Skip to content

[CORE-69]: Bump the minor-patch-dependencies group with 12 updates#484

Closed
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/gradle/master/minor-patch-dependencies-b248e8c25e
Closed

[CORE-69]: Bump the minor-patch-dependencies group with 12 updates#484
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/gradle/master/minor-patch-dependencies-b248e8c25e

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 20, 2026
edited
Loading

Bumps the minor-patch-dependencies group with 12 updates:

Package From To
org.springframework.boot:spring-boot-dependencies 3.5.10 3.5.11
org.springframework.boot:spring-boot-configuration-processor 3.5.10 3.5.11
org.springframework.boot 3.5.10 3.5.11
com.nimbusds:nimbus-jose-jwt 10.7 10.8
io.projectreactor.netty:reactor-netty-http 1.3.2 1.3.3
com.google.cloud:google-cloud-pubsub 1.147.0 1.148.0
io.swagger.core.v3:swagger-annotations 2.2.42 2.2.43
org.webjars.npm:swagger-ui-dist 5.31.0 5.31.2
com.google.cloud.tools.jib 3.5.2 3.5.3
de.undercouch.download 5.6.0 5.7.0
ch.qos.logback:logback-classic 1.5.27 1.5.32
com.google.auth:google-auth-library-oauth2-http 1.42.1 1.43.0

Updates org.springframework.boot:spring-boot-dependencies from 3.5.10 to 3.5.11

Release notes

Sourced from org.springframework.boot:spring-boot-dependencies's releases.

v3.5.11

🐞 Bug Fixes

  • Whitespace can be incorrectly removed when spring-boot-configuration-processor runs on multi-line javadoc #49039
  • server.jetty.threads.max is ignored when using virtual threads #48982
  • Docker credential helpers with file extensions cannot be executed on Windows #48965

📔 Documentation

  • Couchbase and Kafka are incorrectly listed as supporting SSL with Docker Compose #49211
  • Document that use of non idiomatic format for '@Value' still apply for environment variables #49054
  • Document naming convention for custom test-scoped starters #49014
  • LICENSE.txt and NOTICE.txt files have the wrong content in the latest releases #48996
  • ApplicationContextAssert documents a non-existent assertion in getFailure() #48973
  • Highlight the importance of the preStop hook when configuring Kubernetes probes #48936

🔨 Dependency Upgrades

  • Upgrade to AssertJ 3.27.7 #49075
  • Upgrade to Groovy 4.0.30 #49076
  • Upgrade to Hibernate 6.6.42.Final #49077
  • Upgrade to Jaybird 6.0.4 #49078
  • Upgrade to JBoss Logging 3.6.2.Final #49079
  • Upgrade to Jetty 12.0.32 #49080
  • Upgrade to jOOQ 3.19.30 #49081
  • Upgrade to Logback 1.5.32 #49243
  • Upgrade to Micrometer 1.15.9 #49064
  • Upgrade to Micrometer Tracing 1.5.9 #49065
  • Upgrade to MySQL 9.6.0 #49083
  • Upgrade to Netty 4.1.131.Final #49165
  • Upgrade to Postgresql 42.7.10 #49201
  • Upgrade to Reactor Bom 2024.0.15 #49066
  • Upgrade to Spring Authorization Server 1.5.6 #49067
  • Upgrade to Spring Data Bom 2025.0.9 #49068
  • Upgrade to Spring Framework 6.2.16 #49069
  • Upgrade to Spring GraphQL 1.4.5 #49070
  • Upgrade to Spring Integration 6.5.7 #49071
  • Upgrade to Spring Kafka 3.3.13 #49244
  • Upgrade to Spring LDAP 3.3.6 #49072
  • Upgrade to Spring Pulsar 1.2.15 #49073
  • Upgrade to Spring Security 6.5.8 #49225
  • Upgrade to Spring Session 3.5.5 #49074
  • Upgrade to Tomcat 10.1.52 #49084
  • Upgrade to Undertow 2.3.23.Final #49166

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​dsyer, @​linkian209, @​nosan, @​quaff, @​scordio, and @​srt

Commits
  • 3728f97 Release v3.5.11
  • 54ab3c5 Align "noteworthy" issues in release notes with Spring Framework
  • 996664f Temporarily switch Docker to overlay2
  • 91cc0dd Upgrade to Spring Session 3.5.5
  • f439fd3 Show docker version and docker info when running system tests
  • ec94645 Print CI docker images in system test
  • 33a7890 Upgrade to Spring Integration 6.5.7
  • 1cf8668 Upgrade to Spring Authorization Server 1.5.6
  • 679254a Upgrade to Spring Pulsar 1.2.15
  • c022218 Upgrade to Spring Kafka 3.3.13
  • Additional commits viewable in compare view

Updates org.springframework.boot:spring-boot-configuration-processor from 3.5.10 to 3.5.11

Release notes

Sourced from org.springframework.boot:spring-boot-configuration-processor's releases.

v3.5.11

🐞 Bug Fixes

  • Whitespace can be incorrectly removed when spring-boot-configuration-processor runs on multi-line javadoc #49039
  • server.jetty.threads.max is ignored when using virtual threads #48982
  • Docker credential helpers with file extensions cannot be executed on Windows #48965

📔 Documentation

  • Couchbase and Kafka are incorrectly listed as supporting SSL with Docker Compose #49211
  • Document that use of non idiomatic format for '@Value' still apply for environment variables #49054
  • Document naming convention for custom test-scoped starters #49014
  • LICENSE.txt and NOTICE.txt files have the wrong content in the latest releases #48996
  • ApplicationContextAssert documents a non-existent assertion in getFailure() #48973
  • Highlight the importance of the preStop hook when configuring Kubernetes probes #48936

🔨 Dependency Upgrades

  • Upgrade to AssertJ 3.27.7 #49075
  • Upgrade to Groovy 4.0.30 #49076
  • Upgrade to Hibernate 6.6.42.Final #49077
  • Upgrade to Jaybird 6.0.4 #49078
  • Upgrade to JBoss Logging 3.6.2.Final #49079
  • Upgrade to Jetty 12.0.32 #49080
  • Upgrade to jOOQ 3.19.30 #49081
  • Upgrade to Logback 1.5.32 #49243
  • Upgrade to Micrometer 1.15.9 #49064
  • Upgrade to Micrometer Tracing 1.5.9 #49065
  • Upgrade to MySQL 9.6.0 #49083
  • Upgrade to Netty 4.1.131.Final #49165
  • Upgrade to Postgresql 42.7.10 #49201
  • Upgrade to Reactor Bom 2024.0.15 #49066
  • Upgrade to Spring Authorization Server 1.5.6 #49067
  • Upgrade to Spring Data Bom 2025.0.9 #49068
  • Upgrade to Spring Framework 6.2.16 #49069
  • Upgrade to Spring GraphQL 1.4.5 #49070
  • Upgrade to Spring Integration 6.5.7 #49071
  • Upgrade to Spring Kafka 3.3.13 #49244
  • Upgrade to Spring LDAP 3.3.6 #49072
  • Upgrade to Spring Pulsar 1.2.15 #49073
  • Upgrade to Spring Security 6.5.8 #49225
  • Upgrade to Spring Session 3.5.5 #49074
  • Upgrade to Tomcat 10.1.52 #49084
  • Upgrade to Undertow 2.3.23.Final #49166

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​dsyer, @​linkian209, @​nosan, @​quaff, @​scordio, and @​srt

Commits
  • 3728f97 Release v3.5.11
  • 54ab3c5 Align "noteworthy" issues in release notes with Spring Framework
  • 996664f Temporarily switch Docker to overlay2
  • 91cc0dd Upgrade to Spring Session 3.5.5
  • f439fd3 Show docker version and docker info when running system tests
  • ec94645 Print CI docker images in system test
  • 33a7890 Upgrade to Spring Integration 6.5.7
  • 1cf8668 Upgrade to Spring Authorization Server 1.5.6
  • 679254a Upgrade to Spring Pulsar 1.2.15
  • c022218 Upgrade to Spring Kafka 3.3.13
  • Additional commits viewable in compare view

Updates org.springframework.boot from 3.5.10 to 3.5.11

Release notes

Sourced from org.springframework.boot's releases.

v3.5.11

🐞 Bug Fixes

  • Whitespace can be incorrectly removed when spring-boot-configuration-processor runs on multi-line javadoc #49039
  • server.jetty.threads.max is ignored when using virtual threads #48982
  • Docker credential helpers with file extensions cannot be executed on Windows #48965

📔 Documentation

  • Couchbase and Kafka are incorrectly listed as supporting SSL with Docker Compose #49211
  • Document that use of non idiomatic format for '@Value' still apply for environment variables #49054
  • Document naming convention for custom test-scoped starters #49014
  • LICENSE.txt and NOTICE.txt files have the wrong content in the latest releases #48996
  • ApplicationContextAssert documents a non-existent assertion in getFailure() #48973
  • Highlight the importance of the preStop hook when configuring Kubernetes probes #48936

🔨 Dependency Upgrades

  • Upgrade to AssertJ 3.27.7 #49075
  • Upgrade to Groovy 4.0.30 #49076
  • Upgrade to Hibernate 6.6.42.Final #49077
  • Upgrade to Jaybird 6.0.4 #49078
  • Upgrade to JBoss Logging 3.6.2.Final #49079
  • Upgrade to Jetty 12.0.32 #49080
  • Upgrade to jOOQ 3.19.30 #49081
  • Upgrade to Logback 1.5.32 #49243
  • Upgrade to Micrometer 1.15.9 #49064
  • Upgrade to Micrometer Tracing 1.5.9 #49065
  • Upgrade to MySQL 9.6.0 #49083
  • Upgrade to Netty 4.1.131.Final #49165
  • Upgrade to Postgresql 42.7.10 #49201
  • Upgrade to Reactor Bom 2024.0.15 #49066
  • Upgrade to Spring Authorization Server 1.5.6 #49067
  • Upgrade to Spring Data Bom 2025.0.9 #49068
  • Upgrade to Spring Framework 6.2.16 #49069
  • Upgrade to Spring GraphQL 1.4.5 #49070
  • Upgrade to Spring Integration 6.5.7 #49071
  • Upgrade to Spring Kafka 3.3.13 #49244
  • Upgrade to Spring LDAP 3.3.6 #49072
  • Upgrade to Spring Pulsar 1.2.15 #49073
  • Upgrade to Spring Security 6.5.8 #49225
  • Upgrade to Spring Session 3.5.5 #49074
  • Upgrade to Tomcat 10.1.52 #49084
  • Upgrade to Undertow 2.3.23.Final #49166

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​dsyer, @​linkian209, @​nosan, @​quaff, @​scordio, and @​srt

Commits
  • 3728f97 Release v3.5.11
  • 54ab3c5 Align "noteworthy" issues in release notes with Spring Framework
  • 996664f Temporarily switch Docker to overlay2
  • 91cc0dd Upgrade to Spring Session 3.5.5
  • f439fd3 Show docker version and docker info when running system tests
  • ec94645 Print CI docker images in system test
  • 33a7890 Upgrade to Spring Integration 6.5.7
  • 1cf8668 Upgrade to Spring Authorization Server 1.5.6
  • 679254a Upgrade to Spring Pulsar 1.2.15
  • c022218 Upgrade to Spring Kafka 3.3.13
  • Additional commits viewable in compare view

Updates com.nimbusds:nimbus-jose-jwt from 10.7 to 10.8

Changelog

Sourced from com.nimbusds:nimbus-jose-jwt's changelog.

10.7 (2026-01-08) * Adds MaxCompressedCipherTextLength that implements JWEDecrypterOption, to to configure the maximum allowed length of compressed cipher text. * Adds JWEObject.decrypt(JWEDecrypter, Set) method to support the MaxCompressedCipherTextLength option.

10.8 (2026-02-19) * Adds a PasswordBasedDecrypter(byte[], Set) constructor to specify names of the critical header parameters that are deferred to the application for processing. Aligns with other JWEDecrypter and CriticalHeaderParamsAware implementations (iss #610). * Fixes getDeferredCriticalHeaderParams() in AESDecrypter, DirectDecrypter, RSADecrypter, ECDHDecrypter, X25519Decrypter, ECDH1PUDecrypter, ECDH1PUX25519Decrypter, MultiDecrypter, MACVerifier, ECDSAVerifier and Ed25519Verifier. Must internally call critPolicy.getDeferredCriticalHeaderParams(), not critPolicy.getProcessedCriticalHeaderParams() (iss #612).

Commits
  • 9509dc5 [maven-release-plugin] prepare for next development iteration
  • 0e27c9c Adds a PasswordBasedDecrypter(byte[], Set<String>) constructor to specify nam...
  • decee47 Fixes getDeferredCriticalHeaderParams() in AESDecrypter, DirectDecrypter, RSA...
  • b8d40c9 [maven-release-plugin] prepare release 10.8
  • See full diff in compare view

Updates io.projectreactor.netty:reactor-netty-http from 1.3.2 to 1.3.3

Release notes

Sourced from io.projectreactor.netty:reactor-netty-http's releases.

v1.3.3

Reactor Netty 1.3.3 is part of 2025.0.3 Release Train.

What's Changed

✨ New features and improvements

🐞 Bug fixes

  • Fix race condition in pending acquire timer management by @​violetagg in #4073
  • Fix incorrect channel factory selection for custom EventLoopGroups by @​j-bahr in #4074

📖 Documentation

Full Changelog: reactor/reactor-netty@v1.3.2...v1.3.3

Commits
  • 0e5b351 [release] Prepare and release 1.3.3
  • e0a130a Merge-ignore release 1.2.15 into 1.3.3
  • 5f25dfe [release] Back to snapshots, next is 1.2.16-SNAPSHOT
  • 5aa16ed [release] Prepare and release 1.2.15
  • 8fced85 Merge #4094 into 1.3.3
  • 07d38c4 Bump @​antora/pdf-extension from 1.0.0-beta.15 to 1.0.0-beta.16 in /docs (#4094)
  • c288e70 Add Http2AllocationStrategy documentation and improve javadoc (#4093)
  • 149c4eb Improve Http2Pool connection reuse for concurrent acquires (#4051)
  • 2d112f3 Merge #4092 into 1.3.3
  • 335cf53 Depend on Netty v4.1.131.Final (#4092)
  • Additional commits viewable in compare view

Updates com.google.cloud:google-cloud-pubsub from 1.147.0 to 1.148.0

Release notes

Sourced from com.google.cloud:google-cloud-pubsub's releases.

v1.148.0

1.148.0 (2026-02-11)

Features

  • Next release from main branch is 1.148.0 (#2686) (6b133e8)

Dependencies

  • Update dependency com.google.cloud:sdk-platform-java-config to v3.56.1 (#2682) (1a94be9)
Changelog

Sourced from com.google.cloud:google-cloud-pubsub's changelog.

1.148.0 (2026-02-11)

Features

  • Next release from main branch is 1.148.0 (#2686) (6b133e8)

Dependencies

  • Update dependency com.google.cloud:sdk-platform-java-config to v3.56.1 (#2682) (1a94be9)
Commits
  • 11c3e7b chore(main): release 1.148.0 (#2688)
  • 7e15446 chore(main): release 1.147.1-SNAPSHOT (#2674)
  • 1a94be9 deps: update dependency com.google.cloud:sdk-platform-java-config to v3.56.1 ...
  • 6b133e8 feat: next release from main branch is 1.148.0 (#2686)
  • 09c01ed chore: replace old java team with cloud-sdk-java-team (#2677)
  • See full diff in compare view

Updates io.swagger.core.v3:swagger-annotations from 2.2.42 to 2.2.43

Updates org.webjars.npm:swagger-ui-dist from 5.31.0 to 5.31.2

Release notes

Sourced from org.webjars.npm:swagger-ui-dist's releases.

v5.31.2

5.31.2 (2026-02-20)

Bug Fixes

Performance Improvements

  • reduce conversion from immutablejs to plain js objects (#10682) (ae79054)

v5.31.1

5.31.1 (2026-02-16)

Bug Fixes

  • deps: align the tree-sitter version (#10694) (6453290)
  • deps: update vulnerable dependencies (#10725) (23d6c26)
  • utils: disallow schema type array value string (#10691) (e87ecd7)
  • validated support for OpenAPI 3.1.2 and updated docs (8bf8ed9)

Reverts

Commits
  • a398208 chore(release): cut the 5.31.2 release
  • ae79054 perf: reduce conversion from immutablejs to plain js objects (#10682)
  • c083872 docs: add claude skill for adding support for new oas version (#10722)
  • 707010a fix(deps): update swagger-client to v3.36.2 to resolve peer dep issue (#10734)
  • 62525f9 fix(core): remove mistakenly put condition (#10212) (#10730)
  • f0bbc1c chore(release): cut the 5.31.1 release
  • 8bf8ed9 fix: validated support for OpenAPI 3.1.2 and updated docs
  • 23d6c26 fix(deps): update vulnerable dependencies (#10725)
  • e9197ca Fix(utils) disallow schema type array value string for oas3 (#10713)
  • f63d850 chore(deps): bump nginx from 1.29.4-alpine to 1.29.5-alpine (#10717)
  • Additional commits viewable in compare view

Updates org.springframework.boot:spring-boot-configuration-processor from 3.5.10 to 3.5.11

Release notes

Sourced from org.springframework.boot:spring-boot-configuration-processor's releases.

v3.5.11

🐞 Bug Fixes

  • Whitespace can be incorrectly removed when spring-boot-configuration-processor runs on multi-line javadoc #49039
  • server.jetty.threads.max is ignored when using virtual threads #48982
  • Docker credential helpers with file extensions cannot be executed on Windows #48965

📔 Documentation

  • Couchbase and Kafka are incorrectly listed as supporting SSL with Docker Compose #49211
  • Document that use of non idiomatic format for '@Value' still apply for environment variables #49054
  • Document naming convention for custom test-scoped starters #49014
  • LICENSE.txt and NOTICE.txt files have the wrong content in the latest releases #48996
  • ApplicationContextAssert documents a non-existent assertion in getFailure() #48973
  • Highlight the importance of the preStop hook when configuring Kubernetes probes #48936

🔨 Dependency Upgrades

  • Upgrade to AssertJ 3.27.7 #49075
  • Upgrade to Groovy 4.0.30 #49076
  • Upgrade to Hibernate 6.6.42.Final #49077
  • Upgrade to Jaybird 6.0.4 #49078
  • Upgrade to JBoss Logging 3.6.2.Final #49079
  • Upgrade to Jetty 12.0.32 #49080
  • Upgrade to jOOQ 3.19.30 #49081
  • Upgrade to Logback 1.5.32 #49243
  • Upgrade to Micrometer 1.15.9 #49064
  • Upgrade to Micrometer Tracing 1.5.9 #49065
  • Upgrade to MySQL 9.6.0 #49083
  • Upgrade to Netty 4.1.131.Final #49165
  • Upgrade to Postgresql 42.7.10 #49201
  • Upgrade to Reactor Bom 2024.0.15 #49066
  • Upgrade to Spring Authorization Server 1.5.6 #49067
  • Upgrade to Spring Data Bom 2025.0.9 #49068
  • Upgrade to Spring Framework 6.2.16 #49069
  • Upgrade to Spring GraphQL 1.4.5 #49070
  • Upgrade to Spring Integration 6.5.7 #49071
  • Upgrade to Spring Kafka 3.3.13 #49244
  • Upgrade to Spring LDAP 3.3.6 #49072
  • Upgrade to Spring Pulsar 1.2.15 #49073
  • Upgrade to Spring Security 6.5.8 #49225
  • Upgrade to Spring Session 3.5.5 #49074
  • Upgrade to Tomcat 10.1.52 #49084
  • Upgrade to Undertow 2.3.23.Final #49166

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​dsyer, @​linkian209, @​nosan, @​quaff, @​scordio, and @​srt

Commits
  • 3728f97 Release v3.5.11
  • 54ab3c5 Align "noteworthy" issues in release notes with Spring Framework
  • 996664f Temporarily switch Docker to overlay2
  • 91cc0dd Upgrade to Spring Session 3.5.5
  • f439fd3 Show docker version and docker info when running system tests
  • ec94645 Print CI docker images in system test
  • 33a7890 Upgrade to Spring Integration 6.5.7
  • 1cf8668 Upgrade to Spring Authorization Server 1.5.6
  • 679254a Upgrade to Spring Pulsar 1.2.15
  • c022218 Upgrade to Spring Kafka 3.3.13
  • Additional commits viewable in compare view

Updates com.google.cloud.tools.jib from 3.5.2 to 3.5.3

Updates de.undercouch.download from 5.6.0 to 5.7.0

Release notes

Sourced from de.undercouch.download's releases.

5.7.0

Bug fixes:

  • Remove unnecessary log message that could cause the build to fail if configuration cache was enabled in offline mode (see #423)

Maintenance:

  • Update dependencies
  • Update to Gradle 8.8
  • Add integration tests for Gradle versions up to 9.3.1
Commits
  • e6cf6b5 Bump up version number to 5.7.0
  • 0cf4271 Add integration tests for Gradle versions up to 9.3.1
  • 4e99e27 Remove unnecessary log message
  • 5ab1f6c Split CI tests of Gradle 8.x versions
  • 28d1ff5 Add integration tests for Gradle versions up to 8.14
  • 5804d9c Bump up version number to 5.7.0-SNAPSHOT
  • 6f3304c Update dependencies
  • 8ffad17 Add integration tests for Gradle 8.9
  • d3e6351 Update screencast dependencies
  • e7023ba Remove unnecessary check
  • Additional commits viewable in compare view

Updates org.springframework.boot from 3.5.10 to 3.5.11

Release notes

Sourced from org.springframework.boot's releases.

v3.5.11

🐞 Bug Fixes

  • Whitespace can be incorrectly removed when spring-boot-configuration-processor runs on multi-line javadoc #49039
  • server.jetty.threads.max is ignored when using virtual threads #48982
  • Docker credential helpers with file extensions cannot be executed on Windows #48965

📔 Documentation

  • Couchbase and Kafka are incorrectly listed as supporting SSL with Docker Compose #49211
  • Document that use of non idiomatic format for '@Value' still apply for environment variables #49054
  • Document naming convention for custom test-scoped starters #49014
  • LICENSE.txt and NOTICE.txt files have the wrong content in the latest releases #48996
  • ApplicationContextAssert documents a non-existent assertion in getFailure() #48973
  • Highlight the importance of the preStop hook when configuring Kubernetes probes #48936

🔨 Dependency Upgrades

  • Upgrade to AssertJ 3.27.7 #49075
  • Upgrade to Groovy 4.0.30 #49076
  • Upgrade to Hibernate 6.6.42.Final #49077
  • Upgrade to Jaybird 6.0.4 #49078
  • Upgrade to JBoss Logging 3.6.2.Final #49079
  • Upgrade to Jetty 12.0.32 #49080
  • Upgrade to jOOQ 3.19.30 #49081
  • Upgrade to Logback 1.5.32 #49243
  • Upgrade to Micrometer 1.15.9 #49064
  • Upgrade to Micrometer Tracing 1.5.9 #49065
  • Upgrade to MySQL 9.6.0 #49083
  • Upgrade to Netty 4.1.131.Final #49165
  • Upgrade to Postgresql 42.7.10 #49201
  • Upgrade to Reactor Bom 2024.0.15 #49066
  • Upgrade to Spring Authorization Server 1.5.6 #49067
  • Upgrade to Spring Data Bom 2025.0.9 #49068
  • Upgrade to Spring Framework 6.2.16 #49069
  • Upgrade to Spring GraphQL 1.4.5 #49070
  • Upgrade to Spring Integration 6.5.7 #49071
  • Upgrade to Spring Kafka 3.3.13 #49244
  • Upgrade to Spring LDAP 3.3.6 #49072
  • Upgrade to Spring Pulsar 1.2.15 #49073
  • Upgrade to Spring Security 6.5.8 #49225
  • Upgrade to Spring Session 3.5.5 #49074
  • Upgrade to Tomcat 10.1.52 #49084
  • Upgrade to Undertow 2.3.23.Final #49166

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​dsyer, @​linkian209, @​nosan, @​quaff, @​scordio, and @​srt

Commits
  • 3728f97 Release v3.5.11
  • 54ab3c5 Align "noteworthy" issues in release notes with Spring Framework
  • 996664f Temporarily switch Docker to overlay2
  • 91cc0dd Upgrade to Spring Session 3.5.5
  • f439fd3 Show docker version and docker info when running system tests
  • ec94645 Print CI docker images in system test
  • 33a7890 Upgrade to Spring Integration 6.5.7
  • 1cf8668 Upgrade to Spring Authorization Server 1.5.6
  • 679254a Upgrade to Spring Pulsar 1.2.15
  • c022218 Upgrade to Spring Kafka 3.3.13
  • Additional commits viewable in compare view

Updates ch.qos.logback:logback-classic from 1.5.27 to 1.5.32

Release notes

Sourced from ch.qos.logback:logback-classic's releases.

Logback 1.5.32

2026-02-16 Release of logback version 1.5.32

• In DefaultProcessor, fixed incorrect check for dependencies contained within a parent model. Previous only the direct children were scanned. This fixes logback-access/issues/34.

• A bit-wise identical binary of this version can be reproduced by building from source code at commit e807335a67535b4eacce94e942c0bcb649665d93 associated with the tag v_1.5.32. Release built using Java "21" 2023-10-17 LTS build 21.0.1.+12-LTS-29 under Linux Debian 11.6.

Logback 1.5.31

2026-02-14 Release of logback version 1.5.31

• Fixed missing META-INF/services directory in logback-classic.jar. This issue rendered logback-classic version 1.5.30 unusable with SLF4J.

• A bit-wise identical binary of this version can be reproduced by building from source code at commit 168e42f9f9a18a3ffdf31eb2bfe80a71e33ecd8b associated with the tag v_1.5.31. Release built using Java "21" 2023-10-17 LTS build 21.0.1.+12-LTS-29 under Linux Debian 11.6.

Logback 1.5.30

2026-02-14 Release of logback version 1.5.30

In this version, logback-classic.jar was missing the META-INF/services directory, making it unusable with SLF4J. Version 1.5.31 (released later on the same day) fixes this issue.

• Fix scanning issue when an included file becomes available at a later time. This problem was reported in issues/1021 by Sergey Nazarov.

• Standardized code for version checking across modules.

• A bit-wise identical binary of this version can be reproduced by building from source code at commit 44164f10ca3fb44ce0e68519f13564b87e3aca61 associated with the tag v_1.5.30. Release built using Java "21" 2023-10-17 LTS build 21.0.1.+12-LTS-29 under Linux Debian 11.6.

Logback 1.5.29

2026-02-09 Release of logback version 1.5.29

• In response to issues/1017, appender names and appender references are once again subject to variable substitution, reverting the change introduced in version 1.5.28.

Logback 1.5.28

2026-02-06 Release of logback version 1.5.28

• Appender names or appender references are no longer subject to variable substitution.

• Fixed issue with configurations with conditionals encompassing appenders. This was reported in issues/1016 reported by Sergey Sazonov.

• The element now admits a 'scan' attribute which can be used to override the 'scan' attribute in the element.

• Fixed NullPointerException thrown by VersionUtil.checkForVersionEquality method occurring with GraalVM Native Images. This issue was reported in issues/1014.

• A bit-wise identical binary of this version can be reproduced by building from source code at commit e7a1855ab562bb102333f754603ff89359bf3cfc associated with the tag v_1.5.28. Release built using Java "21" 2023-10-17 LTS build 21.0.1.+12-LTS-29 under Linux Debian 11.6.

Commits
  • e807335 prepare release 1.5.32
  • dc35d55 fix logback-access/issues/34 by checking if dependency is a sub-model of the ...
  • 8e32278 added simple test for appender definitiob via file inclusion
  • 834dbed start work on 1.5.32-SNAPSHOT
  • ...

    Description has been truncated

@dependabot
[CORE-69]: Bump the minor-patch-dependencies group with 12 updates
5cdd154 
Bumps the minor-patch-dependencies group with 12 updates:

| Package | From | To |
| --- | --- | --- |
| [org.springframework.boot:spring-boot-dependencies](https://github.com/spring-projects/spring-boot) | `3.5.10` | `3.5.11` |
| [org.springframework.boot:spring-boot-configuration-processor](https://github.com/spring-projects/spring-boot) | `3.5.10` | `3.5.11` |
| [org.springframework.boot](https://github.com/spring-projects/spring-boot) | `3.5.10` | `3.5.11` |
| [com.nimbusds:nimbus-jose-jwt](https://bitbucket.org/connect2id/nimbus-jose-jwt) | `10.7` | `10.8` |
| [io.projectreactor.netty:reactor-netty-http](https://github.com/reactor/reactor-netty) | `1.3.2` | `1.3.3` |
| [com.google.cloud:google-cloud-pubsub](https://github.com/googleapis/java-pubsub) | `1.147.0` | `1.148.0` |
| io.swagger.core.v3:swagger-annotations | `2.2.42` | `2.2.43` |
| [org.webjars.npm:swagger-ui-dist](https://github.com/swagger-api/swagger-ui) | `5.31.0` | `5.31.2` |
| com.google.cloud.tools.jib | `3.5.2` | `3.5.3` |
| [de.undercouch.download](https://github.com/michel-kraemer/gradle-download-task) | `5.6.0` | `5.7.0` |
| [ch.qos.logback:logback-classic](https://github.com/qos-ch/logback) | `1.5.27` | `1.5.32` |
| com.google.auth:google-auth-library-oauth2-http | `1.42.1` | `1.43.0` |


Updates `org.springframework.boot:spring-boot-dependencies` from 3.5.10 to 3.5.11
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](spring-projects/spring-boot@v3.5.10...v3.5.11)

Updates `org.springframework.boot:spring-boot-configuration-processor` from 3.5.10 to 3.5.11
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](spring-projects/spring-boot@v3.5.10...v3.5.11)

Updates `org.springframework.boot` from 3.5.10 to 3.5.11
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](spring-projects/spring-boot@v3.5.10...v3.5.11)

Updates `com.nimbusds:nimbus-jose-jwt` from 10.7 to 10.8
- [Changelog](https://bitbucket.org/connect2id/nimbus-jose-jwt/src/master/CHANGELOG.txt)
- [Commits](https://bitbucket.org/connect2id/nimbus-jose-jwt/branches/compare/10.8..10.7)

Updates `io.projectreactor.netty:reactor-netty-http` from 1.3.2 to 1.3.3
- [Release notes](https://github.com/reactor/reactor-netty/releases)
- [Commits](reactor/reactor-netty@v1.3.2...v1.3.3)

Updates `com.google.cloud:google-cloud-pubsub` from 1.147.0 to 1.148.0
- [Release notes](https://github.com/googleapis/java-pubsub/releases)
- [Changelog](https://github.com/googleapis/java-pubsub/blob/main/CHANGELOG.md)
- [Commits](googleapis/java-pubsub@v1.147.0...v1.148.0)

Updates `io.swagger.core.v3:swagger-annotations` from 2.2.42 to 2.2.43

Updates `org.webjars.npm:swagger-ui-dist` from 5.31.0 to 5.31.2
- [Release notes](https://github.com/swagger-api/swagger-ui/releases)
- [Commits](swagger-api/swagger-ui@v5.31.0...v5.31.2)

Updates `org.springframework.boot:spring-boot-configuration-processor` from 3.5.10 to 3.5.11
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](spring-projects/spring-boot@v3.5.10...v3.5.11)

Updates `com.google.cloud.tools.jib` from 3.5.2 to 3.5.3

Updates `de.undercouch.download` from 5.6.0 to 5.7.0
- [Release notes](https://github.com/michel-kraemer/gradle-download-task/releases)
- [Commits](michel-kraemer/gradle-download-task@5.6.0...5.7.0)

Updates `org.springframework.boot` from 3.5.10 to 3.5.11
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](spring-projects/spring-boot@v3.5.10...v3.5.11)

Updates `ch.qos.logback:logback-classic` from 1.5.27 to 1.5.32
- [Release notes](https://github.com/qos-ch/logback/releases)
- [Commits](qos-ch/logback@v_1.5.27...v_1.5.32)

Updates `com.google.auth:google-auth-library-oauth2-http` from 1.42.1 to 1.43.0

---
updated-dependencies:
- dependency-name: org.springframework.boot:spring-boot-dependencies
  dependency-version: 3.5.11
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-patch-dependencies
- dependency-name: org.springframework.boot:spring-boot-configuration-processor
  dependency-version: 3.5.11
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-patch-dependencies
- dependency-name: org.springframework.boot
  dependency-version: 3.5.11
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-patch-dependencies
- dependency-name: com.nimbusds:nimbus-jose-jwt
  dependency-version: '10.8'
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-patch-dependencies
- dependency-name: io.projectreactor.netty:reactor-netty-http
  dependency-version: 1.3.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-patch-dependencies
- dependency-name: com.google.cloud:google-cloud-pubsub
  dependency-version: 1.148.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-patch-dependencies
- dependency-name: io.swagger.core.v3:swagger-annotations
  dependency-version: 2.2.43
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-patch-dependencies
- dependency-name: org.webjars.npm:swagger-ui-dist
  dependency-version: 5.31.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-patch-dependencies
- dependency-name: org.springframework.boot:spring-boot-configuration-processor
  dependency-version: 3.5.11
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-patch-dependencies
- dependency-name: com.google.cloud.tools.jib
  dependency-version: 3.5.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-patch-dependencies
- dependency-name: de.undercouch.download
  dependency-version: 5.7.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-patch-dependencies
- dependency-name: org.springframework.boot
  dependency-version: 3.5.11
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-patch-dependencies
- dependency-name: ch.qos.logback:logback-classic
  dependency-version: 1.5.32
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-patch-dependencies
- dependency-name: com.google.auth:google-auth-library-oauth2-http
  dependency-version: 1.43.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-patch-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot requested a review from a team as a code owner February 20, 2026 22:43
@dependabot dependabot bot requested review from jgainerdewar and samanehsan and removed request for a team February 20, 2026 22:43
@sonarqubecloud
Copy link

sonarqubecloud bot commented Feb 20, 2026

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Mar 1, 2026

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Mar 1, 2026
@dependabot dependabot bot deleted the dependabot/gradle/master/minor-patch-dependencies-b248e8c25e branch March 1, 2026 11:05
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

@jgainerdewar jgainerdewar Awaiting requested review from jgainerdewar jgainerdewar is a code owner automatically assigned from DataBiosphere/manifold-core-services

@samanehsan samanehsan Awaiting requested review from samanehsan samanehsan is a code owner automatically assigned from DataBiosphere/manifold-core-services

Assignees

No one assigned

Labels

dependency gradle

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants