Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump org.springframework.session:spring-session-core from 3.1.3 to 3.2.0 #126

Merged
merged 1 commit into from
Dec 12, 2023
Merged

Bump org.springframework.session:spring-session-core from 3.1.3 to 3.2.0 #126

merged 1 commit into from
Dec 12, 2023

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 22, 2023

Bumps org.springframework.session:spring-session-core from 3.1.3 to 3.2.0.

Release notes

Sourced from org.springframework.session:spring-session-core's releases.

3.2.0

⭐ New Features

  • Document that a custom CookieSerializer might break Remember Me #2570
  • Log a warning if custom CookieSerializer does not have rememberMeRequestAttribute set #2568

🔨 Dependency Upgrades

  • Bump org.springframework.security:spring-security-bom from 6.2.0-RC2 to 6.2.0 #2646
  • Bump com.ibm.db2:jcc from 11.5.8.0 to 11.5.9.0 #2642
  • Bump org.springframework.data:spring-data-bom from 2023.1.0-RC1 to 2023.1.0 #2641
  • Bump io.spring.javaformat:spring-javaformat-checkstyle from 0.0.39 to 0.0.40 #2630
  • Bump io.spring.javaformat:spring-javaformat-gradle-plugin from 0.0.39 to 0.0.40 #2629
  • Bump org.springframework:spring-framework-bom from 6.1.0-RC2 to 6.1.0 #2628
  • Bump io.lettuce:lettuce-core from 6.2.6.RELEASE to 6.2.7.RELEASE #2626
  • Bump io.projectreactor:reactor-bom from 2023.0.0-RC1 to 2023.0.0 #2622
  • Bump io-projectreactor from 3.4.33 to 3.4.34 #2621
  • Bump com.hazelcast:hazelcast from 5.3.5 to 5.3.6 #2617
  • Bump org-mongodb from 4.11.0 to 4.11.1 #2615
  • Bump org-junit-jupiter from 5.10.0 to 5.10.1 #2613
  • Bump io.spring.ge.conventions from 0.0.7 to 0.0.14 #2612
  • Bump org.springframework:spring-framework-bom from 6.1.0-RC1 to 6.1.0-RC2 #2611
  • Bump com.gradle.enterprise from 3.12.3 to 3.12.6 #2605
  • Bump org-gretty from 4.1.0 to 4.1.1 #2604
  • Bump com.h2database:h2 from 2.2.220 to 2.2.224 #2603
  • Bump org.jfrog.buildinfo:build-info-extractor-gradle from 4.29.0 to 4.29.4 #2602
  • Bump com.hazelcast:hazelcast from 5.3.2 to 5.3.5 #2601
  • Bump org.aspectj:aspectjweaver from 1.9.19 to 1.9.20.1 #2600
  • Bump org.apache.logging.log4j:log4j-core from 2.17.1 to 2.17.2 #2599
  • Bump io-projectreactor from 3.4.11 to 3.4.33 #2598
  • Bump io.lettuce:lettuce-core from 6.2.5.RELEASE to 6.2.6.RELEASE #2597
  • Bump org.junit:junit-bom from 5.8.1 to 5.8.2 #2596
  • Bump io.spring.nohttp:nohttp-checkstyle from 0.0.3.RELEASE to 0.0.11 #2575
  • Bump org-slf4j from 2.0.7 to 2.0.9 #2574
  • Bump org.springframework.security:spring-security-bom from 6.2.0-RC1 to 6.2.0-RC2 #2573
  • Bump org-codehaus-groovy from 3.0.17 to 3.0.19 #2572
  • Bump org.gretty from 4.1.0 to 4.1.1 #2571
  • Bump org.apache.httpcomponents:httpclient from 4.5.13 to 4.5.14 #2558
  • Bump com.github.spullara.mustache.java:compiler from 0.9.10 to 0.9.11 #2557
  • Bump org.springframework.boot from 3.1.4 to 3.1.5 #2556
  • Bump io.spring.gradle:dependency-management-plugin from 1.0.10.RELEASE to 1.0.15.RELEASE #2555
  • Bump org-springframework-boot from 3.1.4 to 3.1.5 #2545
  • Bump ch-qos-logback from 1.4.8 to 1.4.11 #2543
  • Bump org.thymeleaf.extras:thymeleaf-extras-springsecurity6 from 3.1.1.RELEASE to 3.1.2.RELEASE #2542
  • Update spring-javaformat to 0.0.39 #2530
  • Bump com.microsoft.sqlserver:mssql-jdbc from 11.2.1.jre17 to 11.2.3.jre17 #2522
  • Bump com.google.code.gson:gson from 2.8.8 to 2.8.9 #2521
  • Bump org.springframework.boot from 3.1.1 to 3.1.4 #2520
  • Bump org.springframework.security:spring-security-config from 6.2.0-RC1 to 6.2.0-RC2 #2519
  • Bump com.hazelcast:hazelcast from 5.3.1 to 5.3.2 #2508

... (truncated)

Changelog

Sourced from org.springframework.session:spring-session-core's changelog.

== 1. Update Dependencies

Dependencies are declared in gradle/libs.versions.toml. They are updated by Dependabot, make sure that there is no Dependabot PR open, the versions are correct and that the build passes.

Run all the checks:

[source,bash]

$ ./gradlew check

== 2. Check All Issues are Closed

You can manually check at https://github.com/spring-projects/spring-session/milestones

== 3. Update Release Version

Update the version number in gradle.properties for the release, for example 3.0.0-M1, 3.0.0-RC1, 3.0.4

== 4. Build Locally

Run the build using

[source,bash]

$ ./gradlew check

== 5. Push the Release Commit

Push the commit and GitHub actions will build and deploy the artifacts. Wait for the artifact to appear in https://repo1.maven.org/maven2/org/springframework/session/spring-session-core/

== 6. Tag the release

Tag the release and then push the tag

.... git tag 3.0.0-RC1 git push origin 3.0.0-RC1 ....

== 7. Update to Next Development Version

Update gradle.properties version to next +SNAPSHOT+ version.

== 8. Update version on project pages

Update the versions on https://spring.io/projects for Spring Session Core, Spring Session Data Redis, Spring Session JDBC, Spring Session Hazelcast, and Spring Session MongoDB.

... (truncated)

Commits
  • 41e7a4c Release 3.2.0
  • f00aa49 Bump org.springframework.security:spring-security-bom
  • 8df96ba Merge branch '3.1.x'
  • 6555418 Merge branch '3.0.x' into 3.1.x
  • 8e3ea44 Try fixing flaky test by replacing BDDMockito with regular Mockito
  • 63beef5 Bump com.ibm.db2:jcc from 11.5.8.0 to 11.5.9.0
  • 3213a91 Bump org.springframework.data:spring-data-bom
  • f9abd05 Merge branch '3.1.x'
  • af65479 Bump com.ibm.db2:jcc from 11.5.8.0 to 11.5.9.0
  • bc080ca Bump org.springframework.data:spring-data-bom
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump org.springframework.session:spring-session-core from 3.1.3 to 3.2.0
ee0730c 
Bumps [org.springframework.session:spring-session-core](https://github.com/spring-projects/spring-session) from 3.1.3 to 3.2.0.
- [Release notes](https://github.com/spring-projects/spring-session/releases)
- [Changelog](https://github.com/spring-projects/spring-session/blob/main/RELEASE.adoc)
- [Commits](spring-projects/spring-session@3.1.3...3.2.0)

---
updated-dependencies:
- dependency-name: org.springframework.session:spring-session-core
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Nov 22, 2023
@pferraro pferraro merged commit c71bc99 into main Dec 12, 2023
1 check passed
@dependabot dependabot bot deleted the dependabot/maven/org.springframework.session-spring-session-core-3.2.0 branch December 12, 2023 00:05
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
1 participant
@pferraro