There was a flurry of activity in the Spring ecosystem during the week of June 17th, 2024, highlighting point releases of: Spring Boot 3.3.1 and 3.2.7; Spring Security 6.3.1, 6.2.5 and 5.8.13; Spring Session 3.3.1 and 3.2.4; and Spring Modulith 1.2.1, 1.1.6 and 1.0.9.
Spring Boot
The release of Spring Boot versions 3.3.1 and 3.2.7 deliver improvements in documentation, dependency upgrades and resolutions to notable issues such as: an IllegalArgumentException when trying to use an instance of the Tomcat Http11Nio2Protocol class with Spring Boot-configured SSL; and an instance of the DataSourceProperties class fails to bind if the java.sql module isn't included. Further details on these releases may be found in the release notes for version 3.3.1 and version 3.2.7.
Spring Framework
Spring Framework 6.1.10, the tenth maintenance release, provides bug fixes (that include regressions from version 6.1.9), improvements in documentation and new features: an instance of the PersistenceExceptionTranslationInterceptor class now defensively retrieves PersistenceExceptionTranslator interface beans to cover scenarios where the translator has not been initialized before shutdown; and support for all "connection reset" exception phrases from the DisconnectedClientHelper class. This version is included in the release of Spring Boot 3.2.7 and 3.3.1. More details on this release may be found in the release notes.
Spring Security
Versions 6.3.1, 6.2.5 and 5.8.13 of Spring Security have been released that ship with bug fixes, dependency upgrades, build updates and new features such as: enhanced logging from within the check() method, defined in the RequestMatcherDelegatingAuthorizationManager class, that did not provide useful information; and an update to the ldap.adoc file to include the required dependencies to avoid issues that developers have experienced while setting up LDAP. Further details on these releases may be found in the release notes for version 6.3.1, version 6.2.5 and version 5.8.13.
Spring Authorization Server
Versions 1.3.1 and 1.2.5 of Spring Authorization Server have been released featuring dependency upgrades and resolutions to issues: a ClassNotFoundException due to AOT hints preventing compilation when using JdbcOAuth2AuthorizationService or JdbcRegisteredClientRepository classes; and authentication for an X509 client certificate enforces the value assigned to the client_id field in the YAML configuration file without first checking on client authentication method. More details on these releases may be found in the release notes for version 1.3.1 and version 1.2.5.
Spring for GraphQL
Versions 1.3.1 and 1.2.7 of Spring for GraphQL have been released providing bug fixes, improvements in documentation, dependency upgrades and new features: support for returning instances of the Reactor Flux class from methods annotated with @EntityMapping to complement existing support for List, Mono<List> and CompletableFuture<List>; and allow the use of GraphQL Java 21.x in the Spring for GraphQL 1.2 release train. These versions are included in the release of Spring Boot 3.2.7 and 3.3.1, respectively. Further details on these releases may be found in the release notes for version 1.3.1 and version 1.2.7.
Spring Session
Versions 3.3.1 and 3.2.4 of Spring Session have been released with dependency upgrades and a new feature that resolves an issue in which a default implementation of the UserDetails interface, User, is returned instead of a user-defined custom implementation. More details on these releases may be found in the release notes for version 3.3.1 and version 3.2.4.
Spring Integration
Versions 6.3.1 and 6.2.6 of Spring Integration have been released featuring bug fixes, improvements in documentation, dependency upgrades and a new feature that provides the ZeroMqMessageHandler class with an optional topic for distributing messages into subscriptions that must be wrapped with an additional empty frame. This would complement the existing default topic. Further details on these releases may be found in the release notes for version 6.3.1 and version 6.2.6.
Spring Modulith
Versions 1.2.1 and 1.1.6 of Spring Modulith have been released featuring: an improved configuration of the ApplicationModuleDetectionStrategy interface via the spring.modulith.detection-strategy property that will accept values direct-sub-packages (default) or explicitly-annotated; a resolution to named interface detection accidentally picking up nested declarations in a nested interfaces scenario; and dependency upgrades to Spring Boot 3.3.1 and 3.2.7, respectively. More details on these releases may be found in the release notes for version 1.2.1 and version 1.1.6.
Spring AMQP
Version 3.1.6 of Spring AMQP has been released featuring dependency upgrades and resolutions to issues: the release() method, defined in the ActiveObjectCounter class, is unreachable due to the SimpleMessageListenerContainer class not having released the consumer variable; and elimination of an interrupted thread after performing target logic by moving the cancelTimeoutTaskIfAny() method, defined in the RabbitFuture class, into a finally block. Further details on this release may be found in the release notes.
Spring for Apache Kafka
Versions 3.2.1 and 3.1.6 of Spring for Apache Kafka have been released providing bug fixes, dependency upgrades and a new feature that adds tracing headers, now mapped to a string, in the AbstractKafkaHeaderMapper class after the migration from Sleuth to Micrometer. These versions are included in the release of Spring Boot 3.2.7 and 3.3.1, respectively. More details on these releases may be found in the release notes for version 3.2.1 and version 3.1.6.
Spring for Apache Pulsar
Versions 1.1.1 and 1.0.7 of Spring for Apache Pulsar have been released featuring numerous dependency upgrades that include: Micrometer Metrics 1.13.1 and 1.12.7, respectively; Reactive Client for Apache Pulsar 0.5.6; and Spring Framework 6.1.9. These versions are included in the release of Spring Boot 3.2.7 and 3.3.1, respectively. Further details on these releases may be found in the release notes for version 1.1.1 and version 1.0.7.
Spring Tools
Less than a week after the release of version 4.23.0, version 4.23.1 of Spring Tools has been released to deliver important fixes such as: adding preferences/settings for enabling/disabling JPQL, HQL and SQL syntax validation as well as severities for syntax problems inside Spring Data queries that were missing; and a StackOverflowException from within the AnnotationHierarchies class upon opening a Spring Boot project in VSCode. More details on this release may be found in the release notes.