Skip to content

Bump the all-maven-dependencies group across 2 directories with 3 updates#64

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/maven/all-maven-dependencies-fe2227ced4
Open

Bump the all-maven-dependencies group across 2 directories with 3 updates#64
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/maven/all-maven-dependencies-fe2227ced4

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Mar 30, 2026

Bumps the all-maven-dependencies group with 3 updates in the / directory: org.springframework.boot:spring-boot-dependencies, org.springframework.boot:spring-boot-maven-plugin and com.sap.cloud.security:java-bom.
Bumps the all-maven-dependencies group with 3 updates in the /srv directory: org.springframework.boot:spring-boot-maven-plugin, org.springframework.boot:spring-boot-dependencies and com.sap.cloud.security:java-bom.

Updates org.springframework.boot:spring-boot-dependencies from 3.5.12 to 3.5.13

Release notes

Sourced from org.springframework.boot:spring-boot-dependencies's releases.

v3.5.13

⚠️ Attention Required

  • Jackson has been upgraded to 2.21.2 in response to the Jackson team ending support for Jackson 2.19.x and 2.20.x. #49365

🐞 Bug Fixes

  • WebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson #49750
  • Metadata annotation processor ignores method-level @NestedConfigurationProperty when using constructor binding #49734
  • Override of property in external 'application.properties' or 'application.yaml' is ignored #49724
  • Some sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration #49716
  • NativeImageResourceProvider does not find Flyway migration scripts in subdirectories #49661
  • @GraphQlTest does not include @ControllerAdvice #49660

📔 Documentation

  • Fix incorrect indefinite articles in Javadoc #49723
  • Add some more Kotlin examples and trivial style fixes #49710

🔨 Dependency Upgrades

  • Upgrade to Hibernate 6.6.45.Final #49757
  • Upgrade to jOOQ 3.19.31 #49758
  • Upgrade to Netty 4.1.132.Final #49759
  • Upgrade to Tomcat 10.1.53 #49760
  • Upgrade to Undertow 2.3.24.Final #49761
  • Upgrade to Zipkin Reporter 3.5.3 #49756

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​Joowon-Seo, @​deejay1, @​dlwldnjs1009, and @​ljrmorgan

Commits
  • 4a4c79f Release v3.5.13
  • 696a60e Full auto-configure transaction management in slice tests
  • 4b37ecb Upgrade to Undertow 2.3.24.Final
  • 32a51d5 Upgrade to Tomcat 10.1.53
  • 0934296 Upgrade to Netty 4.1.132.Final
  • 851ddda Upgrade to jOOQ 3.19.31
  • ef876fe Upgrade to Hibernate 6.6.45.Final
  • 2841d87 Upgrade to Zipkin Reporter 3.5.3
  • 025b527 Fix WebSocketMessagingAutoConfiguration in the absence of Jackson
  • 3282672 Make DevTools tests more tolerant to wrapped DataSource
  • Additional commits viewable in compare view

Updates org.springframework.boot:spring-boot-maven-plugin from 3.5.12 to 3.5.13

Release notes

Sourced from org.springframework.boot:spring-boot-maven-plugin's releases.

v3.5.13

⚠️ Attention Required

  • Jackson has been upgraded to 2.21.2 in response to the Jackson team ending support for Jackson 2.19.x and 2.20.x. #49365

🐞 Bug Fixes

  • WebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson #49750
  • Metadata annotation processor ignores method-level @NestedConfigurationProperty when using constructor binding #49734
  • Override of property in external 'application.properties' or 'application.yaml' is ignored #49724
  • Some sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration #49716
  • NativeImageResourceProvider does not find Flyway migration scripts in subdirectories #49661
  • @GraphQlTest does not include @ControllerAdvice #49660

📔 Documentation

  • Fix incorrect indefinite articles in Javadoc #49723
  • Add some more Kotlin examples and trivial style fixes #49710

🔨 Dependency Upgrades

  • Upgrade to Hibernate 6.6.45.Final #49757
  • Upgrade to jOOQ 3.19.31 #49758
  • Upgrade to Netty 4.1.132.Final #49759
  • Upgrade to Tomcat 10.1.53 #49760
  • Upgrade to Undertow 2.3.24.Final #49761
  • Upgrade to Zipkin Reporter 3.5.3 #49756

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​Joowon-Seo, @​deejay1, @​dlwldnjs1009, and @​ljrmorgan

Commits
  • 4a4c79f Release v3.5.13
  • 696a60e Full auto-configure transaction management in slice tests
  • 4b37ecb Upgrade to Undertow 2.3.24.Final
  • 32a51d5 Upgrade to Tomcat 10.1.53
  • 0934296 Upgrade to Netty 4.1.132.Final
  • 851ddda Upgrade to jOOQ 3.19.31
  • ef876fe Upgrade to Hibernate 6.6.45.Final
  • 2841d87 Upgrade to Zipkin Reporter 3.5.3
  • 025b527 Fix WebSocketMessagingAutoConfiguration in the absence of Jackson
  • 3282672 Make DevTools tests more tolerant to wrapped DataSource
  • Additional commits viewable in compare view

Updates com.sap.cloud.security:java-bom from 3.6.8 to 3.6.9

Release notes

Sourced from com.sap.cloud.security:java-bom's releases.

3.6.9

  • Fix token exchange logic in DefaultIdTokenExtension to correctly identify App2App tokens that require exchange (where aud contains a single audience different from azp)
Changelog

Sourced from com.sap.cloud.security:java-bom's changelog.

3.6.9

  • Fix token exchange logic in DefaultIdTokenExtension to correctly identify App2App tokens that require exchange (where aud contains a single audience different from azp)
Commits
  • 2c6f46b fix: Correct token exchange logic for App2App flows in DefaultIdTokenExtensio...
  • See full diff in compare view

Updates org.springframework.boot:spring-boot-maven-plugin from 3.5.12 to 3.5.13

Release notes

Sourced from org.springframework.boot:spring-boot-maven-plugin's releases.

v3.5.13

⚠️ Attention Required

  • Jackson has been upgraded to 2.21.2 in response to the Jackson team ending support for Jackson 2.19.x and 2.20.x. #49365

🐞 Bug Fixes

  • WebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson #49750
  • Metadata annotation processor ignores method-level @NestedConfigurationProperty when using constructor binding #49734
  • Override of property in external 'application.properties' or 'application.yaml' is ignored #49724
  • Some sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration #49716
  • NativeImageResourceProvider does not find Flyway migration scripts in subdirectories #49661
  • @GraphQlTest does not include @ControllerAdvice #49660

📔 Documentation

  • Fix incorrect indefinite articles in Javadoc #49723
  • Add some more Kotlin examples and trivial style fixes #49710

🔨 Dependency Upgrades

  • Upgrade to Hibernate 6.6.45.Final #49757
  • Upgrade to jOOQ 3.19.31 #49758
  • Upgrade to Netty 4.1.132.Final #49759
  • Upgrade to Tomcat 10.1.53 #49760
  • Upgrade to Undertow 2.3.24.Final #49761
  • Upgrade to Zipkin Reporter 3.5.3 #49756

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​Joowon-Seo, @​deejay1, @​dlwldnjs1009, and @​ljrmorgan

Commits
  • 4a4c79f Release v3.5.13
  • 696a60e Full auto-configure transaction management in slice tests
  • 4b37ecb Upgrade to Undertow 2.3.24.Final
  • 32a51d5 Upgrade to Tomcat 10.1.53
  • 0934296 Upgrade to Netty 4.1.132.Final
  • 851ddda Upgrade to jOOQ 3.19.31
  • ef876fe Upgrade to Hibernate 6.6.45.Final
  • 2841d87 Upgrade to Zipkin Reporter 3.5.3
  • 025b527 Fix WebSocketMessagingAutoConfiguration in the absence of Jackson
  • 3282672 Make DevTools tests more tolerant to wrapped DataSource
  • Additional commits viewable in compare view

Updates org.springframework.boot:spring-boot-maven-plugin from 3.5.12 to 3.5.13

Release notes

Sourced from org.springframework.boot:spring-boot-maven-plugin's releases.

v3.5.13

⚠️ Attention Required

  • Jackson has been upgraded to 2.21.2 in response to the Jackson team ending support for Jackson 2.19.x and 2.20.x. #49365

🐞 Bug Fixes

  • WebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson #49750
  • Metadata annotation processor ignores method-level @NestedConfigurationProperty when using constructor binding #49734
  • Override of property in external 'application.properties' or 'application.yaml' is ignored #49724
  • Some sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration #49716
  • NativeImageResourceProvider does not find Flyway migration scripts in subdirectories #49661
  • @GraphQlTest does not include @ControllerAdvice #49660

📔 Documentation

  • Fix incorrect indefinite articles in Javadoc #49723
  • Add some more Kotlin examples and trivial style fixes #49710

🔨 Dependency Upgrades

  • Upgrade to Hibernate 6.6.45.Final #49757
  • Upgrade to jOOQ 3.19.31 #49758
  • Upgrade to Netty 4.1.132.Final #49759
  • Upgrade to Tomcat 10.1.53 #49760
  • Upgrade to Undertow 2.3.24.Final #49761
  • Upgrade to Zipkin Reporter 3.5.3 #49756

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​Joowon-Seo, @​deejay1, @​dlwldnjs1009, and @​ljrmorgan

Commits
  • 4a4c79f Release v3.5.13
  • 696a60e Full auto-configure transaction management in slice tests
  • 4b37ecb Upgrade to Undertow 2.3.24.Final
  • 32a51d5 Upgrade to Tomcat 10.1.53
  • 0934296 Upgrade to Netty 4.1.132.Final
  • 851ddda Upgrade to jOOQ 3.19.31
  • ef876fe Upgrade to Hibernate 6.6.45.Final
  • 2841d87 Upgrade to Zipkin Reporter 3.5.3
  • 025b527 Fix WebSocketMessagingAutoConfiguration in the absence of Jackson
  • 3282672 Make DevTools tests more tolerant to wrapped DataSource
  • Additional commits viewable in compare view

Updates org.springframework.boot:spring-boot-dependencies from 3.5.12 to 3.5.13

Release notes

Sourced from org.springframework.boot:spring-boot-dependencies's releases.

v3.5.13

⚠️ Attention Required

  • Jackson has been upgraded to 2.21.2 in response to the Jackson team ending support for Jackson 2.19.x and 2.20.x. #49365

🐞 Bug Fixes

  • WebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson #49750
  • Metadata annotation processor ignores method-level @NestedConfigurationProperty when using constructor binding #49734
  • Override of property in external 'application.properties' or 'application.yaml' is ignored #49724
  • Some sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration #49716
  • NativeImageResourceProvider does not find Flyway migration scripts in subdirectories #49661
  • @GraphQlTest does not include @ControllerAdvice #49660

📔 Documentation

  • Fix incorrect indefinite articles in Javadoc #49723
  • Add some more Kotlin examples and trivial style fixes #49710

🔨 Dependency Upgrades

  • Upgrade to Hibernate 6.6.45.Final #49757
  • Upgrade to jOOQ 3.19.31 #49758
  • Upgrade to Netty 4.1.132.Final #49759
  • Upgrade to Tomcat 10.1.53 #49760
  • Upgrade to Undertow 2.3.24.Final #49761
  • Upgrade to Zipkin Reporter 3.5.3 #49756

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​Joowon-Seo, @​deejay1, @​dlwldnjs1009, and @​ljrmorgan

Commits
  • 4a4c79f Release v3.5.13
  • 696a60e Full auto-configure transaction management in slice tests
  • 4b37ecb Upgrade to Undertow 2.3.24.Final
  • 32a51d5 Upgrade to Tomcat 10.1.53
  • 0934296 Upgrade to Netty 4.1.132.Final
  • 851ddda Upgrade to jOOQ 3.19.31
  • ef876fe Upgrade to Hibernate 6.6.45.Final
  • 2841d87 Upgrade to Zipkin Reporter 3.5.3
  • 025b527 Fix WebSocketMessagingAutoConfiguration in the absence of Jackson
  • 3282672 Make DevTools tests more tolerant to wrapped DataSource
  • Additional commits viewable in compare view

Updates com.sap.cloud.security:java-bom from 3.6.8 to 3.6.9

Release notes

Sourced from com.sap.cloud.security:java-bom's releases.

3.6.9

  • Fix token exchange logic in DefaultIdTokenExtension to correctly identify App2App tokens that require exchange (where aud contains a single audience different from azp)
Changelog

Sourced from com.sap.cloud.security:java-bom's changelog.

3.6.9

  • Fix token exchange logic in DefaultIdTokenExtension to correctly identify App2App tokens that require exchange (where aud contains a single audience different from azp)
Commits
  • 2c6f46b fix: Correct token exchange logic for App2App flows in DefaultIdTokenExtensio...
  • See full diff in compare view

Updates org.springframework.boot:spring-boot-maven-plugin from 3.5.12 to 3.5.13

Release notes

Sourced from org.springframework.boot:spring-boot-maven-plugin's releases.

v3.5.13

⚠️ Attention Required

  • Jackson has been upgraded to 2.21.2 in response to the Jackson team ending support for Jackson 2.19.x and 2.20.x. #49365

🐞 Bug Fixes

  • WebSocket messaging's task executors are only auto-configured and stompWebSocketHandlerMapping is only forced to be eager when using Jackson #49750
  • Metadata annotation processor ignores method-level @NestedConfigurationProperty when using constructor binding #49734
  • Override of property in external 'application.properties' or 'application.yaml' is ignored #49724
  • Some sliced tests that import TransactionAutoConfiguration do not import TransactionManagerCustomizationAutoConfiguration #49716
  • NativeImageResourceProvider does not find Flyway migration scripts in subdirectories #49661
  • @GraphQlTest does not include @ControllerAdvice #49660

📔 Documentation

  • Fix incorrect indefinite articles in Javadoc #49723
  • Add some more Kotlin examples and trivial style fixes #49710

🔨 Dependency Upgrades

  • Upgrade to Hibernate 6.6.45.Final #49757
  • Upgrade to jOOQ 3.19.31 #49758
  • Upgrade to Netty 4.1.132.Final #49759
  • Upgrade to Tomcat 10.1.53 #49760
  • Upgrade to Undertow 2.3.24.Final #49761
  • Upgrade to Zipkin Reporter 3.5.3 #49756

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​Joowon-Seo, @​deejay1, @​dlwldnjs1009, and @​ljrmorgan

Commits
  • 4a4c79f Release v3.5.13
  • 696a60e Full auto-configure transaction management in slice tests
  • 4b37ecb Upgrade to Undertow 2.3.24.Final
  • 32a51d5 Upgrade to Tomcat 10.1.53
  • 0934296 Upgrade to Netty 4.1.132.Final
  • 851ddda Upgrade to jOOQ 3.19.31
  • ef876fe Upgrade to Hibernate 6.6.45.Final
  • 2841d87 Upgrade to Zipkin Reporter 3.5.3
  • 025b527 Fix WebSocketMessagingAutoConfiguration in the absence of Jackson
  • 3282672 Make DevTools tests more tolerant to wrapped DataSource
  • Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request
Dependency Name Ignore Conditions
org.springframework.boot:spring-boot-maven-plugin [>= 4.a0, < 5]
org.springframework.boot:spring-boot-dependencies [>= 4.a0, < 5]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the all-maven-dependencies group across 2 directories with 3 upd…
e27e02d 
…ates

Bumps the all-maven-dependencies group with 3 updates in the / directory: [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot), [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot) and [com.sap.cloud.security:java-bom](https://github.com/SAP/cloud-security-xsuaa-integration).
Bumps the all-maven-dependencies group with 3 updates in the /srv directory: [org.springframework.boot:spring-boot-maven-plugin](https://github.com/spring-projects/spring-boot), [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot) and [com.sap.cloud.security:java-bom](https://github.com/SAP/cloud-security-xsuaa-integration).


Updates `org.springframework.boot:spring-boot-dependencies` from 3.5.12 to 3.5.13
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](spring-projects/spring-boot@v3.5.12...v3.5.13)

Updates `org.springframework.boot:spring-boot-maven-plugin` from 3.5.12 to 3.5.13
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](spring-projects/spring-boot@v3.5.12...v3.5.13)

Updates `com.sap.cloud.security:java-bom` from 3.6.8 to 3.6.9
- [Release notes](https://github.com/SAP/cloud-security-xsuaa-integration/releases)
- [Changelog](https://github.com/SAP/cloud-security-services-integration-library/blob/main/CHANGELOG.md)
- [Commits](SAP/cloud-security-services-integration-library@3.6.8...3.6.9)

Updates `org.springframework.boot:spring-boot-maven-plugin` from 3.5.12 to 3.5.13
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](spring-projects/spring-boot@v3.5.12...v3.5.13)

Updates `org.springframework.boot:spring-boot-maven-plugin` from 3.5.12 to 3.5.13
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](spring-projects/spring-boot@v3.5.12...v3.5.13)

Updates `org.springframework.boot:spring-boot-dependencies` from 3.5.12 to 3.5.13
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](spring-projects/spring-boot@v3.5.12...v3.5.13)

Updates `com.sap.cloud.security:java-bom` from 3.6.8 to 3.6.9
- [Release notes](https://github.com/SAP/cloud-security-xsuaa-integration/releases)
- [Changelog](https://github.com/SAP/cloud-security-services-integration-library/blob/main/CHANGELOG.md)
- [Commits](SAP/cloud-security-services-integration-library@3.6.8...3.6.9)

Updates `org.springframework.boot:spring-boot-maven-plugin` from 3.5.12 to 3.5.13
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](spring-projects/spring-boot@v3.5.12...v3.5.13)

---
updated-dependencies:
- dependency-name: org.springframework.boot:spring-boot-dependencies
  dependency-version: 3.5.13
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-maven-dependencies
- dependency-name: org.springframework.boot:spring-boot-maven-plugin
  dependency-version: 3.5.13
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-maven-dependencies
- dependency-name: com.sap.cloud.security:java-bom
  dependency-version: 3.6.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-maven-dependencies
- dependency-name: org.springframework.boot:spring-boot-maven-plugin
  dependency-version: 3.5.13
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-maven-dependencies
- dependency-name: org.springframework.boot:spring-boot-maven-plugin
  dependency-version: 3.5.13
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-maven-dependencies
- dependency-name: org.springframework.boot:spring-boot-dependencies
  dependency-version: 3.5.13
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-maven-dependencies
- dependency-name: com.sap.cloud.security:java-bom
  dependency-version: 3.6.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-maven-dependencies
- dependency-name: org.springframework.boot:spring-boot-maven-plugin
  dependency-version: 3.5.13
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-maven-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Mar 30, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file java Pull requests that update java code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants