本项目为 《Spring Boot实战合集》的系列文章,代码已开源,并持续保持更新。如果您觉得该项目对您有用,欢迎点击右上方的 Star按钮支持一波!!
另外所有内容都在我的个人微信公众号 CodeSheep 最先推出,大家可以关注一下,可 长按 或 扫描 下面的 小心心 来获取更多 务实、能看懂、可复现的 原创文。除此之外 提问/进群交流 也可以扫码进行!!!
另外所有内容都在我的个人微信公众号 CodeSheep 最先推出,大家可以关注一下,可 长按 或 扫描 下面的 小心心 来获取更多 务实、能看懂、可复现的 原创文。除此之外 提问/进群交流 也可以扫码进行!!!
部分情况会出现java.lang.IllegalStateException:Calling [asyncError()] is not valid for a request with Async state。 解决方法:排除Tomcat依赖,使用Jetty代替。
<dependency>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-jetty</artifactId>
</dependency>
Bumps spring-core from 5.0.9.RELEASE to 5.3.19.
Sourced from spring-core's releases.
v5.3.19
:star: New Features
- Remove DNS lookups during websocket connection initiation #28280
- Add application/graphql+json Media type and MIME type constants #28271
- Fix debug log for no matching acceptableTypes #28116
- Provide support for post-processing a LocalValidatorFactoryBean's validator Configuration without requiring sub-classing #27956
:lady_beetle: Bug Fixes
- Improve documentation and matching algorithm in data binders #28333
- NotWritablePropertyException when attempting to declaratively configure ClassLoader properties #28269
- BeanPropertyRowMapper's support for direct column name matches is missing in DataClassRowMapper #28243
- AbstractListenerReadPublisher does not call
ServletOutputStream::isReady()
when reading chunked data across network packets #28241- ResponseEntity objects are accumulated in ConcurrentReferenceHashMap #28232
- Lambda proxy generation fix causes BeanNotOfRequiredTypeException #28209
- CodeGenerationException thrown when using AnnotationMBeanExporter on JDK 17 #28138
:hammer: Dependency Upgrades
- Upgrade to Reactor 2020.0.18 #28329
:heart: Contributors
We'd like to thank all the contributors who worked on this release!
v5.3.18
:star: New Features
- Restrict access to property paths on Class references #28261
- Introduce cancel(boolean mayInterruptIfRunning) in ScheduledTask #28233
:lady_beetle: Bug Fixes
- Move off deprecated API in
SessionTransactionData
#28234:notebook_with_decorative_cover: Documentation
- Introduce warnings in documentation of SerializationUtils #28246
- Update copyright date in reference manual #28237
@Transactional
test does not execute all JPA lifecycle callback methods #28228:heart: Contributors
We'd like to thank all the contributors who worked on this release!
... (truncated)
cedb587
Release v5.3.19a7cf19c
Improve documentation and matching algorithm in data binders0cf7f7b
Polishing949c3d4
Align plain accessor check3b4ae7b
TomcatHttpHandlerAdapter continues after 0 bytes8b39698
Upgrade to Reactor 2020.0.186fad00e
Ensure dynamic proxy with AOP introduction includes lambda interfaces5f6d8df
Introduce isLambdaClass() as a public utility in ClassUtils35de7e1
Introduce initializer callback for Bean Validation Configuration10e979e
PolishingDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase
.
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)@dependabot use these labels
will set the current labels as the default for future PRs for this repo and language@dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language@dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language@dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and languageYou can disable automated security fix PRs for this repo from the Security Alerts page.
Bumps spring-core from 4.2.5.RELEASE to 5.3.19.
Sourced from spring-core's releases.
v5.3.19
:star: New Features
- Remove DNS lookups during websocket connection initiation #28280
- Add application/graphql+json Media type and MIME type constants #28271
- Fix debug log for no matching acceptableTypes #28116
- Provide support for post-processing a LocalValidatorFactoryBean's validator Configuration without requiring sub-classing #27956
:lady_beetle: Bug Fixes
- Improve documentation and matching algorithm in data binders #28333
- NotWritablePropertyException when attempting to declaratively configure ClassLoader properties #28269
- BeanPropertyRowMapper's support for direct column name matches is missing in DataClassRowMapper #28243
- AbstractListenerReadPublisher does not call
ServletOutputStream::isReady()
when reading chunked data across network packets #28241- ResponseEntity objects are accumulated in ConcurrentReferenceHashMap #28232
- Lambda proxy generation fix causes BeanNotOfRequiredTypeException #28209
- CodeGenerationException thrown when using AnnotationMBeanExporter on JDK 17 #28138
:hammer: Dependency Upgrades
- Upgrade to Reactor 2020.0.18 #28329
:heart: Contributors
We'd like to thank all the contributors who worked on this release!
v5.3.18
:star: New Features
- Restrict access to property paths on Class references #28261
- Introduce cancel(boolean mayInterruptIfRunning) in ScheduledTask #28233
:lady_beetle: Bug Fixes
- Move off deprecated API in
SessionTransactionData
#28234:notebook_with_decorative_cover: Documentation
- Introduce warnings in documentation of SerializationUtils #28246
- Update copyright date in reference manual #28237
@Transactional
test does not execute all JPA lifecycle callback methods #28228:heart: Contributors
We'd like to thank all the contributors who worked on this release!
... (truncated)
cedb587
Release v5.3.19a7cf19c
Improve documentation and matching algorithm in data binders0cf7f7b
Polishing949c3d4
Align plain accessor check3b4ae7b
TomcatHttpHandlerAdapter continues after 0 bytes8b39698
Upgrade to Reactor 2020.0.186fad00e
Ensure dynamic proxy with AOP introduction includes lambda interfaces5f6d8df
Introduce isLambdaClass() as a public utility in ClassUtils35de7e1
Introduce initializer callback for Bean Validation Configuration10e979e
PolishingDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase
.
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)@dependabot use these labels
will set the current labels as the default for future PRs for this repo and language@dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language@dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language@dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and languageYou can disable automated security fix PRs for this repo from the Security Alerts page.
Bumps spring-core from 5.0.9.RELEASE to 5.3.18.
Sourced from spring-core's releases.
v5.3.18
:star: New Features
- Restrict access to property paths on Class references #28261
- Introduce cancel(boolean mayInterruptIfRunning) in ScheduledTask #28233
:lady_beetle: Bug Fixes
- Move off deprecated API in
SessionTransactionData
#28234:notebook_with_decorative_cover: Documentation
- Introduce warnings in documentation of SerializationUtils #28246
- Update copyright date in reference manual #28237
@Transactional
test does not execute all JPA lifecycle callback methods #28228:heart: Contributors
We'd like to thank all the contributors who worked on this release!
v5.3.17
:star: New Features
- Using DataClassRowMapper causes "No property found for column" debug messages in logs #28179
- Improve diagnostics in SpEL for large array creation #28145
- Support custom HTTP status in client-side REST testing support #28105
- AsyncRestTemplate logging too verbose #28049
:lady_beetle: Bug Fixes
- java.lang.NoClassDefFoundError: org/springframework/cglib/beans/BeanMapEmitter #28110
- CronExpression fails to calculate properly next execution when running on the day of winter daylight saving time #28095
- Private init/destroy method may be invoked twice #28083
- MappingJacksonValue and Jackson2CodecSupport#registerObjectMappersForType do not work together #28045
- SpEL fails to recover from error during MIXED mode compilation #28043
- When returning a ResponseEntity with a Flux while the function is suspended, it fails to encode the body #27809
:notebook_with_decorative_cover: Documentation
- Improve documentation for
@EnabledIf
and@DisabledIf
test support #28157- Links to Spring Security are broken in the reference guide #28135
- Document that transaction rollback rules may result in unintentional matches #28125
- Improve documentation for TestContext events #27757
- Clarify behavior for generics support in BeanUtils.copyProperties #27259
:hammer: Dependency Upgrades
... (truncated)
707a24c
Release v5.3.18002546b
Refine PropertyDescriptor filtering1627f57
Disable flaky integration tests for now3811cd4
Introduce warnings in documentation of SerializationUtilsd927e37
Add "Testing ORM entity lifecycle callbacks" note to Testing chapter1d302bf
Introduce tests for gh-282284b150fd
Update copyright date in reference manual3a6016d
Merge pull request #28238 from izeye135506f
Update copyright year of EvaluationTestscb36ca3
Upgrade to ASM masterDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase
.
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)@dependabot use these labels
will set the current labels as the default for future PRs for this repo and language@dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language@dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language@dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and languageYou can disable automated security fix PRs for this repo from the Security Alerts page.
Bumps spring-core from 4.2.5.RELEASE to 5.3.18.
Sourced from spring-core's releases.
v5.3.18
:star: New Features
- Restrict access to property paths on Class references #28261
- Introduce cancel(boolean mayInterruptIfRunning) in ScheduledTask #28233
:lady_beetle: Bug Fixes
- Move off deprecated API in
SessionTransactionData
#28234:notebook_with_decorative_cover: Documentation
- Introduce warnings in documentation of SerializationUtils #28246
- Update copyright date in reference manual #28237
@Transactional
test does not execute all JPA lifecycle callback methods #28228:heart: Contributors
We'd like to thank all the contributors who worked on this release!
v5.3.17
:star: New Features
- Using DataClassRowMapper causes "No property found for column" debug messages in logs #28179
- Improve diagnostics in SpEL for large array creation #28145
- Support custom HTTP status in client-side REST testing support #28105
- AsyncRestTemplate logging too verbose #28049
:lady_beetle: Bug Fixes
- java.lang.NoClassDefFoundError: org/springframework/cglib/beans/BeanMapEmitter #28110
- CronExpression fails to calculate properly next execution when running on the day of winter daylight saving time #28095
- Private init/destroy method may be invoked twice #28083
- MappingJacksonValue and Jackson2CodecSupport#registerObjectMappersForType do not work together #28045
- SpEL fails to recover from error during MIXED mode compilation #28043
- When returning a ResponseEntity with a Flux while the function is suspended, it fails to encode the body #27809
:notebook_with_decorative_cover: Documentation
- Improve documentation for
@EnabledIf
and@DisabledIf
test support #28157- Links to Spring Security are broken in the reference guide #28135
- Document that transaction rollback rules may result in unintentional matches #28125
- Improve documentation for TestContext events #27757
- Clarify behavior for generics support in BeanUtils.copyProperties #27259
:hammer: Dependency Upgrades
... (truncated)
707a24c
Release v5.3.18002546b
Refine PropertyDescriptor filtering1627f57
Disable flaky integration tests for now3811cd4
Introduce warnings in documentation of SerializationUtilsd927e37
Add "Testing ORM entity lifecycle callbacks" note to Testing chapter1d302bf
Introduce tests for gh-282284b150fd
Update copyright date in reference manual3a6016d
Merge pull request #28238 from izeye135506f
Update copyright year of EvaluationTestscb36ca3
Upgrade to ASM masterDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase
.
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)@dependabot use these labels
will set the current labels as the default for future PRs for this repo and language@dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language@dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language@dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and languageYou can disable automated security fix PRs for this repo from the Security Alerts page.
Bumps spring-beans from 5.0.9.RELEASE to 5.3.18.
Sourced from spring-beans's releases.
v5.3.18
:star: New Features
- Restrict access to property paths on Class references #28261
- Introduce cancel(boolean mayInterruptIfRunning) in ScheduledTask #28233
:lady_beetle: Bug Fixes
- Move off deprecated API in
SessionTransactionData
#28234:notebook_with_decorative_cover: Documentation
- Introduce warnings in documentation of SerializationUtils #28246
- Update copyright date in reference manual #28237
@Transactional
test does not execute all JPA lifecycle callback methods #28228:heart: Contributors
We'd like to thank all the contributors who worked on this release!
v5.3.17
:star: New Features
- Using DataClassRowMapper causes "No property found for column" debug messages in logs #28179
- Improve diagnostics in SpEL for large array creation #28145
- Support custom HTTP status in client-side REST testing support #28105
- AsyncRestTemplate logging too verbose #28049
:lady_beetle: Bug Fixes
- java.lang.NoClassDefFoundError: org/springframework/cglib/beans/BeanMapEmitter #28110
- CronExpression fails to calculate properly next execution when running on the day of winter daylight saving time #28095
- Private init/destroy method may be invoked twice #28083
- MappingJacksonValue and Jackson2CodecSupport#registerObjectMappersForType do not work together #28045
- SpEL fails to recover from error during MIXED mode compilation #28043
- When returning a ResponseEntity with a Flux while the function is suspended, it fails to encode the body #27809
:notebook_with_decorative_cover: Documentation
- Improve documentation for
@EnabledIf
and@DisabledIf
test support #28157- Links to Spring Security are broken in the reference guide #28135
- Document that transaction rollback rules may result in unintentional matches #28125
- Improve documentation for TestContext events #27757
- Clarify behavior for generics support in BeanUtils.copyProperties #27259
:hammer: Dependency Upgrades
... (truncated)
707a24c
Release v5.3.18002546b
Refine PropertyDescriptor filtering1627f57
Disable flaky integration tests for now3811cd4
Introduce warnings in documentation of SerializationUtilsd927e37
Add "Testing ORM entity lifecycle callbacks" note to Testing chapter1d302bf
Introduce tests for gh-282284b150fd
Update copyright date in reference manual3a6016d
Merge pull request #28238 from izeye135506f
Update copyright year of EvaluationTestscb36ca3
Upgrade to ASM masterDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase
.
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)@dependabot use these labels
will set the current labels as the default for future PRs for this repo and language@dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language@dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language@dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and languageYou can disable automated security fix PRs for this repo from the Security Alerts page.
Bumps spring-beans from 4.2.5.RELEASE to 5.3.18.
Sourced from spring-beans's releases.
v5.3.18
:star: New Features
- Restrict access to property paths on Class references #28261
- Introduce cancel(boolean mayInterruptIfRunning) in ScheduledTask #28233
:lady_beetle: Bug Fixes
- Move off deprecated API in
SessionTransactionData
#28234:notebook_with_decorative_cover: Documentation
- Introduce warnings in documentation of SerializationUtils #28246
- Update copyright date in reference manual #28237
@Transactional
test does not execute all JPA lifecycle callback methods #28228:heart: Contributors
We'd like to thank all the contributors who worked on this release!
v5.3.17
:star: New Features
- Using DataClassRowMapper causes "No property found for column" debug messages in logs #28179
- Improve diagnostics in SpEL for large array creation #28145
- Support custom HTTP status in client-side REST testing support #28105
- AsyncRestTemplate logging too verbose #28049
:lady_beetle: Bug Fixes
- java.lang.NoClassDefFoundError: org/springframework/cglib/beans/BeanMapEmitter #28110
- CronExpression fails to calculate properly next execution when running on the day of winter daylight saving time #28095
- Private init/destroy method may be invoked twice #28083
- MappingJacksonValue and Jackson2CodecSupport#registerObjectMappersForType do not work together #28045
- SpEL fails to recover from error during MIXED mode compilation #28043
- When returning a ResponseEntity with a Flux while the function is suspended, it fails to encode the body #27809
:notebook_with_decorative_cover: Documentation
- Improve documentation for
@EnabledIf
and@DisabledIf
test support #28157- Links to Spring Security are broken in the reference guide #28135
- Document that transaction rollback rules may result in unintentional matches #28125
- Improve documentation for TestContext events #27757
- Clarify behavior for generics support in BeanUtils.copyProperties #27259
:hammer: Dependency Upgrades
... (truncated)
707a24c
Release v5.3.18002546b
Refine PropertyDescriptor filtering1627f57
Disable flaky integration tests for now3811cd4
Introduce warnings in documentation of SerializationUtilsd927e37
Add "Testing ORM entity lifecycle callbacks" note to Testing chapter1d302bf
Introduce tests for gh-282284b150fd
Update copyright date in reference manual3a6016d
Merge pull request #28238 from izeye135506f
Update copyright year of EvaluationTestscb36ca3
Upgrade to ASM masterDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase
.
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)@dependabot use these labels
will set the current labels as the default for future PRs for this repo and language@dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language@dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language@dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and languageYou can disable automated security fix PRs for this repo from the Security Alerts page.
Bumps mysql-connector-java from 5.1.18 to 8.0.16.
Sourced from mysql-connector-java's changelog.
Changelog
https://dev.mysql.com/doc/relnotes/connector-j/8.0/en/
Version 8.0.20
Fix for Bug#30805426, IN CASE OF ISAUTHMETHODSWITCHREQUESTPACKET , TOSERVERS > 1 ARE IGNORED.
Fix for Bug#97714 (30570249), Contribution: Expose elapsed time for query interceptor to avoid hacky thread local implementations. Thanks to Matti Sillanpää and Johnathan Crawford for their contribution.
Fix for Bug#97724 (30570721), Contribution: Allow '3.' formatted numbers. Thanks to Nick Pollett for his contribution.
Fix for Bug#98536 (30877755), SIMPLEDATEFORMAT COULD CACHE A WRONG CALENDAR.
Fix for Bug#91112 (28125069), AGAIN WRONG JAVA.SQL.DATE.
Fix for Bug#30474158, CONNECTOR/J 8 DOES NOT HONOR THE REQUESTED RESULTSETTYPE SCROLL_INSENSITIVE ETC.
Fix for Bug#98445 (30832513), Connection option clientInfoProvider=ClientInfoProviderSP causes NPE.
WL#12248, DevAPI: Connection compression.
Fix for Bug#30636056, ResultSetUtil.resultSetToMap() can be unsafe to use.
Fix for Bug#97757 (30584907), NULLPOINTEREXCEPTION WITH CACHERESULTSETMETADATA=TRUE AND EXECUTEQUERY OF "SET".
Version 8.0.19
WL#13346, Support for mult-host and failover.
Fix for Bug#97413 (30477722), DATABASEMETADATA IS BROKEN AFTER SERVER WL#13528.
WL#13367, DNS SRV support.
WL#12736, DevAPI: Specify TLS ciphers to be used by a client or session.
Fix for regression tests broken by Bug#97079 fix.
Fix for Bug#96383 (30119545) RS.GETTIMESTAMP() HAS DIFFERENT RESULTS FOR TIME FIELDS WITH USECURSORFETCH=TRUE.
Fix for Bug#96059 (29999318), ERROR STREAMING MULTI RESULTSETS WITH MYSQL-CONNECTOR-JAVA 8.0.X.
Fix for Bug#96442 (30151808), INCORRECT DATE ERROR WHEN CALLING GETMETADATA ON PREPARED STATEMENT.
Version 8.0.18
WL#13347, Connectors should handle expired password sandbox without SET operations.
Fix for Bug#84098 (25223123), endless loop in LoadBalancedAutoCommitInterceptor.
34cbc6b
License book updated.793bd55
Minor fix for tests failing with URL without parameters.58600cc
WL#12825, Remove third-party libraries from sources and bundles.5aa15d5
Fix for Bug#93590 (29054329), javax.net.ssl.SSLException: closing inbound bef...1fecc2b
Fix for Bug#94414 (29384853), Connector/J RPM package have version number in ...f5d24e3
Fix for Bug#27786499, REDUNDANT FILES IN DEBIAN PACKAGE FOR DEBIAN9(COMMUNITY...c49db58
WL#12246, DevAPI: Prepared statement support.a5c3d29
Added definition file for msi building tools.13045c2
WL#10839, Adjust c/J tests to the new "ON" default for2e350a5
Fix for Bug#29329326, PLEASE AVOID SHOW PROCESSLIST IF POSSIBLE.Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase
.
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)@dependabot use these labels
will set the current labels as the default for future PRs for this repo and language@dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language@dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language@dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and languageYou can disable automated security fix PRs for this repo from the Security Alerts page.
Bumps mysql-connector-java from 5.1.40 to 8.0.16.
Sourced from mysql-connector-java's changelog.
Changelog
https://dev.mysql.com/doc/relnotes/connector-j/8.0/en/
Version 8.0.20
Fix for Bug#30805426, IN CASE OF ISAUTHMETHODSWITCHREQUESTPACKET , TOSERVERS > 1 ARE IGNORED.
Fix for Bug#97714 (30570249), Contribution: Expose elapsed time for query interceptor to avoid hacky thread local implementations. Thanks to Matti Sillanpää and Johnathan Crawford for their contribution.
Fix for Bug#97724 (30570721), Contribution: Allow '3.' formatted numbers. Thanks to Nick Pollett for his contribution.
Fix for Bug#98536 (30877755), SIMPLEDATEFORMAT COULD CACHE A WRONG CALENDAR.
Fix for Bug#91112 (28125069), AGAIN WRONG JAVA.SQL.DATE.
Fix for Bug#30474158, CONNECTOR/J 8 DOES NOT HONOR THE REQUESTED RESULTSETTYPE SCROLL_INSENSITIVE ETC.
Fix for Bug#98445 (30832513), Connection option clientInfoProvider=ClientInfoProviderSP causes NPE.
WL#12248, DevAPI: Connection compression.
Fix for Bug#30636056, ResultSetUtil.resultSetToMap() can be unsafe to use.
Fix for Bug#97757 (30584907), NULLPOINTEREXCEPTION WITH CACHERESULTSETMETADATA=TRUE AND EXECUTEQUERY OF "SET".
Version 8.0.19
WL#13346, Support for mult-host and failover.
Fix for Bug#97413 (30477722), DATABASEMETADATA IS BROKEN AFTER SERVER WL#13528.
WL#13367, DNS SRV support.
WL#12736, DevAPI: Specify TLS ciphers to be used by a client or session.
Fix for regression tests broken by Bug#97079 fix.
Fix for Bug#96383 (30119545) RS.GETTIMESTAMP() HAS DIFFERENT RESULTS FOR TIME FIELDS WITH USECURSORFETCH=TRUE.
Fix for Bug#96059 (29999318), ERROR STREAMING MULTI RESULTSETS WITH MYSQL-CONNECTOR-JAVA 8.0.X.
Fix for Bug#96442 (30151808), INCORRECT DATE ERROR WHEN CALLING GETMETADATA ON PREPARED STATEMENT.
Version 8.0.18
WL#13347, Connectors should handle expired password sandbox without SET operations.
Fix for Bug#84098 (25223123), endless loop in LoadBalancedAutoCommitInterceptor.
34cbc6b
License book updated.793bd55
Minor fix for tests failing with URL without parameters.58600cc
WL#12825, Remove third-party libraries from sources and bundles.5aa15d5
Fix for Bug#93590 (29054329), javax.net.ssl.SSLException: closing inbound bef...1fecc2b
Fix for Bug#94414 (29384853), Connector/J RPM package have version number in ...f5d24e3
Fix for Bug#27786499, REDUNDANT FILES IN DEBIAN PACKAGE FOR DEBIAN9(COMMUNITY...c49db58
WL#12246, DevAPI: Prepared statement support.a5c3d29
Added definition file for msi building tools.13045c2
WL#10839, Adjust c/J tests to the new "ON" default for2e350a5
Fix for Bug#29329326, PLEASE AVOID SHOW PROCESSLIST IF POSSIBLE.Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase
.
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)@dependabot use these labels
will set the current labels as the default for future PRs for this repo and language@dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language@dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language@dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and languageYou can disable automated security fix PRs for this repo from the Security Alerts page.
Bumps mysql-connector-java from 5.1.18 to 8.0.16.
Sourced from mysql-connector-java's changelog.
Changelog
https://dev.mysql.com/doc/relnotes/connector-j/8.0/en/
Version 8.0.20
Fix for Bug#30805426, IN CASE OF ISAUTHMETHODSWITCHREQUESTPACKET , TOSERVERS > 1 ARE IGNORED.
Fix for Bug#97714 (30570249), Contribution: Expose elapsed time for query interceptor to avoid hacky thread local implementations. Thanks to Matti Sillanpää and Johnathan Crawford for their contribution.
Fix for Bug#97724 (30570721), Contribution: Allow '3.' formatted numbers. Thanks to Nick Pollett for his contribution.
Fix for Bug#98536 (30877755), SIMPLEDATEFORMAT COULD CACHE A WRONG CALENDAR.
Fix for Bug#91112 (28125069), AGAIN WRONG JAVA.SQL.DATE.
Fix for Bug#30474158, CONNECTOR/J 8 DOES NOT HONOR THE REQUESTED RESULTSETTYPE SCROLL_INSENSITIVE ETC.
Fix for Bug#98445 (30832513), Connection option clientInfoProvider=ClientInfoProviderSP causes NPE.
WL#12248, DevAPI: Connection compression.
Fix for Bug#30636056, ResultSetUtil.resultSetToMap() can be unsafe to use.
Fix for Bug#97757 (30584907), NULLPOINTEREXCEPTION WITH CACHERESULTSETMETADATA=TRUE AND EXECUTEQUERY OF "SET".
Version 8.0.19
WL#13346, Support for mult-host and failover.
Fix for Bug#97413 (30477722), DATABASEMETADATA IS BROKEN AFTER SERVER WL#13528.
WL#13367, DNS SRV support.
WL#12736, DevAPI: Specify TLS ciphers to be used by a client or session.
Fix for regression tests broken by Bug#97079 fix.
Fix for Bug#96383 (30119545) RS.GETTIMESTAMP() HAS DIFFERENT RESULTS FOR TIME FIELDS WITH USECURSORFETCH=TRUE.
Fix for Bug#96059 (29999318), ERROR STREAMING MULTI RESULTSETS WITH MYSQL-CONNECTOR-JAVA 8.0.X.
Fix for Bug#96442 (30151808), INCORRECT DATE ERROR WHEN CALLING GETMETADATA ON PREPARED STATEMENT.
Version 8.0.18
WL#13347, Connectors should handle expired password sandbox without SET operations.
Fix for Bug#84098 (25223123), endless loop in LoadBalancedAutoCommitInterceptor.
34cbc6b
License book updated.793bd55
Minor fix for tests failing with URL without parameters.58600cc
WL#12825, Remove third-party libraries from sources and bundles.5aa15d5
Fix for Bug#93590 (29054329), javax.net.ssl.SSLException: closing inbound bef...1fecc2b
Fix for Bug#94414 (29384853), Connector/J RPM package have version number in ...f5d24e3
Fix for Bug#27786499, REDUNDANT FILES IN DEBIAN PACKAGE FOR DEBIAN9(COMMUNITY...c49db58
WL#12246, DevAPI: Prepared statement support.a5c3d29
Added definition file for msi building tools.13045c2
WL#10839, Adjust c/J tests to the new "ON" default for2e350a5
Fix for Bug#29329326, PLEASE AVOID SHOW PROCESSLIST IF POSSIBLE.Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase
.
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)@dependabot use these labels
will set the current labels as the default for future PRs for this repo and language@dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language@dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language@dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and languageYou can disable automated security fix PRs for this repo from the Security Alerts page.
Bumps mysql-connector-java from 8.0.12 to 8.0.16.
Sourced from mysql-connector-java's changelog.
Changelog
https://dev.mysql.com/doc/relnotes/connector-j/8.0/en/
Version 8.0.20
Fix for Bug#30805426, IN CASE OF ISAUTHMETHODSWITCHREQUESTPACKET , TOSERVERS > 1 ARE IGNORED.
Fix for Bug#97714 (30570249), Contribution: Expose elapsed time for query interceptor to avoid hacky thread local implementations. Thanks to Matti Sillanpää and Johnathan Crawford for their contribution.
Fix for Bug#97724 (30570721), Contribution: Allow '3.' formatted numbers. Thanks to Nick Pollett for his contribution.
Fix for Bug#98536 (30877755), SIMPLEDATEFORMAT COULD CACHE A WRONG CALENDAR.
Fix for Bug#91112 (28125069), AGAIN WRONG JAVA.SQL.DATE.
Fix for Bug#30474158, CONNECTOR/J 8 DOES NOT HONOR THE REQUESTED RESULTSETTYPE SCROLL_INSENSITIVE ETC.
Fix for Bug#98445 (30832513), Connection option clientInfoProvider=ClientInfoProviderSP causes NPE.
WL#12248, DevAPI: Connection compression.
Fix for Bug#30636056, ResultSetUtil.resultSetToMap() can be unsafe to use.
Fix for Bug#97757 (30584907), NULLPOINTEREXCEPTION WITH CACHERESULTSETMETADATA=TRUE AND EXECUTEQUERY OF "SET".
Version 8.0.19
WL#13346, Support for mult-host and failover.
Fix for Bug#97413 (30477722), DATABASEMETADATA IS BROKEN AFTER SERVER WL#13528.
WL#13367, DNS SRV support.
WL#12736, DevAPI: Specify TLS ciphers to be used by a client or session.
Fix for regression tests broken by Bug#97079 fix.
Fix for Bug#96383 (30119545) RS.GETTIMESTAMP() HAS DIFFERENT RESULTS FOR TIME FIELDS WITH USECURSORFETCH=TRUE.
Fix for Bug#96059 (29999318), ERROR STREAMING MULTI RESULTSETS WITH MYSQL-CONNECTOR-JAVA 8.0.X.
Fix for Bug#96442 (30151808), INCORRECT DATE ERROR WHEN CALLING GETMETADATA ON PREPARED STATEMENT.
Version 8.0.18
WL#13347, Connectors should handle expired password sandbox without SET operations.
Fix for Bug#84098 (25223123), endless loop in LoadBalancedAutoCommitInterceptor.
34cbc6b
License book updated.793bd55
Minor fix for tests failing with URL without parameters.58600cc
WL#12825, Remove third-party libraries from sources and bundles.5aa15d5
Fix for Bug#93590 (29054329), javax.net.ssl.SSLException: closing inbound bef...1fecc2b
Fix for Bug#94414 (29384853), Connector/J RPM package have version number in ...f5d24e3
Fix for Bug#27786499, REDUNDANT FILES IN DEBIAN PACKAGE FOR DEBIAN9(COMMUNITY...c49db58
WL#12246, DevAPI: Prepared statement support.a5c3d29
Added definition file for msi building tools.13045c2
WL#10839, Adjust c/J tests to the new "ON" default for2e350a5
Fix for Bug#29329326, PLEASE AVOID SHOW PROCESSLIST IF POSSIBLE.Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase
.
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)@dependabot use these labels
will set the current labels as the default for future PRs for this repo and language@dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language@dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language@dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and languageYou can disable automated security fix PRs for this repo from the Security Alerts page.
Bumps spring-beans from 5.0.9.RELEASE to 5.2.20.RELEASE.
Sourced from spring-beans's releases.
v5.2.20.RELEASE
:star: New Features
- Restrict access to property paths on Class references #28262
- Improve diagnostics in SpEL for large array creation #28257
v5.2.19.RELEASE
:star: New Features
- Declare serialVersionUID on DefaultAopProxyFactory #27785
- Use ByteArrayDecoder in DefaultClientResponse::createException #27667
:lady_beetle: Bug Fixes
- ProxyFactoryBean getObject called before setInterceptorNames, silently creating an invalid proxy [SPR-7582] #27817
- Possible NPE in Spring MVC LogFormatUtils #27783
- UndertowHeadersAdapter's remove() method violates Map contract #27593
- Fix assertion failure messages in DefaultDataBuffer.checkIndex() #27577
:notebook_with_decorative_cover: Documentation
- Lazy annotation throws exception if non-required bean does not exist #27660
- Incorrect Javadoc in [NamedParameter]JdbcOperations.queryForObject methods regarding exceptions #27581
- DefaultResponseErrorHandler update javadoc comment #27571
:hammer: Dependency Upgrades
v5.2.18.RELEASE
:star: New Features
- Enhance DefaultResponseErrorHandler to allow logging complete error response body #27558
- DefaultMessageListenerContainer does not log an error/warning when consumer tasks have been rejected #27457
:lady_beetle: Bug Fixes
- Performance impact of con.getContentLengthLong() in AbstractFileResolvingResource.isReadable() downloading huge jars to check component length #27549
- Performance impact of ResourceUrlEncodingFilter on HttpServletResponse#encodeURL #27548
- Avoid duplicate JCacheOperationSource bean registration in #27547
- Non-escaped closing curly brace in RegEx results in initialization error on Android #27502
- Proxy generation with Java 17 fails with "Cannot invoke "Object.getClass()" because "cause" is null" #27498
- ConcurrentReferenceHashMap's entrySet violates the Map contract #27455
:hammer: Dependency Upgrades
- Upgrade to Reactor Dysprosium-SR24 #27526
v5.2.17.RELEASE
... (truncated)
cfa701b
Release v5.2.20.RELEASE996f701
Refine PropertyDescriptor filtering90cfde9
Improve diagnostics in SpEL for large array creation94f52bc
Upgrade to Artifactory Resource 0.0.17d4478ba
Upgrade Java versions in CI image136e6db
Upgrade Ubuntu version in CI images8f1f683
Upgrade Java versions in CI imagece2367a
Upgrade to Log4j2 2.17.1acf7823
Next development version (v5.2.20.BUILD-SNAPSHOT)1a03ffe
Upgrade to Log4j2 2.16.0Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase
.
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)@dependabot use these labels
will set the current labels as the default for future PRs for this repo and language@dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language@dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language@dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and languageYou can disable automated security fix PRs for this repo from the Security Alerts page.
Bumps spring-beans from 4.2.5.RELEASE to 5.2.20.RELEASE.
Sourced from spring-beans's releases.
v5.2.20.RELEASE
:star: New Features
- Restrict access to property paths on Class references #28262
- Improve diagnostics in SpEL for large array creation #28257
v5.2.19.RELEASE
:star: New Features
- Declare serialVersionUID on DefaultAopProxyFactory #27785
- Use ByteArrayDecoder in DefaultClientResponse::createException #27667
:lady_beetle: Bug Fixes
- ProxyFactoryBean getObject called before setInterceptorNames, silently creating an invalid proxy [SPR-7582] #27817
- Possible NPE in Spring MVC LogFormatUtils #27783
- UndertowHeadersAdapter's remove() method violates Map contract #27593
- Fix assertion failure messages in DefaultDataBuffer.checkIndex() #27577
:notebook_with_decorative_cover: Documentation
- Lazy annotation throws exception if non-required bean does not exist #27660
- Incorrect Javadoc in [NamedParameter]JdbcOperations.queryForObject methods regarding exceptions #27581
- DefaultResponseErrorHandler update javadoc comment #27571
:hammer: Dependency Upgrades
v5.2.18.RELEASE
:star: New Features
- Enhance DefaultResponseErrorHandler to allow logging complete error response body #27558
- DefaultMessageListenerContainer does not log an error/warning when consumer tasks have been rejected #27457
:lady_beetle: Bug Fixes
- Performance impact of con.getContentLengthLong() in AbstractFileResolvingResource.isReadable() downloading huge jars to check component length #27549
- Performance impact of ResourceUrlEncodingFilter on HttpServletResponse#encodeURL #27548
- Avoid duplicate JCacheOperationSource bean registration in #27547
- Non-escaped closing curly brace in RegEx results in initialization error on Android #27502
- Proxy generation with Java 17 fails with "Cannot invoke "Object.getClass()" because "cause" is null" #27498
- ConcurrentReferenceHashMap's entrySet violates the Map contract #27455
:hammer: Dependency Upgrades
- Upgrade to Reactor Dysprosium-SR24 #27526
v5.2.17.RELEASE
... (truncated)
cfa701b
Release v5.2.20.RELEASE996f701
Refine PropertyDescriptor filtering90cfde9
Improve diagnostics in SpEL for large array creation94f52bc
Upgrade to Artifactory Resource 0.0.17d4478ba
Upgrade Java versions in CI image136e6db
Upgrade Ubuntu version in CI images8f1f683
Upgrade Java versions in CI imagece2367a
Upgrade to Log4j2 2.17.1acf7823
Next development version (v5.2.20.BUILD-SNAPSHOT)1a03ffe
Upgrade to Log4j2 2.16.0Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase
.
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)@dependabot use these labels
will set the current labels as the default for future PRs for this repo and language@dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language@dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language@dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and languageYou can disable automated security fix PRs for this repo from the Security Alerts page.
Hi, we are a research group to help developers build secure applications. We designed a cryptographic misuse detector on Java language(Our main concern is the secure implementation and use of Json Web Token). We found your great public repository (i.e., Spring-Boot-In-Action) from Github, and several security issues detected by our detector are shown in the following. The specific security issues we found are as follows: (1) Location: Package: cn.codesheep.springbt_security_jwt.controller; Class: JwtAuthController.class and Package cn.codesheep.springbt_security_jwt.comm; Class:Const.class Security issue: Using predictable/constant cryptographic key when creating and verifing Json Web Token.
Using a predictable/constant secret does not conform to the security implementation specification of JWT, which may bring security risks to your system. It is recommended to use a more secure way to store the secret used to generate the JWT and use a strong enough key to improve the security of the project. (For the hazards of predictable/constant secret, you can refer to CWE-321, NIST Special Publication 800-57).
We wish the above security issues cloud truly help you to build a secure application. If you have any concern or suggestion, please feel free to contact us, we are looking forwart to your reply. Thanks.
Bumps mysql-connector-java from 5.1.18 to 8.0.28.
Sourced from mysql-connector-java's changelog.
Changelog
https://dev.mysql.com/doc/relnotes/connector-j/8.0/en/
Version 8.0.29
Fix for Bug#21978230, COMMENT PARSING NOT PROPER IN PREPSTMT.EXECUTEBATCH().
Fix for Bug#81468 (23312764), MySQL server fails to rewrite batch insert when column name contains word select.
Fix for Bug#106435 (33850099), 8.0.28 Connector/J has regressive in setAutoCommit after Bug#104067 (33054827).
Fix for Bug#106240 (33781440), StringIndexOutOfBoundsException when VALUE is at the end of the query.
Fix for Bug#106397 (33893591), Contribution: fix: fix LocalizedErrorMessages.properties doc: less then -> ... Thanks to Jianjian Song for his contribution.
Fix for Bug#77924 (25710160), JDBC SOCKS SHOULD NOT PERFORM LOCAL DNS RESOLUTION.
Fix for Bug#82084 (23743938), YEAR DATA TYPE RETURNS INCORRECT VALUE FOR JDBC GETCOLUMNTYPE().
Fix for Bug#106441 (33850155), Add charset mapping for utf8mb3.
WL#15048, Upgrade Protocol Buffers dependency to protobuf-java-3.19.4.
Fix for Bug#106065 (33726184) Contribution: BigDecimal.toPlainString no need to check decimal exponent. Thanks to Baoyi Chen for his contribution.
Fix for Bug#106171 (33757217), Contribution: Remove unnecessary boxing in ResultSetImpl. Thanks to Ningpp Ning for his contribution.
Fix for Bug#25701740, STMT EXECUTION FAILS FOR REPLICATION CONNECTION WHEN USECURSORFETCH=TRUE.
Fix for Bug#33723611, getDefaultTransactionIsolation must return repeatable read.
Fix for Bug#38954 (11749415), DATA TRUNCATION WHILE USING BIT(1) IN STORED PROCEDURE WITH INOUT TYPE.
Fix for Bug#85317 (25672958), EXECUTE BATCH WILL THROW NULL POINTER EXCEPTION WHERE THE COLUMN IS BLOB!
Fix for Bug#105915 (33678490), Connector/J 8 server prepared statement precision loss in execute batch.
Fix for Bug#104349 (33563548), com.mysql.cj NPE.
Fix for Bug#62006 (16714956), JAVA.IO.NOTSERIALIZABLEEXCEPTION: JAVA.IO.STRINGREADER WHEN PROFILESQL=TRUE.
WL#14750, Better unification of query bindings.
WL#14834, Support for FIDO authentication.
WL#14835, Align TLS option checking across connectors.
... (truncated)
7ff2161
Updating copyright yearsb13af38
Fix for DateTimeTest according to changes in MySQL server.5c7b775
Update in test for Bug#96900 (30355150).e1169ee
Fix for Bug#99260 (31189960), statement.setQueryTimeout,creates a database co...05778ef
Fix for Bug#103324 (32770013), X DevAPI Collection.replaceOne() missing match...48219f2
Fix for Bug#105197 (33461744), Statement.executeQuery() may return non-naviga...24cf7e2
Fix for Bug#105323 (33507321), README.md contains broken links.ad46620
Fix for Bug#96900 (30355150), STATEMENT.CANCEL()CREATE A DATABASE4d19ea1
Fix for Bug#104067 (33054827), No reset autoCommit after unknown issue occurs.bc45d35
Fix for Bug#85223 (25656020), MYSQLSQLXML SETSTRING CRASH.Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase
.
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)@dependabot use these labels
will set the current labels as the default for future PRs for this repo and language@dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language@dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language@dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and languageYou can disable automated security fix PRs for this repo from the Security Alerts page.
Bumps mysql-connector-java from 5.1.40 to 8.0.28.
Sourced from mysql-connector-java's changelog.
Changelog
https://dev.mysql.com/doc/relnotes/connector-j/8.0/en/
Version 8.0.29
Fix for Bug#21978230, COMMENT PARSING NOT PROPER IN PREPSTMT.EXECUTEBATCH().
Fix for Bug#81468 (23312764), MySQL server fails to rewrite batch insert when column name contains word select.
Fix for Bug#106435 (33850099), 8.0.28 Connector/J has regressive in setAutoCommit after Bug#104067 (33054827).
Fix for Bug#106240 (33781440), StringIndexOutOfBoundsException when VALUE is at the end of the query.
Fix for Bug#106397 (33893591), Contribution: fix: fix LocalizedErrorMessages.properties doc: less then -> ... Thanks to Jianjian Song for his contribution.
Fix for Bug#77924 (25710160), JDBC SOCKS SHOULD NOT PERFORM LOCAL DNS RESOLUTION.
Fix for Bug#82084 (23743938), YEAR DATA TYPE RETURNS INCORRECT VALUE FOR JDBC GETCOLUMNTYPE().
Fix for Bug#106441 (33850155), Add charset mapping for utf8mb3.
WL#15048, Upgrade Protocol Buffers dependency to protobuf-java-3.19.4.
Fix for Bug#106065 (33726184) Contribution: BigDecimal.toPlainString no need to check decimal exponent. Thanks to Baoyi Chen for his contribution.
Fix for Bug#106171 (33757217), Contribution: Remove unnecessary boxing in ResultSetImpl. Thanks to Ningpp Ning for his contribution.
Fix for Bug#25701740, STMT EXECUTION FAILS FOR REPLICATION CONNECTION WHEN USECURSORFETCH=TRUE.
Fix for Bug#33723611, getDefaultTransactionIsolation must return repeatable read.
Fix for Bug#38954 (11749415), DATA TRUNCATION WHILE USING BIT(1) IN STORED PROCEDURE WITH INOUT TYPE.
Fix for Bug#85317 (25672958), EXECUTE BATCH WILL THROW NULL POINTER EXCEPTION WHERE THE COLUMN IS BLOB!
Fix for Bug#105915 (33678490), Connector/J 8 server prepared statement precision loss in execute batch.
Fix for Bug#104349 (33563548), com.mysql.cj NPE.
Fix for Bug#62006 (16714956), JAVA.IO.NOTSERIALIZABLEEXCEPTION: JAVA.IO.STRINGREADER WHEN PROFILESQL=TRUE.
WL#14750, Better unification of query bindings.
WL#14834, Support for FIDO authentication.
WL#14835, Align TLS option checking across connectors.
... (truncated)
7ff2161
Updating copyright yearsb13af38
Fix for DateTimeTest according to changes in MySQL server.5c7b775
Update in test for Bug#96900 (30355150).e1169ee
Fix for Bug#99260 (31189960), statement.setQueryTimeout,creates a database co...05778ef
Fix for Bug#103324 (32770013), X DevAPI Collection.replaceOne() missing match...48219f2
Fix for Bug#105197 (33461744), Statement.executeQuery() may return non-naviga...24cf7e2
Fix for Bug#105323 (33507321), README.md contains broken links.ad46620
Fix for Bug#96900 (30355150), STATEMENT.CANCEL()CREATE A DATABASE4d19ea1
Fix for Bug#104067 (33054827), No reset autoCommit after unknown issue occurs.bc45d35
Fix for Bug#85223 (25656020), MYSQLSQLXML SETSTRING CRASH.Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase
.
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)@dependabot use these labels
will set the current labels as the default for future PRs for this repo and language@dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language@dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language@dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and languageYou can disable automated security fix PRs for this repo from the Security Alerts page.
Spring 系列教程 该仓库为个人博客https://mrbird.cc中Spring系列源码,包含Spring Boot、Spring Boot & Shiro、Spring Cloud,Spring Boot & Spring Security & Spring Security OAuth2
Spring Boot Login example with Spring Security, MySQL and JWT Appropriate Flow for User Login and Registration with JWT Spring Boot Rest Api Architect
Spring Boot 学习示例 Spring Boot 使用的各种示例,以最简单、最实用为标准,此开源项目中的每个示例都以最小依赖,最简单为标准,帮助初学者快速掌握 Spring Boot 各组件的使用。 Spring Boot 中文索引 | Spring Cloud学习示例代码 | Spring
推荐工具: 微信公众号 Markdown 编辑器 - OpenWrite:Markdown 微信编辑器是一款专业强大的微信公众平台在线编辑排版工具,提供手机预览功能,让用户在微信图文 、文章、内容排版、文本编辑、素材编辑上更加方便。 - 更多介绍 博客群发平台 一、支持泥瓦匠 Spring Boot
Everyone can develop projects independently, quickly and efficiently! What is spring-boot-plus? A easy-to-use, high-speed, high-efficient, feature-ric
Spring-boot-admin implementation with 1 Server and 2 clients Creating a Server application to monitor and manage Spring boot applications (clients) un
gke-springboot-sampleapp ?? The Spring Boot Sample App on K8S has been implemented using GKE K8S Cluster, Spring Boot, Maven, and Docker. Usage To be
Spring Boot Migrator uses and is compatible to OpenRewrite, a powerful mass refactoring ecosystem for Java and other source code.
友情提示:因为提供了 50000+ 行示例代码,所以艿艿默认注释了所有 Maven Module。 胖友可以根据自己的需要,修改 pom.xml 即可。 一个涵盖六个主流技术栈的正经仓库: 《Spring Boot 专栏》 《Spring Cloud Alibaba 专栏》 《Spring Clou
Demo · 更多项目 · 参考资料 ms-spring-ddd-examples Unified Domain-driven Layered Architecture for MicroService Apps,试图探索一套切实可行的应用架构规范,可以复制、可以理解、可以落地、可以控制复杂性的指导
Spring Tutorial for Beginners File Directory Apache Tomcat Apache Tomcat - Eclipse Bağlantısı Spring Paketlerinin İndirilmesi ve Projeye Entegrasyonu
Spring Boot JdbcTemplate example with SQL Server: Build CRUD Rest API Build a Spring Boot CRUD Rest API example that uses Spring Data Jdbc to make CRU
Spring Boot Login and Registration example with MongoDB Build a Spring Boot Auth with HttpOnly Cookie, JWT, Spring Security and Spring Data MongoDB. Y
Spring Boot JWT Authentication example with Spring Security & Spring Data JPA
mall-swarm 友情提示 快速体验项目:在线访问地址。 全套学习教程:《mall学习教程》。 Spring Cloud全套教程:《SpringCloud学习教程》。 专属学习路线:学习不走弯路,整理了套非常不错的《mall专属学习路线》。 项目交流:想要加群交流项目的朋友,可以加入mall项目
[toc] 友情提示:近期在升级和优化该项目,建议先 Star 本项目。主要在做几个事情: 1、微服务技术选型以 Spring Cloud Alibaba 为中心。 2、修改项目分层,并合并部分服务,简化整体服务的复杂性。 3、将管理后台从 React 重构到 Vue 框架。 交流群:传送门 前言
Spring Boot基础教程 本项目内容为《Spring Boot基础教程》的程序样例。 专题目标:打造全网内容最全,比收费教程更好的Spring Boot免费教程! 加入社群:如果你正在学习Spring Boot,不妨加入我们的Spring技术交流群,一起成长! 如何支持: 关注我的公众号”程序
在线阅读 : https://snailclimb.gitee.io/springboot-guide (上面的地址访问速度缓慢的建议使用这个路径访问) 重要知识点 基础 Spring Boot 介绍 第一个 Hello World 第一个 RestFul Web 服务 Spring 如何优雅读取配
码问社区 在线演示地址 www.mawen.co 功能列表 开源论坛、问答系统,现有功能提问、回复、通知、最新、最热、消除零回复功能。功能持续更新中…… 技术栈 技术 链接 Spring Boot http://projects.spring.io/spring-boot/#quick-start