chore(deps): bump the github group with 22 updates

[dependabot]

Bumps the github group with 22 updates:

Package	From	To
com.nimbusds:oauth2-oidc-sdk	11.7	11.9.1
io.netty:netty-all	4.1.106.Final	4.1.107.Final
org.assertj:assertj-core	3.25.2	3.25.3
org.junit.jupiter:junit-jupiter-api	5.10.1	5.10.2
org.junit.jupiter:junit-jupiter-params	5.10.1	5.10.2
org.junit.jupiter:junit-jupiter-engine	5.10.1	5.10.2
org.junit.jupiter:junit-jupiter-params	5.10.1	5.10.2
org.junit.jupiter:junit-jupiter-engine	5.10.1	5.10.2
org.springframework.boot:spring-boot-starter-webflux	3.2.0	3.2.2
org.springframework.boot:spring-boot-starter-oauth2-resource-server	3.2.0	3.2.2
org.springframework.boot:spring-boot-starter-oauth2-client	3.2.0	3.2.2
org.springframework.boot:spring-boot-starter-test	3.2.0	3.2.2
org.springframework.boot:spring-boot-test	3.2.0	3.2.2
org.springframework.boot:spring-boot-starter-oauth2-resource-server	3.2.0	3.2.2
org.springframework.boot:spring-boot-starter-oauth2-client	3.2.0	3.2.2
org.springframework.boot:spring-boot-starter-test	3.2.0	3.2.2
org.springframework.boot:spring-boot-test	3.2.0	3.2.2
io.ktor:ktor-server-netty	2.3.7	2.3.8
io.ktor:ktor-server-sessions	2.3.7	2.3.8
io.ktor:ktor-server-locations	2.3.7	2.3.8
io.ktor:ktor-server-auth	2.3.7	2.3.8
io.ktor:ktor-server-auth-jwt	2.3.7	2.3.8
io.ktor:ktor-server-content-negotiation	2.3.7	2.3.8
io.ktor:ktor-client-core	2.3.7	2.3.8
io.ktor:ktor-client-content-negotiation	2.3.7	2.3.8
io.ktor:ktor-serialization-jackson	2.3.7	2.3.8
io.ktor:ktor-client-cio	2.3.7	2.3.8
io.ktor:ktor-server-test-host	2.3.7	2.3.8
io.ktor:ktor-server-sessions	2.3.7	2.3.8
io.ktor:ktor-server-locations	2.3.7	2.3.8
io.ktor:ktor-server-auth	2.3.7	2.3.8
io.ktor:ktor-server-auth-jwt	2.3.7	2.3.8
io.ktor:ktor-server-content-negotiation	2.3.7	2.3.8
io.ktor:ktor-client-core	2.3.7	2.3.8
io.ktor:ktor-client-content-negotiation	2.3.7	2.3.8
io.ktor:ktor-serialization-jackson	2.3.7	2.3.8
io.ktor:ktor-client-cio	2.3.7	2.3.8
io.ktor:ktor-server-test-host	2.3.7	2.3.8

Updates com.nimbusds:oauth2-oidc-sdk from 11.7 to 11.9.1

Changelog

Sourced from com.nimbusds:oauth2-oidc-sdk's changelog.

version 1.0 (2012-05-29) * First official release with authorisation endpoint, token endpoint, check ID endpoint and UserInfo endpoint support. * JSON Web Tokens (JWTs) support through the Nimbus-JWT library. * Language Tags (RFC 5646) support through the Nimbus-LangTag library. * JSON support through the JSON Smart library.

version 2.0 (2013-05-13) * Intermediary development release with Maven build, published to Maven Central.

version 2.1 (2013-06-06) * Updates the APIs to OpenID Connect Messages draft 20, OpenID Connect Standard draft 21, OpenID Connect Discovery draft 17 and OpenID Connect Registration draft 19. * Major refactoring of the APIs for greater simplicity. * Adds JUnit tests.

version 2.2 (2013-06-18) * Refactors dynamic OpenID Connect client registration. * Adds partial support of the OAuth 2.0 Dynamic Client Registration Protocol (draft-ietf-oauth-dyn-reg-12). * Optimises parsing of request parameters consisting of one or more tokens (scope, response type, etc).

version 2.3 (2013-06-19) * Renames OAuth 2.0 dynamic client registration package. * Adds ClientInformation.getClientMetadata() method. * Adds OIDCClientInformation class.

version 2.4 (2013-06-20) * Adds static OIDCClientInformation.parse(JSONObject) method.

version 2.5 (2013-06-22) * Adds support OAuth 2.0 dynamic client update. * Adds OpenID Connect dynamic client registration classes.

version 2.6 (2013-06-25) * Enforces order of preference of ACR values in OpenID Connect client metadata, as required by the specification. * Documentation and performance improvements.

version 2.7 (2013-06-26) * Switches Identifier generation to java.security.SecureRandom.

version 2.8 (2013-06-30) * Fixes serialisation and assignment bugs in ClientMetadata. * Switches Secret generation to java.security.SecureRandom.

version 2.9 (2013-09-17)

... (truncated)

Commits

• 3e12f9d [maven-release-plugin] prepare for next development iteration
• c6190e9 Bumps deps
• 85cc701 TokenRequest.parse must ignore the scope parameter when it is not allowed by ...
• 837c664 [maven-release-plugin] prepare release 11.7.1
• b5a5066 [maven-release-plugin] prepare for next development iteration
• df95172 AccessTokenUtils.parseValueFromHeader must handle the token type in a case-in...
• 7b829b2 [maven-release-plugin] prepare release 11.7.2
• 64d5b9f [maven-release-plugin] prepare for next development iteration
• 85dc4a7 Removes the deprecated RPMetadataPolicyFactory and its package (iss #408)
• 48f49e8 [maven-release-plugin] prepare release 11.8
• Additional commits viewable in compare view

Updates io.netty:netty-all from 4.1.106.Final to 4.1.107.Final

Commits

• 1908d3a [maven-release-plugin] prepare release netty-4.1.107.Final
• 8d7c113 Add ReferenceCountUtil.touch(...) calls before we store messages into… (#13838)
• f254226 Add reset API to IdleStateHandler (#13598)
• 442165e Save CRC32C Netty allocation to trigger ADLER32 and CRC32 reflective initiali...
• b135e37 Update Brotli4j to v1.16.0 (#13827)
• 9f19909 MathUtil.findNextPositivePowerOfTwo instead of JCTools' (#13833)
• 59a8bd0 Snappy: Use unsigned short to handle 2 ^ 16 input size instead of 2 ^ 15 (#13...
• 14e00f5 Fix compile error
• 94d0cfb Correctly override equals and hashCode for our OpenSslSession sub-types (#13829)
• f0e9b40 Ensure key / values are shared between resumed sessions (#13819)
• Additional commits viewable in compare view

Updates org.assertj:assertj-core from 3.25.2 to 3.25.3

Release notes

Sourced from org.assertj:assertj-core's releases.

v.3.25.3

🐛 Bug Fixes

• Lock maven-clean-plugin version for all modules

Core

• Fix a performance regression in the recursive comparison related to FieldLocation #3350
• Don't fail when the recursive comparison checks compared fields in collection elements #3349 (proper fix: #3354)

🔨 Dependency Upgrades

• Upgrade to Flatten Maven Plugin 1.6.0 #3335
• Upgrade to Groovy 4.0.18 #3347
• Upgrade to Hibernate Core 6.4.2.Final #3338
• Upgrade to Maven Surefire Report Plugin 3.2.5 #3330
• Upgrade to PITest Maven 1.15.6 #3348
• Upgrade to SpotBugs Maven Plugin 4.8.3.0 #3336
• Upgrade to advanced-security/maven-dependency-submission-action to 4 #3346

❤️ Contributors

Thanks to all the contributors who worked on this release:

@​ash211

Commits

• cd72df8 [maven-release-plugin] prepare release assertj-build-3.25.3
• c9b3177 fix: missing license
• ae62aca Ignore containers when checking compared fields existence in the recursive co...
• bad16ef chore(deps-dev): bump org.hibernate.orm:hibernate-core from 6.4.2.Final to 6....
• c794057 Fix a performance regression in the recursive comparison related to FieldLoca...
• 9ecb7f4 Lock maven-clean-plugin version for all modules
• d42d40c chore(deps): bump org.pitest:pitest-maven from 1.15.3 to 1.15.6 (#3348)
• 5b32492 chore(deps): bump org.apache.maven.plugins:maven-surefire-report-plugin from ...
• e27cc02 chore(deps): bump org.codehaus.mojo:flatten-maven-plugin from 1.5.0 to 1.6.0 ...
• 9771091 chore(deps): bump com.github.spotbugs:spotbugs-maven-plugin from 4.8.2.0 to 4...
• Additional commits viewable in compare view

Updates org.junit.jupiter:junit-jupiter-api from 5.10.1 to 5.10.2

Release notes

Sourced from org.junit.jupiter:junit-jupiter-api's releases.

JUnit 5.10.2 = Platform 1.10.2 + Jupiter 5.10.2 + Vintage 5.10.2

See Release Notes.

Full Changelog: junit-team/junit5@r5.10.1...r5.10.2

Commits

• 4c0ddda Release 5.10.2
• 463a147 Finalize release notes for 5.10.2
• 43c105a Revert "Apply method predicate before searching type hierarchy"
• 63d464d Revert "Harmonize application of method and field filters in search algorithms"
• 85ec2fc Revert "Apply field predicate before searching type hierarchy"
• 6209006 Update release notes
• 5ee499f Fix CI build
• d919ba7 Namespace user-specific build parameters
• e26cd83 Prepare release notes for 5.10.2
• ec8d428 Include LauncherInterceptor in launcher module declaration
• Additional commits viewable in compare view

Updates org.junit.jupiter:junit-jupiter-params from 5.10.1 to 5.10.2

Release notes

Sourced from org.junit.jupiter:junit-jupiter-params's releases.

JUnit 5.10.2 = Platform 1.10.2 + Jupiter 5.10.2 + Vintage 5.10.2

See Release Notes.

Full Changelog: junit-team/junit5@r5.10.1...r5.10.2

Commits

• 4c0ddda Release 5.10.2
• 463a147 Finalize release notes for 5.10.2
• 43c105a Revert "Apply method predicate before searching type hierarchy"
• 63d464d Revert "Harmonize application of method and field filters in search algorithms"
• 85ec2fc Revert "Apply field predicate before searching type hierarchy"
• 6209006 Update release notes
• 5ee499f Fix CI build
• d919ba7 Namespace user-specific build parameters
• e26cd83 Prepare release notes for 5.10.2
• ec8d428 Include LauncherInterceptor in launcher module declaration
• Additional commits viewable in compare view

Updates org.junit.jupiter:junit-jupiter-engine from 5.10.1 to 5.10.2

Release notes

Sourced from org.junit.jupiter:junit-jupiter-engine's releases.

JUnit 5.10.2 = Platform 1.10.2 + Jupiter 5.10.2 + Vintage 5.10.2

See Release Notes.

Full Changelog: junit-team/junit5@r5.10.1...r5.10.2

Commits

• 4c0ddda Release 5.10.2
• 463a147 Finalize release notes for 5.10.2
• 43c105a Revert "Apply method predicate before searching type hierarchy"
• 63d464d Revert "Harmonize application of method and field filters in search algorithms"
• 85ec2fc Revert "Apply field predicate before searching type hierarchy"
• 6209006 Update release notes
• 5ee499f Fix CI build
• d919ba7 Namespace user-specific build parameters
• e26cd83 Prepare release notes for 5.10.2
• ec8d428 Include LauncherInterceptor in launcher module declaration
• Additional commits viewable in compare view

Updates org.junit.jupiter:junit-jupiter-params from 5.10.1 to 5.10.2

Release notes

Sourced from org.junit.jupiter:junit-jupiter-params's releases.

JUnit 5.10.2 = Platform 1.10.2 + Jupiter 5.10.2 + Vintage 5.10.2

See Release Notes.

Full Changelog: junit-team/junit5@r5.10.1...r5.10.2

Commits

• 4c0ddda Release 5.10.2
• 463a147 Finalize release notes for 5.10.2
• 43c105a Revert "Apply method predicate before searching type hierarchy"
• 63d464d Revert "Harmonize application of method and field filters in search algorithms"
• 85ec2fc Revert "Apply field predicate before searching type hierarchy"
• 6209006 Update release notes
• 5ee499f Fix CI build
• d919ba7 Namespace user-specific build parameters
• e26cd83 Prepare release notes for 5.10.2
• ec8d428 Include LauncherInterceptor in launcher module declaration
• Additional commits viewable in compare view

Updates org.junit.jupiter:junit-jupiter-engine from 5.10.1 to 5.10.2

Release notes

Sourced from org.junit.jupiter:junit-jupiter-engine's releases.

JUnit 5.10.2 = Platform 1.10.2 + Jupiter 5.10.2 + Vintage 5.10.2

See Release Notes.

Full Changelog: junit-team/junit5@r5.10.1...r5.10.2

Commits

• 4c0ddda Release 5.10.2
• 463a147 Finalize release notes for 5.10.2
• 43c105a Revert "Apply method predicate before searching type hierarchy"
• 63d464d Revert "Harmonize application of method and field filters in search algorithms"
• 85ec2fc Revert "Apply field predicate before searching type hierarchy"
• 6209006 Update release notes
• 5ee499f Fix CI build
• d919ba7 Namespace user-specific build parameters
• e26cd83 Prepare release notes for 5.10.2
• ec8d428 Include LauncherInterceptor in launcher module declaration
• Additional commits viewable in compare view

Updates org.springframework.boot:spring-boot-starter-webflux from 3.2.0 to 3.2.2

Release notes

Sourced from org.springframework.boot:spring-boot-starter-webflux's releases.

v3.2.2

⚠️ Noteworthy Changes

• Automatically enabling support for Micrometer's observation annotations when AspectJ is on the classpath has proven to be too much. A new property, management.observations.annotations.enabled, has been introduced. It defaults to false. Set it to true to restore the previous behavior #39128

🐞 Bug Fixes

• SslBundle implementations do not provide useful toString() results #39167
• JarEntry.getComment() returns incorrect result from NestedJarFile instances #39166
• Mixing PEM and JKS certificate material in server.ssl properties does not work #39158
• Having AspectJ and Micrometer on the classpath is not a strong enough signal to enable support for Micrometer observation annotations #39128
• Actuator endpoints with no operations that use selectors are not accessible when mapped to / #39122
• Spring Boot 3.2 app that uses WebFlux, Security, and Actuator may fail to start due to a missing authentication manager #39096
• management.observations.http.server.requests.name no longer has any effect #39083
• spring.rabbitmq.listener.stream.auto-startup property has no effect #39078
• Error mark in the log message for PatternParseException is in the wrong place #39075
• Configuring server.jetty.max-connections has no effect #39052
• @ConfigurationPropertiesBinding converters that rely on initial CharSequence to String conversion no longer work #39051
• Manifest attributes cannot be resolved with the new loader implementation #38996
• Throwable from logging system initialization may result in the application silently failing to start #38963
• When using Jetty, idle timeout for IO operations and delayed dispatch cannot be set to less than 30000ms #38960
• spring-boot-maven-plugin repackage uber jar execution fails when jar is put on WSL network drive #38956
• Oracle OJDBC BOM version is flagged not for production use #38943
• Connection leak when using jOOQ and spring.jooq.sql-dialect has not been set #38924
• AutoConfigurationSorter does not always respect @AutoConfigureOrder(Ordered.LOWEST_PRECEDENCE) #38916
• Containers are not started when using @ImportTestcontainers #38913
• Even when spring.security.user.name or spring.security.user.password has been configured, user details auto-configuration still backs off when resource server is on the classpath #38864
• MockRestServiceServerAutoConfiguration with RestTemplate and RestClient together throws incorrect exception #38820

📔 Documentation

• Improve "Sanitize Sensitive Values" section in reference documentation #39199
• Fix link to Log4j2's JDK logging adapter documentation #39171
• Update CRaC support status link #39170
• Remove entry for OCI starter as it is no longer maintained #39165
• Update links to Micrometer docs in metrics section of reference docs #39149
• Use the term "tags" in documentation consistently #39125
• Correct the documentation on injecting dependencies into FailureAnalyzer implementations #39100
• Polish reference documentation #38942
• Document virtual threads limitations #38883

🔨 Dependency Upgrades

• Upgrade to MySQL 8.3.0 #39081
• Upgrade to Byte Buddy 1.14.11 #39184
• Upgrade to Groovy 4.0.17 #39185
• Upgrade to jOOQ 3.18.9 #39186
• Upgrade to Kotlin 1.9.22 #39187
• Upgrade to Lettuce 6.3.1.RELEASE #39188
• Upgrade to MariaDB 3.3.2 #38901

... (truncated)

Commits

• 80c1e66 Release v3.2.2
• f2362d3 Merge branch '3.1.x' into 3.2.x
• 663a0e6 Add missing harbor vars
• 1a42776 Merge branch '3.1.x' into 3.2.x
• 580865b Next development version (v3.1.9-SNAPSHOT)
• 3fad814 Merge branch '3.1.x' into 3.2.x
• 7f9bd1c Switch harbor push location
• 5a90037 Merge branch '3.1.x' into 3.2.x
• 9e2a312 Update CI to use harbor
• 961da4e Make user details only back off without custom username or password
• Additional commits viewable in compare view

Updates org.springframework.boot:spring-boot-starter-oauth2-resource-server from 3.2.0 to 3.2.2

Release notes

Sourced from org.springframework.boot:spring-boot-starter-oauth2-resource-server's releases.

v3.2.2

⚠️ Noteworthy Changes

• Automatically enabling support for Micrometer's observation annotations when AspectJ is on the classpath has proven to be too much. A new property, management.observations.annotations.enabled, has been introduced. It defaults to false. Set it to true to restore the previous behavior #39128

🐞 Bug Fixes

• SslBundle implementations do not provide useful toString() results #39167
• JarEntry.getComment() returns incorrect result from NestedJarFile instances #39166
• Mixing PEM and JKS certificate material in server.ssl properties does not work #39158
• Having AspectJ and Micrometer on the classpath is not a strong enough signal to enable support for Micrometer observation annotations #39128
• Actuator endpoints with no operations that use selectors are not accessible when mapped to / #39122
• Spring Boot 3.2 app that uses WebFlux, Security, and Actuator may fail to start due to a missing authentication manager #39096
• management.observations.http.server.requests.name no longer has any effect #39083
• spring.rabbitmq.listener.stream.auto-startup property has no effect #39078
• Error mark in the log message for PatternParseException is in the wrong place #39075
• Configuring server.jetty.max-connections has no effect #39052
• @ConfigurationPropertiesBinding converters that rely on initial CharSequence to String conversion no longer work #39051
• Manifest attributes cannot be resolved with the new loader implementation #38996
• Throwable from logging system initialization may result in the application silently failing to start #38963
• When using Jetty, idle timeout for IO operations and delayed dispatch cannot be set to less than 30000ms #38960
• spring-boot-maven-plugin repackage uber jar execution fails when jar is put on WSL network drive #38956
• Oracle OJDBC BOM version is flagged not for production use #38943
• Connection leak when using jOOQ and spring.jooq.sql-dialect has not been set #38924
• AutoConfigurationSorter does not always respect @AutoConfigureOrder(Ordered.LOWEST_PRECEDENCE) #38916
• Containers are not started when using @ImportTestcontainers #38913
• Even when spring.security.user.name or spring.security.user.password has been configured, user details auto-configuration still backs off when resource server is on the classpath #38864
• MockRestServiceServerAutoConfiguration with RestTemplate and RestClient together throws incorrect exception #38820

📔 Documentation

• Improve "Sanitize Sensitive Values" section in reference documentation #39199
• Fix link to Log4j2's JDK logging adapter documentation #39171
• Update CRaC support status link #39170
• Remove entry for OCI starter as it is no longer maintained #39165
• Update links to Micrometer docs in metrics section of reference docs #39149
• Use the term "tags" in documentation consistently #39125
• Correct the documentation on injecting dependencies into FailureAnalyzer implementations #39100
• Polish reference documentation #38942
• Document virtual threads limitations #38883

🔨 Dependency Upgrades

• Upgrade to MySQL 8.3.0 #39081
• Upgrade to Byte Buddy 1.14.11 #39184
• Upgrade to Groovy 4.0.17 #39185
• Upgrade to jOOQ 3.18.9 #39186
• Upgrade to Kotlin 1.9.22 #39187
• Upgrade to Lettuce 6.3.1.RELEASE #39188
• Upgrade to MariaDB 3.3.2 #38901

... (truncated)

Commits

• 80c1e66 Release v3.2.2
• f2362d3 Merge branch '3.1.x' into 3.2.x
• 663a0e6 Add missing harbor vars
• 1a42776 Merge branch '3.1.x' into 3.2.x
• 580865b Next development version (v3.1.9-SNAPSHOT)
• 3fad814 Merge branch '3.1.x' into 3.2.x
• 7f9bd1c Switch harbor push location
• 5a90037 Merge branch '3.1.x' into 3.2.x
• 9e2a312 Update CI to use harbor
• 961da4e Make user details only back off without custom username or password
• Additional commits viewable in compare view

Updates org.springframework.boot:spring-boot-starter-oauth2-client from 3.2.0 to 3.2.2

Release notes

Sourced from org.springframework.boot:spring-boot-starter-oauth2-client's releases.

v3.2.2

⚠️ Noteworthy Changes

• Automatically enabling support for Micrometer's observation annotations when AspectJ is on the classpath has proven to be too much. A new property, management.observations.annotations.enabled, has been introduced. It defaults to false. Set it to true to restore the previous behavior #39128

🐞 Bug Fixes

• SslBundle implementations do not provide useful toString() results #39167
• JarEntry.getComment() returns incorrect result from NestedJarFile instances #39166
• Mixing PEM and JKS certificate material in server.ssl properties does not work #39158
• Having AspectJ and Micrometer on the classpath is not a strong enough signal to enable support for Micrometer observation annotations #39128
• Actuator endpoints with no operations that use selectors are not accessible when mapped to / #39122
• Spring Boot 3.2 app that uses WebFlux, Security, and Actuator may fail to start due to a missing authentication manager #39096
• management.observations.http.server.requests.name no longer has any effect #39083
• spring.rabbitmq.listener.stream.auto-startup property has no effect #39078
• Error mark in the log message for PatternParseException is in the wrong place #39075
• Configuring server.jetty.max-connections has no effect #39052
• @ConfigurationPropertiesBinding converters that rely on initial CharSequence to String conversion no longer work #39051
• Manifest attributes cannot be resolved with the new loader implementation #38996
• Throwable from logging system initialization may result in the application silently failing to start #38963
• When using Jetty, idle timeout for IO operations and delayed dispatch cannot be set to less than 30000ms #38960
• spring-boot-maven-plugin repackage uber jar execution fails when jar is put on WSL network drive #38956
• Oracle OJDBC BOM version is flagged not for production use #38943
• Connection leak when using jOOQ and spring.jooq.sql-dialect has not been set #38924
• AutoConfigurationSorter does not always respect @AutoConfigureOrder(Ordered.LOWEST_PRECEDENCE) #38916
• Containers are not started when using @ImportTestcontainers #38913
• Even when spring.security.user.name or spring.security.user.password has been configured, user details auto-configuration still backs off when resource server is on the classpath #38864
• MockRestServiceServerAutoConfiguration with RestTemplate and RestClient together throws incorrect exception #38820

📔 Documentation

• Improve "Sanitize Sensitive Values" section in reference documentation #39199
• Fix link to Log4j2's JDK logging adapter documentation #39171
• Update CRaC support status link #39170
• Remove entry for OCI starter as it is no longer maintained #39165
• Update links to Micrometer docs in metrics section of reference docs #39149
• Use the term "tags" in documentation consistently #39125
• Correct the documentation on injecting dependencies into FailureAnalyzer implementations #39100
• Polish reference documentation #38942
• Document virtual threads limitations #38883

🔨 Dependency Upgrades

• Upgrade to MySQL 8.3.0 #39081
• Upgrade to Byte Buddy 1.14.11 #39184
• Upgrade to Groovy 4.0.17 #39185
• Upgrade to jOOQ 3.18.9 #39186
• Upgrade to Kotlin 1.9.22 #39187
• Upgrade to Lettuce 6.3.1.RELEASE #39188
• Upgrade to MariaDB 3.3.2 #38901

... (truncated)

Commits

• 80c1e66 Release v3.2.2
• f2362d3 Merge branch '3.1.x' into 3.2.x
• 663a0e6 Add missing harbor vars
• 1a42776 Merge branch '3.1.x' into 3.2.x
• 580865b Next development version (v3.1.9-SNAPSHOT)
• 3fad814 Merge branch '3.1.x' into 3.2.x
• 7f9bd1c Switch harbor push location
• 5a90037 Merge branch '3.1.x' into 3.2.x
• 9e2a312 Update CI to use harbor
• 961da4e Make user details only back off without custom username or password
• Additional commits viewable in compare view

Updates org.springframework.boot:spring-boot-starter-test from 3.2.0 to 3.2.2

Release notes

Sourced from org.springframework.boot:spring-boot-starter-test's releases.

v3.2.2

⚠️ Noteworthy Changes

• Automatically enabling support for Micrometer's observation annotations when AspectJ is on the classpath has proven to be too much. A new property, management.observations.annotations.enabled, has been introduced. It defaults to false. Set it to true to restore the previous behavior #39128

🐞 Bug Fixes

• SslBundle implementations do not provide useful toString() results #39167
• JarEntry.getComment() returns incorrect result from NestedJarFile instances #39166
• Mixing PEM and JKS certificate material in server.ssl properties does not work #39158
• Having AspectJ and Micrometer on the classpath is not a strong enough signal to enable support for Micrometer observation annotations #39128
• Actuator endpoints with no operations that use selectors are not accessible when mapped to / #39122
• Spring Boot 3.2 app that uses WebFlux, Security, and Actuator may fail to start due to a missing authentication manager #39096
• management.observations.http.server.requests.name no longer has any effect #39083
• spring.rabbitmq.listener.stream.auto-startup property has no effect #39078
• Error mark in the log message for PatternParseException is in the wrong place #39075
• Configuring server.jetty.max-connections has no effect #39052
• @ConfigurationPropertiesBinding converters that rely on initial CharSequence to String conversion no longer work #39051
• Manifest attributes cannot be resolved with the new loader implementation #38996
• Throwable from logging system initialization may result in the application silently failing to start #38963
• When using Jetty, idle timeout for IO operations and delayed dispatch cannot be set to less than 30000ms #38960
• spring-boot-maven-plugin repackage uber jar execution fails when jar is put on WSL network drive #38956
• Oracle OJDBC BOM version is flagged not for production use #38943
• Connection leak when using jOOQ and spring.jooq.sql-dialect has not been set #38924
• AutoConfigurationSorter does not always respect @AutoConfigureOrder(Ordered.LOWEST_PRECEDENCE) #38916
• Containers are not started when using @ImportTestcontainers #38913
• Even when spring.security.user.name or spring.security.user.password has been configured, user details auto-configuration still backs off when resource server is on the classpath #38864
• MockRestServiceServerAutoConfiguration with RestTemplate and RestClient together throws incorrect exception #38820

📔 Documentation

• Improve "Sanitize Sensitive Values" section in reference documentation #39199
• Fix link to Log4j2's JDK logging adapter documentation #39171
• Update CRaC support status link #39170
• Remove entry for OCI starter as it is no longer maintained #39165
• Update links to Micrometer docs in metrics section of reference docs #39149
• Use the term "tags" in documentation consistently #39125
• Correct the documentation on injecting dependencies into FailureAnalyzer implementations #39100
• Polish reference documentation #38942
• Document virtual threads limitations #38883

🔨 Dependency Upgrades

• Upgrade to MySQL 8.3.0 #39081
• Upgrade to Byte Buddy 1.14.11 #39184
• Upgrade to Groovy 4.0.17 #39185
• Upgrade to jOOQ 3.18.9 #39186
• Upgrade to Kotlin 1.9.22 #39187
• Upgrade to Lettuce 6.3.1.RELEASE #39188
• Upgrade to MariaDB 3.3.2 #38901

... (truncated)

Commits

• 80c1e66 Release v3.2.2
• f2362d3 Merge branch '3.1.x' into 3.2.x
• 663a0e6 Add missing harbor vars
• 1a42776 Merge branch '3.1.x' into 3.2.x
• 580865b Next development version (v3.1.9-SNAPSHOT)
• 3fad814 Merge branch '3.1.x' into 3.2.x
• 7f9bd1c Switch harbor push location
• 5a90037 Merge branch '3.1.x' into 3.2.x
• 9e2a312 Update CI to use harbor
• 961da4e Make user details only back off without custom username or password
• Additional commits viewable in compare view
<...

Description has been truncated