Bump io.github.resilience4j:resilience4j-retry from 2.3.0 to 2.4.0 by dependabot[bot] · Pull Request #124 · DependencyTrack/vuln-db

dependabot · 2026-03-16T08:55:11Z

Bumps io.github.resilience4j:resilience4j-retry from 2.3.0 to 2.4.0.

Release notes

Sourced from io.github.resilience4j:resilience4j-retry's releases.

v2.4.0

What's Changed

Added support of initializing circuitBreaker in desired state from config by @agarwalbharat in resilience4j/resilience4j#2268

Issue #2269: Added getCausingRateLimiterName by @noomkram in resilience4j/resilience4j#2270

Time limiter registry builder by @darkius in resilience4j/resilience4j#2291

Issue resilience4j#2285: Add HealthContributorAutoConfiguration to ConditionalOnClass by @obecker in resilience4j/resilience4j#2286

Issue #2278: Added ThreadPoolBulkhead to some Decorators by @matsev in resilience4j/resilience4j#2284

Correct registry config in aspect by @darkius in resilience4j/resilience4j#2282

#2285 - add configuration to move circuit breaker from half open to closed state by @victorpasqualino in resilience4j/resilience4j#2290

Bump actions/cache from 4.0.2 to 4.2.0 by @dependabot[bot] in resilience4j/resilience4j#2252

Remove dependency on kotlin-stdlib-jdk8 from resilience4j-core by @gavlyukovskiy in resilience4j/resilience4j#2301

Bring back 'slidingWindow' with default synchronization strategy by @gavlyukovskiy in resilience4j/resilience4j#2302

add withFallback() methods to DecorateFunction by @matsev in resilience4j/resilience4j#2312

Issue #2295: Ensure ignoreExceptions take precedence over recordExceptions by @kssumin in resilience4j/resilience4j#2304

fix spring boot3 customizer application order by @alexey-grigorovich-savvymoney in resilience4j/resilience4j#2321

chore(1910): update grafana dashboard by @JoranVanBelle in resilience4j/resilience4j#2318

Provide key for components using SpEL for names by @doumdoum in resilience4j/resilience4j#2329

Feature #2224 : Bump jdk from 17 to 21 for support virtual thread by @ykhfree in resilience4j/resilience4j#2331

Add missing eventConsumerBufferSize merge for Retry config by @skowrxn in resilience4j/resilience4j#2344

GH-2334 fix: reject TIME_BASED + LOCK_FREE when slidingWindowSize < 2 by @bandalgomsu in resilience4j/resilience4j#2358

feat: add setter for bulkheadAspectOrder property by @NiMv1 in resilience4j/resilience4j#2386

Docs: Clarify Aspect Order defaults for Spring Boot 3 to prevent metric inflation by @GarimaBokdia in resilience4j/resilience4j#2387

Add support for Spring Boot 4 / Spring Cloud 5 by @gavlyukovskiy in resilience4j/resilience4j#2384

TimeLimiter, take success path when completing without error by @TheFrogAndy in resilience4j/resilience4j#2374

Add back OSGi meta data with bnd builder plugin by @chrisrueger in resilience4j/resilience4j#2385

Issue #536: Added best practices documentation for instance management by @fajrizulfikar in resilience4j/resilience4j#2389

Allow to mock nanoTime in RateLimiter by @strokyl in resilience4j/resilience4j#2356

fix #2397: compile SPEL regex'es only once by @stokpop in resilience4j/resilience4j#2398

Update publishing to use new Sonatype urls and add release workflow by @gavlyukovskiy in resilience4j/resilience4j#2393

Issue #1450: Fixed Grafana dashboard metric query for call rate panel by @fajrizulfikar in resilience4j/resilience4j#2391

Issue #1448: Fixed Duration property binding in Spring Boot 2 by @fajrizulfikar in resilience4j/resilience4j#2390

Fix #2327: Correct @see tag usage in CircuitBreakerConfig Javadoc by @chanani in resilience4j/resilience4j#2400

Issue #2368: Fix Retry retryOnResult interrupt handling: throw CancellationException instead of NPE by @platanus-kr in resilience4j/resilience4j#2392

Fix typo in Spring aspect docs by @gukin-han in resilience4j/resilience4j#2399

GH-2354 Remove kotlin-stdlib from resilience4j-core by @josalmi in resilience4j/resilience4j#2359

Added CheckedSupplierUtils and deprecated CheckedFunctionUtils by @matsev in resilience4j/resilience4j#2313

Use correct constant for initializing CircuitBreakerConfig.Builder.waitIntervalFunctionInOpenState by @obecker in resilience4j/resilience4j#2402

Added bulkhead name to BulkheadFullException by @dominic-miglar in resilience4j/resilience4j#2349

Remove unrelated flaky Clock test from CircuitBreakerEventTest by @KimDoubleB in resilience4j/resilience4j#2409

Added decorateFunction and executeFunction to TimeLimiter by @zbnerd in resilience4j/resilience4j#2407

Issue #2189: Use snapshot reads for actuator event endpoints in Spring Boot 3/4 by @seokjun7410 in resilience4j/resilience4j#2406

Remove log spam from tests by @gavlyukovskiy in resilience4j/resilience4j#2412

Set JDK target back to 17 by @gavlyukovskiy in resilience4j/resilience4j#2415

Fix release workflow: unquoted multi-line GPG key breaks Gradle invocation by @Copilot in resilience4j/resilience4j#2416

Read env variables from gradle for gpg key by @gavlyukovskiy in resilience4j/resilience4j#2417

Enable SNAPSHOT artifact signing from master by @gavlyukovskiy in resilience4j/resilience4j#2418

Remove sign skip on snapshot version by @gavlyukovskiy in resilience4j/resilience4j#2419

New Contributors

@agarwalbharat made their first contribution in resilience4j/resilience4j#2268

... (truncated)

Changelog

Sourced from io.github.resilience4j:resilience4j-retry's changelog.

= Release Notes

== Version 0.1.0

Initial version

=== Version 0.1.1

Added the functionality to add exceptions with are ignored by the CircuitBreaker

=== Version 0.1.2

Added the feature to get Metrics for function executions

=== Version 0.1.3

Added a static factory method for the CircuitBreakerConfig builder

=== Version 0.1.4

Added the feature to retry a failed function

=== Version 0.1.5

Added builders to simplify chaining of decorators

=== Version 0.1.6

Renamed project to javaslang-circuitbreaker

=== Version 0.1.7

Fixed Issue #2

Issue #3 Added a listener mechanism for state transitions

== Version 0.2.0

Removed Dropwizard Metrics, because its a too heavy dependency for such a lightweight library.

Changed the way exceptions can be handled. You have to provide a Predicate now instead of a list of exceptions to ignore.

== Version 0.3.0

The CircuitBreaker is based on a Ring Bit Buffer and a failure rate now.

=== Version 0.3.1

Changed the visibility of CircuitBreakerUtils.isCallPermitted to public.

=== Version 0.3.2

CircuitBreakerRegistry has a new method which takes a Supplier of a CircuitBreakerConfig so that the CircuitBreakerConfig is only created when needed.

=== Version 0.3.3

CircuitBreaker has a new method +getCircuitBreakerConfig+ which allows to retrieve the CircuitBreakerConfig of the CircuitBreaker.

Renamed the state HALF_CLOSED to HALF_OPEN to match the pattern description of Martin Fowler.

=== Version 0.3.4

Added a Metrics interface to the CircuitBreaker which allows to retrieve current statistics like failureRate and number of buffer calls.

== Version 0.4.0

Updated javaslang from 2.0.0-RC4 to 2.0.1

... (truncated)

Commits

f1c3be8 Fix signing
88a8293 Enable signing for resilience4j-bom
1ed88c2 Remove sign skip on snapshot version (#2419)
ed637ec Enable SNAPSHOT artifact signing from master (#2418)
d51bce1 Read env variables from gradle for gpg key (#2417)
89baea7 Fix release workflow: unquoted multi-line GPG key breaks Gradle invocation (#...
b888e82 Add GPG key and passphrase to build step
e9aedee Revert JDK target back to 17 (#2415)
ad4efb8 Remove log spam from tests (#2412)4
cd8f8e0 Issue #2189: Use snapshot reads for actuator event endpoints in Spring Boot 3...
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [io.github.resilience4j:resilience4j-retry](https://github.com/resilience4j/resilience4j) from 2.3.0 to 2.4.0. - [Release notes](https://github.com/resilience4j/resilience4j/releases) - [Changelog](https://github.com/resilience4j/resilience4j/blob/master/RELEASENOTES.adoc) - [Commits](resilience4j/resilience4j@v2.3.0...v2.4.0) --- updated-dependencies: - dependency-name: io.github.resilience4j:resilience4j-retry dependency-version: 2.4.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Mar 16, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump io.github.resilience4j:resilience4j-retry from 2.3.0 to 2.4.0#124

Bump io.github.resilience4j:resilience4j-retry from 2.3.0 to 2.4.0#124
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/maven/io.github.resilience4j-resilience4j-retry-2.4.0

dependabot Bot commented on behalf of github Mar 16, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github Mar 16, 2026

v2.4.0

What's Changed

New Contributors

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants