4.2.0

Steeltoe 4.2 improves overall security and fixes various bugs. Highlights include:

• Improved reliability of the Config Server client.
• Updated to non-vulnerable OpenTelemetry packages.
• Added new APIs to support service discovery in Aspire.
• Added support to define your own credential mapping logic for Connectors.

What's Changed

• Fix awkward sentences in comments by @bart-vmware in #1650
• Use source generators for logging and regular expressions by @bart-vmware in #1652
• Port: Fix broken documentation in Steeltoe 4.x by @bart-vmware in #1655
• Use json source generator by @bart-vmware in #1656
• Fix binding options against null values by @bart-vmware in #1663
• Fix Eureka Dynamic Port Assignment overriding user-configured ports by @TimHess in #1666
• Config Server stability improvements by @bart-vmware in #1667
• Add missing logger categories in appsettings auto-completion by @bart-vmware in #1669
• Add IDiscoveryClient.InstancesFetched event by @bart-vmware in #1672
• Follow-up changes for new IDiscoveryClient.InstancesFetched event by @bart-vmware in #1677
• Gracefully handle access token fetch failure in Eureka and Config Server by @bart-vmware in #1679
• Connectors: add option to turn off the built-in post-processors by @bart-vmware in #1680
• Bump OpenTelemetry dependencies to fix vulnerabilities by @bart-vmware in #1685
• Fix invalid links by @bart-vmware in #1690
• Package updates by @bart-vmware in #1694
• Fix CA1873: Potentially expensive logging by @bart-vmware in #1695
• Ignore case when comparing Connector configuration keys by @bart-vmware in #1700
• Fix crash on shutdown: Eureka trying to unregister app that never registered by @bart-vmware in #1705
• Fix management port isolation bypass by @TimHess in b7ca93c
• Fix Eureka DataCenterInfo poisoning by @TimHess in c34a739
• Enhance /env sanitizer by @TimHess in e50cd31
• Require FULL Permissions on /env, /threaddump, /heapdump by default by @TimHess in b39defa
• Fix Vault token leak on HTTP redirect by @TimHess in 64ed5ff
• Harden temporary files written by MySQL/PostgreSQL Connectors by @bart-vmware in 8dd97cc
• Fix unexpected OAEP algorithm downgrade by @TimHess in 6cfee5c
• Placeholder resolution should only be logged at trace-level by @TimHess in 463dcbc
• Add expiration to JWT/OpenID keys caching by @TimHess and @bart-vmware in 04db2ac

Full Changelog: 4.1.0...4.2.0