Bump the maven group across 3 directories with 13 updates

[dependabot]

Bumps the maven group with 8 updates in the /header directory:

Package	From	To
org.apache.avro:avro	1.11.3	1.11.4
com.google.protobuf:protobuf-java	3.21.9	3.25.5
com.rabbitmq:amqp-client	5.14.2	5.18.0
org.springframework.security:spring-security-core	5.7.11	5.7.14
org.springframework:spring-web	5.2.25.RELEASE	6.1.21
commons-io:commons-io	2.8.0	2.14.0
org.json:json	20230618	20231013
commons-beanutils:commons-beanutils	1.9.4	1.11.0

Bumps the maven group with 7 updates in the /test directory:

Package	From	To
com.rabbitmq:amqp-client	5.14.2	5.18.0
org.springframework.security:spring-security-core	5.7.11	5.7.14
org.springframework:spring-web	5.2.25.RELEASE	6.1.21
commons-io:commons-io	2.8.0	2.14.0
org.json:json	20230618	20231013
commons-beanutils:commons-beanutils	1.9.4	1.11.0
org.eclipse.jetty:jetty-server	9.4.51.v20230217	9.4.56.v20240826

Bumps the maven group with 7 updates in the /utils directory:

Package	From	To
com.rabbitmq:amqp-client	5.14.2	5.18.0
org.springframework.security:spring-security-core	5.7.11	5.7.14
org.springframework:spring-web	5.2.25.RELEASE	6.1.21
commons-io:commons-io	2.8.0	2.14.0
org.json:json	20230618	20231013
commons-beanutils:commons-beanutils	1.9.4	1.11.0
org.apache.poi:poi-ooxml	5.2.2	5.4.0

Updates org.apache.avro:avro from 1.11.3 to 1.11.4

Updates com.google.protobuf:protobuf-java from 3.21.9 to 3.25.5

Commits

• 9d0ec0f Updating version.json and repo version numbers to: 25.5
• 4a197e7 Merge pull request #18387 from protocolbuffers/cp-lp-25
• b5a7cf7 Remove RecursiveGroup test case which doesn't exist in 25.x pre-Editions
• f000b7e Fix merge conflict by adding optional label to proto2 unittest_lite.proto
• 4728531 Add recursion check when parsing unknown fields in Java.
• 850fcce Internal change
• b704498 Internal change
• e673479 Fix cord handling in DynamicMessage and oneofs. (#18375)
• 8a60b65 Merge pull request #17704 from protocolbuffers/cp-segv
• 94a2663 Fixed a SEGV when deep copying a non-reified sub-message.
• Additional commits viewable in compare view

Updates com.rabbitmq:amqp-client from 5.14.2 to 5.18.0

Release notes

Sourced from com.rabbitmq:amqp-client's releases.

v5.18.0

Changes between 5.17.0 and 5.18.0

This is a minor release with usability improvements and dependency upgrades. It is compatible with 5.17.x. All users of the 5.x.x series are encouraged to upgrade.

Inbound message size is now enforced, with default limit being 64 MiB.

Thanks to @​JHahnHRO and Sérgio Faria (@​sergio91pt) for their contribution.

Add ability to specify maximum message size

GitHub issue: #1062

Do not confirmSelect more than once per channel

GitHub PR: #1057

Make RpcClient (Auto)Closeable

GitHub issue: #1032

Bump dependencies

GitHub issue: #999

Dependency

Maven

<dependency>
  <groupId>com.rabbitmq</groupId>
  <artifactId>amqp-client</artifactId>
  <version>5.18.0</version>
</dependency>

Gradle

compile 'com.rabbitmq:amqp-client:5.18.0'

v5.17.1

Changes between 5.17.0 and 5.17.1

This is a minor release with a usability improvement. It is compatible with 5.17.0.

Inbound message size is now enforced, with the default limit being 64 MiB.

... (truncated)

Commits

• dcc284e [maven-release-plugin] prepare release v5.18.0
• 75d1d1e Set release version to 5.18.0
• dc7952e Merge pull request #1064 from rabbitmq/dependabot/maven/5.x.x-stable/org.mock...
• e2fa38f Bump mockito-core from 5.3.1 to 5.4.0
• 04f1801 Tweak error message
• 714aae6 Add max inbound message size to ConnectionFactory
• 83cf551 Fix flaky test
• 0dc9ea2 Do not confirmSelect more than once per channel
• 129dc6a Merge pull request #1060 from rabbitmq/dependabot/maven/5.x.x-stable/io.micro...
• 671efdc Bump micrometer-core from 1.11.0 to 1.11.1
• Additional commits viewable in compare view

Updates org.springframework.security:spring-security-core from 5.7.11 to 5.7.14

Release notes

Sourced from org.springframework.security:spring-security-core's releases.

5.7.14

⭐ New Features

• Support ServerExchangeRejectedHandler @Bean #15975

🪲 Bug Fixes

• Support ServerWebExchangeFirewall @Bean #15974

5.7.13

No release notes provided.

5.7.12

🪲 Bug Fixes

• Check for null Authentication #14715

Commits

• d0b2b33 Release 5.7.14
• 0eaffb3 Require Locale argument for toLower/toUpperCase usage
• e86d88d Support ServerExchangeRejectedHandler @​Bean
• e48d6b0 Support ServerWebExchangeFirewall @​Bean
• dd3c689 Next development version
• c552366 Release 5.7.13
• 7215c72 Migrate slack notifications to GChat
• 4ce7cde Add Firewall for WebFlux
• c8342fc Use antora-extensions 1.10.0
• 1b0c4d6 Next development version
• Additional commits viewable in compare view

Updates org.springframework:spring-web from 5.2.25.RELEASE to 6.1.21

Release notes

Sourced from org.springframework:spring-web's releases.

v6.1.21

🐞 Bug Fixes

• Encode non-printable character in Content-Disposition parameter #35035
• Allow update of existing WebSession after max sessions limit is reached #35018
• Enhanced configuration class fails to call package-visible superclass constructor on WebSphere #34951

🔨 Dependency Upgrades

• Upgrade to Reactor 2023.0.19 #35022

v6.1.20

⭐ New Features

• Add option for case-insensitive match to PatternMatchUtils #34802

🐞 Bug Fixes

• HttpComponentsClientHttpRequestFactory setConnectionRequestTimeout not working with httpclient 5.3.1 #34854
• Accidental ClassLoader defineClass enforcement after #34677 #34839

📔 Documentation

• Clarify CompositePropertySource behavior for EnumerablePropertySource contract #34887

🔨 Dependency Upgrades

• Upgrade to Reactor 2023.0.18 #34899

v6.1.19

⭐ New Features

• Suggest compilation with -parameters when AspectJAdviceParameterNameDiscoverer fails against ambiguity #34618

🐞 Bug Fixes

• PropertyBatchUpdateException: causes of nested PropertyAccessExceptions not shown in output #34698
• Change in Jar usecache behavior with Spring 6.1.x causing java.lang.IllegalStateException: zip file closed #34694
• Startup performance regression due to CGLIB class load attempts in Spring 6.1.x #34693
• IllegalAccessError for package-private member of AzureStorageConfiguration on WebSphere #34690
• @Configuration classes can no longer be abstract without @Bean methods #34689
• Generated-code for LinkedHashMap is missing static keyword #34661
• AbstractReactiveTransactionManager throws IllegalStateException when rollback fails after commit attempt #34619

📔 Documentation

• Add javadoc notes on potential exception suppression in ListableBeanFactory#getBeansOfType #34631
• Remove remaining references to Forwarded headers in MvcUriComponentsBuilder #34626
• MvcUriComponentsBuilder javadocs inaccurately reflects usage of forwarded headers #34620

... (truncated)

Commits

• fa36b34 Release v6.1.21
• 498ccda Upgrade to Gradle 8.14.2
• fd68ea6 Encode non-printable character in Content-Disposition parameter
• 28caa39 Upgrade to Reactor 2023.0.19
• 8ecc553 Polish contribution
• cd44efa Allow update of existing WebSession after max sessions limit is reached
• 59d2895 Fix InMemoryWebSessionStoreTests.startsSessionImplicitly() test
• a876bb4 Polish WebSession support and tests
• 3b6beca Check for package-visible constructor in case of ClassLoader mismatch
• 59ffbd7 Test conversion support in PropertySourcesPlaceholderConfigurer
• Additional commits viewable in compare view

Updates org.springframework:spring-context from 5.2.25.RELEASE to 6.1.21

Release notes

Sourced from org.springframework:spring-context's releases.

v6.1.21

🐞 Bug Fixes

• Encode non-printable character in Content-Disposition parameter #35035
• Allow update of existing WebSession after max sessions limit is reached #35018
• Enhanced configuration class fails to call package-visible superclass constructor on WebSphere #34951

🔨 Dependency Upgrades

• Upgrade to Reactor 2023.0.19 #35022

v6.1.20

⭐ New Features

• Add option for case-insensitive match to PatternMatchUtils #34802

🐞 Bug Fixes

• HttpComponentsClientHttpRequestFactory setConnectionRequestTimeout not working with httpclient 5.3.1 #34854
• Accidental ClassLoader defineClass enforcement after #34677 #34839

📔 Documentation

• Clarify CompositePropertySource behavior for EnumerablePropertySource contract #34887

🔨 Dependency Upgrades

• Upgrade to Reactor 2023.0.18 #34899

v6.1.19

⭐ New Features

• Suggest compilation with -parameters when AspectJAdviceParameterNameDiscoverer fails against ambiguity #34618

🐞 Bug Fixes

• PropertyBatchUpdateException: causes of nested PropertyAccessExceptions not shown in output #34698
• Change in Jar usecache behavior with Spring 6.1.x causing java.lang.IllegalStateException: zip file closed #34694
• Startup performance regression due to CGLIB class load attempts in Spring 6.1.x #34693
• IllegalAccessError for package-private member of AzureStorageConfiguration on WebSphere #34690
• @Configuration classes can no longer be abstract without @Bean methods #34689
• Generated-code for LinkedHashMap is missing static keyword #34661
• AbstractReactiveTransactionManager throws IllegalStateException when rollback fails after commit attempt #34619

📔 Documentation

• Add javadoc notes on potential exception suppression in ListableBeanFactory#getBeansOfType #34631
• Remove remaining references to Forwarded headers in MvcUriComponentsBuilder #34626
• MvcUriComponentsBuilder javadocs inaccurately reflects usage of forwarded headers #34620

... (truncated)

Commits

• fa36b34 Release v6.1.21
• 498ccda Upgrade to Gradle 8.14.2
• fd68ea6 Encode non-printable character in Content-Disposition parameter
• 28caa39 Upgrade to Reactor 2023.0.19
• 8ecc553 Polish contribution
• cd44efa Allow update of existing WebSession after max sessions limit is reached
• 59d2895 Fix InMemoryWebSessionStoreTests.startsSessionImplicitly() test
• a876bb4 Polish WebSession support and tests
• 3b6beca Check for package-visible constructor in case of ClassLoader mismatch
• 59ffbd7 Test conversion support in PropertySourcesPlaceholderConfigurer
• Additional commits viewable in compare view

Updates org.springframework.security:spring-security-web from 5.7.11 to 5.7.14

Release notes

Sourced from org.springframework.security:spring-security-web's releases.

5.7.14

⭐ New Features

• Support ServerExchangeRejectedHandler @Bean #15975

🪲 Bug Fixes

• Support ServerWebExchangeFirewall @Bean #15974

5.7.13

No release notes provided.

5.7.12

🪲 Bug Fixes

• Check for null Authentication #14715

Commits

• d0b2b33 Release 5.7.14
• 0eaffb3 Require Locale argument for toLower/toUpperCase usage
• e86d88d Support ServerExchangeRejectedHandler @​Bean
• e48d6b0 Support ServerWebExchangeFirewall @​Bean
• dd3c689 Next development version
• c552366 Release 5.7.13
• 7215c72 Migrate slack notifications to GChat
• 4ce7cde Add Firewall for WebFlux
• c8342fc Use antora-extensions 1.10.0
• 1b0c4d6 Next development version
• Additional commits viewable in compare view

Updates org.springframework:spring-webmvc from 5.2.25.RELEASE to 6.1.21

Release notes

Sourced from org.springframework:spring-webmvc's releases.

v6.1.21

🐞 Bug Fixes

• Encode non-printable character in Content-Disposition parameter #35035
• Allow update of existing WebSession after max sessions limit is reached #35018
• Enhanced configuration class fails to call package-visible superclass constructor on WebSphere #34951

🔨 Dependency Upgrades

• Upgrade to Reactor 2023.0.19 #35022

v6.1.20

⭐ New Features

• Add option for case-insensitive match to PatternMatchUtils #34802

🐞 Bug Fixes

• HttpComponentsClientHttpRequestFactory setConnectionRequestTimeout not working with httpclient 5.3.1 #34854
• Accidental ClassLoader defineClass enforcement after #34677 #34839

📔 Documentation

• Clarify CompositePropertySource behavior for EnumerablePropertySource contract #34887

🔨 Dependency Upgrades

• Upgrade to Reactor 2023.0.18 #34899

v6.1.19

⭐ New Features

• Suggest compilation with -parameters when AspectJAdviceParameterNameDiscoverer fails against ambiguity #34618

🐞 Bug Fixes

• PropertyBatchUpdateException: causes of nested PropertyAccessExceptions not shown in output #34698
• Change in Jar usecache behavior with Spring 6.1.x causing java.lang.IllegalStateException: zip file closed #34694
• Startup performance regression due to CGLIB class load attempts in Spring 6.1.x #34693
• IllegalAccessError for package-private member of AzureStorageConfiguration on WebSphere #34690
• @Configuration classes can no longer be abstract without @Bean methods #34689
• Generated-code for LinkedHashMap is missing static keyword #34661
• AbstractReactiveTransactionManager throws IllegalStateException when rollback fails after commit attempt #34619

📔 Documentation

• Add javadoc notes on potential exception suppression in ListableBeanFactory#getBeansOfType #34631
• Remove remaining references to Forwarded headers in MvcUriComponentsBuilder #34626
• MvcUriComponentsBuilder javadocs inaccurately reflects usage of forwarded headers #34620

... (truncated)

Commits

• fa36b34 Release v6.1.21
• 498ccda Upgrade to Gradle 8.14.2
• fd68ea6 Encode non-printable character in Content-Disposition parameter
• 28caa39 Upgrade to Reactor 2023.0.19
• 8ecc553 Polish contribution
• cd44efa Allow update of existing WebSession after max sessions limit is reached
• 59d2895 Fix InMemoryWebSessionStoreTests.startsSessionImplicitly() test
• a876bb4 Polish WebSession support and tests
• 3b6beca Check for package-visible constructor in case of ClassLoader mismatch
• 59ffbd7 Test conversion support in PropertySourcesPlaceholderConfigurer
• Additional commits viewable in compare view

Updates commons-io:commons-io from 2.8.0 to 2.14.0

Updates org.json:json from 20230618 to 20231013

Release notes

Sourced from org.json:json's releases.

20231013

Pull Request	Description
#793	Reverted #761
#792	update the docs for release 20231013
#783	optLong vs getLong inconsistencies
#782	Fix XMLTest.testIndentComplicatedJsonObjectWithArrayAndWithConfig() for Windows
#779	add validity check for JSONObject constructors
#778	Fix XMLTest.testIndentComplicatedJsonObjectWithArrayAndWithConfig() for Windows
#776	Update [JUnit to version 4.13.2
#774	Removing unneeded synchronization
#773	Add optJSONArray method to JSONObject with a default value
#772	Disallow nested objects and arrays as keys in objects
#779	Unit test cleanup
#769	Addressed Java 17 compile warnings
#764	Update CodeQL action version
#761	Add module-info
#759	JSON parsing should detect embedded
#753	Updated new object methods
#752	Fixes possible unit test bug when compiling/testing on Windows

Changelog

Sourced from org.json:json's changelog.

20231013 First release with minimum Java version 1.8. Recent commits, including fixes for CVE-2023-5072.

Commits

• See full diff in compare view

Updates commons-beanutils:commons-beanutils from 1.9.4 to 1.11.0

Updates com.rabbitmq:amqp-client from 5.14.2 to 5.18.0

Release notes

Sourced from com.rabbitmq:amqp-client's releases.

v5.18.0

Changes between 5.17.0 and 5.18.0

This is a minor release with usability improvements and dependency upgrades. It is compatible with 5.17.x. All users of the 5.x.x series are encouraged to upgrade.

Inbound message size is now enforced, with default limit being 64 MiB.

Thanks to @​JHahnHRO and Sérgio Faria (@​sergio91pt) for their contribution.

Add ability to specify maximum message size

GitHub issue: #1062

Do not confirmSelect more than once per channel

GitHub PR: #1057

Make RpcClient (Auto)Closeable

GitHub issue: #1032

Bump dependencies

GitHub issue: #999

Dependency

Maven

<dependency>
  <groupId>com.rabbitmq</groupId>
  <artifactId>amqp-client</artifactId>
  <version>5.18.0</version>
</dependency>

Gradle

compile 'com.rabbitmq:amqp-client:5.18.0'

v5.17.1

Changes between 5.17.0 and 5.17.1

This is a minor release with a usability improvement. It is compatible with 5.17.0.

Inbound message size is now enforced, with the default limit being 64 MiB.

... (truncated)

Commits

• dcc284e [maven-release-plugin] prepare release v5.18.0
• 75d1d1e Set release version to 5.18.0
• dc7952e Merge pull request #1064 from rabbitmq/dependabot/maven/5.x.x-stable/org.mock...
• e2fa38f Bump mockito-core from 5.3.1 to 5.4.0
• 04f1801 Tweak error message
• 714aae6 Add max inbound message size to ConnectionFactory
• 83cf551 Fix flaky test
• 0dc9ea2 Do not confirmSelect more than once per channel
• 129dc6a Merge pull request #1060 from rabbitmq/dependabot/maven/5.x.x-stable/io.micro...
• 671efdc Bump micrometer-core from 1.11.0 to 1.11.1
• Additional commits viewable in compare view

Updates org.springframework.security:spring-security-core from 5.7.11 to 5.7.14

Release notes

Sourced from org.springframework.security:spring-security-core's releases.

5.7.14

⭐ New Features

• Support ServerExchangeRejectedHandler @Bean #15975

🪲 Bug Fixes

• Support ServerWebExchangeFirewall @Bean #15974

5.7.13

No release notes provided.

5.7.12

🪲 Bug Fixes

• Check for null Authentication #14715

Commits

• d0b2b33 Release 5.7.14
• 0eaffb3 Require Locale argument for toLower/toUpperCase usage
• e86d88d Support ServerExchangeRejectedHandler @​Bean
• e48d6b0 Support ServerWebExchangeFirewall @​Bean
• dd3c689 Next development version
• c552366 Release 5.7.13
• 7215c72 Migrate slack notifications to GChat
• 4ce7cde Add Firewall for WebFlux
• c8342fc Use antora-extensions 1.10.0
• 1b0c4d6 Next development version
• Additional commits viewable in compare view

Updates org.springframework:spring-web from 5.2.25.RELEASE to 6.1.21

Release notes

Sourced from org.springframework:spring-web's releases.

v6.1.21

🐞 Bug Fixes

• Encode non-printable character in Content-Disposition parameter #35035
• Allow update of existing WebSession after max sessions limit is reached #35018
• Enhanced configuration class fails to call package-visible superclass constructor on WebSphere #34951

🔨 Dependency Upgrades

• Upgrade to Reactor 2023.0.19 #35022

v6.1.20

⭐ New Features

• Add option for case-insensitive match to PatternMatchUtils #34802

🐞 Bug Fixes

• HttpComponentsClientHttpRequestFactory setConnectionRequestTimeout not working with httpclient 5.3.1 #34854
• Accidental ClassLoader defineClass enforcement after #34677 #34839

📔 Documentation

• Clarify CompositePropertySource behavior for EnumerablePropertySource contract #34887

🔨 Dependency Upgrades

• Upgrade to Reactor 2023.0.18 #34899

v6.1.19

⭐ New Features

• Suggest compilation with -parameters when AspectJAdviceParameterNameDiscoverer fails against ambiguity #34618

🐞 Bug Fixes

• PropertyBatchUpdateException: causes of nested PropertyAccessExceptions not shown in output #34698
• Change in Jar usecache behavior with Spring 6.1.x causing java.lang.IllegalStateException: zip file closed #34694
• Startup performance regression due to CGLIB class load attempts in Spring 6.1.x #34693
• IllegalAccessError for package-private member of AzureStorageConfiguration on WebSphere #34690
• @Configuration classes can no longer be abstract without @Bean methods #34689
• Generated-code for LinkedHashMap is missing static keyword #34661
• AbstractReactiveTransactionManager throws IllegalStateException when rollback fails after commit attempt #34619

📔 Documentation

• Add javadoc notes on potential exception suppression in ListableBeanFactory#getBeansOfType #34631
• Remove remaining references to Forwarded headers in MvcUriComponentsBuilder #34626
• MvcUriComponentsBuilder javadocs inaccurately reflects usage of forwarded headers #34620

... (truncated)

Commits

• fa36b34 Release v6.1.21
• 498ccda Upgrade to Gradle 8.14.2
• fd68ea6 Encode non-printable character in Content-Disposition parameter
• 28caa39 Upgrade to Reactor 2023.0.19
• 8ecc553 Polish contribution
• cd44efa Allow update of existing WebSession after max sessions limit is reached
• 59d2895 Fix InMemoryWebSessionStoreTests.startsSessionImplicitly() test
• a876bb4 Polish WebSession support and tests
• 3b6beca Check for package-visible constructor in case of ClassLoader mismatch
• 59ffbd7 Test conversion support in PropertySourcesPlaceholderConfigurer
• Additional commits viewable in compare view

Updates org.springframework:spring-context from 5.2.25.RELEASE to 6.1.21

Release notes

Sourced from org.springframework:spring-context's releases.

v6.1.21

🐞 Bug Fixes

• Encode non-printable character in Content-Disposition parameter #35035
• Allow update of existing WebSession after max sessions limit is reached #35018
• Enhanced configuration class fails to call package-visible superclass constructor on WebSphere #34951

🔨 Dependency Upgrades

• Upgrade to Reactor 2023.0.19 #35022

v6.1.20

⭐ New Features

• Add option for case-insensitive match to PatternMatchUtils #34802

🐞 Bug Fixes

• HttpComponentsClientHttpRequestFactory setConnectionRequestTimeout not working with httpclient 5.3.1 #34854
• Accidental ClassLoader defineClass enforcement after #34677 #34839

📔 Documentation

• Clarify CompositePropertySource behavior for EnumerablePropertySource contract #34887

🔨 Dependency Upgrades

• Upgrade to Reactor 2023.0.18 #34899

v6.1.19

⭐ New Features

• Suggest compilation with -parameters when AspectJAdviceParameterNameDiscoverer fails against ambiguity #34618

🐞 Bug Fixes

• PropertyBatchUpdateException: causes of nested PropertyAccessExceptions not shown in output #34698
• Change in Jar usecache behavior with Spring 6.1.x causing java.lang.IllegalStateException: zip file closed #34694
• Startup performance regression due to CGLIB class load attempts in Spring 6.1.x #34693
• IllegalAccessError for package-private member of AzureStorageConfiguration on WebSphere #34690
• @Configuration classes can no longer be abstract without @Bean methods #34689
• Generated-code for LinkedHashMap is missing static keyword #34661
• AbstractReactiveTransactionManager throws IllegalStateException when rollback fails after commit attempt #34619

📔 Documentation

• Add javadoc notes on potential exception suppression in ListableBeanFactory#getBeansOfType #34631
• Remove remaining references to Forwarded headers in MvcUriComponentsBuilder #34626
• MvcUriComponentsBuilder javadocs inaccurately reflects usage of forwarded headers #34620

... (truncated)

Commits

• fa36b34 Release v6.1.21
• 498ccda Upgrade to Gradle 8.14.2
• fd68ea6 Encode non-printable character in Content-Disposition parameter
• 28caa39 Upgrade to Reactor 2023.0.19
• 8ecc553 Polish contribution
• cd44efa Allow update of existing WebSession after max sessions limit is reached
• 59d2895 Fix InMemoryWebSessionStoreTests.startsSessionImplicitly() test
• a876bb4 Polish WebSession support and tests
• 3b6beca Check for package-visible constructor in case of ClassLoader mismatch
• 59ffbd7 Test conversion support in PropertySourcesPlaceholderConfigurer
• Additional commits viewable in compare view

Updates org.springframework.security:spring-security-web from 5.7.11 to 5.7.14

Release notes

Sourced from org.springframework.security:spring-security-web's releases.

5.7.14

⭐ New Features

• Support ServerExchangeRejectedHandler @Bean #15975

🪲 Bug Fixes

• Support ServerWebExchangeFirewall @Bean #15974

5.7.13

No release notes provided.

5.7.12

🪲 Bug Fixes

• Check for null Authentication #14715

Commits

• d0b2b33 Release 5.7.14
• 0eaffb3 Require Locale argument for toLower/toUpperCase usage
• e86d88d Support ServerExchangeRejectedHandler @​Bean
• e48d6b0 Support ServerWebExchangeFirewall @​Bean
• dd3c689 Next development version
• c552366 Release 5.7.13
• 7215c72 Migrate slack notifications to GChat
• 4ce7cde Add Firewall for WebFlux
• c8342fc Use antora-extensions 1.10.0
• 1b0c4d6 Next development version
• Additional commits viewable in compare view

Updates org.springframework:spring-webmvc from 5.2.25.RELEASE to 6.1.21

Release notes

Sourced from org.springframework:spring-webmvc's releases.

v6.1.21

🐞 Bug Fixes

• Encode non-printable character in Content-Disposition parameter #35035
• Allow update of existing WebSession after max sessions limit is reached #35018
• Enhanced configuration class fails to call package-visible superclass constructor on WebSphere #34951

🔨 Dependency Upgrades

• Upgrade to Reactor 2023.0.19 #35022

v6.1.20

⭐ New Features

• Add option for case-insensitive match to PatternMatchUtils #34802

🐞 Bug Fixes

• HttpComponentsClientHttpRequestFactory setConnectionRequestTimeout not working with httpclient 5.3.1 #34854
• Accidental ClassLoader defineClass enforcement after #34677 #34839

📔 Documentation

• Clarify CompositePropertySource behavior for EnumerablePropertySource contract #34887

🔨 Dependency Upgrades

• Upgrade to Reactor 2023.0.18