chore(deps): Bump spring-security-version from 6.4.4 to 6.4.5

[dependabot]

Bumps spring-security-version from 6.4.4 to 6.4.5.
Updates org.springframework.security:spring-security-core from 6.4.4 to 6.4.5

Release notes

Sourced from org.springframework.security:spring-security-core's releases.

6.4.5

⭐ New Features

• Add link to docs zip file to the reference #16799
• Fix attribute name in http.adoc #16784
• Update ServerOAuth2AuthorizedClientExchangeFilterFunction javadoc #16783

🪲 Bug Fixes

• [Docs] Broken link on Spring MVC Test Integration page #16785
• ServerBearerTokenAuthenticationConverter validates parameters when not enabled #16901
• Clarify WebInvocationPrivilegeEvaluator JavaDoc #16782
• CookieServerCsrfTokenRepository.withHttpOnlyFalse() ineffective if setCookieCustomizer() is used #16862
• Correct closing tag in default PassKey HTML form #16601
• Fix WebAuthn saves Anonymous PublicKeyCredentialUserEntity #16606
• OpenSaml support should preserve encrypted elements for further analysis #16367
• Sorting in AuthorizationAdvisorProxyFactory should be thread-safe #16837
• WebFlux reference links to Servlet docs #16786
• XML config does not apply request-handler-ref to CsrfAuthenticationStrategy #16844

🔨 Dependency Upgrades

• Bump ch.qos.logback:logback-classic from 1.5.17 to 1.5.18 #16767
• Bump io.micrometer:micrometer-observation from 1.14.5 to 1.14.6 #16938
• Bump io.projectreactor:reactor-bom from 2023.0.16 to 2023.0.17 #16944
• Bump io.spring.gradle:spring-security-release-plugin from 1.0.3 to 1.0.4 #16919
• Bump org-aspectj from 1.9.22.1 to 1.9.24 #16928
• Bump org-eclipse-jetty from 11.0.24 to 11.0.25 #16758
• Bump org.hibernate.orm:hibernate-core from 6.6.12.Final to 6.6.13.Final #16895
• Bump org.springframework.ldap:spring-ldap-core from 3.2.11 to 3.2.12 #16960
• Bump org.springframework:spring-framework-bom from 6.2.5 to 6.2.6 #16959

🔩 Build Updates

• Bump spring-io/spring-doc-actions from 0.0.19 to 0.0.20 #16894
• Release 6.4.5 #16972

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​AB-xdev, @​Borghii, and @​dependabot[bot]

Commits

• e8aef09 Release 6.4.5
• f8d417d Preserve Encrypted Elements
• 79bacf8 Bump org.springframework:spring-framework-bom from 6.2.5 to 6.2.6
• 9bcfeab Bump org.springframework.ldap:spring-ldap-core from 3.2.11 to 3.2.12
• 254c9c9 Merge branch '6.3.x' into 6.4.x
• a5d9633 Bump org.springframework:spring-framework-bom from 6.1.18 to 6.1.19
• e5d9659 Merge branch '6.3.x' into 6.4.x
• 99c4f58 Bump org.springframework.ldap:spring-ldap-core from 3.2.11 to 3.2.12
• cb60d8b Merge branch '6.3.x' into 6.4.x
• c1aa99f Enforce BCrypt password length for new passwords only
• Additional commits viewable in compare view

Updates org.springframework.security:spring-security-config from 6.4.4 to 6.4.5

Release notes

Sourced from org.springframework.security:spring-security-config's releases.

6.4.5

⭐ New Features

• Add link to docs zip file to the reference #16799
• Fix attribute name in http.adoc #16784
• Update ServerOAuth2AuthorizedClientExchangeFilterFunction javadoc #16783

🪲 Bug Fixes

• [Docs] Broken link on Spring MVC Test Integration page #16785
• ServerBearerTokenAuthenticationConverter validates parameters when not enabled #16901
• Clarify WebInvocationPrivilegeEvaluator JavaDoc #16782
• CookieServerCsrfTokenRepository.withHttpOnlyFalse() ineffective if setCookieCustomizer() is used #16862
• Correct closing tag in default PassKey HTML form #16601
• Fix WebAuthn saves Anonymous PublicKeyCredentialUserEntity #16606
• OpenSaml support should preserve encrypted elements for further analysis #16367
• Sorting in AuthorizationAdvisorProxyFactory should be thread-safe #16837
• WebFlux reference links to Servlet docs #16786
• XML config does not apply request-handler-ref to CsrfAuthenticationStrategy #16844

🔨 Dependency Upgrades

• Bump ch.qos.logback:logback-classic from 1.5.17 to 1.5.18 #16767
• Bump io.micrometer:micrometer-observation from 1.14.5 to 1.14.6 #16938
• Bump io.projectreactor:reactor-bom from 2023.0.16 to 2023.0.17 #16944
• Bump io.spring.gradle:spring-security-release-plugin from 1.0.3 to 1.0.4 #16919
• Bump org-aspectj from 1.9.22.1 to 1.9.24 #16928
• Bump org-eclipse-jetty from 11.0.24 to 11.0.25 #16758
• Bump org.hibernate.orm:hibernate-core from 6.6.12.Final to 6.6.13.Final #16895
• Bump org.springframework.ldap:spring-ldap-core from 3.2.11 to 3.2.12 #16960
• Bump org.springframework:spring-framework-bom from 6.2.5 to 6.2.6 #16959

🔩 Build Updates

• Bump spring-io/spring-doc-actions from 0.0.19 to 0.0.20 #16894
• Release 6.4.5 #16972

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​AB-xdev, @​Borghii, and @​dependabot[bot]

Commits

• e8aef09 Release 6.4.5
• f8d417d Preserve Encrypted Elements
• 79bacf8 Bump org.springframework:spring-framework-bom from 6.2.5 to 6.2.6
• 9bcfeab Bump org.springframework.ldap:spring-ldap-core from 3.2.11 to 3.2.12
• 254c9c9 Merge branch '6.3.x' into 6.4.x
• a5d9633 Bump org.springframework:spring-framework-bom from 6.1.18 to 6.1.19
• e5d9659 Merge branch '6.3.x' into 6.4.x
• 99c4f58 Bump org.springframework.ldap:spring-ldap-core from 3.2.11 to 3.2.12
• cb60d8b Merge branch '6.3.x' into 6.4.x
• c1aa99f Enforce BCrypt password length for new passwords only
• Additional commits viewable in compare view

Updates org.springframework.security:spring-security-oauth2-client from 6.4.4 to 6.4.5

Release notes

Sourced from org.springframework.security:spring-security-oauth2-client's releases.

6.4.5

⭐ New Features

• Add link to docs zip file to the reference #16799
• Fix attribute name in http.adoc #16784
• Update ServerOAuth2AuthorizedClientExchangeFilterFunction javadoc #16783

🪲 Bug Fixes

• [Docs] Broken link on Spring MVC Test Integration page #16785
• ServerBearerTokenAuthenticationConverter validates parameters when not enabled #16901
• Clarify WebInvocationPrivilegeEvaluator JavaDoc #16782
• CookieServerCsrfTokenRepository.withHttpOnlyFalse() ineffective if setCookieCustomizer() is used #16862
• Correct closing tag in default PassKey HTML form #16601
• Fix WebAuthn saves Anonymous PublicKeyCredentialUserEntity #16606
• OpenSaml support should preserve encrypted elements for further analysis #16367
• Sorting in AuthorizationAdvisorProxyFactory should be thread-safe #16837
• WebFlux reference links to Servlet docs #16786
• XML config does not apply request-handler-ref to CsrfAuthenticationStrategy #16844

🔨 Dependency Upgrades

• Bump ch.qos.logback:logback-classic from 1.5.17 to 1.5.18 #16767
• Bump io.micrometer:micrometer-observation from 1.14.5 to 1.14.6 #16938
• Bump io.projectreactor:reactor-bom from 2023.0.16 to 2023.0.17 #16944
• Bump io.spring.gradle:spring-security-release-plugin from 1.0.3 to 1.0.4 #16919
• Bump org-aspectj from 1.9.22.1 to 1.9.24 #16928
• Bump org-eclipse-jetty from 11.0.24 to 11.0.25 #16758
• Bump org.hibernate.orm:hibernate-core from 6.6.12.Final to 6.6.13.Final #16895
• Bump org.springframework.ldap:spring-ldap-core from 3.2.11 to 3.2.12 #16960
• Bump org.springframework:spring-framework-bom from 6.2.5 to 6.2.6 #16959

🔩 Build Updates

• Bump spring-io/spring-doc-actions from 0.0.19 to 0.0.20 #16894
• Release 6.4.5 #16972

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​AB-xdev, @​Borghii, and @​dependabot[bot]

Commits

• e8aef09 Release 6.4.5
• f8d417d Preserve Encrypted Elements
• 79bacf8 Bump org.springframework:spring-framework-bom from 6.2.5 to 6.2.6
• 9bcfeab Bump org.springframework.ldap:spring-ldap-core from 3.2.11 to 3.2.12
• 254c9c9 Merge branch '6.3.x' into 6.4.x
• a5d9633 Bump org.springframework:spring-framework-bom from 6.1.18 to 6.1.19
• e5d9659 Merge branch '6.3.x' into 6.4.x
• 99c4f58 Bump org.springframework.ldap:spring-ldap-core from 3.2.11 to 3.2.12
• cb60d8b Merge branch '6.3.x' into 6.4.x
• c1aa99f Enforce BCrypt password length for new passwords only
• Additional commits viewable in compare view

Updates org.springframework.security:spring-security-oauth2-jose from 6.4.4 to 6.4.5

Release notes

Sourced from org.springframework.security:spring-security-oauth2-jose's releases.

6.4.5

⭐ New Features

• Add link to docs zip file to the reference #16799
• Fix attribute name in http.adoc #16784
• Update ServerOAuth2AuthorizedClientExchangeFilterFunction javadoc #16783

🪲 Bug Fixes

• [Docs] Broken link on Spring MVC Test Integration page #16785
• ServerBearerTokenAuthenticationConverter validates parameters when not enabled #16901
• Clarify WebInvocationPrivilegeEvaluator JavaDoc #16782
• CookieServerCsrfTokenRepository.withHttpOnlyFalse() ineffective if setCookieCustomizer() is used #16862
• Correct closing tag in default PassKey HTML form #16601
• Fix WebAuthn saves Anonymous PublicKeyCredentialUserEntity #16606
• OpenSaml support should preserve encrypted elements for further analysis #16367
• Sorting in AuthorizationAdvisorProxyFactory should be thread-safe #16837
• WebFlux reference links to Servlet docs #16786
• XML config does not apply request-handler-ref to CsrfAuthenticationStrategy #16844

🔨 Dependency Upgrades

• Bump ch.qos.logback:logback-classic from 1.5.17 to 1.5.18 #16767
• Bump io.micrometer:micrometer-observation from 1.14.5 to 1.14.6 #16938
• Bump io.projectreactor:reactor-bom from 2023.0.16 to 2023.0.17 #16944
• Bump io.spring.gradle:spring-security-release-plugin from 1.0.3 to 1.0.4 #16919
• Bump org-aspectj from 1.9.22.1 to 1.9.24 #16928
• Bump org-eclipse-jetty from 11.0.24 to 11.0.25 #16758
• Bump org.hibernate.orm:hibernate-core from 6.6.12.Final to 6.6.13.Final #16895
• Bump org.springframework.ldap:spring-ldap-core from 3.2.11 to 3.2.12 #16960
• Bump org.springframework:spring-framework-bom from 6.2.5 to 6.2.6 #16959

🔩 Build Updates

• Bump spring-io/spring-doc-actions from 0.0.19 to 0.0.20 #16894
• Release 6.4.5 #16972

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​AB-xdev, @​Borghii, and @​dependabot[bot]

Commits

• e8aef09 Release 6.4.5
• f8d417d Preserve Encrypted Elements
• 79bacf8 Bump org.springframework:spring-framework-bom from 6.2.5 to 6.2.6
• 9bcfeab Bump org.springframework.ldap:spring-ldap-core from 3.2.11 to 3.2.12
• 254c9c9 Merge branch '6.3.x' into 6.4.x
• a5d9633 Bump org.springframework:spring-framework-bom from 6.1.18 to 6.1.19
• e5d9659 Merge branch '6.3.x' into 6.4.x
• 99c4f58 Bump org.springframework.ldap:spring-ldap-core from 3.2.11 to 3.2.12
• cb60d8b Merge branch '6.3.x' into 6.4.x
• c1aa99f Enforce BCrypt password length for new passwords only
• Additional commits viewable in compare view

Updates org.springframework.security:spring-security-oauth2-resource-server from 6.4.4 to 6.4.5

Release notes

Sourced from org.springframework.security:spring-security-oauth2-resource-server's releases.

6.4.5

⭐ New Features

• Add link to docs zip file to the reference #16799
• Fix attribute name in http.adoc #16784
• Update ServerOAuth2AuthorizedClientExchangeFilterFunction javadoc #16783

🪲 Bug Fixes

• [Docs] Broken link on Spring MVC Test Integration page #16785
• ServerBearerTokenAuthenticationConverter validates parameters when not enabled #16901
• Clarify WebInvocationPrivilegeEvaluator JavaDoc #16782
• CookieServerCsrfTokenRepository.withHttpOnlyFalse() ineffective if setCookieCustomizer() is used #16862
• Correct closing tag in default PassKey HTML form #16601
• Fix WebAuthn saves Anonymous PublicKeyCredentialUserEntity #16606
• OpenSaml support should preserve encrypted elements for further analysis #16367
• Sorting in AuthorizationAdvisorProxyFactory should be thread-safe #16837
• WebFlux reference links to Servlet docs #16786
• XML config does not apply request-handler-ref to CsrfAuthenticationStrategy #16844

🔨 Dependency Upgrades

• Bump ch.qos.logback:logback-classic from 1.5.17 to 1.5.18 #16767
• Bump io.micrometer:micrometer-observation from 1.14.5 to 1.14.6 #16938
• Bump io.projectreactor:reactor-bom from 2023.0.16 to 2023.0.17 #16944
• Bump io.spring.gradle:spring-security-release-plugin from 1.0.3 to 1.0.4 #16919
• Bump org-aspectj from 1.9.22.1 to 1.9.24 #16928
• Bump org-eclipse-jetty from 11.0.24 to 11.0.25 #16758
• Bump org.hibernate.orm:hibernate-core from 6.6.12.Final to 6.6.13.Final #16895
• Bump org.springframework.ldap:spring-ldap-core from 3.2.11 to 3.2.12 #16960
• Bump org.springframework:spring-framework-bom from 6.2.5 to 6.2.6 #16959

🔩 Build Updates

• Bump spring-io/spring-doc-actions from 0.0.19 to 0.0.20 #16894
• Release 6.4.5 #16972

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​AB-xdev, @​Borghii, and @​dependabot[bot]

Commits

• e8aef09 Release 6.4.5
• f8d417d Preserve Encrypted Elements
• 79bacf8 Bump org.springframework:spring-framework-bom from 6.2.5 to 6.2.6
• 9bcfeab Bump org.springframework.ldap:spring-ldap-core from 3.2.11 to 3.2.12
• 254c9c9 Merge branch '6.3.x' into 6.4.x
• a5d9633 Bump org.springframework:spring-framework-bom from 6.1.18 to 6.1.19
• e5d9659 Merge branch '6.3.x' into 6.4.x
• 99c4f58 Bump org.springframework.ldap:spring-ldap-core from 3.2.11 to 3.2.12
• cb60d8b Merge branch '6.3.x' into 6.4.x
• c1aa99f Enforce BCrypt password length for new passwords only
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

🌟 Thank you for your contribution to the Apache Camel project! 🌟

🤖 CI automation will test this PR automatically.

🐫 Apache Camel Committers, please review the following items:

• First-time contributors require MANUAL approval for the GitHub Actions to run

• You can use the command /component-test (camel-)component-name1 (camel-)component-name2.. to request a test from the test bot.

• You can label PRs using build-all, build-dependents, skip-tests and test-dependents to fine-tune the checks executed by this PR.

• Build and test logs are available in the Summary page. Only Apache Camel committers have access to the summary.

• ⚠️ Be careful when sharing logs. Review their contents before sharing them publicly.