Skip to content

chore(deps): bump the all-dependencies group across 1 directory with 15 updates#42

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/gradle/all-dependencies-20f88700d4
Open

chore(deps): bump the all-dependencies group across 1 directory with 15 updates#42
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/gradle/all-dependencies-20f88700d4

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 12, 2025
edited
Loading

Bumps the all-dependencies group with 14 updates in the / directory:

Package From To
io.swagger.core.v3:swagger-core 2.2.38 2.2.41
net.logstash.logback:logstash-logback-encoder 8.1 9.0
org.hibernate.validator:hibernate-validator 9.0.1.Final 9.1.0.Final
org.apache.commons:commons-text 1.14.0 1.15.0
com.azure:azure-storage-blob 12.25.1 12.32.0
com.azure:azure-identity 1.14.0 1.18.1
org.junit:junit-bom 6.0.0 6.0.1
au.com.dius.pact.provider:junit5 4.6.17 4.6.18
io.rest-assured:rest-assured 5.5.6 6.0.0
org.springframework.boot 4.0.0-M3 4.0.0
org.cyclonedx.bom 2.4.1 3.1.0
au.com.dius.pact 4.6.17 4.6.18
com.gorylenko.gradle-git-properties 2.5.3 2.5.4
com.avast.gradle.docker-compose 0.17.12 0.17.20

Updates io.swagger.core.v3:swagger-core from 2.2.38 to 2.2.41

Release notes

Sourced from io.swagger.core.v3:swagger-core's releases.

Swagger-core 2.2.41 released!

  • Fix/annotated type caching 5003 (#5005)
  • #4852 Unit test and fix to allow recursive models to process without StackOverflow (#5004)
  • fix: Refactor JsonAssert and apply to json/yaml assertions (#5002)
  • fix: use arraySchema when deciding required of an array (#4998)
  • fix: NotBlank and NotEmpty annotations follow NotNull behavior (#4968)

Swagger-core 2.2.40 released!

  • fix: remove superfluous ref for a composed schema. Fixes #4959 (#5000)
  • Bump classgraph version to 4.8.184 (#4992)
  • fix(test): Make serialization tests robust against key reordering (#4990)

Swagger-core 2.2.39 released!

  • chore: remove System.out and printStackTrace to align with Sonar rules S106 and S1148 (#4988)
  • fix: adjust docs about RequiredMode.AUTO + small refactor (#4982)
  • Fix a non-deterministic assertion in ServletUtilsTest (#4981)
  • Fix(core): Prevent redundant schema resolution by fixing AnnotatedType equality (#4975)
Commits
  • fae397a prepare release 2.2.41 (#5022)
  • cf11db7 fix: use arraySchema when deciding required of an array (#4998) Fixes: #4341
  • 2546511 fix: stops reprocessing parameters extracted from nested BeanParam Fixes: #39...
  • 23d2971 fix: NotBlank and NotEmpty annotations follow NotNull behavior (#4968)
  • 75af075 fix: Refactor JsonAssert and apply to json/yaml assertions (#5002)
  • 0a5556a #4852 fix: allow recursive models to process without StackOverflow (#5004)
  • 8260e8f Fix/annotated type caching 5003 (#5005)
  • 99ba4cd bump snapshot 2.2.41-SNAPSHOT
  • 1b170bf prepare release 2.2.40
  • 24ade8e Bump classgraph version to 4.8.184
  • Additional commits viewable in compare view

Updates net.logstash.logback:logstash-logback-encoder from 8.1 to 9.0

Release notes

Sourced from net.logstash.logback:logstash-logback-encoder's releases.

logstash-logback-encoder-9.0

This major release migrates to Jackson 3, and bumps the minimum Java version to 17.

The migration to Jackson 3 introduced some backwards incompatibilities. See #1095 for upgrade details.

Special thanks to new contributors @​tommyulfsparre, @​patrickjbarry, and @​maxxedev!

What's Changed

⚠️ Update considerations and deprecations

✨ New features and improvements

🐞 Bug fixes

📖 Documentation, Tests and Build

🆙 Dependency Upgrades

New Contributors

Full Changelog: logfellow/logstash-logback-encoder@logstash-logback-encoder-8.1...logstash-logback-encoder-9.0

Commits
  • e8a1c8e [maven-release-plugin] prepare release logstash-logback-encoder-9.0
  • eecb205 Add link to discussions in contributing.md
  • 572543c fix build badge in readme
  • c64b998 Use alert at top of readme
  • f74c821 Make it possible to pretty print throwables as array of strings. (#1043)
  • 358f644 Document Thread and ThreadLocal cleanup (#1105)
  • 0d553cf Add ability to suppress messages from stacktrace (#1104)
  • c9318cd Bump maven to 3.9.11 (#1103)
  • ef58694 Bump codeql action to v3 (#1102)
  • 3059741 Bump logback-core.version from 1.5.19 to 1.5.20 (#1097)
  • Additional commits viewable in compare view

Updates org.hibernate.validator:hibernate-validator from 9.0.1.Final to 9.1.0.Final

Release notes

Sourced from org.hibernate.validator:hibernate-validator's releases.

Release 9.1.0.Final

Hibernate Validator 9.1.0.Final released

We are pleased to announce the release of Hibernate Validator 9.1: 9.1.0.Final.

You can find the full list of 9.1.0.Final changes here.

What's new

This release mainly targets to improve performance. At the same time it contains a few other improvements, new constraints and more. See the "what's new" page to learn more.

You can also find the report on validation performace improvements at our blog.

Conclusion

For additional details, see:

Visit the website for details on getting in touch with us.

Changelog

Sourced from org.hibernate.validator:hibernate-validator's changelog.

9.1.0.Final (2025-11-07)

https://hibernate.atlassian.net/projects/HV/versions/35947

** Improvement * HV-2154 Include hibernate-validator-test-utils in the dist bundle * HV-2153 Create migration guide as part of the project sources * HV-2152 Add a "What's New" document for series

9.1.0.CR1 (2025-10-29)

** Bug * HV-2151 CachingTraversableResolverForSingleValidation won't work

** Improvement * HV-2148 Update Hibernate asciidoc theme to 6.1.1.Final

** Task * HV-2150 Test against wildfly-preview 38.0.0.Final * HV-2149 Lower the log level for some resource bundle messages

9.1.0.Beta1 (2025-10-22)

** Improvement * HV-2147 Bump Apache Groovy to 5.0.2 * HV-2145 Require JDK 25 for the build * HV-2144 Update to com.fasterxml:classmate 1.7.1 * HV-2143 Apply the unified Hibernate Documentation theme

** New Feature * HV-2137 Add IpAddress constraint

** Task * HV-2142 Stage documentation and javadocs to projectroot/target/staging-deploy/documentation

9.1.0.Alpha2 (2025-09-19)

** Improvement * HV-2140 Bump Apache Groovy to 5.0.1 * HV-2139 Introduce a RandomAccessPath as an extension of the org.hibernate.validator.path.Path * HV-2138 Include license file in the META-INF of published artifacts * HV-2135 Do not initialize the alreadyProcessedGroups unless necessary in BeanValueContext * HV-2004 add constant pool for @​Pattern

** Task

... (truncated)

Commits
  • 6a1892c [Jenkins release job] Preparing release 9.1.0.Final
  • 24e2fa2 [Jenkins release job] changelog.txt updated by release build 9.1.0.Final
  • f3d68ef [Jenkins release job] README.md updated by release build 9.1.0.Final
  • b907d99 Fix file permissions on XMLs
  • 9739153 Use alternative Release Scripts
  • a9822c6 Bump the build-dependencies group with 4 updates
  • 109c5f8 HV-2152 Adjust the previous stable version
  • e020246 HV-2154 Include hibernate-validator-test-utils in the dist bundle
  • 42ee1b0 HV-2152 Add a "What's New" document for series / HV-2153 Create migration gui...
  • f394975 Bump the workflow-actions group with 2 updates
  • Additional commits viewable in compare view

Updates org.apache.commons:commons-text from 1.14.0 to 1.15.0

Changelog

Sourced from org.apache.commons:commons-text's changelog.

Apache Commons Text 1.15.0 Release Notes

The Apache Commons Text team is pleased to announce the release of Apache Commons Text 1.15.0.

Apache Commons Text is a set of utility functions and reusable components for processing and manipulating text in a Java environment.

Release 1.15.0. This is a feature and maintenance release. Java 8 or later is required.

New features

  •        Add experimental CycloneDX VEX file [#683](https://github.com/apache/commons-text/issues/683). Thanks to Piotr P. Karwasz, Gary Gregory.
  • TEXT-235: Add Damerau-Levenshtein distance #687. Thanks to LorgeN, Gary Gregory.
  •        Add unit tests to increase coverage [#719](https://github.com/apache/commons-text/issues/719). Thanks to Michael Hausegger, Gary Gregory.

  •        Add new test for CharSequenceTranslator#with() [#725](https://github.com/apache/commons-text/issues/725). Thanks to Michael Hausegger, Gary Gregory.

  •        Add tests and assertions to org.apache.commons.text.similarity to get to 100% code coverage [#727](https://github.com/apache/commons-text/issues/727), [#728](https://github.com/apache/commons-text/issues/728). Thanks to Michael Hausegger.

Fixed Bugs

  •        Fix exception message typo in XmlStringLookup.XmlStringLookup(Map, Path...). Thanks to Gary Gregory.
  • TEXT-236: Inserting at the end of a TextStringBuilder throws a StringIndexOutOfBoundsException. Thanks to Pierre Post, Sumit Bera, Alex Herbert, Gary Gregory.
  •        Fix TextStringBuilderTest.testAppendToCharBuffer() to use proper argument type [#724](https://github.com/apache/commons-text/issues/724). Thanks to Michael Hausegger.

  •        Fix Apache RAT plugin console warnings. Thanks to Gary Gregory.

  •        Fix site XML to use version 2.0.0 XML schema. Thanks to Gary Gregory.

  •        Removed unreachable threshold verification code in src/main/java/org/apache/commons/text/similarity [#730](https://github.com/apache/commons-text/issues/730). Thanks to Michael Hausegger.

  •        Enable secure processing for the XML parser in XmlStringLookup in case the underlying JAXP implementation doesn't [#729](https://github.com/apache/commons-text/issues/729). Thanks to 김민재 (minjas0507), Gary Gregory, Piotr Karwasz.

Changes

  •        Bump org.apache.commons:commons-parent from 85 to 93 [#704](https://github.com/apache/commons-text/issues/704), [#723](https://github.com/apache/commons-text/issues/723), [#726](https://github.com/apache/commons-text/issues/726). Thanks to Gary Gregory.

  •        Bump commons.bytebuddy.version from 1.17.6 to 1.18.2 [#696](https://github.com/apache/commons-text/issues/696), [#722](https://github.com/apache/commons-text/issues/722). Thanks to Gary Gregory.

  •        Bump graalvm.version from 24.2.2 to 25.0.1 [#703](https://github.com/apache/commons-text/issues/703), [#716](https://github.com/apache/commons-text/issues/716). Thanks to Gary Gregory, Dependabot.

  •        Bump org.apache.commons:commons-lang3 from 3.18.0 to 3.20.0. Thanks to Gary Gregory.

  •        Bump commons-io:commons-io from 2.20.0 to 2.21.0. Thanks to Gary Gregory.

Historical list of changes: https://commons.apache.org/proper/commons-text/changes.html

For complete information on Apache Commons Text, including instructions on how to submit bug reports, patches, or suggestions for improvement, see the Apache Commons Text website:

https://commons.apache.org/proper/commons-text

Download page: https://commons.apache.org/proper/commons-text/download_text.cgi

... (truncated)

Commits
  • 04e9374 Prepare for the release candidate 1.15.0 RC1
  • 502c4c4 Prepare for the next release candidate
  • c6e17ec Use direct access
  • 58e1e12 Simplify XML FSP (#731)
  • b5052c9 Bump actions/setup-java from 5.0.0 to 5.1.0
  • 2e2d4bc Revert "Bump actions/setup-java from 5.0.0 to 5.1.0"
  • b0ddbd1 Bump actions/setup-java from 5.0.0 to 5.1.0
  • 1c2d382 Add tests with external DTD
  • ed3df4b Internal clean up
  • bb508f3 Bump actions/checkout from 6.0.0 to 6.0.1
  • Additional commits viewable in compare view

Updates com.azure:azure-storage-blob from 12.25.1 to 12.32.0

Commits
  • 2c5dcdf STG99 GA Release 2025-10-21 (#47030)
  • 2921649 cherrypicking just storage linting changes (#47049)
  • 010e556 STG99 - Updating Dependencies (Attempt 3, Pulling all from main and restoring...
  • 21625a4 Increment package versions for storage releases (#45950)
  • f61d163 STG99 Beta Release (#45943)
  • da19e1a Moves Batch/Bulk to proxy endpoint when GW2.0 is enabled (#45945)
  • 0dca69d Fixing OpenTelemetryTraces to include the GA V1 semantic conventionttributes ...
  • e374355 CallAutomation GA5 Changes (#45494)
  • 7a6ab1c Increment package versions for webpubsub releases (#45938)
  • 03189ac eng, mgmt changelog tool, ignore impl package (#45934)
  • Additional commits viewable in compare view

Updates com.azure:azure-identity from 1.14.0 to 1.18.1

Commits
  • 11e59ef updated changelog for identity-broker
  • fb60a61 updated identity-broker pom
  • 3048a6f updated identity-broker
  • 5e63890 added dependency changes
  • 97c2251 Prepares identity release 1.18.1
  • 1f3c249 Merge remote-tracking branch 'upstream/main' into release/identity_1.18.1
  • 079701f Update main with branch release of azure-search-documents 11.8.0 (#46985)
  • 0793e0b Sync eng/common directory with azure-sdk-tools for PR 12410 (#46928)
  • 045894d Sync eng/common directory with azure-sdk-tools for PR 12454 (#46974)
  • 8f80a14 mgmt network, fix availabilityzones and prepare release 2.54.0 (#46966)
  • Additional commits viewable in compare view

Updates org.junit:junit-bom from 6.0.0 to 6.0.1

Release notes

Sourced from org.junit:junit-bom's releases.

JUnit 6.0.1 = Platform 6.0.1 + Jupiter 6.0.1 + Vintage 6.0.1

See Release Notes.

Full Changelog: junit-team/junit-framework@r6.0.0...r6.0.1

Commits

Updates au.com.dius.pact.provider:junit5 from 4.6.17 to 4.6.18

Release notes

Sourced from au.com.dius.pact.provider:junit5's releases.

4.6.18

Maintenance Release

  • 8a1e8b0a4 - chore: fix port conflict in test
  • 8c22c525e - chore: Update release process to use jreleaser
  • 57c5bda6f - fix: add Lambda DSL methods that are the same as the old DSL arrayEachLike #1877
  • 012242246 - chore: Update provider dependencies
  • ab81b32ba - chore: Update core dependencies
  • f3b1d6e5a - chore: Update consumer dependencies
  • 87cc6c0ce - chore: Update main dependency versions
  • 8696796fe - chore: Update Gradle to 7.6.6
  • 897aaea3c - Reference Quarkus in service providers section (Holly Cummins)
  • c50f6271d - chore(deps): bump actions/setup-java from 3 to 5
  • 4670fa8f4 - Correct Java versions in developer-facing content (Holly Cummins)
  • aa17dca65 - Update classgraph to work around compatibility issue (Holly Cummins)
  • 286861e97 - chore(CI): update to actions/cache@v4
  • 64a931298 - chore: Update plugin driver to 0.5.2
  • 7a924a007 - fix: Ensure provider state is injected when verifying synchronous message pacts (Ruud Welling)
Changelog

Sourced from au.com.dius.pact.provider:junit5's changelog.

4.6.18 - Maintenance Release

  • 8a1e8b0a4 - chore: fix port conflict in test (Ronald Holshausen, Tue Nov 11 10:39:20 2025 +1100)
  • 8c22c525e - chore: Update release process to use jreleaser (Ronald Holshausen, Tue Nov 11 10:30:48 2025 +1100)
  • 57c5bda6f - fix: add Lambda DSL methods that are the same as the old DSL arrayEachLike #1877 (Ronald Holshausen, Mon Nov 10 15:30:04 2025 +1100)
  • 012242246 - chore: Update provider dependencies (Ronald Holshausen, Mon Nov 10 14:35:19 2025 +1100)
  • ab81b32ba - chore: Update core dependencies (Ronald Holshausen, Mon Nov 10 11:20:36 2025 +1100)
  • f3b1d6e5a - chore: Update consumer dependencies (Ronald Holshausen, Mon Nov 10 11:06:01 2025 +1100)
  • 87cc6c0ce - chore: Update main dependency versions (Ronald Holshausen, Mon Nov 10 10:45:18 2025 +1100)
  • 8696796fe - chore: Update Gradle to 7.6.6 (Ronald Holshausen, Mon Nov 10 10:19:21 2025 +1100)
  • 3f60ce0e0 - Merge pull request #1875 from holly-cummins/reference-quarkus-in-docs (Ronald Holshausen, Fri Aug 29 09:06:32 2025 +1000)
  • 897aaea3c - Reference Quarkus in service providers section (Holly Cummins, Thu Aug 28 19:30:51 2025 +0100)
  • c4abfaaf8 - Merge pull request #1872 from pact-foundation/dependabot/github_actions/actions/setup-java-5 (Ronald Holshausen, Thu Aug 28 10:10:55 2025 +1000)
  • 8a3e56648 - Merge pull request #1873 from holly-cummins/update-classgraph (Ronald Holshausen, Thu Aug 28 10:10:20 2025 +1000)
  • c50f6271d - chore(deps): bump actions/setup-java from 3 to 5 (dependabot[bot], Wed Aug 27 23:37:55 2025 +0000)
  • f663217ad - Merge pull request #1874 from holly-cummins/improve-java-version-clarity (Ronald Holshausen, Thu Aug 28 09:34:44 2025 +1000)
  • 4670fa8f4 - Correct Java versions in developer-facing content (Holly Cummins, Wed Aug 27 16:35:52 2025 +0100)
  • aa17dca65 - Update classgraph to work around compatibility issue (Holly Cummins, Wed Aug 27 16:19:14 2025 +0100)
  • 286861e97 - chore(CI): update to actions/cache@v4 (Ronald Holshausen, Thu May 29 13:59:06 2025 +1000)
  • 64a931298 - chore: Update plugin driver to 0.5.2 (Ronald Holshausen, Thu May 29 11:00:58 2025 +1000)
  • 15da5a605 - Update README.md (Ronald Holshausen, Fri May 23 10:10:59 2025 +1000)
  • 7d49354be - Merge pull request #1858 from WellingR/sync-message-pact-provider-state (Ronald Holshausen, Mon Mar 17 10:03:08 2025 +1100)
  • 7a924a007 - fix: Ensure provider state is injected when verifying synchronous message pacts (Ruud Welling, Sun Mar 16 18:44:41 2025 +0100)
  • 90e0f919d - bump version to 4.6.18 (Ronald Holshausen, Fri Feb 14 11:52:44 2025 +1100)
Commits

Updates au.com.dius.pact.provider:spring6 from 4.6.17 to 4.6.18

Release notes

Sourced from au.com.dius.pact.provider:spring6's releases.

4.6.18

Maintenance Release

  • 8a1e8b0a4 - chore: fix port conflict in test
  • 8c22c525e - chore: Update release process to use jreleaser
  • 57c5bda6f - fix: add Lambda DSL methods that are the same as the old DSL arrayEachLike #1877
  • 012242246 - chore: Update provider dependencies
  • ab81b32ba - chore: Update core dependencies
  • f3b1d6e5a - chore: Update consumer dependencies
  • 87cc6c0ce - chore: Update main dependency versions
  • 8696796fe - chore: Update Gradle to 7.6.6
  • 897aaea3c - Reference Quarkus in service providers section (Holly Cummins)
  • c50f6271d - chore(deps): bump actions/setup-java from 3 to 5
  • 4670fa8f4 - Correct Java versions in developer-facing content (Holly Cummins)
  • aa17dca65 - Update classgraph to work around compatibility issue (Holly Cummins)
  • 286861e97 - chore(CI): update to actions/cache@v4
  • 64a931298 - chore: Update plugin driver to 0.5.2
  • 7a924a007 - fix: Ensure provider state is injected when verifying synchronous message pacts (Ruud Welling)
Changelog

Sourced from au.com.dius.pact.provider:spring6's changelog.

4.6.18 - Maintenance Release

  • 8a1e8b0a4 - chore: fix port conflict in test (Ronald Holshausen, Tue Nov 11 10:39:20 2025 +1100)
  • 8c22c525e - chore: Update release process to use jreleaser (Ronald Holshausen, Tue Nov 11 10:30:48 2025 +1100)
  • 57c5bda6f - fix: add Lambda DSL methods that are the same as the old DSL arrayEachLike #1877 (Ronald Holshausen, Mon Nov 10 15:30:04 2025 +1100)
  • 012242246 - chore: Update provider dependencies (Ronald Holshausen, Mon Nov 10 14:35:19 2025 +1100)
  • ab81b32ba - chore: Update core dependencies (Ronald Holshausen, Mon Nov 10 11:20:36 2025 +1100)
  • f3b1d6e5a - chore: Update consumer dependencies (Ronald Holshausen, Mon Nov 10 11:06:01 2025 +1100)
  • 87cc6c0ce - chore: Update main dependency versions (Ronald Holshausen, Mon Nov 10 10:45:18 2025 +1100)
  • 8696796fe - chore: Update Gradle to 7.6.6 (Ronald Holshausen, Mon Nov 10 10:19:21 2025 +1100)
  • 3f60ce0e0 - Merge pull request #1875 from holly-cummins/reference-quarkus-in-docs (Ronald Holshausen, Fri Aug 29 09:06:32 2025 +1000)
  • 897aaea3c - Reference Quarkus in service providers section (Holly Cummins, Thu Aug 28 19:30:51 2025 +0100)
  • c4abfaaf8 - Merge pull request #1872 from pact-foundation/dependabot/github_actions/actions/setup-java-5 (Ronald Holshausen, Thu Aug 28 10:10:55 2025 +1000)
  • 8a3e56648 - Merge pull request #1873 from holly-cummins/update-classgraph (Ronald Holshausen, Thu Aug 28 10:10:20 2025 +1000)
  • c50f6271d - chore(deps): bump actions/setup-java from 3 to 5 (dependabot[bot], Wed Aug 27 23:37:55 2025 +0000)
  • f663217ad - Merge pull request #1874 from holly-cummins/improve-java-version-clarity (Ronald Holshausen, Thu Aug 28 09:34:44 2025 +1000)
  • 4670fa8f4 - Correct Java versions in developer-facing content (Holly Cummins, Wed Aug 27 16:35:52 2025 +0100)
  • aa17dca65 - Update classgraph to work around compatibility issue (Holly Cummins, Wed Aug 27 16:19:14 2025 +0100)
  • 286861e97 - chore(CI): update to actions/cache@v4 (Ronald Holshausen, Thu May 29 13:59:06 2025 +1000)
  • 64a931298 - chore: Update plugin driver to 0.5.2 (Ronald Holshausen, Thu May 29 11:00:58 2025 +1000)
  • 15da5a605 - Update README.md (Ronald Holshausen, Fri May 23 10:10:59 2025 +1000)
  • 7d49354be - Merge pull request #1858 from WellingR/sync-message-pact-provider-state (Ronald Holshausen, Mon Mar 17 10:03:08 2025 +1100)
  • 7a924a007 - fix: Ensure provider state is injected when verifying synchronous message pacts (Ruud Welling, Sun Mar 16 18:44:41 2025 +0100)
  • 90e0f919d - bump version to 4.6.18 (Ronald Holshausen, Fri Feb 14 11:52:44 2025 +1100)
Commits

Updates io.rest-assured:rest-assured from 5.5.6 to 6.0.0

Changelog

Sourced from io.rest-assured:rest-assured's changelog.

Changelog 6.0.0 (2025-12-12)

  • spring-mock-mvc module now supports Spring 7.x
  • spring-web-test-client now supports Spring 7.x
  • Upgraded commons-lang3 from 3.18.0 to 3.19.0
  • The spring modules now required Spring 5.3+ (previously 5.1 was required)
  • New minimum Java baseline is now 17
  • New minimum Groovy base is now 5.x
  • Support for Jackson 3 object mapping
  • Support for Yasson 3 object mapping
  • Support for jakarta JsonB/Johnzon 3 object mapping
  • Migrate json-path fully to Java, bypass GroovyShell for evaluation (#1844) (thanks to Michael Edgar for PR)
    • This fixed some nasty memory leaks when using JsonPath heavily in long running processes
  • Stop resetting ResponseParserRegistrar during build (#1759, #1505, #1207 & #978) (thanks to Marc Easen for PR)
  • Skip Null filters in FilterContextImpl (#1834) (thanks to Boyarshinov Alexander for PR)
  • Upgraded Kotlin extension module to use Kotlin 2.2.21
Commits
  • 0b3a0d9 [maven-release-plugin] prepare release rest-assured-6.0.0
  • bd55281 [ci skip] Add exclusions for jackson3-example and spring7-mvc-webapp in pom.xml
  • eb141e2 [maven-release-plugin] prepare for next development iteration
  • 4c1a241 [maven-release-plugin] prepare release rest-assured-6.0.0
  • 2f11520 Using newer version of dokka and using stdlib for kotlin instead of jdk8
  • 6d9362c Ability to exclude osgi-tests in release
  • 24380db Revert osgi-tests back to JUnit 4
  • 9c12601 Upgraded Kotlin extension module to use Kotlin 2.2.21
  • 4b1ff78 [ci skip] Prepare and perform release in single step
  • 931f421 [ci skip] Removed explicit javadoc path workaround for JDK 8
  • Additional commits viewable in compare view

Updates org.springframework.boot from 4.0.0-M3 to 4.0.0

Release notes

Sourced from org.springframework.boot's releases.

v4.0.0

Full release notes for Spring Boot 4.0 are available on the wiki. There is also a migration guide to help you upgrade from Spring Boot 3.5.

⭐ New Features

  • Change tomcat and jetty runtime modules to starters #48175
  • Rename spring-boot-kotlin-serialization to align with the name of the Kotlinx module that it pulls in #48076

🐞 Bug Fixes

  • Error properties are a general web concern and should not be located beneath server.* #48201
  • With both Jackson 2 and 3 on the classpath, @JsonTest fails due to duplicate jacksonTesterFactoryBean #48198
  • Gradle war task does not exclude starter POMs from lib-provided #48197
  • spring.test.webclient.mockrestserviceserver.enabled is not aligned with its module's name #48193
  • SslMeterBinder doesn't register metrics for dynamically added bundles if no bundles exist at bind time #48182
  • Properties bound in the child management context ignore the parent's environment prefix #48177
  • ssl.chain.expiry metrics doesn't update for dynamically registered SSL bundles #48171
  • Starter for spring-boot-micrometer-metrics is missing #48161
  • Elasticsearch client's sniffer functionality should not be enabled by default #48155
  • spring-boot-starter-elasticsearch should depend on elasticsearch-java #48141
  • Auto-configuration exclusions are checked using a different class loader to the one that loads auto-configuration classes #48132
  • New arm64 macbooks fail to bootBuildImage due to incorrect platform image #48128
  • Properties for configuring an isolated JsonMapper or ObjectMapper are incorrectly named #48116
  • Buildpack fails with recent Docker installs due to hardcoded version in URL #48103
  • Image building may fail when specifying a platform if an image has already been built with a different platform #48099
  • Default values of Kotlinx Serialization JSON configuration properties are not documented #48097
  • Custom XML converters should override defaults in HttpMessageConverters #48096
  • Kotlin serialization is used too aggressively when other JSON libraries are available #48070
  • PortInUseException incorrectly thrown on failure to bind port due to Netty IP misconfiguration #48059
  • Auto-configured JCacheMetrics cannot be customized #48057
  • WebSecurityCustomizer beans are excluded by WebMvcTest #48055
  • Deprecated EnvironmentPostProcessor does not resolve arguments #48047
  • RetryPolicySettings should refer to maxRetries, not maxAttempts #48023
  • Devtools Restarter does not work with a parameterless main method #47996
  • Dependency management for Kafka should not manage Scala 2.12 libraries #47991
  • spring-boot-mail should depend on jakarta.mail:jakarta.mail-api and org.eclipse.angus:angus-mail instead of org.eclipse.angus:jakarta.mail #47983
  • spring-boot-starter-data-mongodb-reactive has dependency on reactor-test #47982
  • Support for ReactiveElasticsearchClient is in the wrong module #47848

📔 Documentation

  • Removed property spring.test.webclient.register-rest-template is still documented #48199
  • Mention support for detecting AWS ECS in "Deploying to the Cloud" #48170
  • Revise AWS section of "Deploying to the Cloud" in reference manual #48163
  • Fix typo in PortInUseException Javadoc #48134
  • Correct section about required setters in "Type-safe Configuration Properties" #48131
  • Use since attribute in configuration properties deprecation consistently #48122
  • Document EndpointJsonMapper and management.endpoints.jackson.isolated-json-mapper #48115
  • Document support for configuring servlet context init parameters using properties #48112
  • Some configuration properties are not documented in the appendix #48095

... (truncated)

Commits
  • 1c0e08b Release v4.0.0
  • 3487928 Merge branch '3.5.x'
  • 29b8e96 Switch make-default in preparation for Spring Boot 4.0.0
  • 88da0dd Merge branch '3.5.x'
  • 56feeaa Next development version (v3.5.9-SNAPSHOT)
  • 3becdc7 Move server.error properties to spring.web.error
  • 2b30632 Merge branch '3.5.x'
  • 4f03b44 Merge branch '3.4.x' into 3.5.x
  • 3d15c13 Next development version (v3.4.13-SNAPSHOT)
  • dc140df Upgrade to Spring Framework 7.0.1
  • Additional commits viewable in compare view

Updates org.cyclonedx.bom from 2.4.1 to 3.1.0

Updates au.com.dius.pact from 4.6.17 to 4.6.18

Updates com.gorylenko.gradle-git-properties from 2.5.3 to 2.5.4

Updates com.avast.gradle.docker-compose from 0.17.12 to 0.17.20

Release notes

Sourced from com.avast.gradle.docker-compose's releases.

0.17.20

What's Changed

New Contributors

Full Changelog: avast/gradle-docker-compose-plugin@0.17.19...0.17.20

0.17.19

What's Changed

@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Dec 12, 2025
@dependabot
chore(deps): bump the all-dependencies group across 1 directory with …
6f3d172 
…15 updates

Bumps the all-dependencies group with 14 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [io.swagger.core.v3:swagger-core](https://github.com/swagger-api/swagger-core) | `2.2.38` | `2.2.41` |
| [net.logstash.logback:logstash-logback-encoder](https://github.com/logfellow/logstash-logback-encoder) | `8.1` | `9.0` |
| [org.hibernate.validator:hibernate-validator](https://github.com/hibernate/hibernate-validator) | `9.0.1.Final` | `9.1.0.Final` |
| [org.apache.commons:commons-text](https://github.com/apache/commons-text) | `1.14.0` | `1.15.0` |
| [com.azure:azure-storage-blob](https://github.com/Azure/azure-sdk-for-java) | `12.25.1` | `12.32.0` |
| [com.azure:azure-identity](https://github.com/Azure/azure-sdk-for-java) | `1.14.0` | `1.18.1` |
| [org.junit:junit-bom](https://github.com/junit-team/junit-framework) | `6.0.0` | `6.0.1` |
| [au.com.dius.pact.provider:junit5](https://github.com/pact-foundation/pact-jvm) | `4.6.17` | `4.6.18` |
| [io.rest-assured:rest-assured](https://github.com/rest-assured/rest-assured) | `5.5.6` | `6.0.0` |
| [org.springframework.boot](https://github.com/spring-projects/spring-boot) | `4.0.0-M3` | `4.0.0` |
| org.cyclonedx.bom | `2.4.1` | `3.1.0` |
| au.com.dius.pact | `4.6.17` | `4.6.18` |
| com.gorylenko.gradle-git-properties | `2.5.3` | `2.5.4` |
| [com.avast.gradle.docker-compose](https://github.com/avast/gradle-docker-compose-plugin) | `0.17.12` | `0.17.20` |



Updates `io.swagger.core.v3:swagger-core` from 2.2.38 to 2.2.41
- [Release notes](https://github.com/swagger-api/swagger-core/releases)
- [Commits](swagger-api/swagger-core@v2.2.38...v2.2.41)

Updates `net.logstash.logback:logstash-logback-encoder` from 8.1 to 9.0
- [Release notes](https://github.com/logfellow/logstash-logback-encoder/releases)
- [Commits](logfellow/logstash-logback-encoder@logstash-logback-encoder-8.1...logstash-logback-encoder-9.0)

Updates `org.hibernate.validator:hibernate-validator` from 9.0.1.Final to 9.1.0.Final
- [Release notes](https://github.com/hibernate/hibernate-validator/releases)
- [Changelog](https://github.com/hibernate/hibernate-validator/blob/main/changelog.txt)
- [Commits](hibernate/hibernate-validator@9.0.1.Final...9.1.0.Final)

Updates `org.apache.commons:commons-text` from 1.14.0 to 1.15.0
- [Changelog](https://github.com/apache/commons-text/blob/master/RELEASE-NOTES.txt)
- [Commits](apache/commons-text@rel/commons-text-1.14.0...rel/commons-text-1.15.0)

Updates `com.azure:azure-storage-blob` from 12.25.1 to 12.32.0
- [Release notes](https://github.com/Azure/azure-sdk-for-java/releases)
- [Commits](Azure/azure-sdk-for-java@azure-storage-blob_12.25.1...azure-storage-blob_12.32.0)

Updates `com.azure:azure-identity` from 1.14.0 to 1.18.1
- [Release notes](https://github.com/Azure/azure-sdk-for-java/releases)
- [Commits](Azure/azure-sdk-for-java@azure-core_1.14.0...azure-identity_1.18.1)

Updates `org.junit:junit-bom` from 6.0.0 to 6.0.1
- [Release notes](https://github.com/junit-team/junit-framework/releases)
- [Commits](junit-team/junit-framework@r6.0.0...r6.0.1)

Updates `au.com.dius.pact.provider:junit5` from 4.6.17 to 4.6.18
- [Release notes](https://github.com/pact-foundation/pact-jvm/releases)
- [Changelog](https://github.com/pact-foundation/pact-jvm/blob/master/CHANGELOG.md)
- [Commits](https://github.com/pact-foundation/pact-jvm/commits)

Updates `au.com.dius.pact.provider:spring6` from 4.6.17 to 4.6.18
- [Release notes](https://github.com/pact-foundation/pact-jvm/releases)
- [Changelog](https://github.com/pact-foundation/pact-jvm/blob/master/CHANGELOG.md)
- [Commits](https://github.com/pact-foundation/pact-jvm/commits)

Updates `io.rest-assured:rest-assured` from 5.5.6 to 6.0.0
- [Changelog](https://github.com/rest-assured/rest-assured/blob/master/changelog.txt)
- [Commits](rest-assured/rest-assured@rest-assured-5.5.6...rest-assured-6.0.0)

Updates `org.springframework.boot` from 4.0.0-M3 to 4.0.0
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](spring-projects/spring-boot@v4.0.0-M3...v4.0.0)

Updates `org.cyclonedx.bom` from 2.4.1 to 3.1.0

Updates `au.com.dius.pact` from 4.6.17 to 4.6.18

Updates `com.gorylenko.gradle-git-properties` from 2.5.3 to 2.5.4

Updates `com.avast.gradle.docker-compose` from 0.17.12 to 0.17.20
- [Release notes](https://github.com/avast/gradle-docker-compose-plugin/releases)
- [Commits](avast/gradle-docker-compose-plugin@0.17.12...0.17.20)

---
updated-dependencies:
- dependency-name: io.swagger.core.v3:swagger-core
  dependency-version: 2.2.41
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: net.logstash.logback:logstash-logback-encoder
  dependency-version: '9.0'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-dependencies
- dependency-name: org.hibernate.validator:hibernate-validator
  dependency-version: 9.1.0.Final
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
- dependency-name: org.apache.commons:commons-text
  dependency-version: 1.15.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
- dependency-name: com.azure:azure-storage-blob
  dependency-version: 12.32.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
- dependency-name: com.azure:azure-identity
  dependency-version: 1.18.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
- dependency-name: org.junit:junit-bom
  dependency-version: 6.0.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: au.com.dius.pact.provider:junit5
  dependency-version: 4.6.18
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: au.com.dius.pact.provider:spring6
  dependency-version: 4.6.18
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: io.rest-assured:rest-assured
  dependency-version: 6.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-dependencies
- dependency-name: org.springframework.boot
  dependency-version: 4.0.0
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: org.cyclonedx.bom
  dependency-version: 3.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-dependencies
- dependency-name: au.com.dius.pact
  dependency-version: 4.6.18
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: com.gorylenko.gradle-git-properties
  dependency-version: 2.5.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: com.avast.gradle.docker-compose
  dependency-version: 0.17.20
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/gradle/all-dependencies-20f88700d4 branch from bbcc90d to 6f3d172 Compare December 16, 2025 19:22
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file java Pull requests that update java code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants