spring-projects/spring-security 6.1.5

on GitHub

⭐ New Features

• Document how to publish an AuthenticationManager @Bean without WebSecurityConfigurerAdapter #14015
• Replace deprecated method #13649
• Use Gradle's Version Catalog #13871

🪲 Bug Fixes

• Dependency convergence failed: nimbus-jose-jwt #13843
• Docs custom AuthorizationManager fix #13991
• Fix snapshot_tests on CI workflow #13878
• Fix parsing of GET SAML logout requests #13970
• Saml-Metadata with special characters is corrupted #13861
• Saml2LogoutRequestMixin relayState property should be binding #13942

🔨 Dependency Upgrades

• Bump com.github.spullara.mustache.java:compiler from 0.9.10 to 0.9.11 #13984
• Bump com.github.spullara.mustache.java:compiler from 0.9.4 to 0.9.10 #13891
• Bump com.google.code.gson:gson from 2.8.6 to 2.8.9 #13950
• Bump com.gradle.enterprise from 3.12.3 to 3.12.6 #13934
• Bump com.unboundid:unboundid-ldapsdk from 6.0.9 to 6.0.10 #13903
• Bump Gradle Wrapper from 8.3 to 8.4 #13974
• Bump io.freefair.gradle:aspectj-plugin from 6.6-rc1 to 6.6.3 #13935
• Bump io.micrometer:micrometer-observation from 1.10.10 to 1.10.11 #13945
• Bump io.micrometer:micrometer-observation from 1.10.11 to 1.10.12 #14001
• Bump io.mockk:mockk from 1.13.7 to 1.13.8 #13952
• Bump io.projectreactor:reactor-bom from 2022.0.10 to 2022.0.11 #13937
• Bump io.projectreactor:reactor-bom from 2022.0.11 to 2022.0.12 #14000
• Bump io.spring.ge.conventions from 0.0.7 to 0.0.14 #13985
• Bump jakarta.xml.bind:jakarta.xml.bind-api from 4.0.0 to 4.0.1 #13949
• Bump org-aspectj from 1.9.20 to 1.9.20.1 #13896
• Bump org-eclipse-jetty from 11.0.15 to 11.0.16 #13901
• Bump org-eclipse-jetty from 11.0.16 to 11.0.17 #13999
• Bump org.jfrog.buildinfo:build-info-extractor-gradle from 4.29.0 to 4.29.4 #13953
• Bump org.slf4j:slf4j-api from 2.0.7 to 2.0.9 #13938
• Bump org.springframework.data:spring-data-bom from 2022.0.10 to 2022.0.11 #14019
• Bump org.springframework.data:spring-data-bom from 2022.0.9 to 2022.0.10 #13951
• Bump org.springframework.ldap:spring-ldap-core from 3.0.5 to 3.0.6 #14007
• Bump org.springframework:spring-framework-bom from 6.0.11 to 6.0.12 #13904
• Bump org.springframework:spring-framework-bom from 6.0.12 to 6.0.13 #14006
• Update to org.apereo.cas.client:cas-client-core 4.0.3 #13947

❤️ Contributors

We'd like to thank all the contributors who worked on this release!

• @Dyndyn
• @limvik
• @github-actions[bot]
• @dependabot[bot]
• @pbborisov18