Update dependency org.springframework:spring-context to v5.1.0.RELEASE - abandoned

[mend-for-github-com]

This PR contains the following updates:

Package	Update	Change
org.springframework:spring-context	minor	5.0.0.RELEASE -> 5.1.0.RELEASE

By merging this PR, the below issues will be automatically resolved and closed:

Severity	CVSS Score	CVE	GitHub Issue
High	7.5	CVE-2018-1272	#80
Medium	6.5	CVE-2022-22950	#501
Medium	5.3	CVE-2018-1199	#134
Medium	4.3	CVE-2021-22096	#464

By merging this PR, the below issues will be automatically resolved and closed:

Severity	CVSS Score	CVE	GitHub Issue
High	9.8	CVE-2022-22965	#504

---

Release Notes

spring-projects/spring-framework

v5.1.0.RELEASE

⭐ New Features

• GenericApplicationContext.registerBean should support non-default constructors [SPR-17292] #​21825
• Expose more AbstractBeanDefinition methods in BeanDefinition [SPR-17275] #​21808
• Add a BeanFactory#getBeanProvider Kotlin extension [SPR-17274] #​21807
• BeanValidationPostProcessor(afterInitialization=true) fails for cglib proxied bean [SPR-17273] #​21806
• Ordered list access for BeanFactory.getBeanProvider(), superseding ObjectProvider [SPR-17272] #​21805
• Truncate large response bodies when logging in RequestResponseBodyMethodProcessor [SPR-17254] #​21787
• Use doOnDiscard to free internally queued data buffers [SPR-17246] #​21779
• Bean definition DSL does not generate unique bean names [SPR-17242] #​21775
• Autowiring inconsistency: @Qualifier works with HashMap but not with Map [SPR-17197] #​21731
• Expose the remote IP in ServerHttpRequest and WebSocketSession [SPR-17192] #​21727
• Provide matched pattern information in WebFlux fn [SPR-17098] #​21635
• Initial GraalVM native images (Substrate VM) support [SPR-16991] #​21529
• SchedulerFactoryBean should not override explicit "org.quartz.scheduler.instanceName" setting with bean name [SPR-16884] #​21423
• DataBufferUtils does not release DataBuffer on error cases [SPR-16782] #​21322
• Allow configuration for DEFAULT_FRAME_MAX_SIZE of WebSocketSession on WebFlux with Netty [SPR-16228] #​20776

🪲 Bug Fixes

• Concurrency Exception during bean configuration related to not thread safe getBeanPostProcessor access [SPR-17286] #​21819
• getBean(Class) lookup performance degredation [SPR-17282] #​21815
• Proper way to dispose of Response [SPR-17268] #​21801
• UriComponentsBuilder.uriComponents doesn't properly clone unmodifiable queryParams [SPR-17256] #​21789
• PathPatternPredicate still changes variables after failed AndPredicate [SPR-17210] #​21743
• JUnit Jupiter @Nested class cannot share enclosing class's ApplicationContext if nested class is deemed to be a configuration candidate [SPR-16595] #​21136

📔 Documentation

• Javadoc for BufferingClientHttpRequestFactory is missing the end of a sentence [SPR-17261] #​21794
• Typo on ServletUriComponentsBuilder javadoc comments [SPR-17255] #​21788
• Add example of WebClient timeout settings [SPR-17241] #​21774

v5.0.20.RELEASE

⭐ New Features

• ContentCachingResponseWrapper should not add “Content-Length” when “Transfer-Encoding” is present #​26193
• Inefficient request handling inside ServletRequestDataBinder #​26006
• Avoid creation of unused logger instance in AbstractMediaTypeExpression #​25903

🪲 Bug Fixes

• Remove duplicate "property" in PropertyCacheKey.toString() #​26244
• UrlPathHelper#removeJsessionid doesn't remove the jsessionid from the URL #​26085
• LinkedMultiValueMap downstream issue with MultiValueMapAdapter package private base class #​25962
• Wrong type inference in Kotlin while overriding RequestMappingHandlerMapping#getMappingForMethod #​25873
• ClassCastException when wiring bean using method injection (NullBean instead of 'null') #​25870
• jsessionid breaks request mappings when removeSemicolonContent is turned off #​25868

📔 Documentation

• DateTimeFormat ISO.DATE_TIME javadoc contains misleading default note #​26137
• Incorrect example in javadocs of Assert.notNull(object, messageSupplier) #​25871

v5.0.19.RELEASE

⭐ New Features

• PropertiesLoaderSupport should ignore socket/connect exceptions as well #​25721
• Possible optimization in UrlResource #​25551
• Refine use of substring operations #​25514

🪲 Bug Fixes

• FileUrlResource isWritable method returns true if URL protocol is not indicating a file #​25740
• VerifyErrors when using SpEL compilation with Thymeleaf when invoking a default method defined in an interface #​25712
• CallMetaDataContext.reconcileParameters overwrites cursor name #​25709
• SQLErrorCodesFactory.getErrorCodes(DataSource) returns empty error codes if access to transactional connection fails #​25693
• Joda-Time presence check fails to detect Joda-Time 2.x specifically #​25659
• Potential integer overflow in AbstractResourceBasedMessageSource.setCacheSeconds(int) #​25643
• Lazy dependency proxy does not populate bean dependencies #​25564
• StaticListableBeanFactory.isSingleton() returns false for singleton beans #​25524
• MockHttpServletResponse reset() does not reset charset field #​25511

📔 Documentation

• Document how to specify Jackson JSON view serialization hints with @RestController and Webflux #​25705
• Prevent confusion about build(boolean) method in UriComponentsBuilder #​25702

v5.0.18.RELEASE

⭐ New Features

• Defer creating logger in StandardWebSocketHandlerAdapter #​25434
• Missing null checks in AbstractMessageChannel.addInterceptor/setInterceptors #​25220
• Avoid full synchronization in AbstractRefreshableApplicationContext.getBeanFactory() since it can lead to massive thread blocking #​25218

🪲 Bug fixes

• UriComponentsBuilder.cloneBuilder() cause sharing query parameters between builders #​25425
• DefaultListableBeanFactory.getBean(Class) may throw NoSuchBeanDefinitionException when removeBeanDefinition is being called simultaneously to remove an unrelated bean #​25422
• Oracle LOB segments holding TEMP space after executing SP using SimpleJdbcCall with SqlParameterSource #​25418
• NoRollbackFor rule causes TransactionAspectSupport to log unwarranted "exception overridden" error on WebSphere #​25268
• The AbstractTemplateViewResolver class is not abstract #​25242
• MultiValueMapAdapter.getFirst fails with IndexOutOfBoundsException in case of empty List #​25226
• WebSphereUowTransactionManager causes exception for PROPAGATION_SUPPORTS when timeout is specified #​25224
• Avoid ClassCastException on IllegalArgumentException when invoking sync get cache method #​25222

📔 Documentation

• Clarify enforceInitMethod/enforceDestroyMethod default values in AbstractBeanDefinition #​25404
• Document exception handling limitations in TaskDecorator implementations (specifically for ThreadPoolTaskExecutor#submit) #​25234

v5.0.17.RELEASE

⭐ New Features

• Honor overridden AcceptHeaderLocaleContextResolver.getDefaultLocale() #​24877
• Consistent ROLE_INFRASTRUCTURE declarations for internal configuration classes #​24515

🪲 Bug Fixes

• MockHttpServletRequest should not strip brackets from IPV6 address supplied via Host header #​24918
• Connection created by SingleConnectionDataSource with suppressClose=true always returns isClosed=false even if the target connection is closed #​24859
• DefaultListableBeanFactory.getBean(Class) throws NoSuchBeanDefinitionException on existing bean if getBean(Class) previously tried before registration #​24856
• Recursively copy directory with symbolic link #​24827
• Using UriComponentsBuilder.cloneBuilder does not copy uriVariables #​24780
• Missing nullability declarations for package web.socket.server.jetty #​24751
• MediaTypeNotSupportedStatusException seems unused #​24749
• addCandidateComponentsFromIndex should create ScannedGenericBeanDefinitions #​24640
• Cycle in LogAdapter.Log4jLog initialization within log appender #​24451

📔 Documentation

• Update advice on RestTemplate #​24504

v5.0.16.RELEASE

⭐ New Features

• Cache result of String.getBytes() in ExtendedBeanInfo.PropertyDescriptorComparator #​24109
• Avoid substring allocation in StringUtils.replace #​24025
• Support for new MySQL 8 error code 3572 #​23974

🪲 Bug Fixes

• Unsafe double-checked locking in SpelExpression#compileExpression #​24307
• Escape quotes in filename in ContentDisposition.Builder when charset not specified #​24230
• SqlRowSet accessor methods should be marked @Nullable #​24045
• Allow schemaZip Gradle task to execute on MS Windows #​23988
• Bean definition override leads to NPE due to inconsistent equality check #​23709
• Fix DefaultListableBeanFactory#copyConfigurationFrom #​23708
• Synchronized blocks in MethodOverrides are hurting concurrency #​23707

📔 Documentation

• TypeDescriptor#getElementTypeDescriptor does not throw IllegalStateException anymore #​23998
• Correct Javadoc for WebMvcConfigurer#addInterceptors #​23926

v5.0.15.RELEASE

⭐ New Features

• Javadoc missing on some public BeanDefinitionParserDelegate methods #​23398
• Thread-safe removal of destruction callbacks in web scopes #​23118
• Guard against ConcurrentModificationExceptions in the systemProperties PropertySource #​23112
• Avoid expensive assertions in web resource resolution #​22964

🪲 Bug Fixes

• Session.close() accidentally triggers creation of TransactionAwareDataSourceProxy Connection #​23396
• MethodParameter.equals is too coarse-grained for its use in HandlerMethodArgumentResolverComposite #​23386
• ResolvableType.forRawClass fails isAssignable against TypeVariable #​23322
• FlashMapManager throws StringIndexOutOfBoundsException for empty target URL path #​23245
• MappingMediaTypeFileExtensionResolver ConcurrentModificationException #​23113
• Fix MockHttpServletRequest.setCookies to produce single Cookie header #​23085
• Fix ScriptUtils for MS Windows line ending #​23027

📔 Documentation

• Improve documentation for @Autowired constructors #​23309
• Document that Ordered is not supported for @ControllerAdvice beans #​23173
• Reintroduce author list and copyright notice #​23080
• spring-mvc.xsd stale-if-error attribute documentation incorrect #​23000
• AbstractBeanDefinition.getBeanClass() javadoc misleads about returning null #​22966

v5.0.14.RELEASE

⭐ New Features

• Avoid expensive assertions in HttpRange #​22746

🪲 Bug Fixes

• Consistent handling of empty List entries in LinkedMultiValueMap #​22913
• EL1072E when evaluating compiled comparison expression #​22879
• ResourceUrlEncodingFilter throws StringIndexOutOfBoundsException when %ED%B6 is in the URL path #​22863
• Jackson2ObjectMapperBuilder prevents the registration of multiple modules with a null typeId #​22763

v5.0.13.RELEASE

⭐ New Features

• Revisit XML schema handling for consistent local vs external resolution #​22529
• JdbcTemplate.extractOutputParameters should preserve order of parameters #​22493
• Avoid duplicate call to findAnnotations in DefaultListableBeanFactory.findAnnotationOnBean #​22355

🪲 Bug Fixes

• Avoid duplicate registration of @ControllerAdvice implementing both RequestBodyAdvice and ResponseBodyAdvice #​22684
• Locale inconsistently resolves to null for invalid input value #​22658
• Jackson2ObjectMapperBuilder's modulesToInstall function does not eventually override the default configuration #​22625
• Last-Modified Date format changed with SPR-17571 to not have double digit day #​22611
• ServletWebRequest.getHeaderValues throwing NPE when header information is not available #​22550
• Events extending from PayloadApplicationEvent and implementing an interface fail to match @EventListener argument #​22470
• AbstractTraceInterceptor causes problems when implemented in Kotlin #​22456
• DefaultConversionService fails to properly convert an Object[] to a int[] #​22414
• IllegalArgumentException when overriding empty 'excludeFilters' array on @ComponentScan #​22407
• RestTemplate adds duplicate accept header information [SPR-16690] #​22401
• @Transactional beans not getting proxied when being initialized during failed circular reference attempt #​22377
• ApplicationContext.refresh() causes stale listeners to be added to ApplicationEventMulticaster #​22374
• ApplicationListenerMethodAdapter does not find @Ordered annotation for dynamic proxies #​22353

