Update dependency org.springframework.security:spring-security-crypto to v6.3.4 #22

Renovate Bot (Automatisiert) · 2024-10-22T02:02:49+02:00

2024-10-22 02:02:49 +02:00

This PR contains the following updates:

Package	Type	Update	Change
org.springframework.security:spring-security-crypto (source)	compile	patch	`6.3.3` -> `6.3.4`

Release Notes

spring-projects/spring-security (org.springframework.security:spring-security-crypto)

`v6.3.4`

Compare Source

🪲 Bug Fixes

Annotation expression template processing should not fail on Class parameter types #15711
Disabling credentials erasure on custom AuthenticationManager is not working #15808
Documentation inconsistency in AuthorizationManager's verify method return type #15822
Methods annotated with @PostFilter are processed twice by PostFilterAuthorizationMethodInterceptor #15676
OidcBackChannelLogoutTokenValidator should not construct when missing OIDC Provider Issuer #15868
SecurityJackson2Modules.getModules(): Cannot load module org.springframework.security.cas.jackson2.CasJackson2Module #15767
The additionalParameters array parameter of OAuth2AuthorizationRequest causes the authorizationRequestUri to be incorrect #15829

🔨 Dependency Upgrades

Bump ch.qos.logback:logback-classic from 1.5.10 to 1.5.11 #15926
Bump io.micrometer:micrometer-observation from 1.12.10 to 1.12.11 #15917
Bump io.mockk:mockk from 1.13.12 to 1.13.13 #15897
Bump io.projectreactor:reactor-bom from 2023.0.10 to 2023.0.11 #15925
Bump jakarta.servlet.jsp.jstl:jakarta.servlet.jsp.jstl-api from 3.0.1 to 3.0.2 #15694
Bump org-eclipse-jetty from 11.0.23 to 11.0.24 #15731
Bump org.jfrog.buildinfo:build-info-extractor-gradle from 4.33.21 to 4.33.22 #15761
Bump org.junit:junit-bom from 5.10.4 to 5.10.5 #15883
Bump org.springframework.data:spring-data-bom from 2024.0.4 to 2024.0.5 #15958
Bump org.springframework.ldap:spring-ldap-core from 3.2.6 to 3.2.7 #15944
Bump org.springframework:spring-framework-bom from 6.1.13 to 6.1.14 #15945

🔩 Build Updates

Bump @antora/collector-extension from 1.0.0-beta.2 to 1.0.0-beta.3 in /docs #15907
Bump @springio/asciidoctor-extensions from 1.0.0-alpha.13 to 1.0.0-alpha.14 in /docs #15836
Migrate slack notifications to GChat #15668
Release 6.3.4 #15964
Update eclipse/vscode configuration to use -parameters #15681

❤️ Contributors

Thank you to all the contributors who worked on this release:

@dependabot[bot] and @kse-music

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [org.springframework.security:spring-security-crypto](https://spring.io/projects/spring-security) ([source](https://github.com/spring-projects/spring-security)) | compile | patch | `6.3.3` -> `6.3.4` | --- ### Release Notes <details> <summary>spring-projects/spring-security (org.springframework.security:spring-security-crypto)</summary> ### [`v6.3.4`](https://github.com/spring-projects/spring-security/releases/tag/6.3.4) [Compare Source](https://github.com/spring-projects/spring-security/compare/6.3.3...6.3.4) #### :beetle: Bug Fixes - Annotation expression template processing should not fail on Class parameter types [#15711](https://github.com/spring-projects/spring-security/pull/15711) - Disabling credentials erasure on custom AuthenticationManager is not working [#15808](https://github.com/spring-projects/spring-security/issues/15808) - Documentation inconsistency in AuthorizationManager's verify method return type [#15822](https://github.com/spring-projects/spring-security/issues/15822) - Methods annotated with `@PostFilter` are processed twice by PostFilterAuthorizationMethodInterceptor [#15676](https://github.com/spring-projects/spring-security/issues/15676) - OidcBackChannelLogoutTokenValidator should not construct when missing OIDC Provider Issuer [#15868](https://github.com/spring-projects/spring-security/issues/15868) - SecurityJackson2Modules.getModules(): Cannot load module org.springframework.security.cas.jackson2.CasJackson2Module [#15767](https://github.com/spring-projects/spring-security/issues/15767) - The additionalParameters array parameter of OAuth2AuthorizationRequest causes the authorizationRequestUri to be incorrect [#15829](https://github.com/spring-projects/spring-security/issues/15829) #### :hammer: Dependency Upgrades - Bump ch.qos.logback:logback-classic from 1.5.10 to 1.5.11 [#15926](https://github.com/spring-projects/spring-security/pull/15926) - Bump io.micrometer:micrometer-observation from 1.12.10 to 1.12.11 [#15917](https://github.com/spring-projects/spring-security/pull/15917) - Bump io.mockk:mockk from 1.13.12 to 1.13.13 [#15897](https://github.com/spring-projects/spring-security/pull/15897) - Bump io.projectreactor:reactor-bom from 2023.0.10 to 2023.0.11 [#15925](https://github.com/spring-projects/spring-security/pull/15925) - Bump jakarta.servlet.jsp.jstl:jakarta.servlet.jsp.jstl-api from 3.0.1 to 3.0.2 [#15694](https://github.com/spring-projects/spring-security/pull/15694) - Bump org-eclipse-jetty from 11.0.23 to 11.0.24 [#15731](https://github.com/spring-projects/spring-security/pull/15731) - Bump org.jfrog.buildinfo:build-info-extractor-gradle from 4.33.21 to 4.33.22 [#15761](https://github.com/spring-projects/spring-security/pull/15761) - Bump org.junit:junit-bom from 5.10.4 to 5.10.5 [#15883](https://github.com/spring-projects/spring-security/pull/15883) - Bump org.springframework.data:spring-data-bom from 2024.0.4 to 2024.0.5 [#15958](https://github.com/spring-projects/spring-security/pull/15958) - Bump org.springframework.ldap:spring-ldap-core from 3.2.6 to 3.2.7 [#15944](https://github.com/spring-projects/spring-security/pull/15944) - Bump org.springframework:spring-framework-bom from 6.1.13 to 6.1.14 [#15945](https://github.com/spring-projects/spring-security/pull/15945) #### :nut_and_bolt: Build Updates - Bump `@antora`/collector-extension from 1.0.0-beta.2 to 1.0.0-beta.3 in /docs [#15907](https://github.com/spring-projects/spring-security/pull/15907) - Bump `@springio`/asciidoctor-extensions from 1.0.0-alpha.13 to 1.0.0-alpha.14 in /docs [#15836](https://github.com/spring-projects/spring-security/pull/15836) - Migrate slack notifications to GChat [#15668](https://github.com/spring-projects/spring-security/issues/15668) - Release 6.3.4 [#15964](https://github.com/spring-projects/spring-security/issues/15964) - Update eclipse/vscode configuration to use -parameters [#15681](https://github.com/spring-projects/spring-security/issues/15681) #### :heart: Contributors Thank you to all the contributors who worked on this release: [@dependabot](https://github.com/dependabot)\[bot] and [@kse-music](https://github.com/kse-music) </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).

Renovate Bot (Automatisiert) added 1 commit 2024-10-22 02:02:50 +02:00

Update dependency org.springframework.security:spring-security-crypto to v6.3.4

Keycloak mailcow Build / Build und Bereitstellung (pull_request) Successful in 12s

Details

Keycloak mailcow Build / Build und Bereitstellung (push) Successful in 11s

Details

30644bb14c

Renovate Bot (Automatisiert) scheduled this pull request to auto merge when all checks succeed 2024-10-22 02:02:50 +02:00

Renovate Bot (Automatisiert) merged commit 30644bb14c into main

2024-10-22 02:04:46 +02:00

Sign in to join this conversation.