Bump org.springframework.boot from 3.5.7 to 4.0.3 #486

Closed
dependabot[bot] wants to merge 1 commit from dependabot/gradle/org.springframework.boot-4.0.3 into master
dependabot[bot] commented 2026-02-23 00:47:13 -08:00 (Migrated from github.com)

Bumps org.springframework.boot from 3.5.7 to 4.0.3.

Release notes

Sourced from org.springframework.boot's releases.

v4.0.3

New Features

  • Add TWENTY_SIX to JavaVersion enum #49193

🐞 Bug Fixes

  • Jackson properties may not be applied correctly to RestClients #49223
  • ClassNotFoundException when using Actuator without spring-boot-health #49196
  • Using the OTel and Zipkin starters together creates invalid configuration #49183
  • Whitespace can be incorrectly removed when spring-boot-configuration-processor runs on multi-line javadoc #49060
  • Jackson2HttpMessageConvertersConfiguration uses ConditionOn Jackson3 XMLMapper class #49015
  • server.jetty.threads.max is ignored when using virtual threads #48989
  • Slice test includes fail to load when using spring-boot-starter-test-classic #48981
  • Docker credential helpers with file extensions cannot be executed on Windows #48979
  • Java version requirement check for native image is confusing if AOT didn't run #48963
  • TestPropertyValues.Pair.fromMapEntry(Entry<String, String>) does not comply with its nullability contract #48948

📔 Documentation

  • Couchbase and Kafka are incorrectly listed as supporting SSL with Docker Compose #49212
  • Document that use of non idiomatic format for '@Value' still apply for environment variables #49109
  • Document naming convention for custom test-scoped starters #49017
  • Delay removal of Jackson 2 support until 4.3 at the earliest #49010
  • LICENSE.txt and NOTICE.txt files have the wrong content in the latest releases #49003
  • ApplicationContextAssert documents a non-existent assertion in getFailure() #48977
  • Highlight the importance of the preStop hook when configuring Kubernetes probes #48946

🔨 Dependency Upgrades

  • Upgrade to AssertJ 3.27.7 #49095
  • Upgrade to Elasticsearch Client 9.2.5 #49184
  • Upgrade to Groovy 5.0.4 #49097
  • Upgrade to Hibernate 7.2.3.Final #49098
  • Upgrade to Hibernate 7.2.4.Final #49167
  • Upgrade to Jaybird 6.0.4 #49099
  • Upgrade to JBoss Logging 3.6.2.Final #49100
  • Upgrade to Jersey 4.0.2 #49101
  • Upgrade to Jetty 12.1.6 #49102
  • Upgrade to jOOQ 3.19.30 #49103
  • Upgrade to JUnit Jupiter 6.0.3 #49233
  • Upgrade to Logback 1.5.29 #49169
  • Upgrade to Logback 1.5.32 #49245
  • Upgrade to Micrometer 1.16.3 #49111
  • Upgrade to Micrometer Tracing 1.6.3 #49112
  • Upgrade to MongoDB 5.6.3 #49105
  • Upgrade to MySQL 9.6.0 #49106
  • Upgrade to Netty 4.2.10.Final #49107
  • Upgrade to Postgresql 42.7.10 #49202
  • Upgrade to Reactor Bom 2025.0.3 #49087

... (truncated)

Commits
  • 1ab1436 Release v4.0.3
  • 5cc488d Merge branch '3.5.x' into 4.0.x
  • 9138ae2 Next development version (v3.5.12-SNAPSHOT)
  • a7e63a7 Merge branch '3.5.x' into 4.0.x
  • 54ab3c5 Align "noteworthy" issues in release notes with Spring Framework
  • b3ae5b1 Merge branch '3.5.x' into 4.0.x
  • 996664f Temporarily switch Docker to overlay2
  • 1ce8743 Revert "Temporarily disable containerd snapshotter"
  • 5ba88c6 Temporarily disable containerd snapshotter
  • 1f1a88c Revert "Temporarily update system tests to use specific platform"
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Bumps [org.springframework.boot](https://github.com/spring-projects/spring-boot) from 3.5.7 to 4.0.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/spring-projects/spring-boot/releases">org.springframework.boot's releases</a>.</em></p> <blockquote> <h2>v4.0.3</h2> <h2>:star: New Features</h2> <ul> <li>Add TWENTY_SIX to JavaVersion enum <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49193">#49193</a></li> </ul> <h2>:lady_beetle: Bug Fixes</h2> <ul> <li>Jackson properties may not be applied correctly to RestClients <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49223">#49223</a></li> <li>ClassNotFoundException when using Actuator without spring-boot-health <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49196">#49196</a></li> <li>Using the OTel and Zipkin starters together creates invalid configuration <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49183">#49183</a></li> <li>Whitespace can be incorrectly removed when spring-boot-configuration-processor runs on multi-line javadoc <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49060">#49060</a></li> <li>Jackson2HttpMessageConvertersConfiguration uses ConditionOn Jackson3 XMLMapper class <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49015">#49015</a></li> <li>server.jetty.threads.max is ignored when using virtual threads <a href="https://redirect.github.com/spring-projects/spring-boot/issues/48989">#48989</a></li> <li>Slice test includes fail to load when using spring-boot-starter-test-classic <a href="https://redirect.github.com/spring-projects/spring-boot/issues/48981">#48981</a></li> <li>Docker credential helpers with file extensions cannot be executed on Windows <a href="https://redirect.github.com/spring-projects/spring-boot/issues/48979">#48979</a></li> <li>Java version requirement check for native image is confusing if AOT didn't run <a href="https://redirect.github.com/spring-projects/spring-boot/issues/48963">#48963</a></li> <li>TestPropertyValues.Pair.fromMapEntry(Entry&lt;String, String&gt;) does not comply with its nullability contract <a href="https://redirect.github.com/spring-projects/spring-boot/issues/48948">#48948</a></li> </ul> <h2>:notebook_with_decorative_cover: Documentation</h2> <ul> <li>Couchbase and Kafka are incorrectly listed as supporting SSL with Docker Compose <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49212">#49212</a></li> <li>Document that use of non idiomatic format for '<code>@Value</code>' still apply for environment variables <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49109">#49109</a></li> <li>Document naming convention for custom test-scoped starters <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49017">#49017</a></li> <li>Delay removal of Jackson 2 support until 4.3 at the earliest <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49010">#49010</a></li> <li>LICENSE.txt and NOTICE.txt files have the wrong content in the latest releases <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49003">#49003</a></li> <li>ApplicationContextAssert documents a non-existent assertion in getFailure() <a href="https://redirect.github.com/spring-projects/spring-boot/issues/48977">#48977</a></li> <li>Highlight the importance of the preStop hook when configuring Kubernetes probes <a href="https://redirect.github.com/spring-projects/spring-boot/issues/48946">#48946</a></li> </ul> <h2>:hammer: Dependency Upgrades</h2> <ul> <li>Upgrade to AssertJ 3.27.7 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49095">#49095</a></li> <li>Upgrade to Elasticsearch Client 9.2.5 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49184">#49184</a></li> <li>Upgrade to Groovy 5.0.4 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49097">#49097</a></li> <li>Upgrade to Hibernate 7.2.3.Final <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49098">#49098</a></li> <li>Upgrade to Hibernate 7.2.4.Final <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49167">#49167</a></li> <li>Upgrade to Jaybird 6.0.4 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49099">#49099</a></li> <li>Upgrade to JBoss Logging 3.6.2.Final <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49100">#49100</a></li> <li>Upgrade to Jersey 4.0.2 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49101">#49101</a></li> <li>Upgrade to Jetty 12.1.6 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49102">#49102</a></li> <li>Upgrade to jOOQ 3.19.30 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49103">#49103</a></li> <li>Upgrade to JUnit Jupiter 6.0.3 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49233">#49233</a></li> <li>Upgrade to Logback 1.5.29 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49169">#49169</a></li> <li>Upgrade to Logback 1.5.32 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49245">#49245</a></li> <li>Upgrade to Micrometer 1.16.3 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49111">#49111</a></li> <li>Upgrade to Micrometer Tracing 1.6.3 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49112">#49112</a></li> <li>Upgrade to MongoDB 5.6.3 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49105">#49105</a></li> <li>Upgrade to MySQL 9.6.0 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49106">#49106</a></li> <li>Upgrade to Netty 4.2.10.Final <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49107">#49107</a></li> <li>Upgrade to Postgresql 42.7.10 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49202">#49202</a></li> <li>Upgrade to Reactor Bom 2025.0.3 <a href="https://redirect.github.com/spring-projects/spring-boot/issues/49087">#49087</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/spring-projects/spring-boot/commit/1ab1436051b69288adb802afffd73aef94460ff1"><code>1ab1436</code></a> Release v4.0.3</li> <li><a href="https://github.com/spring-projects/spring-boot/commit/5cc488dea1493e80380eec286592da5c690f3be3"><code>5cc488d</code></a> Merge branch '3.5.x' into 4.0.x</li> <li><a href="https://github.com/spring-projects/spring-boot/commit/9138ae29d301468a7b6eda129a37f97124a927bb"><code>9138ae2</code></a> Next development version (v3.5.12-SNAPSHOT)</li> <li><a href="https://github.com/spring-projects/spring-boot/commit/a7e63a7cbc6d3ea8d62f060ffac48d33fd6558df"><code>a7e63a7</code></a> Merge branch '3.5.x' into 4.0.x</li> <li><a href="https://github.com/spring-projects/spring-boot/commit/54ab3c5a617cd4538f454c2c2fd68e26dd7a680a"><code>54ab3c5</code></a> Align &quot;noteworthy&quot; issues in release notes with Spring Framework</li> <li><a href="https://github.com/spring-projects/spring-boot/commit/b3ae5b1f96a16c320be49174b4544471459aea09"><code>b3ae5b1</code></a> Merge branch '3.5.x' into 4.0.x</li> <li><a href="https://github.com/spring-projects/spring-boot/commit/996664f3821ec7fd8216d404223eaca9582fb96b"><code>996664f</code></a> Temporarily switch Docker to overlay2</li> <li><a href="https://github.com/spring-projects/spring-boot/commit/1ce8743841f998bddc3bf181de15426c7d429cea"><code>1ce8743</code></a> Revert &quot;Temporarily disable containerd snapshotter&quot;</li> <li><a href="https://github.com/spring-projects/spring-boot/commit/5ba88c69bba7dfa0941000a0a0fdea0ff9d58ff5"><code>5ba88c6</code></a> Temporarily disable containerd snapshotter</li> <li><a href="https://github.com/spring-projects/spring-boot/commit/1f1a88cf7b2db7c9f4b78347d6e55c3be4686184"><code>1f1a88c</code></a> Revert &quot;Temporarily update system tests to use specific platform&quot;</li> <li>Additional commits viewable in <a href="https://github.com/spring-projects/spring-boot/compare/v3.5.7...v4.0.3">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.springframework.boot&package-manager=gradle&previous-version=3.5.7&new-version=4.0.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>
dependabot[bot] commented 2026-03-23 01:35:39 -07:00 (Migrated from github.com)

Superseded by #490.

Superseded by #490.

Pull request closed

Sign in to join this conversation.
No description provided.