Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update spring boot to v3.4.2 #583

Open
wants to merge 1 commit into
base: dev
Choose a base branch
from
Open

Update spring boot to v3.4.2 #583

wants to merge 1 commit into from
+13 −13

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Nov 22, 2024
edited
Loading

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
org.springframework.boot:spring-boot-dependencies (source) 3.3.5 -> 3.4.2 age adoption passing confidence
org.springframework.boot:spring-boot-maven-plugin (source) 3.3.5 -> 3.4.2 age adoption passing confidence

Release Notes

spring-projects/spring-boot (org.springframework.boot:spring-boot-dependencies)

v3.4.2

Compare Source

🐞 Bug Fixes

  • Property metadata for "logging.structured.json.customizer" has incorrect type #​43916
  • GraylogExtendedLogFormatProperties throws NullPointerException when only 'logging.structured.gelf.host' is specified #​43863
  • Structured logging properties have no effect in a native image #​43862
  • Docker Compose support for ClickHouse does not allow an empty password when ALLOW_EMPTY_PASSWORD=yes #​43790
  • docker compose ps now fails due to unknown --orphans flag with 2.23 or earlier #​43717
  • Build info timestamp is truncated to seconds #​43617
  • FileWatcher used for SSL reload does not support symlinks #​43604
  • BindableRuntimeHintsRegistrar should handle TypeNotPresentException #​43600
  • CapturedOutput is empty when using Log4J2 StatusLogger #​43578
  • Spring Boot 3.4 is not compatible with Gson 2.10 #​43442
  • NoClassDefFoundError when using JUnit to test a Gradle 7.6.x app that depends on spring-boot-actuator-autoconfigure but not on org.junit.platform:junit-platform-launcher #​43340

📔 Documentation

  • Document that the @ConfigurationProperties annotation processor cannot generate description and defaultValue metadata for external types #​43929
  • Fix description of management.metrics.graphql.autotime.enabled #​43905
  • Document 'base64:' prefix support #​43835
  • Document handling of @Fallback beans in ConditionalOnSingleCandidate's javadoc #​43826
  • Javadoc of DataSourceBuilder does not reference all supported types #​43732
  • Update OpenTelemetry section in Supported Monitoring Systems to refer to OTLP instead #​43729
  • Consistently document the minimum supported versions of Gradle #​43725
  • Document that system libraries are a reason to customize the builder and switch away from builder-jammy-java-tiny #​43716
  • Links to the Javadoc of Jakarta Messaging are invalid #​43662
  • Paragraph HTML tags are rendered as-is in Maven Plugin reference documentation #​43623
  • Javadoc link for jakarta.xml.bind is invalid #​43607
  • Documentation still has references to 'layertools' #​43605
  • Javadoc of ConstructorBinding should not use markdown formatting #​43599
  • Managed Dependency Coordinates lists Spock and OkHttp dependencies that are not managed #​43584

🔨 Dependency Upgrades

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​arefbehboudi, @​dreis2211, @​gavarava, @​hezean, @​izeye, @​jxblum, @​ngocnhan-tran1996, @​nosan, @​quaff, and @​tmaciejewski

v3.4.1

Compare Source

🐞 Bug Fixes

  • KafkaProperties fail to build SSL properties when the bundle name is an empty string #​43563
  • Diagnostics are poor when property resolution throws a ConversionFailedException #​43559
  • SpringApplicationShutdownHandlers do not run in deterministic order #​43536
  • Unable to find a @SpringBootConfiguration results in misleading error message #​43507
  • With multiple ResourceHandlerRegistrationCustomizer beans in the context, only one of them is used #​43497
  • Unable to use Docker Compose support when mixing dedicated and shared services #​43472
  • Kafka dependency management does not include the kafka-server module #​43454
  • Docker API version is incorrectly reported when '/_ping` calls fail and version should be fixed #​43452
  • Methods to build producer / consumer properties from KafkaProperties are inconvienenent to use without an SSL bundle #​43448
  • Failures in -Djarmode=tools do not consistently return a non-zero exit #​43436
  • HttpComponentsClientHttpRequestFactoryBuilder replaces the existing defaultRequestConfigCustomizer rather than adding to it #​43429
  • spring-boot-maven-plugin sets imagePlatform even if it's empty #​43424
  • OnBeanCondition fails to match on annotations when using Scoped Proxies #​43423
  • Failure analysis for InvalidConfigurationPropertyValueException doesn't correctly handle fuzzy matching of environment variables #​43382
  • H2ConsoleAutoConfiguration causes early initialization of DataSource beans #​43359
  • Accept progress on numbers >2GB #​43356
  • Servlet-based UserDetailsServiceAutoConfiguration is active in a reactive app #​43334
  • StructuredLoggingJsonMembersCustomizer implementations declared in spring.factories with a generic type more specific than Object are not called #​43312
  • Overriding log level with an environment variable does not work when using an environment prefix #​43307
  • Management endpoint access and enabled properties are ignored unless the endpoint ID is an exact match #​43302
  • UnsupportedOperationException when starting a Maven shaded application on Java 21 with virtual threads enabled #​43291
  • JmsListener failing with Narayana (pooled ConnectionFactory) since 3.4.0 #​43277
  • SslBundle can no longer open store file locations without using a 'file:' prefix #​43274
  • TestRestTemplate does not allow redirects to be customized #​43258
  • Testcontainers start() methods may be started multiple times #​43253

📔 Documentation

  • Fix typo in documentation #​43558
  • Document that server.ssl.cipher and server.ssl.enabled-protocols are not fallbacks used with SSL bundles #​43552
  • Use <annotationProcessorPaths> in Maven examples for configuring an annotation processor #​43544
  • Fix typo #​43519
  • Links to logback javadoc are incorrect #​43456
  • Fix JUnit javadoc links #​43428
  • Reference documentation incorrectly uses 'disabled' rather than 'none' for access restrictions #​43351
  • Restore System property in Logging section of the reference documentation #​43342
  • Fix link to proxyBeanMethods in @AutoConfiguration javadoc #​43325
  • Fix links to Servlet and JPA javadoc #​43324
  • Link to @EnableMethodSecurity instead of the deprecated @EnableGlobalMethodSecurity #​43315
  • Document that StructuredLoggingJsonMembersCustomizer implementations may optionally take constructor parameters #​43314
  • Update javadoc of StructuredLoggingJsonMembersCustomizer to note that implementations can registered through spring.factories #​43313
  • Fix Javadoc link for Hikari #​43311
  • Document how to use structured logging with custom log configuration #​43301
  • Update Javadoc since for OtlpMetricsProperties and OtlpTracingProperties #​43249

🔨 Dependency Upgrades

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​BenchmarkingBuffalo, @​Jae-Young98, @​arefbehboudi, @​izeye, @​kgb-financial-com, @​minwoo1999, @​ngocnhan-tran1996, @​nosan, @​onobc, @​quaff, @​scordio, @​sobychacko, and @​vonZeppelin

v3.4.0

Compare Source

⭐ New Features

  • Add withDefaultRequestConfigCustomizer method to HttpComponentsClientHttpRequestFactoryBuilder #​43139
  • Fail JsonWriter if duplicate names are detected #​43041
  • Add JsonObjectDeserializer.nullSafeValue method that accepts a mapper Function #​42972
  • Support timeout property for GraphQL over SSE #​42966
  • Improve performance of ConfigurationPropertiesBinder by storing bind handlers on first access #​42950
  • Improve performance of ConcurrentReferenceCachingMetadataReaderFactory #​42949
  • Log warning in HikariCheckpointRestoreLifecycle if pool suspension isn't configured #​42937
  • Remove spring-boot-starter-aop dependency from spring-boot-starter-data-jpa and spring-boot-starter-integration #​42934

🐞 Bug Fixes

  • Jersey body handling is inconsistent with Spring Webflux and Spring MVC #​43209
  • Classes are accidentally named "structure logging" instead of "structured logging" #​43203
  • StructuredLoggingJsonProperties customizer should be a Class reference rather than a String #​43202
  • Cannot package OCI image when 'docker.io/paketobuildpacks/new-relic' is provided as a buildpack #​43171
  • Incorrect Type for 'management.endpoints.access.default' defined in additional-spring-configuration-metadata.json #​43154
  • WebServerPortFileWriter fails when using a portfile without extension #​43117
  • SslOptions.isSpecified() only returns true if ciphers and enabled protocols are set #​43084
  • SslHealthIndicator throws NullPointerException when using SslBundle with SslStoreBundle.NONE #​43078
  • JdkClientHttpRequestFactoryBuilder and JettyClientHttpRequestFactoryBuilder do not set Ciphers or Enabled Protocols #​43077
  • Root cause of errors is hidden when loading images from archive #​43070
  • mvn spring-boot:run fails on Windows with "Could Not Find or Load Main Class" when path contains non-ASCII characters #​43062
  • A @SpyBean on the output of a FactoryBean is not reset #​43053
  • Logback logging system does not process URLs with paths not ending in .xml #​42990
  • Bean-based conditions do not consider factory beans correctly when determining if they are a candidate #​42970
  • NPE in bootBuildImage when setting DOCKER_CONTEXT=default #​42960
  • Warning due to duplicate MockResolver extensions #​42957
  • HttpHostConnectException is thrown when using buildpacks with Gradle or Maven on Windows #​42952
  • build-info doesn't support seconds since the epoch from project.build.outputTimestamp #​42936
  • NPE in OnClassCondition.resolveOutcomesThreaded following thread interruption because firstHalf is null #​42926
  • Default WebSocketMessageBrokerConfigurer is always overriding custom channel executor #​42924
  • X-Registry-Auth header sent to Docker Engine API contains field "authHeader" #​42915
  • ApplicationContextRunner has inconsistent behaviour with duplicate auto-configuration class names #​17963

📔 Documentation

  • Migrate class references to full javadoc links #​43239
  • Documentation for 'spring.datasource.type' is misleading #​43199
  • Update "Upgrading From" section to use "2.x" #​43160
  • Include spring-boot-loader in API documentation #​43153
  • Document how and where to add custom GraalVM configuration files #​43074
  • Rework DataSource configuration examples to separate defining an additional DataSource and defining a DataSource of a different type #​43059
  • Location of the layers schema is incorrect in the Maven Plugin's examples #​43033
  • Link to Eclipse setup instructions #​42954
  • Fix link to Checkpoint and Restore status page #​42939

🔨 Dependency Upgrades

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​ahoehma, @​deki, @​izeye, @​ngocnhan-tran1996, @​nosan, @​quaff, and @​wickdynex

v3.3.8

Compare Source

🐞 Bug Fixes

  • POSTGRESQL_USERNAME and POSTGRESQL_DATABASE are ignored when using the Bitnami PostgreSQL image with Docker Compose #​43787
  • docker compose ps now fails due to unknown --orphans flag with 2.23 or earlier #​43710
  • Build info timestamp is truncated to seconds #​43612
  • FileWatcher used for SSL reload does not support symlinks #​43586
  • BindableRuntimeHintsRegistrar should handle TypeNotPresentException #​43598

📔 Documentation

  • Document that the @ConfigurationProperties annotation processor cannot generate description and defaultValue metadata for external types #​43925
  • Fix description of management.metrics.graphql.autotime.enabled #​43904
  • Document 'base64:' prefix support #​43809
  • Update OpenTelemetry section in Supported Monitoring Systems to refer to OTLP instead #​43727
  • Javadoc of DataSourceBuilder does not reference all supported types #​43724
  • Links to the Javadoc of Jakarta Messaging are invalid #​43661
  • Paragraph HTML tags are rendered as-is in Maven Plugin reference documentation #​43622
  • Javadoc link for jakarta.xml.bind is invalid #​43606
  • Documentation still has references to 'layertools' #​43601
  • Javadoc of ConstructorBinding should not use markdown formatting #​43590

🔨 Dependency Upgrades

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​arefbehboudi, @​dreis2211, @​gavarava, @​hezean, @​izeye, @​jxblum, @​ngocnhan-tran1996, @​quaff, and @​tmaciejewski

v3.3.7

Compare Source

🐞 Bug Fixes

  • KafkaProperties fail to build SSL properties when the bundle name is an empty string #​43561
  • With multiple ResourceHandlerRegistrationCustomizer beans in the context, only one of them is used #​43494
  • Kafka dependency management does not include the kafka-server module #​43450
  • Failures in -Djarmode=tools do not consistently return a non-zero exit #​43435
  • SpringApplicationShutdownHandlers do not run in deterministic order #​43430
  • Failure analysis for InvalidConfigurationPropertyValueException doesn't correctly handle fuzzy matching of environment variables #​43380
  • Diagnostics are poor when property resolution throws a ConversionFailedException #​43378
  • Unable to find a @SpringBootConfiguration results in misleading error message #​43357
  • H2ConsoleAutoConfiguration causes early initialization of DataSource beans #​43337
  • Accept progress on numbers >2GB #​43328
  • Overriding log level with an environment variable does not work when using an environment prefix #​43304
  • Methods to build producer / consumer properties from KafkaProperties are inconvienenent to use without an SSL bundle #​43300
  • UnsupportedOperationException when starting a Maven shaded application on Java 21 with virtual threads enabled #​43284
  • Unable to use Docker Compose support when mixing dedicated and shared services #​40139

📔 Documentation

  • Fix typo in documentation #​43557
  • Fix typo #​43512
  • Links to logback javadoc are incorrect #​43439
  • Fix JUnit javadoc links #​43383
  • Document that server.ssl.cipher and server.ssl.enabled-protocols are not fallbacks used with SSL bundles #​43353
  • Restore System property in Logging section of the reference documentation #​43341
  • Use <annotationProcessorPaths> in Maven examples for configuring an annotation processor #​43329
  • Fix link to proxyBeanMethods in @AutoConfiguration javadoc #​43323
  • Fix links to Servlet and JPA javadoc #​43320
  • Link to @EnableMethodSecurity instead of the deprecated @EnableGlobalMethodSecurity #​43308
  • Fix Javadoc link for Hikari #​43305

🔨 Dependency Upgrades

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​BenchmarkingBuffalo, @​kgb-financial-com, @​ngocnhan-tran1996, @​nosan, @​quaff, @​scordio, and @​sobychacko

v3.3.6

Compare Source

⚠️ Noteworthy

🐞 Bug Fixes

  • Spring Boot 3.3.x dependencies do not converge for Micrometer Tracing and OpenTelemetry #​43200
  • Cannot package OCI image when 'docker.io/paketobuildpacks/new-relic' is provided as a buildpack #​43170
  • WebServerPortFileWriter fails when using a portfile without extension #​43116
  • SslOptions.isSpecified() only returns true if ciphers and enabled protocols are set #​43083
  • Root cause of errors is hidden when loading images from archive #​43069
  • mvn spring-boot:run fails on Windows with "Could Not Find or Load Main Class" when path contains non-ASCII characters #​43051
  • Logback logging system does not process URLs with paths not ending in .xml #​42989
  • NPE in bootBuildImage when setting DOCKER_CONTEXT=default #​42959
  • build-info doesn't support seconds since the epoch from project.build.outputTimestamp #​42935
  • NPE in OnClassCondition.resolveOutcomesThreaded following thread interruption because firstHalf is null #​42925
  • X-Registry-Auth header sent to Docker Engine API contains field "authHeader" #​42914
  • A @SpyBean on the output of a FactoryBean is not reset #​31204

📔 Documentation

  • Documentation for 'spring.datasource.type' is misleading #​43198
  • Update "Upgrading From" section to use "2.x" #​43159
  • Include spring-boot-loader in API documentation #​43151
  • Document how and where to add custom GraalVM configuration files #​43073
  • Rework DataSource configuration examples to separate defining an additional DataSource and defining a DataSource of a different type #​43058
  • Location of the layers schema is incorrect in the Maven Plugin's examples #​43032
  • Link to Eclipse setup instructions #​42953
  • Fix link to Checkpoint and Restore status page #​42938
  • Update HttpWebServiceMessageSenderBuilder javadoc #​42893
  • Move default value descriptions to "description" in logging property metadata #​42881

🔨 Dependency Upgrades

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​ahoehma, @​izeye, @​ngocnhan-tran1996, @​nosan, @​quaff, and @​wickdynex

