v3.4.7

⚠️ Noteworthy Changes

• This release upgrades to Tomcat 10.1.42 which has introduced limits for part count and header size in multipart/form-data requests. These limits can be customized using server.tomcat.max-part-count and server.tomcat.max-part-header-size respectively.

🐞 Bug Fixes

• Executable JAR application class encounters performance issues when classpath URLs reference a host #46027
• Loading from spring.factories may fail with a ClassNotFoundException when the TCCL changes between calls #46018
• Actuator heapdump endpoint is failing on modern OpenJ9 JVMs #46004
• DataSouceBuilder can fail with a NPE when the driver is null #45991
• JSON writer incorrectly escapes forward slash which can cause structure logging issues #45972
• spring.couchbase.authentication.jks.private-key-password has no effect #45883
• ConditionalOnAvailableEndpoint does not use the ConditionContext's ClassLoader to load exposure outcome contributors #45800
• ManagementWebServerFactoryCustomizer and ManagementErrorPageCustomizer should not have the same order #45728
• SAML2 autoconfiguration is not imported by @WebMvcTest #45650

📔 Documentation

• Fix Docker security options links in Packaging OCI images sections #46020
• Improve documentation for configuring Spring Security with '/error' #46008
• Timestamps in Retrieving Audit Events examples do not match the accompanying text #45996
• Update javadoc of test slice annotations to suggest MockitoBean rather than MockBean #45887
• Include configuration classes from all modules in the "Auto-configuration Classes" appendix #45861
• Links to Testcontainers javadoc for many classes not in the core testcontainers module do not work #45843
• Add SSL response structure to actuator info endpoint documentation #45792
• Gradle Shadow Plugin link in the reference guide is outdated #45739
• Document use of git-commit-id-maven-plugin consistently #45682
• Update javadoc of Configurer classes that apply sensible defaults to describe how they're typically used #45655
• Clarify the situation with support for Prometheus PushGateway and the deprecated simpleclient #45649

🔨 Dependency Upgrades

• Upgrade to Build Helper Maven Plugin 3.6.1 #45812
• Upgrade to Git Commit ID Maven Plugin 9.0.2 #45813
• Upgrade to Groovy 4.0.27 #45814
• Upgrade to Hibernate 6.6.18.Final #45956
• Upgrade to Infinispan 15.0.15.Final #45816
• Upgrade to Jackson Bom 2.18.4.1 #45957
• Upgrade to Jaybird 5.0.8.java11 #45817
• Upgrade to Jetty 12.0.22 #45819
• Upgrade to Jetty Reactive HTTPClient 4.0.10 #45818
• Upgrade to Micrometer 1.14.8 #45763
• Upgrade to Micrometer Tracing 1.4.7 #45764
• Upgrade to Netty 4.1.122.Final #45820
• Upgrade to Postgresql 42.7.6 #45821
• Upgrade to Prometheus Client 1.3.8 #45822
• Upgrade to Pulsar 3.3.7 #45823
• Upgrade to Reactor Bom 2024.0.7 #45765
• Upgrade to REST Assured 5.5.5 #45824
• Upgrade to Spring Authorization Server 1.4.4 #45766
• Upgrade to Spring Data Bom 2024.1.7 #45767
• Upgrade to Spring Framework 6.2.8 #45768
• Upgrade to Spring Kafka 3.3.7 #45769
• Upgrade to Spring LDAP 3.2.13 #45770
• Upgrade to Spring Pulsar 1.2.7 #45771
• Upgrade to Spring RESTDocs 3.0.4 #45772
• Upgrade to Spring Security 6.4.7 #45773
• Upgrade to Spring Session 3.4.4 #45774
• Upgrade to Spring WS 4.0.15 #45775
• Upgrade to Tomcat 10.1.42 #45870
• Upgrade to XmlUnit2 2.10.2 #45825

❤️ Contributors

Thank you to all the contributors who worked on this release:

@chanbinme, @csbiy, @davidlj95, @izeye, @ngocnhan-tran1996, @nicolasgarea, @nosan, @quaff, @shekharAggarwal, and @wonyongg