18158d3dd 100644 --- a/.github/workflows/sync_files.yml +++ b/.github/workflows/sync_files.yml @@ -30,7 +30,7 @@ jobs: - name: Generate GitHub App Token id: generate-token - uses: actions/create-github-app-token@21cfef2b496dd8ef5b904c159339626a10ad380e # v1.11.6 + uses: actions/create-github-app-token@af35edadc00be37caa72ed9f3e6d5f7801bfdf09 # v1.11.7 with: app-id: ${{ secrets.GH_APP_ID }} private-key: ${{ secrets.GH_APP_PRIVATE_KEY }} @@ -63,7 +63,7 @@ jobs: - name: Generate GitHub App Token id: generate-token - uses: actions/create-github-app-token@21cfef2b496dd8ef5b904c159339626a10ad380e # v1.11.6 + uses: actions/create-github-app-token@af35edadc00be37caa72ed9f3e6d5f7801bfdf09 # v1.11.7 with: app-id: ${{ vars.GH_APP_ID }} private-key: ${{ secrets.GH_APP_PRIVATE_KEY }} From 7a3000b926f862a32d062021925591c20ae00d07 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 24 Mar 2025 10:37:41 +0000 Subject: [PATCH 07/11] Bump org.springframework.boot from 3.4.3 to 3.4.4 (#3229) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Bumps [org.springframework.boot](https://github.com/spring-projects/spring-boot) from 3.4.3 to 3.4.4.
    Release notes

    Sourced from org.springframework.boot's releases.

    v3.4.4

    ❗ Noteworthy Changes

    Tomcat APR support is now disabled by default if you are using Java 24 or higher. This change has been made to prevent JDK from issuing warnings.

    Please see the updated release notes for details.

    :lady_beetle: Bug Fixes

    • Actuator throws an exception when using prototype scoped DataSource bean #44706
    • Docker API error message is missing in some cases #44630
    • DefaultJmsListenerContainerFactoryConfigurer#setObservationRegistry should not be public #44585
    • When an application contains multiple DataSource beans, EntityManagerFactoryBuilder will default ddl-auto to a value that may only be appropriate for the primary DataSource #44516
    • When the main class is not proxied, native testing that uses the application's main method does not work #44481
    • When loading configuration from a Resource, Log4J2LoggingSystem may not close the InputStream #44473
    • When loading from a resource, PemContent does not close the InputStream #44454
    • ResourceBanner does not close the InputStream used to read the banner #44452
    • ConfigDataLocationResolvers and PropertySourceLoaders are loaded using a potentially different class loader #44450
    • Kafka message sending fails with 'class SslBundleSslEngineFactory could not be found' #44437
    • Kafka in native-image fails when using SSL bundles #44436
    • Nested test classes don't inherit properties from @DataJpaTest on enclosing class #44407
    • Failure diagnostics are poor when trying to use an image platform that is not supported by the builder #44059
    • Checking if APR is available logs a warning on Java 24 #44033

    :notebook_with_decorative_cover: Documentation

    • Multiline properties in documentation are missing backslashes #44790
    • Polish javadoc of SqlR2dbcScriptDatabaseInitializer #44764
    • Document support for Java 24 #44754
    • Remove OpenShift link that 404s #44748
    • Fix link to javadoc for JavaExec.setArgsString #44536
    • Fix typo in documentation #44523
    • Update descriptions of properties that no longer require Flyway Teams #44483
    • Fix typo in javadoc of CommonStructuredLogFormat#ELASTIC_COMMON_SCHEMA #44469
    • Samples for metadata annotation processers have invalid fold attribute #44420
    • Clarify which Mongo properties are ignored when URI property is set #44404
    • Adapt Javadoc reference of JooqExceptionTranslator to use ExceptionTranslatorExecuteListener #44402

    :hammer: Dependency Upgrades

    • Upgrade to ActiveMQ 6.1.6 #44663
    • Upgrade to AspectJ 1.9.23 #44720
    • Upgrade to Groovy 4.0.26 #44546
    • Upgrade to Hibernate 6.6.11.Final #44739
    • Upgrade to Infinispan 15.0.14.Final #44548
    • Upgrade to Jackson Bom 2.18.3 #44549
    • Upgrade to Jetty 12.0.18 #44774
    • Upgrade to Jetty Reactive HTTPClient 4.0.9 #44773
    • Upgrade to jOOQ 3.19.21 #44665
    • Upgrade to Logback 1.5.18 #44775
    • Upgrade to Maven Deploy Plugin 3.1.4 #44552

    ... (truncated)

    Commits
    • d4eb556 Increase Nexus timeouts
    • 0226b6a Release v3.4.4
    • 6ba94ae Merge branch '3.3.x' into 3.4.x
    • 36a5936 Next development version (v3.3.11-SNAPSHOT)
    • 375aba6 Upgrade to Spring Framework 6.2.5
    • 37e4a3c Merge branch '3.3.x' into 3.4.x
    • 99fa21c Upgrade to asciidoctor-extensions 1.0.0-alpha.17
    • f86a6fb Upgrade to Spring Batch 5.2.2
    • 6567609 Merge branch '3.3.x' into 3.4.x
    • 80b6c59 Improve debuggability of DockerComposeTestExtension
    • Additional commits viewable in compare view

    [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.springframework.boot&package-manager=gradle&previous-version=3.4.3&new-version=3.4.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
    Dependabot commands and options
    You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- build.gradle | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/build.gradle b/build.gradle index c711d298e..4e2642dc5 100644 --- a/build.gradle +++ b/build.gradle @@ -1,6 +1,6 @@ plugins { id "java" - id "org.springframework.boot" version "3.4.3" + id "org.springframework.boot" version "3.4.4" id "io.spring.dependency-management" version "1.1.7" id "org.springdoc.openapi-gradle-plugin" version "1.9.0" id "io.swagger.swaggerhub" version "1.3.2" From 2e231feb6a2982cd6742b83690b2d2e84c5f02c2 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 24 Mar 2025 10:37:56 +0000 Subject: [PATCH 08/11] Bump ch.qos.logback:logback-core from 1.5.17 to 1.5.18 (#3230) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Bumps [ch.qos.logback:logback-core](https://github.com/qos-ch/logback) from 1.5.17 to 1.5.18.
    Release notes

    Sourced from ch.qos.logback:logback-core's releases.

    Logback 1.5.18

    2025-03-18 Release of logback version 1.5.18

    • Added support for XZ compression for archived log files. Note that XZ compression requires Tukaani project's XZ library for Java. In case XZ compression is requested but the XZ library is missing, then logback will substitute GZ compression as a fallback. This feature was requested in issues/755.

    • Removed references to java.security.AccessController class. This class has been deprecated for some time and is slated for removal in future JDK versions.

    • A bit-wise identical binary of this version can be reproduced by building from source code at commit b2a02f065379a9b1ba5ff837fc08913b744774bc associated with the tag v_1.5.18. Release built using Java "21" 2023-10-17 LTS build 21.0.1.+12-LTS-29 under Linux Debian 11.6.

    Commits
    • b2a02f0 prepare release 1.5.18
    • 991de58 remove references to AccessController marked for deletion in the JDK
    • f54ab16 If compression mode is XZ but the XZ library is missing, then fallback to GZ ...
    • fb45971 add support for XZ compression
    • 31c1f55 add xz compression support with tests
    • 8968d0f introduce strategy based compression
    • 834059c start work on 1.5.18-SNAPSHOT
    • See full diff in compare view

    [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=ch.qos.logback:logback-core&package-manager=gradle&previous-version=1.5.17&new-version=1.5.18)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
    Dependabot commands and options
    You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- build.gradle | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/build.gradle b/build.gradle index 4e2642dc5..b117c64d2 100644 --- a/build.gradle +++ b/build.gradle @@ -299,7 +299,7 @@ configurations.all { dependencies { //tmp for security bumps - implementation 'ch.qos.logback:logback-core:1.5.17' + implementation 'ch.qos.logback:logback-core:1.5.18' implementation 'ch.qos.logback:logback-classic:1.5.18' From de905f47747878f0d6cac967a8df9ea23e3616e2 Mon Sep 17 00:00:00 2001 From: daenur Date: Mon, 24 Mar 2025 12:38:26 +0200 Subject: [PATCH 09/11] Small css fix to remove white square in bottom right corner between scrollbars (#3233) # Description of Changes Please provide a summary of the changes, including: - What was changed Small css fix to remove white square in bottom right corner between scrollbars - Why the change was made It's looking better - Any challenges encountered Nothing | screens | light theme | dark theme | |---|---|---| | before| ![ligtht theme before](https://github.com/user-attachments/assets/9c6d0c03-2796-422c-a398-742b3adf6e32) | ![dark theme befoe](https://github.com/user-attachments/assets/b183f6d3-d4dc-4cbc-82cc-20384b87e489) | | after | ![ligtht theme after](https://github.com/user-attachments/assets/4675cff4-dafa-4f62-9a7e-4495760ea681) | ![dark theme after](https://github.com/user-attachments/assets/faedc00c-eb12-4787-b4b6-fcfa598f9fac) | Closes #(issue_number) --- ## Checklist ### General - [x] I have read the [Contribution Guidelines](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/CONTRIBUTING.md) - [ ] I have read the [Stirling-PDF Developer Guide](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/DeveloperGuide.md) (if applicable) - [ ] I have read the [How to add new languages to Stirling-PDF](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/HowToAddNewLanguage.md) (if applicable) - [x] I have performed a self-review of my own code - [x] My changes generate no new warnings ### Documentation - [ ] I have updated relevant docs on [Stirling-PDF's doc repo](https://github.com/Stirling-Tools/Stirling-Tools.github.io/blob/main/docs/) (if functionality has heavily changed) - [ ] I have read the section [Add New Translation Tags](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/HowToAddNewLanguage.md#add-new-translation-tags) (for new translation tags only) ### UI Changes (if applicable) - [x] Screenshots or videos demonstrating the UI changes are attached (e.g., as comments or direct attachments in the PR) ### Testing (if applicable) - [ ] I have tested my changes locally. Refer to the [Testing Guide](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/DeveloperGuide.md#6-testing) for more details. --- src/main/resources/static/css/theme/componentes.css | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/src/main/resources/static/css/theme/componentes.css b/src/main/resources/static/css/theme/componentes.css index 2478068ed..c10806ff7 100644 --- a/src/main/resources/static/css/theme/componentes.css +++ b/src/main/resources/static/css/theme/componentes.css @@ -39,6 +39,10 @@ textarea { border: 5px solid var(--md-sys-color-surface-5); } +*::-webkit-scrollbar-corner { + background-color: var(--md-sys-color-surface); +} + /* Alerts */ .alert { border-radius: 3rem; From 0012831da9698fbb7dd5035603752e0234f05800 Mon Sep 17 00:00:00 2001 From: "stirlingbot[bot]" <195170888+stirlingbot[bot]@users.noreply.github.com> Date: Mon, 24 Mar 2025 10:38:59 +0000 Subject: [PATCH 10/11] =?UTF-8?q?=F0=9F=A4=96=20format=20everything=20with?= =?UTF-8?q?=20pre-commit=20by=20=20(#3220)?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Auto-generated by [create-pull-request][1] with **stirlingbot** [1]: https://github.com/peter-evans/create-pull-request Signed-off-by: stirlingbot[bot] <195170888+stirlingbot[bot]@users.noreply.github.com> Co-authored-by: stirlingbot[bot] <195170888+stirlingbot[bot]@users.noreply.github.com> --- .../api/misc/CompressController.java | 2 +- src/main/resources/static/js/DecryptFiles.js | 6 ++--- src/main/resources/static/js/fileInput.js | 24 +++++++++---------- src/main/resources/static/js/search.js | 8 +++---- 4 files changed, 20 insertions(+), 20 deletions(-) diff --git a/src/main/java/stirling/software/SPDF/controller/api/misc/CompressController.java b/src/main/java/stirling/software/SPDF/controller/api/misc/CompressController.java index ade1b306c..79d46cc45 100644 --- a/src/main/java/stirling/software/SPDF/controller/api/misc/CompressController.java +++ b/src/main/java/stirling/software/SPDF/controller/api/misc/CompressController.java @@ -864,4 +864,4 @@ public class CompressController { } return Math.min(9, currentLevel + 1); } -} \ No newline at end of file +} diff --git a/src/main/resources/static/js/DecryptFiles.js b/src/main/resources/static/js/DecryptFiles.js index 8c5b8a50e..6701649c3 100644 --- a/src/main/resources/static/js/DecryptFiles.js +++ b/src/main/resources/static/js/DecryptFiles.js @@ -3,7 +3,7 @@ export class DecryptFile { constructor(){ this.decryptWorker = null } - + async decryptFile(file, requiresPassword) { try { @@ -87,7 +87,7 @@ export class DecryptFile { } pdfjsLib.GlobalWorkerOptions.workerSrc = './pdfjs-legacy/pdf.worker.mjs'; - + const arrayBuffer = await file.arrayBuffer(); const arrayBufferForPdfLib = arrayBuffer.slice(0); var loadingTask; @@ -98,7 +98,7 @@ export class DecryptFile { }); this.decryptWorker = loadingTask._worker - }else { + }else { loadingTask = pdfjsLib.getDocument({ data: arrayBuffer, worker: this.decryptWorker diff --git a/src/main/resources/static/js/fileInput.js b/src/main/resources/static/js/fileInput.js index e9cdfca46..7e89e6cc3 100644 --- a/src/main/resources/static/js/fileInput.js +++ b/src/main/resources/static/js/fileInput.js @@ -144,10 +144,10 @@ function setupFileInput(chooser) { const originalText = inputContainer.querySelector('#fileInputText').innerHTML; inputContainer.querySelector('#fileInputText').innerHTML = window.fileInput.loading; - + async function checkZipFile() { const hasZipFiles = allFiles.some(file => zipTypes.includes(file.type)); - + // Only change to extractPDF message if we actually have zip files if (hasZipFiles) { inputContainer.querySelector('#fileInputText').innerHTML = window.fileInput.extractPDF; @@ -167,7 +167,7 @@ function setupFileInput(chooser) { await Promise.all(promises); } - + const decryptFile = new DecryptFile(); await checkZipFile(); @@ -184,7 +184,7 @@ function setupFileInput(chooser) { } decryptedFile.uniqueId = UUID.uuidv4(); return decryptedFile; - + } catch (error) { console.error(`Error decrypting file: ${file.name}`, error); if (!file.uniqueId) file.uniqueId = UUID.uuidv4(); @@ -214,9 +214,9 @@ function setupFileInput(chooser) { var counter = 0; // do an overall count, then proceed to make the pdf files - await jszip.loadAsync(zipFile) + await jszip.loadAsync(zipFile) .then(function (zip) { - + zip.forEach(function (relativePath, zipEntry) { counter+=1; }) @@ -237,11 +237,11 @@ function setupFileInput(chooser) { if (content.size > 0) { const extension = zipEntry.name.split('.').pop().toLowerCase(); const mimeType = mimeTypes[extension] || 'application/octet-stream'; - + // Check if we're accepting ONLY ZIP files (in which case extract everything) // or if the file type matches the accepted type - if (zipTypes.includes(acceptedFileType) || - acceptedFileType === '*/*' || + if (zipTypes.includes(acceptedFileType) || + acceptedFileType === '*/*' || (mimeType && (mimeType.startsWith(acceptedFileType.split('/')[0]) || acceptedFileType === mimeType))) { var file = new File([content], zipEntry.name, { type: mimeType }); file.uniqueId = UUID.uuidv4(); @@ -251,10 +251,10 @@ function setupFileInput(chooser) { } } }); - + extractionPromises.push(promise); }); - + return Promise.all(extractionPromises); }) .catch(function (err) { @@ -262,7 +262,7 @@ function setupFileInput(chooser) { throw err; }); } - + function handleFileInputChange(inputElement) { const files = allFiles; diff --git a/src/main/resources/static/js/search.js b/src/main/resources/static/js/search.js index 58e3ae9c3..c7932965c 100644 --- a/src/main/resources/static/js/search.js +++ b/src/main/resources/static/js/search.js @@ -34,7 +34,7 @@ document.querySelector("#navbarSearchInput").addEventListener("input", function if (searchText !== "") { var addedResults = new Set(); - + items.forEach(function (item) { var titleElement = item.querySelector(".icon-text"); var iconElement = item.querySelector(".material-symbols-rounded, .icon"); @@ -50,15 +50,15 @@ document.querySelector("#navbarSearchInput").addEventListener("input", function ) { var dropdownItem = document.createElement("div"); dropdownItem.className = "dropdown-item d-flex justify-content-between align-items-center"; - + var contentWrapper = document.createElement("div"); contentWrapper.className = "d-flex align-items-center flex-grow-1"; contentWrapper.style.textDecoration = "none"; contentWrapper.style.color = "inherit"; - + var originalContent = item.querySelector("div").cloneNode(true); contentWrapper.appendChild(originalContent); - + contentWrapper.onclick = function () { window.location.href = itemHref; }; From 86becc61de981e4b66bdc8e1dc9f63237affac92 Mon Sep 17 00:00:00 2001 From: "stirlingbot[bot]" <195170888+stirlingbot[bot]@users.noreply.github.com> Date: Mon, 24 Mar 2025 11:15:29 +0000 Subject: [PATCH 11/11] Update 3rd Party Licenses (#3234) Auto-generated by StirlingBot Signed-off-by: stirlingbot[bot] <1113334+stirlingbot[bot]@users.noreply.github.com> Co-authored-by: stirlingbot[bot] <195170888+stirlingbot[bot]@users.noreply.github.com> --- .../resources/static/3rdPartyLicenses.json | 172 +++++++++--------- 1 file changed, 86 insertions(+), 86 deletions(-) diff --git a/src/main/resources/static/3rdPartyLicenses.json b/src/main/resources/static/3rdPartyLicenses.json index c2cf45c8a..62019e135 100644 --- a/src/main/resources/static/3rdPartyLicenses.json +++ b/src/main/resources/static/3rdPartyLicenses.json @@ -3,14 +3,14 @@ { "moduleName": "ch.qos.logback:logback-classic", "moduleUrl": "http://www.qos.ch", - "moduleVersion": "1.5.17", + "moduleVersion": "1.5.18", "moduleLicense": "GNU Lesser General Public License", "moduleLicenseUrl": "http://www.gnu.org/licenses/old-licenses/lgpl-2.1.html" }, { "moduleName": "ch.qos.logback:logback-core", "moduleUrl": "http://www.qos.ch", - "moduleVersion": "1.5.17", + "moduleVersion": "1.5.18", "moduleLicense": "GNU Lesser General Public License", "moduleLicenseUrl": "http://www.gnu.org/licenses/old-licenses/lgpl-2.1.html" }, @@ -45,77 +45,77 @@ { "moduleName": "com.fasterxml.jackson.core:jackson-annotations", "moduleUrl": "https://github.com/FasterXML/jackson", - "moduleVersion": "2.18.2", + "moduleVersion": "2.18.3", "moduleLicense": "The Apache Software License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0.txt" }, { "moduleName": "com.fasterxml.jackson.core:jackson-core", "moduleUrl": "https://github.com/FasterXML/jackson-core", - "moduleVersion": "2.18.2", + "moduleVersion": "2.18.3", "moduleLicense": "The Apache Software License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0.txt" }, { "moduleName": "com.fasterxml.jackson.core:jackson-databind", "moduleUrl": "https://github.com/FasterXML/jackson", - "moduleVersion": "2.18.2", + "moduleVersion": "2.18.3", "moduleLicense": "The Apache Software License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0.txt" }, { "moduleName": "com.fasterxml.jackson.dataformat:jackson-dataformat-yaml", "moduleUrl": "https://github.com/FasterXML/jackson-dataformats-text", - "moduleVersion": "2.18.2", + "moduleVersion": "2.18.3", "moduleLicense": "The Apache Software License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0.txt" }, { "moduleName": "com.fasterxml.jackson.datatype:jackson-datatype-jdk8", "moduleUrl": "https://github.com/FasterXML/jackson-modules-java8/jackson-datatype-jdk8", - "moduleVersion": "2.18.2", + "moduleVersion": "2.18.3", "moduleLicense": "The Apache Software License, Version 2.0", "moduleLicenseUrl": "http://www.apache.org/licenses/LICENSE-2.0.txt" }, { "moduleName": "com.fasterxml.jackson.datatype:jackson-datatype-jsr310", "moduleUrl": "https://github.com/FasterXML/jackson-modules-java8/jackson-datatype-jsr310", - "moduleVersion": "2.18.2", + "moduleVersion": "2.18.3", "moduleLicense": "The Apache Software License, Version 2.0", "moduleLicenseUrl": "http://www.apache.org/licenses/LICENSE-2.0.txt" }, { "moduleName": "com.fasterxml.jackson.jaxrs:jackson-jaxrs-base", "moduleUrl": "https://github.com/FasterXML/jackson-jaxrs-providers/jackson-jaxrs-base", - "moduleVersion": "2.18.2", + "moduleVersion": "2.18.3", "moduleLicense": "The Apache Software License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0.txt" }, { "moduleName": "com.fasterxml.jackson.jaxrs:jackson-jaxrs-json-provider", "moduleUrl": "https://github.com/FasterXML/jackson-jaxrs-providers/jackson-jaxrs-json-provider", - "moduleVersion": "2.18.2", + "moduleVersion": "2.18.3", "moduleLicense": "The Apache Software License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0.txt" }, { "moduleName": "com.fasterxml.jackson.module:jackson-module-jaxb-annotations", "moduleUrl": "https://github.com/FasterXML/jackson-modules-base", - "moduleVersion": "2.18.2", + "moduleVersion": "2.18.3", "moduleLicense": "The Apache Software License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0.txt" }, { "moduleName": "com.fasterxml.jackson.module:jackson-module-parameter-names", "moduleUrl": "https://github.com/FasterXML/jackson-modules-java8/jackson-module-parameter-names", - "moduleVersion": "2.18.2", + "moduleVersion": "2.18.3", "moduleLicense": "The Apache Software License, Version 2.0", "moduleLicenseUrl": "http://www.apache.org/licenses/LICENSE-2.0.txt" }, { "moduleName": "com.fasterxml.jackson:jackson-bom", "moduleUrl": "https://github.com/FasterXML/jackson-bom", - "moduleVersion": "2.18.2", + "moduleVersion": "2.18.3", "moduleLicense": "The Apache Software License, Version 2.0", "moduleLicenseUrl": "http://www.apache.org/licenses/LICENSE-2.0.txt" }, @@ -546,7 +546,7 @@ { "moduleName": "io.micrometer:micrometer-commons", "moduleUrl": "https://github.com/micrometer-metrics/micrometer", - "moduleVersion": "1.14.4", + "moduleVersion": "1.14.5", "moduleLicense": "The Apache Software License, Version 2.0", "moduleLicenseUrl": "http://www.apache.org/licenses/LICENSE-2.0.txt" }, @@ -560,14 +560,14 @@ { "moduleName": "io.micrometer:micrometer-jakarta9", "moduleUrl": "https://github.com/micrometer-metrics/micrometer", - "moduleVersion": "1.14.4", + "moduleVersion": "1.14.5", "moduleLicense": "The Apache Software License, Version 2.0", "moduleLicenseUrl": "http://www.apache.org/licenses/LICENSE-2.0.txt" }, { "moduleName": "io.micrometer:micrometer-observation", "moduleUrl": "https://github.com/micrometer-metrics/micrometer", - "moduleVersion": "1.14.4", + "moduleVersion": "1.14.5", "moduleLicense": "The Apache Software License, Version 2.0", "moduleLicenseUrl": "http://www.apache.org/licenses/LICENSE-2.0.txt" }, @@ -876,7 +876,7 @@ { "moduleName": "org.apache.tomcat.embed:tomcat-embed-el", "moduleUrl": "https://tomcat.apache.org/", - "moduleVersion": "10.1.36", + "moduleVersion": "10.1.39", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "http://www.apache.org/licenses/LICENSE-2.0.txt" }, @@ -903,7 +903,7 @@ { "moduleName": "org.aspectj:aspectjweaver", "moduleUrl": "https://www.eclipse.org/aspectj/", - "moduleVersion": "1.9.22.1", + "moduleVersion": "1.9.23", "moduleLicense": "Eclipse Public License - v 2.0", "moduleLicenseUrl": "https://www.eclipse.org/org/documents/epl-2.0/EPL-2.0.txt" }, @@ -971,182 +971,182 @@ { "moduleName": "org.eclipse.jetty.ee10.websocket:jetty-ee10-websocket-jakarta-client", "moduleUrl": "https://jetty.org/", - "moduleVersion": "12.0.16", + "moduleVersion": "12.0.18", "moduleLicense": "Eclipse Public License - Version 2.0", "moduleLicenseUrl": "https://www.eclipse.org/legal/epl-2.0/" }, { "moduleName": "org.eclipse.jetty.ee10.websocket:jetty-ee10-websocket-jakarta-common", "moduleUrl": "https://jetty.org/", - "moduleVersion": "12.0.16", + "moduleVersion": "12.0.18", "moduleLicense": "Eclipse Public License - Version 2.0", "moduleLicenseUrl": "https://www.eclipse.org/legal/epl-2.0/" }, { "moduleName": "org.eclipse.jetty.ee10.websocket:jetty-ee10-websocket-jakarta-server", "moduleUrl": "https://jetty.org/", - "moduleVersion": "12.0.16", + "moduleVersion": "12.0.18", "moduleLicense": "Eclipse Public License - Version 2.0", "moduleLicenseUrl": "https://www.eclipse.org/legal/epl-2.0/" }, { "moduleName": "org.eclipse.jetty.ee10.websocket:jetty-ee10-websocket-jetty-server", "moduleUrl": "https://jetty.org/", - "moduleVersion": "12.0.16", + "moduleVersion": "12.0.18", "moduleLicense": "Eclipse Public License - Version 2.0", "moduleLicenseUrl": "https://www.eclipse.org/legal/epl-2.0/" }, { "moduleName": "org.eclipse.jetty.ee10.websocket:jetty-ee10-websocket-servlet", "moduleUrl": "https://jetty.org/", - "moduleVersion": "12.0.16", + "moduleVersion": "12.0.18", "moduleLicense": "Eclipse Public License - Version 2.0", "moduleLicenseUrl": "https://www.eclipse.org/legal/epl-2.0/" }, { "moduleName": "org.eclipse.jetty.ee10:jetty-ee10-annotations", "moduleUrl": "https://jetty.org/", - "moduleVersion": "12.0.16", + "moduleVersion": "12.0.18", "moduleLicense": "Eclipse Public License - Version 2.0", "moduleLicenseUrl": "https://www.eclipse.org/legal/epl-2.0/" }, { "moduleName": "org.eclipse.jetty.ee10:jetty-ee10-plus", "moduleUrl": "https://jetty.org/", - "moduleVersion": "12.0.16", + "moduleVersion": "12.0.18", "moduleLicense": "Eclipse Public License - Version 2.0", "moduleLicenseUrl": "https://www.eclipse.org/legal/epl-2.0/" }, { "moduleName": "org.eclipse.jetty.ee10:jetty-ee10-servlet", "moduleUrl": "https://jetty.org/", - "moduleVersion": "12.0.16", + "moduleVersion": "12.0.18", "moduleLicense": "Eclipse Public License - Version 2.0", "moduleLicenseUrl": "https://www.eclipse.org/legal/epl-2.0/" }, { "moduleName": "org.eclipse.jetty.ee10:jetty-ee10-servlets", "moduleUrl": "https://jetty.org/", - "moduleVersion": "12.0.16", + "moduleVersion": "12.0.18", "moduleLicense": "Eclipse Public License - Version 2.0", "moduleLicenseUrl": "https://www.eclipse.org/legal/epl-2.0/" }, { "moduleName": "org.eclipse.jetty.ee10:jetty-ee10-webapp", "moduleUrl": "https://jetty.org/", - "moduleVersion": "12.0.16", + "moduleVersion": "12.0.18", "moduleLicense": "Eclipse Public License - Version 2.0", "moduleLicenseUrl": "https://www.eclipse.org/legal/epl-2.0/" }, { "moduleName": "org.eclipse.jetty.websocket:jetty-websocket-core-client", "moduleUrl": "https://jetty.org/", - "moduleVersion": "12.0.16", + "moduleVersion": "12.0.18", "moduleLicense": "Eclipse Public License - Version 2.0", "moduleLicenseUrl": "https://www.eclipse.org/legal/epl-2.0/" }, { "moduleName": "org.eclipse.jetty.websocket:jetty-websocket-core-common", "moduleUrl": "https://jetty.org/", - "moduleVersion": "12.0.16", + "moduleVersion": "12.0.18", "moduleLicense": "Eclipse Public License - Version 2.0", "moduleLicenseUrl": "https://www.eclipse.org/legal/epl-2.0/" }, { "moduleName": "org.eclipse.jetty.websocket:jetty-websocket-core-server", "moduleUrl": "https://jetty.org/", - "moduleVersion": "12.0.16", + "moduleVersion": "12.0.18", "moduleLicense": "Eclipse Public License - Version 2.0", "moduleLicenseUrl": "https://www.eclipse.org/legal/epl-2.0/" }, { "moduleName": "org.eclipse.jetty.websocket:jetty-websocket-jetty-api", "moduleUrl": "https://jetty.org/", - "moduleVersion": "12.0.16", + "moduleVersion": "12.0.18", "moduleLicense": "Eclipse Public License - Version 2.0", "moduleLicenseUrl": "https://www.eclipse.org/legal/epl-2.0/" }, { "moduleName": "org.eclipse.jetty.websocket:jetty-websocket-jetty-common", "moduleUrl": "https://jetty.org/", - "moduleVersion": "12.0.16", + "moduleVersion": "12.0.18", "moduleLicense": "Eclipse Public License - Version 2.0", "moduleLicenseUrl": "https://www.eclipse.org/legal/epl-2.0/" }, { "moduleName": "org.eclipse.jetty:jetty-alpn-client", "moduleUrl": "https://jetty.org/", - "moduleVersion": "12.0.16", + "moduleVersion": "12.0.18", "moduleLicense": "Eclipse Public License - Version 2.0", "moduleLicenseUrl": "https://www.eclipse.org/legal/epl-2.0/" }, { "moduleName": "org.eclipse.jetty:jetty-client", "moduleUrl": "https://jetty.org/", - "moduleVersion": "12.0.16", + "moduleVersion": "12.0.18", "moduleLicense": "Eclipse Public License - Version 2.0", "moduleLicenseUrl": "https://www.eclipse.org/legal/epl-2.0/" }, { "moduleName": "org.eclipse.jetty:jetty-ee", "moduleUrl": "https://jetty.org/", - "moduleVersion": "12.0.16", + "moduleVersion": "12.0.18", "moduleLicense": "Eclipse Public License - Version 2.0", "moduleLicenseUrl": "https://www.eclipse.org/legal/epl-2.0/" }, { "moduleName": "org.eclipse.jetty:jetty-http", "moduleUrl": "https://jetty.org/", - "moduleVersion": "12.0.16", + "moduleVersion": "12.0.18", "moduleLicense": "Eclipse Public License - Version 2.0", "moduleLicenseUrl": "https://www.eclipse.org/legal/epl-2.0/" }, { "moduleName": "org.eclipse.jetty:jetty-io", "moduleUrl": "https://jetty.org/", - "moduleVersion": "12.0.16", + "moduleVersion": "12.0.18", "moduleLicense": "Eclipse Public License - Version 2.0", "moduleLicenseUrl": "https://www.eclipse.org/legal/epl-2.0/" }, { "moduleName": "org.eclipse.jetty:jetty-plus", "moduleUrl": "https://jetty.org/", - "moduleVersion": "12.0.16", + "moduleVersion": "12.0.18", "moduleLicense": "Eclipse Public License - Version 2.0", "moduleLicenseUrl": "https://www.eclipse.org/legal/epl-2.0/" }, { "moduleName": "org.eclipse.jetty:jetty-security", "moduleUrl": "https://jetty.org/", - "moduleVersion": "12.0.16", + "moduleVersion": "12.0.18", "moduleLicense": "Eclipse Public License - Version 2.0", "moduleLicenseUrl": "https://www.eclipse.org/legal/epl-2.0/" }, { "moduleName": "org.eclipse.jetty:jetty-server", "moduleUrl": "https://jetty.org/", - "moduleVersion": "12.0.16", + "moduleVersion": "12.0.18", "moduleLicense": "Eclipse Public License - Version 2.0", "moduleLicenseUrl": "https://www.eclipse.org/legal/epl-2.0/" }, { "moduleName": "org.eclipse.jetty:jetty-session", "moduleUrl": "https://jetty.org/", - "moduleVersion": "12.0.16", + "moduleVersion": "12.0.18", "moduleLicense": "Eclipse Public License - Version 2.0", "moduleLicenseUrl": "https://www.eclipse.org/legal/epl-2.0/" }, { "moduleName": "org.eclipse.jetty:jetty-util", "moduleUrl": "https://jetty.org/", - "moduleVersion": "12.0.16", + "moduleVersion": "12.0.18", "moduleLicense": "Eclipse Public License - Version 2.0", "moduleLicenseUrl": "https://www.eclipse.org/legal/epl-2.0/" }, { "moduleName": "org.eclipse.jetty:jetty-xml", "moduleUrl": "https://jetty.org/", - "moduleVersion": "12.0.16", + "moduleVersion": "12.0.18", "moduleLicense": "Eclipse Public License - Version 2.0", "moduleLicenseUrl": "https://www.eclipse.org/legal/epl-2.0/" }, @@ -1188,7 +1188,7 @@ { "moduleName": "org.hibernate.orm:hibernate-core", "moduleUrl": "https://www.hibernate.org/orm/6.6", - "moduleVersion": "6.6.8.Final", + "moduleVersion": "6.6.11.Final", "moduleLicense": "GNU Library General Public License v2.1 or later", "moduleLicenseUrl": "https://www.opensource.org/licenses/LGPL-2.1" }, @@ -1353,16 +1353,16 @@ { "moduleName": "org.slf4j:jul-to-slf4j", "moduleUrl": "http://www.slf4j.org", - "moduleVersion": "2.0.16", - "moduleLicense": "MIT License", - "moduleLicenseUrl": "http://www.opensource.org/licenses/mit-license.php" + "moduleVersion": "2.0.17", + "moduleLicense": "MIT", + "moduleLicenseUrl": "https://opensource.org/license/mit" }, { "moduleName": "org.slf4j:slf4j-api", "moduleUrl": "http://www.slf4j.org", - "moduleVersion": "2.0.16", - "moduleLicense": "MIT License", - "moduleLicenseUrl": "http://www.opensource.org/licenses/mit-license.php" + "moduleVersion": "2.0.17", + "moduleLicense": "MIT", + "moduleLicenseUrl": "https://opensource.org/license/mit" }, { "moduleName": "org.snakeyaml:snakeyaml-engine", @@ -1392,168 +1392,168 @@ { "moduleName": "org.springframework.boot:spring-boot", "moduleUrl": "https://spring.io/projects/spring-boot", - "moduleVersion": "3.4.3", + "moduleVersion": "3.4.4", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework.boot:spring-boot-actuator", "moduleUrl": "https://spring.io/projects/spring-boot", - "moduleVersion": "3.4.3", + "moduleVersion": "3.4.4", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework.boot:spring-boot-actuator-autoconfigure", "moduleUrl": "https://spring.io/projects/spring-boot", - "moduleVersion": "3.4.3", + "moduleVersion": "3.4.4", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework.boot:spring-boot-autoconfigure", "moduleUrl": "https://spring.io/projects/spring-boot", - "moduleVersion": "3.4.3", + "moduleVersion": "3.4.4", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework.boot:spring-boot-devtools", "moduleUrl": "https://spring.io/projects/spring-boot", - "moduleVersion": "3.4.3", + "moduleVersion": "3.4.4", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework.boot:spring-boot-starter", "moduleUrl": "https://spring.io/projects/spring-boot", - "moduleVersion": "3.4.3", + "moduleVersion": "3.4.4", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework.boot:spring-boot-starter-actuator", "moduleUrl": "https://spring.io/projects/spring-boot", - "moduleVersion": "3.4.3", + "moduleVersion": "3.4.4", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework.boot:spring-boot-starter-data-jpa", "moduleUrl": "https://spring.io/projects/spring-boot", - "moduleVersion": "3.4.3", + "moduleVersion": "3.4.4", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework.boot:spring-boot-starter-jdbc", "moduleUrl": "https://spring.io/projects/spring-boot", - "moduleVersion": "3.4.3", + "moduleVersion": "3.4.4", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework.boot:spring-boot-starter-jetty", "moduleUrl": "https://spring.io/projects/spring-boot", - "moduleVersion": "3.4.3", + "moduleVersion": "3.4.4", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework.boot:spring-boot-starter-json", "moduleUrl": "https://spring.io/projects/spring-boot", - "moduleVersion": "3.4.3", + "moduleVersion": "3.4.4", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework.boot:spring-boot-starter-logging", "moduleUrl": "https://spring.io/projects/spring-boot", - "moduleVersion": "3.4.3", + "moduleVersion": "3.4.4", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework.boot:spring-boot-starter-oauth2-client", "moduleUrl": "https://spring.io/projects/spring-boot", - "moduleVersion": "3.4.3", + "moduleVersion": "3.4.4", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework.boot:spring-boot-starter-security", "moduleUrl": "https://spring.io/projects/spring-boot", - "moduleVersion": "3.4.3", + "moduleVersion": "3.4.4", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework.boot:spring-boot-starter-thymeleaf", "moduleUrl": "https://spring.io/projects/spring-boot", - "moduleVersion": "3.4.3", + "moduleVersion": "3.4.4", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework.boot:spring-boot-starter-web", "moduleUrl": "https://spring.io/projects/spring-boot", - "moduleVersion": "3.4.3", + "moduleVersion": "3.4.4", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework.data:spring-data-commons", "moduleUrl": "https://spring.io/projects/spring-data", - "moduleVersion": "3.4.3", + "moduleVersion": "3.4.4", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework.data:spring-data-jpa", "moduleUrl": "https://projects.spring.io/spring-data-jpa", - "moduleVersion": "3.4.3", + "moduleVersion": "3.4.4", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework.security:spring-security-config", "moduleUrl": "https://spring.io/projects/spring-security", - "moduleVersion": "6.4.3", + "moduleVersion": "6.4.4", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework.security:spring-security-core", "moduleUrl": "https://spring.io/projects/spring-security", - "moduleVersion": "6.4.3", + "moduleVersion": "6.4.4", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework.security:spring-security-crypto", "moduleUrl": "https://spring.io/projects/spring-security", - "moduleVersion": "6.4.3", + "moduleVersion": "6.4.4", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework.security:spring-security-oauth2-client", "moduleUrl": "https://spring.io/projects/spring-security", - "moduleVersion": "6.4.3", + "moduleVersion": "6.4.4", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework.security:spring-security-oauth2-core", "moduleUrl": "https://spring.io/projects/spring-security", - "moduleVersion": "6.4.3", + "moduleVersion": "6.4.4", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework.security:spring-security-oauth2-jose", "moduleUrl": "https://spring.io/projects/spring-security", - "moduleVersion": "6.4.3", + "moduleVersion": "6.4.4", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, @@ -1567,7 +1567,7 @@ { "moduleName": "org.springframework.security:spring-security-web", "moduleUrl": "https://spring.io/projects/spring-security", - "moduleVersion": "6.4.3", + "moduleVersion": "6.4.4", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, @@ -1581,49 +1581,49 @@ { "moduleName": "org.springframework:spring-aop", "moduleUrl": "https://github.com/spring-projects/spring-framework", - "moduleVersion": "6.2.3", + "moduleVersion": "6.2.5", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework:spring-aspects", "moduleUrl": "https://github.com/spring-projects/spring-framework", - "moduleVersion": "6.2.3", + "moduleVersion": "6.2.5", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework:spring-beans", "moduleUrl": "https://github.com/spring-projects/spring-framework", - "moduleVersion": "6.2.3", + "moduleVersion": "6.2.5", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework:spring-context", "moduleUrl": "https://github.com/spring-projects/spring-framework", - "moduleVersion": "6.2.3", + "moduleVersion": "6.2.5", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework:spring-core", "moduleUrl": "https://github.com/spring-projects/spring-framework", - "moduleVersion": "6.2.3", + "moduleVersion": "6.2.5", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework:spring-expression", "moduleUrl": "https://github.com/spring-projects/spring-framework", - "moduleVersion": "6.2.3", + "moduleVersion": "6.2.5", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework:spring-jcl", "moduleUrl": "https://github.com/spring-projects/spring-framework", - "moduleVersion": "6.2.3", + "moduleVersion": "6.2.5", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, @@ -1637,21 +1637,21 @@ { "moduleName": "org.springframework:spring-orm", "moduleUrl": "https://github.com/spring-projects/spring-framework", - "moduleVersion": "6.2.3", + "moduleVersion": "6.2.5", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework:spring-tx", "moduleUrl": "https://github.com/spring-projects/spring-framework", - "moduleVersion": "6.2.3", + "moduleVersion": "6.2.5", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" }, { "moduleName": "org.springframework:spring-web", "moduleUrl": "https://github.com/spring-projects/spring-framework", - "moduleVersion": "6.2.3", + "moduleVersion": "6.2.5", "moduleLicense": "Apache License, Version 2.0", "moduleLicenseUrl": "https://www.apache.org/licenses/LICENSE-2.0" },