Sourced from spring-boot-starter-parent's releases.

v2.3.0.RELEASE

For full upgrade instructions and new and noteworthy features please see the release notes.

⭐ New Features

• Update properties migrator to run on deprecated properties with warn level as well #21425
• Provide more extensible constructors on UndertowServletWebServer and UndertowWebServer #21391
• Add redis sentinel password property #21353
• Auto-configure a LifecycleProcessor with a configurable timeout per shutdown phase #21347
• Integrate web server graceful shutdown into the application context's lifecycle processing #21325
• Improve backwards compatibility of ErrorAttributes and DefaultErrorAttributes #21324
• Align logback's behavior with log4j2 when getting a logger that doesn't exist #21292
• Use CNB creator all-in-one lifecycle #21273
• Optimize StringSequence.startsWith #21259
• Deregister JDBC drivers during undeploy of a war deployment #21221
• Add Period converter support #21136
• Improve binding performance when using a large number of property sources #20625
• Add @WebServiceClientTest annotation that can be used when testing SOAP clients #17274

🪲 Bug Fixes

• CLI distribution is missing read rights #21451
• Custom converters cannot be used when creating endpoint-related beans due to eager initialization triggered by ServletEndpointRegistrar #21444
• Different actuator management server port changes response on errors #21428
• Performance regression between RC1 and latest snapshots with large amount of configuration properties #21416
• Dependency exclusions declared in spring-boot-dependencies have no effect when using Gradle 6 #21350
• Unclear default for 'server.tomcat.use-relative-redirects' #21343
• CreateBootStartScripts causes a warning to be logged with Gradle 6.4 #21341
• When a request is active, Undertow prevents the JVM from exiting #21327
• When using log4j2 log4j2-test.* files are not detected #21323
• Classpath wildcards cannot be used with Java 11 or above #21321
• Implementation attributes are missing from Maven shade transformer configuration in spring-boot-starter-parent #21304
• The @ActiveProfiles annotation no longer overrides those defined in property files #21302
• Layertools list and extract commands ignore empty layers #21301
• Binder @DefaultValue does not work with PropertyEditor converters #21294
• developmentOnly configuration excludes jar files from fat jar #21288
• Connection fails when DOCKER_HOST set to local socket #21173
• Environment variable that does not follow guidelines for use of _ is still successfully bound if another property source contains a property that is bound to the same target #14479

📔 Documentation

• Fix capitalization of Testcontainers in Howto docs #21417
• Document use case of splitting auto-configuration and starter #21367
• Align TestRestTemplate Javadoc with documentation #21364
• Fix typo for includeLayerTools #21310
• Fix duplicate slashes in URL links #21108
• Update link to new Spring Security docs location #21040
• Remove version number from author section of the documentation #20934
• Add more context to the Kubernetes container lifecycle documentation #20932
• Document that graceful shutdown with Tomcat requires Tomcat 9.0.33 or later #20886

... (truncated)

• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)