build(deps): bump spring.version from 6.2.8 to 6.2.9 #4142

dependabot · 2025-07-18T02:39:16Z

Bumps spring.version from 6.2.8 to 6.2.9.
Updates org.springframework:spring-core from 6.2.8 to 6.2.9

Release notes

Sourced from org.springframework:spring-core's releases.

v6.2.9

⭐ New Features

OncePerRequestFilter cannot be CGLib-proxied #35198

Consistently catch InaccessibleObjectException next to IllegalAccessException #35190

Introduce Date-to-Instant and Instant-to-Date converters #35175

Consistent nullability and exception declarations in AbstractMessagingTemplate hierarchy #35159

Register runtime hints for Instant-to-Timestamp conversion #35156

Improve handling of ResponseEntity<?> in Spring MVC #35153

Support @CacheConfig("myCacheName") declarations for simplified configuration #35152

Declare messageSelector parameters in JmsOperations as @Nullable #35151

Add getter for OverflowStrategy in ConcurrentWebSocketSessionDecorator #35132

Use preset Content-Type for streaming and reactive responses in Spring MVC #35130

Leniently tolerate null @Aspect bean #35074

DataAccessResourceFailureException thrown when transaction times out on PostgreSQL #35073

MethodInvokingFactoryBean fails to invoke publicly exported methods overridden by internal classes when using JPMS #34028

🐞 Bug Fixes

Restore preference for interface (most abstract) method in getPubliclyAccessibleMethodIfPossible #35189

Make targetBeanName field in AbstractBeanFactoryBasedTargetSource protected to avoid exceptions in logging and toString() #35172

Fix inconsistencies in StaticListableBeanFactory #35119

Support StreamingHttpOutputMessage in RestClient #35102

When building DELETE requests, the request body is not used in JdkClientHttpRequest.buildRequest #35068

AOT-generated bean registration file contains "too many constants" when building with many beans #35044

Prevent cache pollution by storing only the factories #34732

WebFlux decodes wildcard content-types as form-data/multipart #34660

AOT-generated CGLib proxies do not contain method overrides #34642

500 response for ResourceHttpRequestHandler when requested range is not satisfied #34490

📔 Documentation

Document how to register runtime hints for convention-based conversion #35178

Link to @ContextConfiguration Javadoc from reference manual #35088

🔨 Dependency Upgrades

Upgrade to JUnit 5.13.3 #35103

Upgrade to Micrometer 1.14.9 #35202

Upgrade to Reactor 2024.0.8 #35201

❤️ Contributors

Thank you to all the contributors who worked on this release:

@Meijuh, @RazorNd, @chenggwang, @izeye, @mjd507, @ngocnhan-tran1996, and @philwebb

Commits

09a5ca3 Release v6.2.9
a4ec25d Upgrade to MockK 1.13.17
0fc043f Upgrade to Netty 4.1.123, Selenium 4.34, XMLUnit 2.10.3
5473260 Backport nullability refinements for Micrometer
12a6098 Upgrade to Reactor 2024.0.8 and Micrometer 1.14.9
f86034b Drop final declaration from doFilter entry point (for CGLIB proxying)
2180783 Upgrade to Jetty 12.0.23, Netty 4.1.122, Gson 2.13.1, Caffeine 3.2.1
2434bb1 Polishing
4063cb5 Publish releases using Central Portal
4277682 Catch InaccessibleObjectException next to IllegalAccessException
Additional commits viewable in compare view

Updates org.springframework:spring-context from 6.2.8 to 6.2.9

Release notes

Sourced from org.springframework:spring-context's releases.

v6.2.9

⭐ New Features

OncePerRequestFilter cannot be CGLib-proxied #35198

Consistently catch InaccessibleObjectException next to IllegalAccessException #35190

Introduce Date-to-Instant and Instant-to-Date converters #35175

Consistent nullability and exception declarations in AbstractMessagingTemplate hierarchy #35159

Register runtime hints for Instant-to-Timestamp conversion #35156

Improve handling of ResponseEntity<?> in Spring MVC #35153

Support @CacheConfig("myCacheName") declarations for simplified configuration #35152

Declare messageSelector parameters in JmsOperations as @Nullable #35151

Add getter for OverflowStrategy in ConcurrentWebSocketSessionDecorator #35132

Use preset Content-Type for streaming and reactive responses in Spring MVC #35130

Leniently tolerate null @Aspect bean #35074

DataAccessResourceFailureException thrown when transaction times out on PostgreSQL #35073

MethodInvokingFactoryBean fails to invoke publicly exported methods overridden by internal classes when using JPMS #34028

🐞 Bug Fixes

Restore preference for interface (most abstract) method in getPubliclyAccessibleMethodIfPossible #35189

Make targetBeanName field in AbstractBeanFactoryBasedTargetSource protected to avoid exceptions in logging and toString() #35172

Fix inconsistencies in StaticListableBeanFactory #35119

Support StreamingHttpOutputMessage in RestClient #35102

When building DELETE requests, the request body is not used in JdkClientHttpRequest.buildRequest #35068

AOT-generated bean registration file contains "too many constants" when building with many beans #35044

Prevent cache pollution by storing only the factories #34732

WebFlux decodes wildcard content-types as form-data/multipart #34660

AOT-generated CGLib proxies do not contain method overrides #34642

500 response for ResourceHttpRequestHandler when requested range is not satisfied #34490

📔 Documentation

Document how to register runtime hints for convention-based conversion #35178

Link to @ContextConfiguration Javadoc from reference manual #35088

🔨 Dependency Upgrades

Upgrade to JUnit 5.13.3 #35103

Upgrade to Micrometer 1.14.9 #35202

Upgrade to Reactor 2024.0.8 #35201

❤️ Contributors

Thank you to all the contributors who worked on this release:

@Meijuh, @RazorNd, @chenggwang, @izeye, @mjd507, @ngocnhan-tran1996, and @philwebb

Commits

09a5ca3 Release v6.2.9
a4ec25d Upgrade to MockK 1.13.17
0fc043f Upgrade to Netty 4.1.123, Selenium 4.34, XMLUnit 2.10.3
5473260 Backport nullability refinements for Micrometer
12a6098 Upgrade to Reactor 2024.0.8 and Micrometer 1.14.9
f86034b Drop final declaration from doFilter entry point (for CGLIB proxying)
2180783 Upgrade to Jetty 12.0.23, Netty 4.1.122, Gson 2.13.1, Caffeine 3.2.1
2434bb1 Polishing
4063cb5 Publish releases using Central Portal
4277682 Catch InaccessibleObjectException next to IllegalAccessException
Additional commits viewable in compare view

Updates org.springframework:spring-test from 6.2.8 to 6.2.9

Release notes

Sourced from org.springframework:spring-test's releases.

v6.2.9

⭐ New Features

OncePerRequestFilter cannot be CGLib-proxied #35198

Consistently catch InaccessibleObjectException next to IllegalAccessException #35190

Introduce Date-to-Instant and Instant-to-Date converters #35175

Consistent nullability and exception declarations in AbstractMessagingTemplate hierarchy #35159

Register runtime hints for Instant-to-Timestamp conversion #35156

Improve handling of ResponseEntity<?> in Spring MVC #35153

Support @CacheConfig("myCacheName") declarations for simplified configuration #35152

Declare messageSelector parameters in JmsOperations as @Nullable #35151

Add getter for OverflowStrategy in ConcurrentWebSocketSessionDecorator #35132

Use preset Content-Type for streaming and reactive responses in Spring MVC #35130

Leniently tolerate null @Aspect bean #35074

DataAccessResourceFailureException thrown when transaction times out on PostgreSQL #35073

MethodInvokingFactoryBean fails to invoke publicly exported methods overridden by internal classes when using JPMS #34028

🐞 Bug Fixes

Restore preference for interface (most abstract) method in getPubliclyAccessibleMethodIfPossible #35189

Make targetBeanName field in AbstractBeanFactoryBasedTargetSource protected to avoid exceptions in logging and toString() #35172

Fix inconsistencies in StaticListableBeanFactory #35119

Support StreamingHttpOutputMessage in RestClient #35102

When building DELETE requests, the request body is not used in JdkClientHttpRequest.buildRequest #35068

AOT-generated bean registration file contains "too many constants" when building with many beans #35044

Prevent cache pollution by storing only the factories #34732

WebFlux decodes wildcard content-types as form-data/multipart #34660

AOT-generated CGLib proxies do not contain method overrides #34642

500 response for ResourceHttpRequestHandler when requested range is not satisfied #34490

📔 Documentation

Document how to register runtime hints for convention-based conversion #35178

Link to @ContextConfiguration Javadoc from reference manual #35088

🔨 Dependency Upgrades

Upgrade to JUnit 5.13.3 #35103

Upgrade to Micrometer 1.14.9 #35202

Upgrade to Reactor 2024.0.8 #35201

❤️ Contributors

Thank you to all the contributors who worked on this release:

@Meijuh, @RazorNd, @chenggwang, @izeye, @mjd507, @ngocnhan-tran1996, and @philwebb

Commits

09a5ca3 Release v6.2.9
a4ec25d Upgrade to MockK 1.13.17
0fc043f Upgrade to Netty 4.1.123, Selenium 4.34, XMLUnit 2.10.3
5473260 Backport nullability refinements for Micrometer
12a6098 Upgrade to Reactor 2024.0.8 and Micrometer 1.14.9
f86034b Drop final declaration from doFilter entry point (for CGLIB proxying)
2180783 Upgrade to Jetty 12.0.23, Netty 4.1.122, Gson 2.13.1, Caffeine 3.2.1
2434bb1 Polishing
4063cb5 Publish releases using Central Portal
4277682 Catch InaccessibleObjectException next to IllegalAccessException
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps `spring.version` from 6.2.8 to 6.2.9. Updates `org.springframework:spring-core` from 6.2.8 to 6.2.9 - [Release notes](https://github.com/spring-projects/spring-framework/releases) - [Commits](spring-projects/spring-framework@v6.2.8...v6.2.9) Updates `org.springframework:spring-context` from 6.2.8 to 6.2.9 - [Release notes](https://github.com/spring-projects/spring-framework/releases) - [Commits](spring-projects/spring-framework@v6.2.8...v6.2.9) Updates `org.springframework:spring-test` from 6.2.8 to 6.2.9 - [Release notes](https://github.com/spring-projects/spring-framework/releases) - [Commits](spring-projects/spring-framework@v6.2.8...v6.2.9) --- updated-dependencies: - dependency-name: org.springframework:spring-core dependency-version: 6.2.9 dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework:spring-context dependency-version: 6.2.9 dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework:spring-test dependency-version: 6.2.9 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

k8s-ci-robot · 2025-07-18T02:39:19Z

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: dependabot[bot]
Once this PR has been reviewed and has the lgtm label, please assign yue9944882 for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Jul 18, 2025

k8s-ci-robot requested review from brendandburns and yue9944882 July 18, 2025 02:39

k8s-ci-robot added cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. labels Jul 18, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

build(deps): bump spring.version from 6.2.8 to 6.2.9 #4142

build(deps): bump spring.version from 6.2.8 to 6.2.9 #4142

dependabot bot commented on behalf of github Jul 18, 2025

Uh oh!

k8s-ci-robot commented Jul 18, 2025

Uh oh!

Uh oh!

build(deps): bump spring.version from 6.2.8 to 6.2.9 #4142

Are you sure you want to change the base?

build(deps): bump spring.version from 6.2.8 to 6.2.9 #4142

Conversation

dependabot bot commented on behalf of github Jul 18, 2025

v6.2.9

⭐ New Features

🐞 Bug Fixes

📔 Documentation

🔨 Dependency Upgrades

❤️ Contributors

v6.2.9

⭐ New Features

🐞 Bug Fixes

📔 Documentation

🔨 Dependency Upgrades

❤️ Contributors

v6.2.9

⭐ New Features

🐞 Bug Fixes

📔 Documentation

🔨 Dependency Upgrades

❤️ Contributors

Uh oh!

k8s-ci-robot commented Jul 18, 2025

Uh oh!

Uh oh!