Update spring boot to v3.2.4

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
org.springframework.boot:spring-boot-starter-parent (source)	3.2.1 -> 3.2.4
org.springframework.boot	3.2.1 -> 3.2.4

---

Release Notes

spring-projects/spring-boot (org.springframework.boot:spring-boot-starter-parent)

v3.2.4

Compare Source

v3.2.3

Compare Source

⚠️ Noteworthy

• This release upgrades to Hibernate 6.4.4.Final. While it contains a number of valuable bug fixes, it does not work correctly in a native image. If you are using GraalVM, Hibernate should be temporarily downgraded to 6.4.2.Final using the hibernate.version property.

🐞 Bug Fixes

• Nested jar URLs can not be resolved if the path contains spaces #​39675
• Image building runs for a long time when a long image name is used and the tag contains an illegal character #​39638
• Banner printing doesn't respect set charset #​39621
• "micrometer.observations.*" configuration properties should be "management.observations.*" #​39600
• Metadata reading during configuration class parsing uses the default resource loader rather than the application's resource loader #​39598
• Several gson properties, including spring.gson.disable-html-escaping, do not behave correctly when set to false #​39524
• Property placeholders aren't resolved when configuration property binding creates a Map from a property value using a converter #​39515
• Gradle plugin allows the use of Gradle 7.4 but the documented and tested minimum is 7.5 #​39513
• WebFlux auto-configuration should only configure the blocking executor when virtual threads are enabled #​39469
• TestcontainersPropertySource assertion has typo #​39449
• Webflux actuator endpoints respond with 500 when a parameter is missing #​39444
• NoSuchMethod error when using the non-shaded Pulsar client and configuring authentications parameters #​39389
• Jetty GracefulShutdown writes to System.out #​39360
• Building images fails with Docker 25.0 when custom buildpacks are configured #​39347
• Creating a RestClient from a RestTemplateBuilder-created RestTemplate requires double configuration of the baseUrl/rootUri #​39317
• Auto-configured ConcurrentPulsarListenerContainerFactory and PulsarConsumerFactory cannot be injected into injection points with specific generic type information #​39308
• Startup failure when you have multiple @DynamicPropertySources in Spring Boot 3.2.2 #​39297
• Mockito's MockedStatic isn't closed in all cases #​39272
• TracingProperties exposes package-private PropagationType from public methods #​39268

📔 Documentation

• Add note regarding mixing of bundle-based and direct SSL configuration #​39641
• Add link to Pulsar workaround when using environment variables for authentication #​39630
• Document that task executor pool size properties are ignored when using virtual threads #​39629
• Document default value for show-value configuration properties #​39596
• Clarify that configuration properties only apply to the auto-configured OpenTelemetry Resource bean #​39509
• Update the Debugging Documentation of the Spring Boot Maven Plugin #​39422
• Awaitility link in Test Scoped Dependencies is incorrect #​39415
• Fixed NestedJarFile constructor javadoc #​39285
• Endpoint documentation contains the typo 'Unuthorized' #​39280
• Update Revved up by Develocity badge #​39263

🔨 Dependency Upgrades

• Upgrade to Byte Buddy 1.14.12 #​39665
• Upgrade to Commons Codec 1.16.1 #​39566
• Upgrade to Dropwizard Metrics 4.2.25 #​39567
• Upgrade to Groovy 4.0.18 #​39568
• Upgrade to Hibernate 6.4.4.Final #​39569
• Upgrade to Infinispan 14.0.24.Final #​39570
• Upgrade to Jackson Bom 2.15.4 #​39666
• Upgrade to Janino 3.1.12 #​39571
• Upgrade to Jetty 12.0.6 #​39573
• Upgrade to Jetty Reactive HTTPClient 4.0.3 #​39572
• Upgrade to jOOQ 3.18.11 #​39667
• Upgrade to JsonPath 2.9.0 #​39393
• Upgrade to JUnit Jupiter 5.10.2 #​39575
• Upgrade to Kotlin Serialization 1.6.3 #​39668
• Upgrade to MariaDB 3.3.3 #​39669
• Upgrade to Maven Shade Plugin 3.5.2 #​39670
• Upgrade to Micrometer 1.12.3 #​39474
• Upgrade to Micrometer Tracing 1.2.3 #​39475
• Upgrade to Neo4j Java Driver 5.17.0 #​39534
• Upgrade to Netty 4.1.107.Final #​39576
• Upgrade to Postgresql 42.6.1 #​39671
• Upgrade to Pulsar Reactive 0.5.3 #​39672
• Upgrade to Reactor Bom 2023.0.3 #​39476
• Upgrade to SLF4J 2.0.12 #​39577
• Upgrade to Spring AMQP 3.1.2 #​39477
• Upgrade to Spring Authorization Server 1.2.2 #​39478
• Upgrade to Spring Batch 5.1.1 #​39479
• Upgrade to Spring Data Bom 2023.1.3 #​39480
• Upgrade to Spring Framework 6.1.4 #​39481
• Upgrade to Spring GraphQL 1.2.5 #​39482
• Upgrade to Spring Integration 6.2.2 #​39483
• Upgrade to Spring Kafka 3.1.2 #​39484
• Upgrade to Spring LDAP 3.2.2 #​39485
• Upgrade to Spring Pulsar 1.0.3 #​39486
• Upgrade to Spring Security 6.2.2 #​39487
• Upgrade to Testcontainers 1.19.5 #​39578
• Upgrade to Tomcat 10.1.19 #​39673
• Upgrade to Undertow 2.3.12.Final #​39674

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​PiyalAhmed, @​Tish17, @​amritagg, @​dependabot[bot], @​eddumelendez, @​erichaagdev, @​gdmrw, @​jonas-grgt, @​kilink, @​lukasdo, @​okohub, @​onobc, @​ramilS, @​slovi, @​smurf667, @​snicoll, @​totti-dev, @​vj-atlassian, @​vjh0107, @​wanger26, and @​xpmxf4

v3.2.2

Compare Source

⚠️ Noteworthy Changes

• Automatically enabling support for Micrometer's observation annotations when AspectJ is on the classpath has proven to be too much. A new property, micrometer.observations.annotations.enabled, has been introduced. It defaults to false. Set it to true to restore the previous behavior #​39128

🐞 Bug Fixes

• SslBundle implementations do not provide useful toString() results #​39167
• JarEntry.getComment() returns incorrect result from NestedJarFile instances #​39166
• Mixing PEM and JKS certificate material in server.ssl properties does not work #​39158
• Having AspectJ and Micrometer on the classpath is not a strong enough signal to enable support for Micrometer observation annotations #​39128
• Actuator endpoints with no operations that use selectors are not accessible when mapped to / #​39122
• Spring Boot 3.2 app that uses WebFlux, Security, and Actuator may fail to start due to a missing authentication manager #​39096
• management.observations.http.server.requests.name no longer has any effect #​39083
• spring.rabbitmq.listener.stream.auto-startup property has no effect #​39078
• Error mark in the log message for PatternParseException is in the wrong place #​39075
• Configuring server.jetty.max-connections has no effect #​39052
• @ConfigurationPropertiesBinding converters that rely on initial CharSequence to String conversion no longer work #​39051
• Manifest attributes cannot be resolved with the new loader implementation #​38996
• Throwable from logging system initialization may result in the application silently failing to start #​38963
• When using Jetty, idle timeout for IO operations and delayed dispatch cannot be set to less than 30000ms #​38960
• spring-boot-maven-plugin repackage uber jar execution fails when jar is put on WSL network drive #​38956
• Oracle OJDBC BOM version is flagged not for production use #​38943
• Connection leak when using jOOQ and spring.jooq.sql-dialect has not been set #​38924
• AutoConfigurationSorter does not always respect @AutoConfigureOrder(Ordered.LOWEST_PRECEDENCE) #​38916
• Containers are not started when using @ImportTestcontainers #​38913
• Even when spring.security.user.name or spring.security.user.password has been configured, user details auto-configuration still backs off when resource server is on the classpath #​38864
• MockRestServiceServerAutoConfiguration with RestTemplate and RestClient together throws incorrect exception #​38820

📔 Documentation

• Improve "Sanitize Sensitive Values" section in reference documentation #​39199
• Fix link to Log4j2's JDK logging adapter documentation #​39171
• Update CRaC support status link #​39170
• Remove entry for OCI starter as it is no longer maintained #​39165
• Update links to Micrometer docs in metrics section of reference docs #​39149
• Use the term "tags" in documentation consistently #​39125
• Correct the documentation on injecting dependencies into FailureAnalyzer implementations #​39100
• Polish reference documentation #​38942
• Document virtual threads limitations #​38883

🔨 Dependency Upgrades

• Upgrade to MySQL 8.3.0 #​39081
• Upgrade to Byte Buddy 1.14.11 #​39184
• Upgrade to Groovy 4.0.17 #​39185
• Upgrade to jOOQ 3.18.9 #​39186
• Upgrade to Kotlin 1.9.22 #​39187
• Upgrade to Lettuce 6.3.1.RELEASE #​39188
• Upgrade to MariaDB 3.3.2 #​38901
• Upgrade to Micrometer 1.12.2 #​38978
• Upgrade to Micrometer Tracing 1.2.2 #​38979
• Upgrade to Neo4j Java Driver 5.15.0 #​39136
• Upgrade to Netty 4.1.105.Final #​39189
• Upgrade to Pulsar 3.1.2 #​39190
• Upgrade to Pulsar Reactive 0.5.2 #​39191
• Upgrade to R2DBC MySQL 1.0.6 #​39192
• Upgrade to R2DBC Postgresql 1.0.4.RELEASE #​39193
• Upgrade to R2DBC Proxy 1.1.4.RELEASE #​39194
• Upgrade to Reactor Bom 2023.0.2 #​38980
• Upgrade to SLF4J 2.0.11 #​39195
• Upgrade to Spring Data Bom 2023.1.2 #​38981
• Upgrade to Spring Framework 6.1.3 #​38982
• Upgrade to Spring Pulsar 1.0.2 #​38994
• Upgrade to Spring WS 4.0.10 #​39130
• Upgrade to Tomcat 10.1.18 #​39196

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​724thomas, @​BenchmarkingBuffalo, @​FBibonne, @​Wzy19930507, @​amparab, @​dependabot[bot], @​dreis2211, @​okohub, @​onobc, @​sdeleuze, @​skcskitano, and @​tobias-lippert

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about these updates again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.

[coderabbitai]

Important

Auto Review Skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

Share

• X
• Mastodon
• Reddit
• LinkedIn

---

Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai generate interesting stats about this repository and render them as a table.
  • @coderabbitai show all the console.log statements in this repository.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (invoked as PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger a review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai help to get help.

Additionally, you can add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.

CodeRabbit Configration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/coderabbit-overrides.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠ Warning: custom changes will be lost.