spring-projects/spring-security 5.8.15

on GitHub

⭐ New Features

• Address unnecessary method invocation in AbstractRequestMatcherRegistry #15718
• The SecuredAuthorizationManager can now find @Secured annotations on … #15014

🪲 Bug Fixes

• Disabling credentials erasure on custom AuthenticationManager is not working #15683
• Methods annotated with @PostFilter are processed twice by PostFilterAuthorizationMethodInterceptor #15624
• SecurityJackson2Modules.getModules(): Cannot load module org.springframework.security.cas.jackson2.CasJackson2Module #15749
• The additionalParameters array parameter of OAuth2AuthorizationRequest causes the authorizationRequestUri to be incorrect #15533

🔨 Dependency Upgrades

• Bump io.projectreactor.tools:blockhound from 1.0.9.RELEASE to 1.0.10.RELEASE #15928
• Bump org-eclipse-jetty from 9.4.55.v20240627 to 9.4.56.v20240826 #15730
• Bump org.springframework.ldap:spring-ldap-core from 2.4.1 to 2.4.2 #15941

🔩 Build Updates

• Bump @antora/collector-extension from 1.0.0-beta.2 to 1.0.0-beta.3 in /docs #15908
• Bump @springio/asciidoctor-extensions from 1.0.0-alpha.13 to 1.0.0-alpha.14 in /docs #15837
• Migrate slack notifications to GChat #15503
• Release 5.8.15 #15963

❤️ Contributors

We'd like to thank all the contributors who worked on this release!

• @chenzhenjia
• @tugjg
• @abimael-turing
• @dependabot[bot]