open-telemetry
/
opentelemetry-java-instrumentation
mirror of https://github.com/open-telemetry/opentelemetry-java-instrumentation.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Bump spring-boot-dependencies from 2.7.2 to 2.7.3 in /dependencyManagement (#6666) 

Bumps
[spring-boot-dependencies](https://github.com/spring-projects/spring-boot)
from 2.7.2 to 2.7.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/spring-projects/spring-boot/releases">spring-boot-dependencies's
releases</a>.</em></p>
<blockquote>
<h2>v2.7.3</h2>
<h2>🐞 Bug Fixes</h2>
<ul>
<li>Misleading error message when using JarMode Layertools and the
source is not an archive <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/32097">#32097</a></li>
<li>ClassNotFoundException can be thrown for classes in nested jars when
under GC pressure <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/32085">#32085</a></li>
<li>Flyway auto-configuration fails with Flyway 9 <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/32034">#32034</a></li>
<li>BasicJsonParser does not protect against deeply nested maps <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/32031">#32031</a></li>
<li>OptionalLiveReloadServer logs the wrong port number when it is
configured to use an ephemeral port <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31984">#31984</a></li>
<li>Servlet WebServerStartStopLifecycle doesn't set running to false on
stop <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31967">#31967</a></li>
<li>JUL-based logging performed during close of application context is
lost <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31963">#31963</a></li>
<li>The hash of spring-boot-jarmode-layertools.jar that's added to a fat
jar doesn't match the hash of the equivalent published artifact <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31949">#31949</a></li>
<li>management.endpoint.health.probes.add-additional-paths has no effect
when configuration properties have already created the liveness and/or
readiness groups <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31926">#31926</a></li>
<li>UnsupportedDataSourcePropertyException is thrown when attempting to
set jdbcUrl for C3P0 <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31921">#31921</a></li>
<li>Dev Tools restart failures caused by a too short quiet period are
hard to diagnose <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31906">#31906</a></li>
<li>HealthContributor beans managed by a CompositeHealthContributor are
recreated on each call <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31879">#31879</a></li>
<li>Dependency management for REST Assured is incomplete <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31877">#31877</a></li>
<li>Jar Handler never clears PROTOCOL_HANDLER system property <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31875">#31875</a></li>
<li>BasicJsonParser can fail with a timeout or stackoverflow with
malformed map JSON <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31873">#31873</a></li>
<li>BasicJsonParser can fail with a stackoverflow exception <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31871">#31871</a></li>
</ul>
<h2>📔 Documentation</h2>
<ul>
<li>Review Git contribution documentation <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/32099">#32099</a></li>
<li>Documentation for Maven Plugin classifier has an unresolved external
reference <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/32043">#32043</a></li>
<li>Update Static Content reference documentation to reflect the
DefaultServlet no longer being enabled by default <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/32026">#32026</a></li>
<li>Example log output is out-of-date and inconsistent <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31987">#31987</a></li>
<li>Document that Undertow's record-request-start-time server option
must be enabled for %D to work in access logging <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31976">#31976</a></li>
<li>Update documentation on using H2C to consider running behind a proxy
that's performing TLS termination <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31974">#31974</a></li>
<li>Some properties in the Common Application Properties appendix have
no description <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31971">#31971</a></li>
<li>Fix links in documentations <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31951">#31951</a></li>
<li>External configuration documentation uses incorrect placeholder
syntax <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31943">#31943</a></li>
<li>server.reactive.session.cookie properties are not listed in the
application properties appendix <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31914">#31914</a></li>
<li>Remove documentation and metadata references to
ConfigFileApplicationListener <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31901">#31901</a></li>
<li>Metadata for 'spring.beaninfo.ignore' has incorrect SourceType <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31899">#31899</a></li>
<li>Remove reference to nitrite-spring-boot-starter <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31893">#31893</a></li>
<li>Remove reference to Azure Application Insights <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31890">#31890</a></li>
<li>Fix typos in code and documentation <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31865">#31865</a></li>
</ul>
<h2>🔨 Dependency Upgrades</h2>
<ul>
<li>Upgrade to Byte Buddy 1.12.13 <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/32013">#32013</a></li>
<li>Upgrade to Couchbase Client 3.3.3 <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/32014">#32014</a></li>
<li>Upgrade to Dependency Management Plugin 1.0.13.RELEASE <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/32056">#32056</a></li>
<li>Upgrade to Dropwizard Metrics 4.2.11 <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/32015">#32015</a></li>
<li>Upgrade to Embedded Mongo 3.4.8 <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/32016">#32016</a></li>
<li>Upgrade to GraphQL Java 18.3 <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/31945">#31945</a></li>
<li>Upgrade to Groovy 3.0.12 <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/32017">#32017</a></li>
<li>Upgrade to Gson 2.9.1 <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/32018">#32018</a></li>
<li>Upgrade to Hazelcast 5.1.3 <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/32019">#32019</a></li>
<li>Upgrade to Hibernate Validator 6.2.4.Final <a
href="https://github-redirect.dependabot.com/spring-projects/spring-boot/issues/32020">#32020</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="bff9b3924f"><code>bff9b39</code></a>
Release v2.7.3</li>
<li><a
href="60e1cc510c"><code>60e1cc5</code></a>
Merge branch '2.6.x' into 2.7.x</li>
<li><a
href="13bd61b6fe"><code>13bd61b</code></a>
Revert nested jar fixes</li>
<li><a
href="bd74344025"><code>bd74344</code></a>
Revert &quot;Don't close jar files early&quot;</li>
<li><a
href="674022d401"><code>674022d</code></a>
Revert &quot;Don't close nested jars or wrapper when parent is
closed&quot;</li>
<li><a
href="3fcfcc4a3b"><code>3fcfcc4</code></a>
Merge branch '2.6.x' into 2.7.x</li>
<li><a
href="3b01325c6b"><code>3b01325</code></a>
Use asList consistently</li>
<li><a
href="ca63a6e9ad"><code>ca63a6e</code></a>
Merge branch '2.6.x' into 2.7.x</li>
<li><a
href="191593cf15"><code>191593c</code></a>
Review Git contribution documentation</li>
<li><a
href="1c6624db44"><code>1c6624d</code></a>
Merge branch '2.6.x' into 2.7.x</li>
<li>Additional commits viewable in <a
href="https://github.com/spring-projects/spring-boot/compare/v2.7.2...v2.7.3">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.springframework.boot:spring-boot-dependencies&package-manager=gradle&previous-version=2.7.2&new-version=2.7.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
This commit is contained in:
dependabot[bot] 2022-09-19 13:54:04 -07:00 committed by GitHub
parent 6e649d36c3
commit 90637cc434
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
dependencyManagement/build.gradle.kts
View File

@ -114,7 +114,7 @@ val DEPENDENCIES = listOf(
"org.spockframework:spock-spring:2.2-groovy-4.0", "org.spockframework:spock-spring:2.2-groovy-4.0",
"org.scala-lang:scala-library:2.11.12", "org.scala-lang:scala-library:2.11.12",
// Note that this is only referenced as "org.springframework.boot" in build files, not the artifact name. // Note that this is only referenced as "org.springframework.boot" in build files, not the artifact name.
"org.springframework.boot:spring-boot-dependencies:2.7.2", "org.springframework.boot:spring-boot-dependencies:2.7.3",
"javax.validation:validation-api:2.0.1.Final", "javax.validation:validation-api:2.0.1.Final",
"org.yaml:snakeyaml:1.32" "org.yaml:snakeyaml:1.32"
) )