chore(deps): bump the spring-boot group with 3 updates

[dependabot]

Bumps the spring-boot group with 3 updates: org.springframework.boot:spring-boot-dependencies, org.springframework.boot:spring-boot-configuration-processor and org.springframework:spring-framework-bom.

Updates org.springframework.boot:spring-boot-dependencies from 4.0.0 to 4.0.5

Release notes

Sourced from org.springframework.boot:spring-boot-dependencies's releases.

v4.0.5

🐞 Bug Fixes

• Test starter for Spring Integration does not include Spring Integration test module #49784
• Some sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration #49782
• WebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson #49753
• WebSocket app fails to start when Jackson is on the classpath but there's no JsonMapper bean #49749
• Metadata annotation processor ignores method-level @NestedConfigurationProperty when using constructor binding #49738
• Override of property in external 'application.properties' or 'application.yaml' is ignored #49731
• NativeImageResourceProvider does not find Flyway migration scripts in subdirectories #49706
• Add @ConditionalOnWebApplication to NettyReactiveWebServerAutoConfiguration #49695
• @GraphQlTest does not include @ControllerAdvice #49672

📔 Documentation

• Fix incorrect indefinite articles in Javadoc #49727
• Add some more Kotlin examples and trivial style fixes #49714
• Overhaul Spring Session documentation following modularization #49704

🔨 Dependency Upgrades

• Upgrade to Brave 6.3.1 #49763
• Upgrade to Jackson 2 Bom 2.21.2 #49764
• Upgrade to jOOQ 3.19.31 #49765
• Upgrade to Netty 4.2.12.Final #49794
• Upgrade to Tomcat 11.0.20 #49767
• Upgrade to Zipkin Reporter 3.5.3 #49762

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​Joowon-Seo, @​deejay1, @​dlwldnjs1009, @​kwondh5217, @​ljrmorgan, and @​quaff

v4.0.4

⚠️ Attention Required

• OpenTelemetry's ZipkinSpanExporter has been deprecated and its support will be removed in Spring Boot 4.2. #49453
• Jackson 2 has been upgraded to 2.21.1 in response to the Jackson team ending support for Jackson 2.20.x. #49389
• Jackson has been upgraded to 3.1.0 in response to the Jackson team ending support for Jackson 3.0.x. #49383
• The default value for server.tomcat.max-part-count has been increased from 10 to 50. This aligns it with Tomcat's own default and the default in Spring Boot 3.x. #49311

🐞 Bug Fixes

• EndpointRequest request matcher for health groups is too complex #49649
• "/cloudfoundryapplication" web path is not limited to Actuator #49646
• Fix EndpointRequest.toLinks() when base-path is '/' #49617
• Docker fails when a 'tcp://' address ends with a slash (for example 'tcp://docker:2375/') #49596
• RSocket exposes duplicate endpoint for websocket setups #49593
• Failure analysis for a missing mail sender is misleading #49582

... (truncated)

Commits

• fe74b31 Release v4.0.5
• e1d6e5a Merge branch '3.5.x' into 4.0.x
• 6c9e52a Next development version (v3.5.14-SNAPSHOT)
• a413e95 Upgrade to Netty 4.2.12.Final
• c1694b5 Add missing Spring Integration test module to the relevant starter
• 51ffdc6 Merge branch '3.5.x' into 4.0.x
• 696a60e Full auto-configure transaction management in slice tests
• ba70d41 Upgrade to Tomcat 11.0.20
• fd94ca0 Upgrade to Netty 4.2.11.Final
• 7e6833b Upgrade to jOOQ 3.19.31
• Additional commits viewable in compare view

Updates org.springframework.boot:spring-boot-configuration-processor from 4.0.0 to 4.0.5

Release notes

Sourced from org.springframework.boot:spring-boot-configuration-processor's releases.

v4.0.5

🐞 Bug Fixes

• Test starter for Spring Integration does not include Spring Integration test module #49784
• Some sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration #49782
• WebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson #49753
• WebSocket app fails to start when Jackson is on the classpath but there's no JsonMapper bean #49749
• Metadata annotation processor ignores method-level @NestedConfigurationProperty when using constructor binding #49738
• Override of property in external 'application.properties' or 'application.yaml' is ignored #49731
• NativeImageResourceProvider does not find Flyway migration scripts in subdirectories #49706
• Add @ConditionalOnWebApplication to NettyReactiveWebServerAutoConfiguration #49695
• @GraphQlTest does not include @ControllerAdvice #49672

📔 Documentation

• Fix incorrect indefinite articles in Javadoc #49727
• Add some more Kotlin examples and trivial style fixes #49714
• Overhaul Spring Session documentation following modularization #49704

🔨 Dependency Upgrades

• Upgrade to Brave 6.3.1 #49763
• Upgrade to Jackson 2 Bom 2.21.2 #49764
• Upgrade to jOOQ 3.19.31 #49765
• Upgrade to Netty 4.2.12.Final #49794
• Upgrade to Tomcat 11.0.20 #49767
• Upgrade to Zipkin Reporter 3.5.3 #49762

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​Joowon-Seo, @​deejay1, @​dlwldnjs1009, @​kwondh5217, @​ljrmorgan, and @​quaff

v4.0.4

⚠️ Attention Required

• OpenTelemetry's ZipkinSpanExporter has been deprecated and its support will be removed in Spring Boot 4.2. #49453
• Jackson 2 has been upgraded to 2.21.1 in response to the Jackson team ending support for Jackson 2.20.x. #49389
• Jackson has been upgraded to 3.1.0 in response to the Jackson team ending support for Jackson 3.0.x. #49383
• The default value for server.tomcat.max-part-count has been increased from 10 to 50. This aligns it with Tomcat's own default and the default in Spring Boot 3.x. #49311

🐞 Bug Fixes

• EndpointRequest request matcher for health groups is too complex #49649
• "/cloudfoundryapplication" web path is not limited to Actuator #49646
• Fix EndpointRequest.toLinks() when base-path is '/' #49617
• Docker fails when a 'tcp://' address ends with a slash (for example 'tcp://docker:2375/') #49596
• RSocket exposes duplicate endpoint for websocket setups #49593
• Failure analysis for a missing mail sender is misleading #49582

... (truncated)

Commits

• fe74b31 Release v4.0.5
• e1d6e5a Merge branch '3.5.x' into 4.0.x
• 6c9e52a Next development version (v3.5.14-SNAPSHOT)
• a413e95 Upgrade to Netty 4.2.12.Final
• c1694b5 Add missing Spring Integration test module to the relevant starter
• 51ffdc6 Merge branch '3.5.x' into 4.0.x
• 696a60e Full auto-configure transaction management in slice tests
• ba70d41 Upgrade to Tomcat 11.0.20
• fd94ca0 Upgrade to Netty 4.2.11.Final
• 7e6833b Upgrade to jOOQ 3.19.31
• Additional commits viewable in compare view

Updates org.springframework:spring-framework-bom from 7.0.3 to 7.0.7

Release notes

Sourced from org.springframework:spring-framework-bom's releases.

v7.0.7

⭐ New Features

• Improve SpringValidatorAdapter and MethodValidationAdapter performance #36621
• Support JSON array decoding to Flux in KotlinSerializationJsonDecoder #36597
• Deprecate methodIdentification() in CacheAspectSupport for removal #36575
• Add MockRestServiceServer#createServer variant for RestClient #36572
• Create RestClientXhrTransport variant replacing RestTemplateXhrTransport #36566
• Improve error handling in multipart codecs #36563
• Make ApplicationListenerMethodAdapter#getTargetMethod() public #36558
• ApiVersionConfigurer.setSupportedVersionPredicate() returns void instead of ApiVersionConfigurer #36551
• LazyConnectionDataSourceProxy does not work well with Hibernate's multi-tenancy by schema strategy #36527
• Add registerManagedResource variant with bean key argument to MBeanExporter #36520
• Handle blank Accept-Language header in AcceptHeaderLocaleResolver #36513
• Make AbstractStreamingClientHttpRequest and AbstractBufferingClientHttpRequest public #36501
• MySQL Error 149 (Galera/WSREP conflict) not translated to ConcurrencyFailureException in Spring JDBC/ORM #36499
• Add PreFlightRequestFilter #36482
• Support configuration of extension context scope for SpringExtension via Spring or JUnit properties #36460
• Lower log level of "Cache miss for REQUEST dispatch" in HandlerMappingIntrospector #36309

🐞 Bug Fixes

• WebDataBinder unnecessarily instantiates collections when using the "!" and "_" prefixes #36625
• Cache pollution from high-cardinality FieldError default messages in MessageSourceSupport #36609
• MergedAnnotation does not use ClassLoader for method or field #36606
• @Sql fails if DataSource is wrapped in a TransactionAwareDataSourceProxy #36611
• AnnotatedTypeMetadata no longer retains source declaration order on Java 24+ #36598
• MergedAnnotation.asMap() fails when an attribute references a non-existent class #36586
• FileSystemResource does not strictly follow the Resource#isReadable() contract #36584
• Converter overrides in HttpMessageConverters only apply when defaults are registered #36579
• Invalid method return type metadata for ClassFile variant on JDK 24+ #36577
• Fix Writer lifecycle for AbstractJsonHttpMessageConverter.writeInternal(Object, Type, Writer) #36565
• Flushing-related regression in SseServerResponse #36537
• LazyConnectionDataSourceProxy does not pass on holdability to target Connection #36528
• AnnotationBeanNameGenerator fails when an annotation references a non-existent class #36524
• Perserve default API version in RestClientAdapter #36514
• Inconsistent codings resolution in resource resolvers #36507
• DefaultJmsListenerContainer may hang in an endless loop in doShutdown #36506
• Query not hidden in DefaultClientResponse checkpoint #36502
• RestClient closes stream for ResponseEntity responses #36492
• IllegalStateException when using websocket handshake headers with Tomcat #36486
• Invalid nullness information for ParameterizedTypeReference #36477
• WebTestClient cannot assert null list elements #36476
• Handle Kotlin nullable value class param correctly in CoroutineUtils #36449
• Remove RFC 2047 encoding from Content-Disposition filename #36328
• Parent traceId is not reused when calling WebClient.awaitExchange function #36182

📔 Documentation

• Clarify semantics of HttpMethod.valueOf() #36652

... (truncated)

Commits

• c997d40 Release v7.0.7
• 9185254 Upgrade to Reactor 2025.0.5 and Micrometer 1.16.5
• 802fa4d Refine RetryListener example
• 7052da4 Add doOnDiscard in MultipartHttpMessageReader
• 63817ce Add missing tests for WebRequestDataBinder
• 61bd790 Polish WebRequestDataBinderTests
• ab6637c Completely extract ServletRequestParameterPropertyValuesTests
• c9b88b4 Extract ServletRequestParameterPropertyValuesTests
• 68c575a Revise "Skip binding entirely when field is not allowed"
• cb32046 Further clarify semantics of HttpMethod.valueOf()
• Additional commits viewable in compare view

Updates org.springframework.boot:spring-boot-configuration-processor from 4.0.0 to 4.0.5

Release notes

Sourced from org.springframework.boot:spring-boot-configuration-processor's releases.

v4.0.5

🐞 Bug Fixes

• Test starter for Spring Integration does not include Spring Integration test module #49784
• Some sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration #49782
• WebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson #49753
• WebSocket app fails to start when Jackson is on the classpath but there's no JsonMapper bean #49749
• Metadata annotation processor ignores method-level @NestedConfigurationProperty when using constructor binding #49738
• Override of property in external 'application.properties' or 'application.yaml' is ignored #49731
• NativeImageResourceProvider does not find Flyway migration scripts in subdirectories #49706
• Add @ConditionalOnWebApplication to NettyReactiveWebServerAutoConfiguration #49695
• @GraphQlTest does not include @ControllerAdvice #49672

📔 Documentation

• Fix incorrect indefinite articles in Javadoc #49727
• Add some more Kotlin examples and trivial style fixes #49714
• Overhaul Spring Session documentation following modularization #49704

🔨 Dependency Upgrades

• Upgrade to Brave 6.3.1 #49763
• Upgrade to Jackson 2 Bom 2.21.2 #49764
• Upgrade to jOOQ 3.19.31 #49765
• Upgrade to Netty 4.2.12.Final #49794
• Upgrade to Tomcat 11.0.20 #49767
• Upgrade to Zipkin Reporter 3.5.3 #49762

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​Joowon-Seo, @​deejay1, @​dlwldnjs1009, @​kwondh5217, @​ljrmorgan, and @​quaff

v4.0.4

⚠️ Attention Required

• OpenTelemetry's ZipkinSpanExporter has been deprecated and its support will be removed in Spring Boot 4.2. #49453
• Jackson 2 has been upgraded to 2.21.1 in response to the Jackson team ending support for Jackson 2.20.x. #49389
• Jackson has been upgraded to 3.1.0 in response to the Jackson team ending support for Jackson 3.0.x. #49383
• The default value for server.tomcat.max-part-count has been increased from 10 to 50. This aligns it with Tomcat's own default and the default in Spring Boot 3.x. #49311

🐞 Bug Fixes

• EndpointRequest request matcher for health groups is too complex #49649
• "/cloudfoundryapplication" web path is not limited to Actuator #49646
• Fix EndpointRequest.toLinks() when base-path is '/' #49617
• Docker fails when a 'tcp://' address ends with a slash (for example 'tcp://docker:2375/') #49596
• RSocket exposes duplicate endpoint for websocket setups #49593
• Failure analysis for a missing mail sender is misleading #49582

... (truncated)

Commits

• fe74b31 Release v4.0.5
• e1d6e5a Merge branch '3.5.x' into 4.0.x
• 6c9e52a Next development version (v3.5.14-SNAPSHOT)
• a413e95 Upgrade to Netty 4.2.12.Final
• c1694b5 Add missing Spring Integration test module to the relevant starter
• 51ffdc6 Merge branch '3.5.x' into 4.0.x
• 696a60e Full auto-configure transaction management in slice tests
• ba70d41 Upgrade to Tomcat 11.0.20
• fd94ca0 Upgrade to Netty 4.2.11.Final
• 7e6833b Upgrade to jOOQ 3.19.31
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Labels

The following labels could not be found: dependencies. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.