Skip to content

Bump the development-dependencies group across 1 directory with 3 updates#10963

Merged
github-actions[bot] merged 1 commit into7.0.xfrom
dependabot/gradle/7.0.x/development-dependencies-cd1e6f2c2d
Apr 20, 2026
Merged

Bump the development-dependencies group across 1 directory with 3 updates#10963
github-actions[bot] merged 1 commit into7.0.xfrom
dependabot/gradle/7.0.x/development-dependencies-cd1e6f2c2d

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Apr 20, 2026
edited
Loading

Bumps the development-dependencies group with 3 updates in the / directory: org.testcontainers:testcontainers-bom, org.springframework.security:spring-security-bom and org.hibernate.orm:hibernate-core.

Updates org.testcontainers:testcontainers-bom from 2.0.4 to 2.0.5

Release notes

Sourced from org.testcontainers:testcontainers-bom's releases.

2.0.5

What's Changed

🚀 Features & Enhancements

🐛 Bug Fixes

📖 Documentation

🧹 Housekeeping

📦 Dependency updates

Commits
  • 5c44820 Fix typo (#11717)
  • 84b1c3a Add getHttpPort and getGrpcPort methods in WeaviateContainer (#11712)
  • a412b8e Use weaviate client v6 (#11711)
  • 058fa82 Combined dependencies PR (#11710)
  • 773f344 Merge remote-tracking branch 'origin/dependabot/gradle/modules/hivemq/ch.qos....
  • ebe6043 Merge remote-tracking branch 'origin/dependabot/gradle/modules/activemq/org.a...
  • 5248d1d Merge remote-tracking branch 'origin/dependabot/gradle/modules/scylladb/softw...
  • ab781f6 Combined dependencies PR (#11708)
  • 2d6c1be Merge remote-tracking branch 'origin/dependabot/gradle/core/org.jetbrains-ann...
  • e76c291 Merge remote-tracking branch 'origin/dependabot/gradle/core/org.junit.platfor...
  • Additional commits viewable in compare view

Updates org.springframework.security:spring-security-bom from 7.0.4 to 7.0.5

Release notes

Sourced from org.springframework.security:spring-security-bom's releases.

7.0.5

⭐ New Features

  • Add XML Based shouldWriteHeadersEagerly tests #19018
  • Merge Add CredentialRecordOwnerAuthorizationManager #19005

🪲 Bug Fixes

  • Add equals and hashcode to HttpMethodRequestMatcher #18963
  • auth_time claim doesn't show the time of the original authentication #18282
  • auth_time validation fails when SSO session is renewed #18978
  • Fallback defaultTargetUrl if refererHeader is empty #18981
  • Fix HttpSessionRequestCache#getMatchingRequest query string parsing #18972
  • Merge Handle null value in OnCommittedResponseWrapper header methods #18990
  • OAuth2 client sessionManagement ineffective with DefaultOidcUser #19022

🔨 Dependency Upgrades

  • Bump @springio/antora-extensions from 1.14.10 to 1.14.11 in /docs #19054
  • Bump @springio/antora-extensions from 1.14.7 to 1.14.9 in /docs #18953
  • Bump @springio/antora-extensions from 1.14.9 to 1.14.10 in /docs #19029
  • Bump @springio/asciidoctor-extensions from 1.0.0-alpha.17 to 1.0.0-alpha.18 in /docs #18957
  • Bump actions/upload-artifact from 7.0.0 to 7.0.1 #19096
  • Bump com.webauthn4j:webauthn4j-core from 0.31.1.RELEASE to 0.31.2.RELEASE #19021
  • Bump com.webauthn4j:webauthn4j-core from 0.31.2.RELEASE to 0.31.3.RELEASE #19114
  • Bump io.projectreactor:reactor-bom from 2025.0.4 to 2025.0.5 #19080
  • Bump org.apache.maven:maven-resolver-provider from 3.9.14 to 3.9.15 #19111
  • Bump org.springframework.data:spring-data-bom from 2025.1.4 to 2025.1.5 #19113
  • Bump org.springframework.ldap:spring-ldap-core from 4.0.2 to 4.0.3 #19098
  • Bump org.springframework:spring-framework-bom from 7.0.6 to 7.0.7 #19112
  • Bump spring-io/spring-gradle-build-action from 2.0.5 to 2.0.6 #18996
  • Bump spring-io/spring-release-actions from 0.0.3 to 0.0.4 #19095
  • Bump spring-io/spring-security-release-tools/.github/workflows/update-scheduled-release-version.yml from 1.0.14 to 1.0.15 #18948

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​rwinch

Commits
  • 53bc6a7 Fix Formatting
  • aed95aa Fix Formatting
  • 7b57a4a Release 7.0.5
  • 1104796 Merge branch '6.5.x' into 7.0.x
  • 3d4e205 Merge remote-tracking branch 'oss/6.5.x' into 6.5.x
  • 4c40eeb Merge remote-tracking branch 'oss/6.5.x' into 7.0.x
  • ff1e925 Merge remote-tracking branch 'oss/7.0.x' into 7.0.x
  • 7b309cf Bump org.springframework.data:spring-data-bom from 2025.1.4 to 2025.1.5
  • 51a1f88 Bump com.webauthn4j:webauthn4j-core
  • 762d8f1 Bump org.springframework:spring-framework-bom from 7.0.6 to 7.0.7
  • Additional commits viewable in compare view

Updates org.hibernate.orm:hibernate-core from 7.1.23.Final to 7.1.24.Final

Release notes

Sourced from org.hibernate.orm:hibernate-core's releases.

Release 7.1.24

Hibernate ORM 7.1.24.Final released

Today, we published a new release of Hibernate ORM 7.1: 7.1.24.Final.

You can find the full list of 7.1.24.Final changes here.

What's new

  • See the website for requirements and compatibilities.
  • See the What's New guide for details about new features and capabilities.
  • See the Migration Guide for details about migration from version 7.0 to 7.1.

Conclusion

For additional details, see:

See also the following resources related to supported APIs:

Visit the website for details on getting in touch with us.

Changelog

Sourced from org.hibernate.orm:hibernate-core's changelog.

Changes in 7.1.24.Final (April 19, 2026)

https://hibernate.atlassian.net/projects/HHH/versions/38759

** Bug * HHH-20317 Envers does not reflect @​DiscriminatorOptions for history entities

** Task * HHH-20334 Upgrade to Log4j 2.25.4

Commits
  • ceb6da1 [Jenkins release job] Preparing release 7.1.24.Final
  • 3ff6ef5 [Jenkins release job] changelog.txt updated by release build 7.1.24.Final
  • f30d5f9 HHH-20317 fix: Envers does not reflect @​DiscriminatorOptions for history enti...
  • 7b10d2c HHH-20334 Upgrade to Log4j 2.25.4
  • 379c8b4 HHH-20334 Fix invalid log4j config
  • 61690a5 [Jenkins release job] Preparing next development iteration
  • See full diff in compare view

@dependabot dependabot bot added the type: dependency-upgrade Pull requests that update a dependency file label Apr 20, 2026
@github-actions github-actions bot added type: task and removed type: dependency-upgrade Pull requests that update a dependency file labels Apr 20, 2026
@github-actions github-actions bot added this to the 7.0.5 milestone Apr 20, 2026
@github-actions github-actions bot enabled auto-merge (squash) April 20, 2026 20:44
@artembilan
Copy link
Copy Markdown
Member

artembilan commented Apr 20, 2026

@dependabot rebase

@dependabot
Bump the development-dependencies group across 1 directory with 3 upd…
5846dbc 
…ates

Bumps the development-dependencies group with 3 updates in the / directory: [org.testcontainers:testcontainers-bom](https://github.com/testcontainers/testcontainers-java), [org.springframework.security:spring-security-bom](https://github.com/spring-projects/spring-security) and [org.hibernate.orm:hibernate-core](https://github.com/hibernate/hibernate-orm).


Updates `org.testcontainers:testcontainers-bom` from 2.0.4 to 2.0.5
- [Release notes](https://github.com/testcontainers/testcontainers-java/releases)
- [Changelog](https://github.com/testcontainers/testcontainers-java/blob/main/CHANGELOG.md)
- [Commits](testcontainers/testcontainers-java@2.0.4...2.0.5)

Updates `org.springframework.security:spring-security-bom` from 7.0.4 to 7.0.5
- [Release notes](https://github.com/spring-projects/spring-security/releases)
- [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc)
- [Commits](spring-projects/spring-security@7.0.4...7.0.5)

Updates `org.hibernate.orm:hibernate-core` from 7.1.23.Final to 7.1.24.Final
- [Release notes](https://github.com/hibernate/hibernate-orm/releases)
- [Changelog](https://github.com/hibernate/hibernate-orm/blob/7.1.24/changelog.txt)
- [Commits](hibernate/hibernate-orm@7.1.23...7.1.24)

---
updated-dependencies:
- dependency-name: org.testcontainers:testcontainers-bom
  dependency-version: 2.0.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: development-dependencies
- dependency-name: org.springframework.security:spring-security-bom
  dependency-version: 7.0.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: development-dependencies
- dependency-name: org.hibernate.orm:hibernate-core
  dependency-version: 7.1.24.Final
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: development-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/gradle/7.0.x/development-dependencies-cd1e6f2c2d branch from c77b456 to 5846dbc Compare April 20, 2026 21:36
@github-actions github-actions bot merged commit de4a96b into 7.0.x Apr 20, 2026
3 checks passed
@github-actions github-actions bot deleted the dependabot/gradle/7.0.x/development-dependencies-cd1e6f2c2d branch April 20, 2026 21:45
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

type: task

Projects

None yet

Milestone

7.0.5

Development

Successfully merging this pull request may close these issues.

1 participant

@artembilan