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about these updates again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot added the renovate renovate related stuff label Nov 22, 2024
@renovate renovate bot changed the title Update dependency org.springframework.boot:spring-boot-dependencies to v3.4.0 Update spring boot to v3.4.0 Nov 22, 2024
@renovate renovate bot force-pushed the renovate/spring-boot branch 4 times, most recently from 74e6090 to 6a6e65e Compare November 27, 2024 08:44
@coderabbitai coderabbitai
Copy link
Contributor

coderabbitai bot commented Nov 27, 2024
edited
Loading

Important

Review skipped

Auto incremental reviews are disabled on this repository.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Walkthrough

This pull request involves a systematic upgrade of the Spring Boot version across multiple microservices and common modules within the project. The spring.boot.version property has been consistently updated from version 3.3.5 to 3.4.1 in the pom.xml files of twelve different services and components, including:

  1. wls-admin-service
  2. wls-auth-service
  3. wls-basisdaten-service
  4. wls-briefwahl-service
  5. wls-broadcast-service
  6. wls-common
  7. wls-eai-service
  8. wls-ergebnismeldung-service
  9. wls-infomanagement-service
  10. wls-monitoring-service
  11. wls-vorfaelleundvorkommnisse-service
  12. wls-wahlvorbereitung-service
  13. wls-wahlvorstand-service

The update appears to be a coordinated version bump across the entire project's microservices ecosystem, suggesting a deliberate effort to standardize and update the Spring Boot framework version used throughout the application.

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

‼️ IMPORTANT
Auto-reply has been disabled for this repository in the CodeRabbit settings. The CodeRabbit bot will not respond to your replies unless it is explicitly tagged.

  • Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
    • @coderabbitai generate unit testing code for this file.
    • @coderabbitai modularize this function.
  • PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
    • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
    • @coderabbitai read src/utils.ts and generate unit testing code.
    • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
    • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

  • @coderabbitai pause to pause the reviews on a PR.
  • @coderabbitai resume to resume the paused reviews.
  • @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
  • @coderabbitai full review to do a full review from scratch and review all the files again.
  • @coderabbitai summary to regenerate the summary of the PR.
  • @coderabbitai generate docstrings to generate docstrings for this PR. (Beta)
  • @coderabbitai resolve resolve all the CodeRabbit review comments.
  • @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
  • @coderabbitai help to get help.

Other keywords and placeholders

  • Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
  • Add @coderabbitai summary or `` to generate the high-level summary at a specific location in the PR description.
  • Add @coderabbitai or `` anywhere in the PR title to generate the title automatically.

Documentation and Community

  • Visit our Documentation for detailed information on how to use CodeRabbit.
  • Join our Discord Community to get help, request features, and share feedback.
  • Follow us on X/Twitter for updates and announcements.

@renovate renovate bot force-pushed the renovate/spring-boot branch 4 times, most recently from 34f1d63 to 02d405b Compare December 2, 2024 08:00
@renovate renovate bot force-pushed the renovate/spring-boot branch 7 times, most recently from 4f850a1 to 34f1f59 Compare December 6, 2024 12:31
@MrSebastian
Copy link
Member

wls-common muss gehoben und released werden bevor die anderen Services gehoben werden können

@renovate renovate bot force-pushed the renovate/spring-boot branch 7 times, most recently from 1ceadb2 to 6fc90e4 Compare December 13, 2024 11:00
@renovate renovate bot changed the title Update spring boot to v3.4.0 fix(deps): update spring boot to v3.4.0 Dec 13, 2024
@renovate renovate bot force-pushed the renovate/spring-boot branch from 6fc90e4 to c629a88 Compare December 16, 2024 08:47
@renovate renovate bot changed the title fix(deps): update spring boot to v3.4.0 Update spring boot to v3.4.0 Dec 16, 2024
@renovate renovate bot force-pushed the renovate/spring-boot branch from c629a88 to f380c7d Compare December 16, 2024 11:06
@renovate renovate bot force-pushed the renovate/spring-boot branch 3 times, most recently from 32fbb0b to a7e2f55 Compare January 22, 2025 08:45
coderabbitai[bot]
coderabbitai bot reviewed Jan 22, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 4

🧹 Nitpick comments (3)
wls-common/pom.xml (1)

26-26: Coordinate the release sequence.

Since other services depend on wls-common, this module must be:

  1. Updated to Spring Boot 3.4.1
  2. Released with a new version
  3. Referenced by other services with the new version

Current dependencies on wls-common:

  • wls-eai-service uses version 1.1.0
  • wls-briefwahl-service uses version 1.1.0
  • wls-infomanagement-service uses version 1.1.0
wls-ergebnismeldung-service/pom.xml (1)

16-18: Consider a phased upgrade approach for better risk management.

Given the dependency on wls-common and the number of services involved, consider the following upgrade strategy:

  1. First Phase:

    • Update and release wls-common to support Spring Boot 3.4.1
    • Run comprehensive integration tests

  2. Second Phase:

    • Upgrade a subset of services as a pilot
    • Validate functionality and monitor for issues

  3. Final Phase:

    • Roll out to remaining services
    • Consider blue-green deployment to minimize downtime

This approach allows for better risk management and easier rollback if issues arise.

Also applies to: 16-16, 16-16, 16-16, 18-18

wls-auth-service/pom.xml (1)

16-16: Consider implementing a parent POM for version management

To better manage version upgrades across multiple services, consider:

  1. Creating a parent POM to centralize version management
  2. Using Maven BOMs for dependency management
  3. Implementing a CI/CD pipeline stage to verify version compatibility

This will:

  • Reduce duplication across service POMs
  • Simplify future version upgrades
  • Ensure consistent dependency versions
  • Make it easier to maintain compatibility between services
📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between ed0703d and a7e2f55.

📒 Files selected for processing (13)
  • wls-admin-service/pom.xml (1 hunks)
  • wls-auth-service/pom.xml (1 hunks)
  • wls-basisdaten-service/pom.xml (1 hunks)
  • wls-briefwahl-service/pom.xml (1 hunks)
  • wls-broadcast-service/pom.xml (1 hunks)
  • wls-common/pom.xml (1 hunks)
  • wls-eai-service/pom.xml (1 hunks)
  • wls-ergebnismeldung-service/pom.xml (1 hunks)
  • wls-infomanagement-service/pom.xml (1 hunks)
  • wls-monitoring-service/pom.xml (1 hunks)
  • wls-vorfaelleundvorkommnisse-service/pom.xml (1 hunks)
  • wls-wahlvorbereitung-service/pom.xml (1 hunks)
  • wls-wahlvorstand-service/pom.xml (1 hunks)
🔇 Additional comments (12)
wls-admin-service/pom.xml (2)

18-18: Review Spring Boot 3.4.1 migration guide.

Please review the Spring Boot 3.4.1 migration guide for potential breaking changes, especially in:

  1. Spring Security configuration
  2. JPA/Hibernate changes
  3. Actuator endpoints
  4. Web starter changes

18-18: Verify Oracle JDBC driver compatibility.

The Oracle JDBC driver version 23.6.0.24.10 needs verification with Spring Boot 3.4.1:

  1. Check if the driver version is compatible
  2. Verify if any configuration changes are needed

Run this script to check Oracle driver compatibility:

wls-briefwahl-service/pom.xml (1)

17-17: Duplicate: Update wls-common dependency version.

Same issue as in wls-eai-service: The wls-common dependency needs to be updated after its release with Spring Boot 3.4.1 support.

wls-infomanagement-service/pom.xml (1)

17-17: Duplicate: Update wls-common dependency version.

Same issue as in wls-eai-service: The wls-common dependency needs to be updated after its release with Spring Boot 3.4.1 support.

wls-wahlvorbereitung-service/pom.xml (1)

17-17: Ensure correct update sequence for Spring Boot upgrade.

Based on the PR comment, wls-common must be updated and released before upgrading other services to Spring Boot 3.4.1. This service currently depends on wls-common version 1.1.0, which might not be compatible with Spring Boot 3.4.1.

Run the following script to check the Spring Boot version used by the current wls-common dependency:

wls-broadcast-service/pom.xml (1)

16-16: Ensure correct update sequence for Spring Boot upgrade.

wls-vorfaelleundvorkommnisse-service/pom.xml (1)

16-16: Ensure correct update sequence for Spring Boot upgrade.

wls-monitoring-service/pom.xml (2)

16-16: Ensure correct update sequence for Spring Boot upgrade.

16-16: Verify OpenAPI generator compatibility with Spring Boot 3.4.1.

The service uses openapi-generator-maven-plugin. Ensure that version 7.10.0 of the plugin is compatible with Spring Boot 3.4.1.

Run the following script to check for any known compatibility issues:

✅ Verification successful

Spring Boot 3.4.1 is compatible with OpenAPI Generator 7.10.0

OpenAPI Generator 7.10.0 fully supports Spring Boot 3.x series, and Spring Boot 3.4.1 is a valid, released version. No compatibility issues have been reported between these versions.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check OpenAPI Generator compatibility with Spring Boot 3.4.1
# Expected: No reported issues between these versions

# Check GitHub issues for compatibility problems
gh api graphql -f query='
{
  search(query: "repo:OpenAPITools/openapi-generator is:issue spring boot 3.4.1", type: ISSUE, first: 5) {
    nodes {
      ... on Issue {
        title
        url
        state
      }
    }
  }
}'

Length of output: 263

Script:

#!/bin/bash
# Check OpenAPI generator version and Spring Boot version existence
echo "=== Checking pom.xml for OpenAPI generator configuration ==="
rg "openapi-generator-maven-plugin" -A 5 pom.xml

echo -e "\n=== Verifying Spring Boot 3.4.1 existence ==="
curl -s "https://search.maven.org/solrsearch/select?q=g:org.springframework.boot+AND+a:spring-boot&core=gav&rows=10&wt=json" | jq '.response.docs[] | select(.v | startswith("3.")) | .v'

Length of output: 605

Script:

#!/bin/bash
# Check OpenAPI generator version in the correct pom.xml
echo "=== Checking wls-monitoring-service/pom.xml for OpenAPI generator configuration ==="
rg "openapi-generator-maven-plugin" -A 5 wls-monitoring-service/pom.xml

Length of output: 500

wls-ergebnismeldung-service/pom.xml (2)

18-18: Ensure correct update sequence for Spring Boot upgrade.

18-18: Verify OpenAPI generator compatibility with Spring Boot 3.4.1.

wls-wahlvorstand-service/pom.xml (1)

16-16: Ensure consistent version upgrade across all services

The Spring Boot version upgrade is consistent with other services.

wls-common/pom.xml Outdated
@@ -23,7 +23,7 @@
<maven.compiler.target>${java.version}</maven.compiler.target>
<maven.compiler.release>${java.version}</maven.compiler.release>
<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
<spring.boot.version>3.3.5</spring.boot.version>
<spring.boot.version>3.4.1</spring.boot.version>
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Codebase verification

Invalid Spring Boot version specified

Spring Boot version 3.4.1 does not exist. The latest Spring Boot 3.x version is in the 3.2.x series. Please use a valid Spring Boot version that is compatible with Spring Cloud 2023.0.5.

🔗 Analysis chain

Verify Spring Boot and Spring Cloud compatibility.

The Spring Boot upgrade to 3.4.1 with Spring Cloud 2023.0.5 needs verification:

  1. Spring Cloud 2023.0.5 was released for Spring Boot 3.2.x
  2. Spring Boot 3.4.1 might require a newer Spring Cloud version

Run this script to check version compatibility:

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Check Spring Cloud compatibility matrix
curl -s "https://spring.io/projects/spring-cloud#compatibility-matrix" | grep -A 5 "Spring Cloud 2023"

Length of output: 102

Script:

#!/bin/bash
# Check Spring Cloud release information
gh api repos/spring-cloud/spring-cloud-release/releases/tags/v2023.0.5 | jq -r '.body'

Length of output: 116

wls-eai-service/pom.xml Outdated
@@ -13,7 +13,7 @@
<maven.compiler.target>${java.version}</maven.compiler.target>
<maven.compiler.release>${java.version}</maven.compiler.release>
<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
<spring.boot.version>3.3.5</spring.boot.version>
<spring.boot.version>3.4.1</spring.boot.version>
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️ Potential issue

Update wls-common dependency version.

The service uses wls-common 1.1.0, but this version might not be compatible with Spring Boot 3.4.1. Update the dependency after wls-common is released with Spring Boot 3.4.1 support.

wls-basisdaten-service/pom.xml Outdated
@@ -13,7 +13,7 @@
<maven.compiler.target>${java.version}</maven.compiler.target>
<maven.compiler.release>${java.version}</maven.compiler.release>
<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
<spring.boot.version>3.3.5</spring.boot.version>
<spring.boot.version>3.4.1</spring.boot.version>
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Codebase verification

Invalid Spring Boot version 3.4.1 specified

Spring Boot 3.4.1 is not a valid version. As of January 2025, the latest stable version is in the 3.2.x series. Please update to a released version of Spring Boot (e.g., 3.2.x) to ensure compatibility with Spring Cloud 2023.0.5.

🔗 Analysis chain

Verify Spring Boot 3.4.1 compatibility with Spring Cloud 2023.0.5

The Spring Boot version upgrade looks good, but we should verify compatibility with the Spring Cloud version.

Run this script to check the Spring Cloud compatibility matrix:

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check Spring Cloud compatibility with Spring Boot 3.4.1
curl -s "https://spring.io/projects/spring-cloud#compatibility-matrix"

Length of output: 70

Script:

#!/bin/bash
# Check Spring Cloud version in pom.xml and search for Spring Boot dependency information in Spring Cloud docs
echo "=== Checking Spring Cloud version in pom.xml ==="
rg "spring-cloud" -A 5 pom.xml

echo -e "\n=== Fetching Spring Cloud release information ==="
curl -s "https://raw.githubusercontent.com/spring-cloud/spring-cloud-release/main/docs/src/main/asciidoc/spring-cloud-dependencies.adoc"

Length of output: 452

Script:

#!/bin/bash
# Check Spring Cloud version in the correct pom.xml path and query Maven Central
echo "=== Checking Spring Cloud version in pom.xml ==="
rg "spring-cloud" -A 5 "wls-basisdaten-service/pom.xml"

echo -e "\n=== Checking Spring Cloud 2023.0.5 metadata ==="
curl -s "https://search.maven.org/solrsearch/select?q=g:org.springframework.cloud+AND+a:spring-cloud-dependencies+AND+v:2023.0.5&rows=1&wt=json" | jq .

Length of output: 1806

wls-auth-service/pom.xml Outdated
@@ -13,7 +13,7 @@
<maven.compiler.target>${java.version}</maven.compiler.target>
<maven.compiler.release>${java.version}</maven.compiler.release>
<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
<spring.boot.version>3.3.5</spring.boot.version>
<spring.boot.version>3.4.1</spring.boot.version>
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️ Potential issue

Address dependency upgrade order

Based on the comment "wls-common muss gehoben und released werden bevor die anderen Services gehoben werden können", the wls-common module should be upgraded and released first.

Please ensure the following upgrade order:

  1. Upgrade and release wls-common to Spring Boot 3.4.1
  2. Update the wls.common.version property in all services
  3. Proceed with upgrading the remaining services

@renovate renovate bot force-pushed the renovate/spring-boot branch 2 times, most recently from 007ba70 to d8967f3 Compare January 23, 2025 14:14
@renovate renovate bot changed the title Update spring boot to v3.4.1 Update spring boot to v3.4.2 Jan 23, 2025
@renovate renovate bot force-pushed the renovate/spring-boot branch 17 times, most recently from 6112a6f to 3689227 Compare January 30, 2025 09:36
@renovate renovate bot force-pushed the renovate/spring-boot branch 3 times, most recently from af63ae4 to a3b1089 Compare February 6, 2025 12:15
@renovate renovate bot force-pushed the renovate/spring-boot branch from a3b1089 to 24d949c Compare February 7, 2025 13:47
@renovate renovate bot force-pushed the renovate/spring-boot branch from 24d949c to 9ed9c94 Compare February 7, 2025 14:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@coderabbitai coderabbitai[bot] coderabbitai[bot] left review comments

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
renovate renovate related stuff
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@MrSebastian