Skip to content

Pull requests: spring-projects/spring-security

New pull request New
98 Open 5,014 Closed
98 Open 5,014 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

Document the change in dependency coordinates with Spring Security 7 status: waiting-for-triage An issue we've not yet triaged
#18773 opened Feb 20, 2026 by busoco-sjb Loading…
Add missing AOT Runtime Hints in: core An issue in spring-security-core status: feedback-provided Feedback has been provided type: enhancement A general enhancement
#18767 opened Feb 19, 2026 by joshlong Loading…
@rwinch
3
Specify charset in WWW-Authenticate for Basic Auth status: waiting-for-triage An issue we've not yet triaged
#18760 opened Feb 18, 2026 by therepanic Loading…
1
4
Warn when securityMatcher misses oauth2Login URLs status: waiting-for-triage An issue we've not yet triaged
#18759 opened Feb 18, 2026 by wonderfulrosemari Loading…
1
Document multipart CSRF header option status: waiting-for-triage An issue we've not yet triaged
#18757 opened Feb 18, 2026 by wonderfulrosemari Loading…
1
Provide RestClientSpringOpaqueTokenIntrospector status: waiting-for-triage An issue we've not yet triaged
#18746 opened Feb 16, 2026 by therepanic Loading…
1
1
Remove compiler warnings for spring-security-access status: waiting-for-triage An issue we've not yet triaged
#18738 opened Feb 15, 2026 by dasog94 Loading…
Update request-matcher schema and XML tests to use path status: waiting-for-triage An issue we've not yet triaged
#18737 opened Feb 13, 2026 by meliezer Loading…
1
Add tests for PathPatternRequestMatcher request path caching status: waiting-for-triage An issue we've not yet triaged
#18721 opened Feb 12, 2026 by coehgns Loading…
Fix deserializer for AuthenticationExtensionsClientOutputs status: waiting-for-triage An issue we've not yet triaged
#18644 opened Feb 5, 2026 by ziqin Loading…
1
Update Remember-Me example status: waiting-for-triage An issue we've not yet triaged
#18642 opened Feb 4, 2026 by ngocnhan-tran1996 Loading…
Change ActiveDirectoryLdapAuthenticationProvider to use LdapClient in: ldap An issue in spring-security-ldap type: enhancement A general enhancement
#18627 opened Feb 1, 2026 by therepanic Loading…
1
@jzheaux
5
Fix session concurrency for OAuth2/OIDC authentication in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: bug A general bug
#18624 opened Jan 30, 2026 by Gautam-aman Loading…
3
docs: Update inner link about CSRF in FAQ status: waiting-for-triage An issue we've not yet triaged
#18616 opened Jan 29, 2026 by ghusta Loading…
Bump io.mockk:mockk from 1.14.7 to 1.14.9 type: dependency-upgrade A dependency upgrade
#18598 opened Jan 27, 2026 by dependabot bot Loading…
Fix compile warnings for spring-security-config in: build An issue in the build in: config An issue in spring-security-config status: waiting-for-feedback We need additional information before we can continue type: enhancement A general enhancement
#18596 opened Jan 26, 2026 by 023-dev Loading… 7.1.0-M3
1
@rwinch
9
Lazily instantiate default components in WebAuthnConfigurer status: waiting-for-triage An issue we've not yet triaged
#18586 opened Jan 25, 2026 by ryujungkyun Loading…
Clarify behavior when multiple CorsConfigurationSource beans are present status: waiting-for-triage An issue we've not yet triaged
#18584 opened Jan 25, 2026 by mjkang4416 Loading…
1
Gh 18561 fix jackson date override status: waiting-for-triage An issue we've not yet triaged
#18582 opened Jan 25, 2026 by Khyojae Loading…
1
Clarify need for method attribute in JSP authorize tag type: enhancement A general enhancement
#18566 opened Jan 24, 2026 by Hann244 Loading… 7.1.0-M3
1
@jzheaux
fix: replace hard-coded JWKS timeouts status: waiting-for-triage An issue we've not yet triaged
#18563 opened Jan 23, 2026 by knoobie Loading…
Deprecate BCrypt.gensalt() without SecureRandom parameter status: waiting-for-triage An issue we've not yet triaged
#18560 opened Jan 22, 2026 by lreowy Loading…
1
Add reactive handle method to ServerCsrfTokenRequestHandler in: web An issue in web modules (web, webmvc) status: feedback-provided Feedback has been provided type: enhancement A general enhancement
#18558 opened Jan 22, 2026 by therepanic Loading…
1
4
Fix NullPointerException in AuthoritiesAuthorizationManager status: waiting-for-triage An issue we've not yet triaged
#18544 opened Jan 21, 2026 by Khyojae Loading…
1
3
Update servlet architecture docs to use include-code status: waiting-for-triage An issue we've not yet triaged
#18536 opened Jan 21, 2026 by jkuhel Loading…
ProTip! Add no:assignee to see everything that’s not assigned.