Skip to content

[release_v1]: bump the all-modules group across 1 directory with 4 updates#2283

Open
dependabot[bot] wants to merge 1 commit intorelease_v1from
dependabot/maven/sda-doa/release_v1/all-modules-72a29c61cf
Open

[release_v1]: bump the all-modules group across 1 directory with 4 updates#2283
dependabot[bot] wants to merge 1 commit intorelease_v1from
dependabot/maven/sda-doa/release_v1/all-modules-72a29c61cf

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 2, 2026
edited
Loading

Bumps the all-modules group with 4 updates in the /sda-doa directory: org.springframework.boot:spring-boot-starter-parent, no.elixir:crypt4gh, no.elixir:clearinghouse and org.yaml:snakeyaml.

Updates org.springframework.boot:spring-boot-starter-parent from 4.0.2 to 4.0.3

Release notes

Sourced from org.springframework.boot:spring-boot-starter-parent's releases.

v4.0.3

⭐ New Features

  • Add TWENTY_SIX to JavaVersion enum #49193

🐞 Bug Fixes

  • Jackson properties may not be applied correctly to RestClients #49223
  • ClassNotFoundException when using Actuator without spring-boot-health #49196
  • Using the OTel and Zipkin starters together creates invalid configuration #49183
  • Whitespace can be incorrectly removed when spring-boot-configuration-processor runs on multi-line javadoc #49060
  • Jackson2HttpMessageConvertersConfiguration uses ConditionOn Jackson3 XMLMapper class #49015
  • server.jetty.threads.max is ignored when using virtual threads #48989
  • Slice test includes fail to load when using spring-boot-starter-test-classic #48981
  • Docker credential helpers with file extensions cannot be executed on Windows #48979
  • Java version requirement check for native image is confusing if AOT didn't run #48963
  • TestPropertyValues.Pair.fromMapEntry(Entry<String, String>) does not comply with its nullability contract #48948

📔 Documentation

  • Couchbase and Kafka are incorrectly listed as supporting SSL with Docker Compose #49212
  • Document that use of non idiomatic format for '@Value' still apply for environment variables #49109
  • Document naming convention for custom test-scoped starters #49017
  • Delay removal of Jackson 2 support until 4.3 at the earliest #49010
  • LICENSE.txt and NOTICE.txt files have the wrong content in the latest releases #49003
  • ApplicationContextAssert documents a non-existent assertion in getFailure() #48977
  • Highlight the importance of the preStop hook when configuring Kubernetes probes #48946

🔨 Dependency Upgrades

  • Upgrade to AssertJ 3.27.7 #49095
  • Upgrade to Elasticsearch Client 9.2.5 #49184
  • Upgrade to Groovy 5.0.4 #49097
  • Upgrade to Hibernate 7.2.3.Final #49098
  • Upgrade to Hibernate 7.2.4.Final #49167
  • Upgrade to Jaybird 6.0.4 #49099
  • Upgrade to JBoss Logging 3.6.2.Final #49100
  • Upgrade to Jersey 4.0.2 #49101
  • Upgrade to Jetty 12.1.6 #49102
  • Upgrade to jOOQ 3.19.30 #49103
  • Upgrade to JUnit Jupiter 6.0.3 #49233
  • Upgrade to Logback 1.5.29 #49169
  • Upgrade to Logback 1.5.32 #49245
  • Upgrade to Micrometer 1.16.3 #49111
  • Upgrade to Micrometer Tracing 1.6.3 #49112
  • Upgrade to MongoDB 5.6.3 #49105
  • Upgrade to MySQL 9.6.0 #49106
  • Upgrade to Netty 4.2.10.Final #49107
  • Upgrade to Postgresql 42.7.10 #49202
  • Upgrade to Reactor Bom 2025.0.3 #49087

... (truncated)

Commits
  • 1ab1436 Release v4.0.3
  • 5cc488d Merge branch '3.5.x' into 4.0.x
  • 9138ae2 Next development version (v3.5.12-SNAPSHOT)
  • a7e63a7 Merge branch '3.5.x' into 4.0.x
  • 54ab3c5 Align "noteworthy" issues in release notes with Spring Framework
  • b3ae5b1 Merge branch '3.5.x' into 4.0.x
  • 996664f Temporarily switch Docker to overlay2
  • 1ce8743 Revert "Temporarily disable containerd snapshotter"
  • 5ba88c6 Temporarily disable containerd snapshotter
  • 1f1a88c Revert "Temporarily update system tests to use specific platform"
  • Additional commits viewable in compare view

Updates no.elixir:crypt4gh from 3.0.46 to 3.0.47

Commits
  • b3b0099 [Java]: Bump the all-modules group across 4 directories with 6 updates
  • See full diff in compare view

Updates no.elixir:clearinghouse from 3.0.18 to 3.0.19

Release notes

Sourced from no.elixir:clearinghouse's releases.

clearinghouse-3.0.19

Changelog

[3.0.19] - 2026-02-18

[Java]: Bump the all-modules group across 4 directories with 6 updates

🔧 Other

  • b3b0099 [Java]: Bump the all-modules group across 4 directories with 6 updates
Commits
  • d80f6dd Merge branch 'main' into fix/scrypt_pure_java
  • 04f2285 Merge pull request #409 from ELIXIR-NO/dependabot/gradle/lib/tsd-file-api-cli...
  • 17c062e [TSD-File-API-Client]: bump the all-modules group
  • 7a54fb0 [Clearinghouse]: bump the all-modules group
  • 69f63ec docs(crypt4gh): remove comment mentioning use of native SCrypt
  • 5e2da6d Merge branch 'main' into fix/scrypt_pure_java
  • 3632445 Merge branch 'main' into fix/scrypt_pure_java
  • 9fdd3ff Applied Spotless formatting to new SCrypt.java file
  • 4fcacc2 Removed external dependency for SCrypt in Crypt4GH
  • See full diff in compare view

Updates org.yaml:snakeyaml from 2.5 to 2.6

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Mar 2, 2026
@dependabot
[release_v1]: bump the all-modules group across 1 directory with 4 up…
b8ffe3d 
…dates

Bumps the all-modules group with 4 updates in the /sda-doa directory: [org.springframework.boot:spring-boot-starter-parent](https://github.com/spring-projects/spring-boot), [no.elixir:crypt4gh](https://github.com/ELIXIR-NO/FEGA-Norway), [no.elixir:clearinghouse](https://github.com/ELIXIR-NO/FEGA-Norway) and [org.yaml:snakeyaml](https://bitbucket.org/snakeyaml/snakeyaml).


Updates `org.springframework.boot:spring-boot-starter-parent` from 4.0.2 to 4.0.3
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](spring-projects/spring-boot@v4.0.2...v4.0.3)

Updates `no.elixir:crypt4gh` from 3.0.46 to 3.0.47
- [Release notes](https://github.com/ELIXIR-NO/FEGA-Norway/releases)
- [Commits](ELIXIR-NO/FEGA-Norway@crypt4gh-3.0.46...crypt4gh-3.0.47)

Updates `no.elixir:clearinghouse` from 3.0.18 to 3.0.19
- [Release notes](https://github.com/ELIXIR-NO/FEGA-Norway/releases)
- [Commits](ELIXIR-NO/FEGA-Norway@crypt4gh-3.0.18...crypt4gh-3.0.19)

Updates `org.yaml:snakeyaml` from 2.5 to 2.6
- [Commits](https://bitbucket.org/snakeyaml/snakeyaml/branches/compare/snakeyaml-2.6..snakeyaml-2.5)

---
updated-dependencies:
- dependency-name: org.springframework.boot:spring-boot-starter-parent
  dependency-version: 4.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-modules
- dependency-name: no.elixir:crypt4gh
  dependency-version: 3.0.47
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-modules
- dependency-name: no.elixir:clearinghouse
  dependency-version: 3.0.19
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-modules
- dependency-name: org.yaml:snakeyaml
  dependency-version: '2.6'
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-modules
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/maven/sda-doa/release_v1/all-modules-72a29c61cf branch from 018eeda to b8ffe3d Compare March 6, 2026 08:41
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file java Pull requests that update Java code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants