·
20 commits
to main
since this release
[17.104.0] - 2025-12-16
Added
- New module
framework-libraries-versionthat contains a maven generated json file that has this project's version number
Security
- Updated to latest common-bom for latest third party security fixes:
- Update commons.beanutils version to 1.11.0 to fix security vulnerability CVE-2025-48734
Detail: https://cwe.mitre.org/data/definitions/284.html - Update resteasy version to 3.15.5.Final to fix security vulnerability CVE-2023-0482
Detail: https://cwe.mitre.org/data/definitions/378.html - Update classgraph version to 4.8.112 to fix security vulnerability CVE-2021-47621
Detail: https://cwe.mitre.org/data/definitions/611.html - Update commons-lang version to 3.18.0 to fix security vulnerability CVE-2025-48924
Detail: https://cwe.mitre.org/data/definitions/674.html
- Update commons.beanutils version to 1.11.0 to fix security vulnerability CVE-2025-48734
Changed
- EntityManagerFlushInterceptor will now only flush the EntityManager if a transaction is active
- Refactor JsonObject usages to more proper api
- Fix HttpClient lielefecycle.
- Used JsonFactory instead of Json.create methods as per jakartaee/jsonp-api#154
- Update framework-libraries for:
- TimerServiceManager now returns created Timer