📔 Documentation

• Update documentation for WebJar support #​22615
• Spring MVC documentation has incorrect WebFlux reference #​22380

v5.0.12.RELEASE

⭐ New Features

• NettyDataBufferFactory.join should return original buffer as-is in case of a single element (for compatibility with Netty 4.1.32) [SPR-17560] #​22092

🪲 Bug Fixes

• 'default-lazy-init' attribute is not processed when XSD validation is disabled [SPR-8335] #​12983
• Spring JavaMailSenderImpl does not show proper message when recipient list is empty [SPR-17540] #​22072
• Potential resource leak in DataSourceUtils.doGetConnection [SPR-17559] #​22091
• SpEL variable evaluation fails with NPE against ConcurrentHashMap [SPR-17565] #​22097
• MockHttpServletRequest changes Accept-Language header values [SPR-17566] #​22098
• Exporting a lazily initialized bean (which implements SelfNaming and is annotated with ManagedResource annotation) gives IllegalStateException [SPR-17592] #​22124
• SpEL, error parsing big InlineMap [SPR-17605] #​22137
• @Value Optional<...> field injection fails in case of registered ConversionService [SPR-17607] #​22139
• ChannelSendOperator does not propagate cancel signal to the server [SPR-17609] #​22141
• Cannot convert from Collection to RegularEnumSet [SPR-17619] #​22151
• MockMvcResultMatchers.forwardedUrl argument is not declared as nullable [SPR-17623] #​22155
• UriComponentsBuilder.toUriString() is broken [SPR-17630] #​22161

📔 Documentation

• Error in reference documentation sentence in part 1.8.1. Customizing Beans by Using a BeanPostProcessor [SPR-17556] #​22088
• Typo in SpEL Evaluation Context Sample [SPR-17581] #​22113

v5.0.11.RELEASE

⭐ New Features

• SpringFactoriesLoader should tolerate whitespace [SPR-17413] #​21946
• StandardEvaluationContext does not support concurrent variable access [SPR-17448] #​21980
• The onstatus method of webclient causes a memory leak. [SPR-17473] #​22005
• Expose mapped handler as request attribute in spring-webmvc [SPR-17518] #​22050
• Enforce use of unpooled data buffers for WebFlux on 5.0.x [SPR-17501] #​22033

🪲 Bug Fixes

• Unable to use Kotlin enums with @Validated beans [SPR-16931] #​21470
• ExceptionHandlerExceptionResolver started to log on WARN level [SPR-17383] #​21916
• MethodValidationPostProcessor still validates FactoryBean methods on CGLIB proxies [SPR-17386] #​21919
• Spring logs a nasty looking stack trace for unhandled classpath URL [SPR-17417] #​21950
• ResourceUrlEncodingFilter does not work with HttpServletRequestWrapper [SPR-17421] #​21954
• CssLinkResourceTransformer breaks absolute paths [SPR-17432] #​21965
• Configure ResourceUrlProvider in WebFlux and resource chain infrastructure [SPR-17433] #​21966
• RestTemplate does not throw exception for custom error codes [SPR-17439] #​21971
• ConcurrentModificationException in DispatcherServlet with asynchronous ApplicationEventMulticaster [SPR-17442] #​21974
• WebClient's UriBuilder option should encode path parameters passed into build [SPR-17465] #​21997
• NamedParameterJdbcTemplate batchUpdate returns an array of size 1 when the batchArgs passed is an empty array [SPR-17476] #​22008
• NPE in ClientRequest.attribute(name) when accessing null value [SPR-17486] #​22018
• FastByteArrayInputStream.read() wrong return value [SPR-17492] #​22024
• Remove Content-Length response header before delegating to WebExceptionHandlers [SPR-17502] #​22034
• Reserializing a lenient fallback DefaultListableBeanFactory causes an error [SPR-17508] #​22040
• getBeanNamesForType(ResolvableType) doesn't work for raw singleton instance from @Bean method with generic return type [SPR-17524] #​22056
• ForwardedHeaderTransformer double encodes [SPR-17525] #​22057
• CachingMetadataReaderFactory does not release shared resource cache after context refresh [SPR-17527] #​22059
• Parameter resolution in SpringExtension is not thread-safe [SPR-17533] #​22065
• MethodParameter.findParameterIndex() is not thread-safe [SPR-17534] #​22066

📔 Documentation

• Improve documentation on reactive types for ResponseEntity [SPR-17400] #​21933
• Improve visibility of GitHub wiki [SPR-17469] #​22001
• Misleading alias definition example in reference documentation, part 1.3.1 [SPR-17536] #​22068

v5.0.10.RELEASE

⭐ New Features

• DataBufferUtils does not release DataBuffer on error cases [SPR-16782] #​21322
• Support for removeHeader in MockHttpServletRequest [SPR-17295] #​21828
• Unnecessary sort in AbstractApplicationEventMulticaster [SPR-17307] #​21840
• Sanity checks for HTTP range requests [SPR-17318] #​21851
• HeaderResultMatchers susceptible to slight variations in the date format [SPR-17330] #​21864
• ServerWebInputException is throw each time Http request with mandatory request parameters is handled. [SPR-17338] #​21872

🪲 Bug Fixes

• UriComponentsBuilder.uriComponents doesn't properly clone unmodifiable queryParams [SPR-17256] #​21789
• MockHttpServletResponse doesn't propagate Content-Language response header [SPR-17284] #​21817
• Concurrency Exception during bean configuration related to not thread safe getBeanPostProcessor access [SPR-17286] #​21819
• HTTP 404 for static resources with last modified = 0L (breaks Docker images build with Jib) [SPR-17320] #​21853
• ApplicationListener is missing from Collection returned by getApplicationListeners() if it was added after the multicaster was initialised [SPR-17324] #​21858
• Integer overflow while uploading big files (> 2.1 GB) using webflux [SPR-17345] #​21879
• AnnotationMetadata.getAnnotationAttributes inconsistency for empty array in ASM implementation [SPR-17347] #​21881
• MockAsyncContext not found. Did request wrapper not delegate startAsync? [SPR-17353] #​21887
• Comparators.nullsLow creates wrong kind of NullSafeComparator [SPR-17357] #​21891
• MethodValidationPostProcessor validates FactoryBean methods for which validation is not applicable [SPR-17374] #​21907
• DataBufferUtils#join could leak buffers in case of error from the source [SPR-17025] #​21563

📔 Documentation

• Typo on ServletUriComponentsBuilder javadoc comments [SPR-17255] #​21788
• Javadoc for BufferingClientHttpRequestFactory is missing the end of a sentence [SPR-17261] #​21794
• Misleading description in Autowired javadoc [SPR-17299] #​21832

v5.0.9.RELEASE

⭐ New Features

• Usage of ClassLoader.loadClass() in ConfigurationClassParser [SPR-17253] #​21786
• Spring WebSocket Stomp tomcat cluster with user destinations sends message to wrong subscriber. [SPR-17228] #​21761
• Support both filters and views in AbstractJackson2HttpMessageConverter [SPR-17209] #​21742
• WebFlux JSON request body garbled under heavy load [SPR-17193] #​21728
• Consistent warn logging for handled exceptions [SPR-17178] #​21714
• ClassUtils optimization for less expensive static initialization [SPR-17169] #​21705
• BindingAwareConcurrentModel should properly react to null value [SPR-17141] #​21678
• DataBufferUtils#takeUntilByteCount checks one extra buffer but does not release it [SPR-17118] #​21655
• Initialize pre-filled HashMaps with large enough capacity (e.g. in HttpMethod) [SPR-17105] #​21642
• Avoid unnecessary synthesizable annotation processing [SPR-16933] #​21472

🪲 Bug Fixes

• 'ListBasedXMLEventReader.getElementText()' doesn't work [SPR-17233] #​21766
• EL1072 when evaluating compiled expression using method SpelExpression.getValue(Object rootObject, Class expectedResultType) [SPR-17229] #​21762
• Kotlin inner class nested configuration causes IndexOutOfBoundsException [SPR-17222] #​21755
• WebClient does not write Mono.empty() request body [SPR-17220] #​21753
• Compiled elvis operator does not work correctly when default value is a complex expression [SPR-17214] #​21747
• HeaderAssertions.lastModified/expires takes an int value but it should be long [SPR-17194] #​21729
• SimpleAliasRegistry.hasAlias does not properly resolve multiple chained aliases [SPR-17191] #​21726
• UriComponentsBuilder does not encode "$" properly [SPR-17168] #​21704
• @Scheduled task runs twice on bean with target-class scoped proxy (when injected) [SPR-17166] #​21702
• CheckboxTag incorrectly processing hidden field through RequestDataValueProcessor [SPR-17147] #​21684
• Annotations on generic superclass methods not found by AnnotationUtils [SPR-17146] #​21683
• ContextPathCompositeHandler returns 200 when no path found [SPR-17144] #​21681
• SchedulerAccessor needs to catch primary key violation on reschedule (due to Quartz race condition) [SPR-17114] #​21651
• WebTestClient ignores WebSessionManager bean [SPR-17094] #​21631
• Classification of ClassCastExceptions doesn't work in JDK 11 (OpenJDK) [SPR-17093] #​21630
• Inconsistent handling of dependent lifecycle beans in DefaultLifecycleProcessor [SPR-16901] #​21440

📔 Documentation

• Removed Jackson view property "renderedAttributes" still mentioned in Spring Framework docs [SPR-17182] #​21718
• Rewrite 1.10.8. PDF, Excel paragraph in Spring Framework Documentation [SPR-17180] #​21716
• Fix broken links and address warnings for JavaDoc [SPR-17174] #​21710
• Generate "Use" pages in aggregated Spring API documentation (Javadoc) [SPR-17173] #​21709
• Incorrect CORS code fragment in Spring Framework Documentation [SPR-17167] #​21703
• Preserve-publish-order is mentioned in documentation of 5.0.x [SPR-17106] #​21643
• Incorrect query param code fragment in Spring Framework Documentation [SPR-17104] #​21641
• Revise BeanFactory vs ApplicationContext section in reference docs [SPR-17095] #​21632

v5.0.8.RELEASE

⭐ New Features

• Spring-context optimization: LinkedMultiValueMap and ArrayList should be initialized with specified capacity for preventing collections from resizing [SPR-17079] #​21616
• Cache order result per Class in OrderUtils (for AnnotationAwareOrderComparator) [SPR-17064] #​21602
• Add setter for order for DefaultSimpUserRegistry [SPR-17023] #​21561
• InMemoryWebSessionStore could leak memory if sessions created but never used [SPR-17020] #​21558
• Reduce the impact on startup time of adding Reactor to the classpath [SPR-16981] #​21519
• Lazily initialize SecureRandom in MimeTypeUtils [SPR-16974] #​21512
• StringUtils.cleanPath should not strip off the entire path for file:./ [SPR-16908] #​21447
• InMemoryWebSessionStore method to access map of sessions [SPR-16713] #​21254
• Revise StringUtils.parseLocale(String) for proper handling of corner cases [SPR-16651] #​21192
• Warn about use of SimpleAsyncTaskExecutor for async requests [SPR-16203] #​20751
• Annotations on generic interface methods not found by AnnotationUtils [SPR-16060] #​20609
• Content-Length should be set in the request when using reactive WebClient [SPR-16949] #​19562
• StringUtils#parseLocaleString(String) with Variant when no Country [SPR-7598] #​12254

🪲 Bug Fixes

• ResponseEntityResultHandler does not overwrite existing response headers [SPR-17082] #​21619
• MVC not rendering response headers for ResponseEntity<Flux> [SPR-17076] #​21614
• spring-webflux ModelAttributeMethodArgumentResolver validateIfApplicable [SPR-17073] #​21611
• @RequestParam throws java.lang.NullPointerException: The mapper returned a null value. [SPR-17050] #​21588
• AnnotationMetadataReadingVisitor.getMetaAnnotationTypes(String) may return null but it is not marked @Nullable [SPR-17046] #​21584
• AOP and use of redirect view can lead to unbounded caching in AbstractAutoProxyCreator [SPR-17045] #​21583
• Boundary info in Content-Type multipart request header not parsed correctly because of charset [SPR-17030] #​21568
• HtmlUnitRequestBuilder decodes plus sign in query parameter [SPR-17027] #​21565
• Spring 5.x DataSource proxying does not work with Oracle UCP on JDK 9+ [SPR-17003] #​21541
• Map injection fails to find bean produced with @Bean when additional method with same name exists [SPR-16999] #​21537
• ConcurrentReferenceHashMap does not enforce visibility of cached EntrySet [SPR-16994] #​21532
• The WebHttpHandlerBuilder copy constructor does not copy the applicationcontext [SPR-16972] #​21510
• Share ByteBufferPool between UndertowWebSocketClient connections (avoiding risk of memory leaks) [SPR-16957] #​21495
• spring.ftl does not support turning off escaping for some macros on Spring 5 [SPR-16951] #​21489
• AbstractJackson2HttpMessageConverter incorrectly logs at WARN level after upgrading to Jackson 2.9 [SPR-16947] #​21486
• ResponseCookie prints incorrect max-age and expires values [SPR-16940] #​21479
• Problem with passing null parameter to MapSqlParameterSource [SPR-16843] #​21383

📔 Documentation

• Incorrect Class reference in documentation [SPR-17042] #​21580
• Update documentation references to Number/Currency/PercentStyleFormatter [SPR-17022] #​21560
• Doc: AsyncConfigurer causes dependencies to be created early [SPR-16945] #​21484

v5.0.7.RELEASE

⭐ New Features

• AbstractJackson2Encoder::getContentLength should not return null for MonoJust/FluxJust publisher [SPR-16892] #​21431
• ReflectivePropertyAccessor should cache sorted methods [SPR-16882] #​21421
• SimpleAliasRegistry misses log out in case of bean override [SPR-16871] #​21410
• Spring overrides user requested STOMP version [SPR-16844] #​21384
• Restrict allowed HTTP methods in HiddenHttpMethodFilter [SPR-16836] #​21376
• ServerHttpRequest.Builder should allow setting SslInfo [SPR-16830] #​21370
• Improve toString in path extension and query parameter predicates [SPR-16829] #​21369
• Filter synthetic in addition to bridge in ReflectionUtils#USER_DECLARED_METHODS [SPR-16823] #​21363
• Add description for StompBrokerRelayMessageHandler [SPR-16801] #​21341
• Deprecate JSONP support and update MappingJackson2JsonView defaults [SPR-16798] #​21338
• MockMVC ResultMatchers.status().is(200) - method call needs to be escaped in kotlin [SPR-16429] #​20975

🪲 Bug Fixes

• RestController fails with java.lang.ClassCastException: java.lang.String cannot be cast to org.springframework.core.io.support.ResourceRegion [SPR-16932] #​21471
• AbstractMethodMessageHandler does not rethrow Errors [SPR-16912] #​21451
• Fix faulty BeanPostProcessorChecker logs with @EnableCaching [SPR-16896] #​21435
• AbstractRequestLoggingFilter.isIncludeHeaders() is accidentally public [SPR-16881] #​21420
• MockMvc - IllegalStateException: Async result for handler was not set during specified timeToWait=-1 [SPR-16869] #​21408
• PathVariable with nested router function throws IllegalArgumentException [SPR-16868] #​21407
• MatrixVariable with Encoding does not work. [SPR-16867] #​21406
• Restore lenient null return value for ConditionContext.getBeanFactory() [SPR-16866] #​21405
• Flawed implementations of ResourceResolverChain and ResourceTransformerChain [SPR-16862] #​21401
• "Want" two-way-ssl not containing SSL-Certificate is not checkable due to contract violation [SPR-16842] #​21382
• Connection acquired while calling a stored procedure via JPA is not released [SPR-16826] #​21366
• Process cannot exit when the SchedulerFactoryBean fails to initialize [SPR-16816] #​21356
• UriComponentsBuilder injected into a WebFlux controller method argument uses the full URI [SPR-16813] #​21353
• AspectJ annotation pointcuts fail to evaluate against interface-based proxies [SPR-16803] #​21343

📔 Documentation

• Provide example of a WebSocketHandler implementation for WebFlux [SPR-16820] #​21360
• Incorrect Java Syntax in Spring Framework Documentation [SPR-16811] #​21351
• Documentation refers to org.projectreactor:reactor-net which seem not to exist on projectreactor Bismuth [SPR-16802] #​21342
• docs.zip does not contain resources at the root anymore [SPR-16799] #​21339
• [docs] Add WebFlux content on HTTP caching [SPR-16395] #​20941

v5.0.6.RELEASE

⭐ New Features

• Task "docsZip" copies duplicate reference files [SPR-16789] #​21329
• Consistent target method resolution for event and caching expressions [SPR-16779] #​21319
• WebFlux handles requests with an illegal Host header inconsistently [SPR-16778] #​21318
• Implement ReactorNettyWebSocketSession.close [SPR-16774] #​21314
• Prevent unnecessary ExchangeStrategies.withDefaults() in DefaultWebClientBuilder [SPR-16771] #​21311
• Improve performance of StringUtils#trimWhitespace method [SPR-16766] #​21307
• Validate contextPath in RedirectView [SPR-16752] #​21293
• No support for non-standard HTTP status codes in reactive ClientHttpResponse [SPR-16748] #​21289
• Expose configuration options for "selector" header [SPR-16732] #​21273
• Flag misguided evaluation attempts in OperatorMatches [SPR-16731] #​21272
• Avoid repeated superclass introspection in AnnotationUtils.findAnnotation [SPR-16730] #​21271
• SynchronossPartGenerator should reuse PartBodyStreamStorageFactory [SPR-16727] #​21268
• AbstractMessageReaderArgumentResolver.readBody should defer creating the error [SPR-16726] #​21267
• Revise JCA MessageEndpoint exception logging and propagation [SPR-16717] #​21258
• Revise cache safety check to avoid performance regression in EAR packaged applications on WildFly [SPR-16714] #​21255
• Add a default constructor to Reactive UrlBasedCorsConfigurationSource [SPR-16712] #​21253
• Proper exception for controller method return types that do not work with MvcUriComponentsBuilder (e.g. final classes) [SPR-16710] #​21251
• Reduce log verbosity on server-side after client unsubscribes from SSE stream [SPR-16688] #​21229
• Kotlin unable to inherit type for WebTestClient#BodySpec [SPR-15692] #​20251

🪲 Bug Fixes

• Restore YamlProcessor duplicate key handling against SnakeYAML 1.18+ (plus compatibility with 1.21) [SPR-16791] #​21331
• Singleton from a FactoryBean may be post-processed twice if the first post-processing triggers a second attempt to get the bean [SPR-16783] #​21323
• ResourceBundleMessageSource should avoid ResourceBundle.Control on Jigsaw [SPR-16776] #​21316
• NPE in SimpleClient-HttpURLConnection with errorstream-buffering [SPR-16773] #​21313
• YamlPropertiesFactoryBean loses entries in the YAML document that have an empty array value [SPR-16769] #​21310
• Misleading error message when evaluating T operator [SPR-16762] #​21303
• Jaxb2XmlDecoder is unable to decode a single element [SPR-16759] #​21300
• AopUtils.getMostSpecificMethod should expose dynamic proxy class methods [SPR-16757] #​21298
• ConfigurationClassBeanDefinitionReader registers duplicate BeanDefinition for nested scoped component [SPR-16756] #​21297
• IllegalStateException: InputStream has already been read when returning ResponseEntity [SPR-16754] #​21295
• Decoding ServerSentEvent fails when using generic type [SPR-16744] #​21285
• Exception swallowed in ResponseEntityExceptionHandler [SPR-16743] #​21284
• AnnotationAwareOrderComparator uses Order instead of Priority for DecoratingProxy [SPR-16739] #​21280
• Generic constructor argument (e.g. ObjectProvider) fails to resolve for inner class [SPR-16734] #​21275
• Unnecessary proxying with MethodMapTransactionAttributeSource [SPR-16733] #​21274
• Restore handling of 0 bytes read in ServletServerHttpRequest [SPR-16728] #​21269
• AspectJ execution pointcut does not detect methods in superinterface anymore [SPR-

[mend-for-github-com]

Autoclosing Skipped

This PR has been flagged for autoclosing. However, it is being skipped due to the branch being already modified. Please close/delete it manually or report a bug if you think this is in error.