spring-projects/spring-security 5.7.7

on GitHub

⭐ New Features

• chore: Use cache in continuous-integration-workflow.yml #12503
• fix unclosed block in docs #12542

🪲 Bug Fixes

• AuthorizationManager method security documentation should use AnnotationMatchingPointcut #11095
• Document XMLObject retreival for Asserting Party metadata #12667
• Fix typo in OAuth 2.0 testing docs #12437
• Jackson serialization of DefaultSaml2AuthenticatedPrincipal: LinkedMultiValueMap is not in the allowlist #11785
• NimbusJwtDecoder unknown KID scenario is not correctly tested #12238
• NPE in HttpSecurity#addFilterBefore when mixing custom DSL and standard #12637
• SwitchUserFilter not working in Spring Security 6 #12504
• Wrong name of the filter in the SecurityContextHolderFilter diagram #11800

🔨 Dependency Upgrades

• Update blockhound to 1.0.7.RELEASE #12733
• Update hibernate-entitymanager to 5.6.15.Final #12736
• Update io.projectreactor to 2020.0.28 #12732
• Update io.spring.nohttp to 0.0.11 #12734
• Update jackson-bom to 2.13.5 #12731
• Update org.aspectj to 1.9.19 #12735
• Update org.springframework to 5.3.25 #12737
• Update org.springframework.data to 2021.2.8 #12738

❤️ Contributors

We'd like to thank all the contributors who worked on this release!

• @jonkjenn
• @mojavelinux
• @jongwooo
• @eleftherias