On behalf of the team and everyone who has contributed, I am pleased to announce the availability of Spring Security 6.4.6.

Please check the changelog for more details. Note that this release contains the fix for CVE-2025-41232.

Project Page | GitHub | Issues | Documentation

On behalf of the team and everyone who has contributed, I am pleased to announce the general availability of the final Spring Security 6 minor release, 6.5.0!

To see all the new features, please take a look at What's New in Spring Security 6.5 in the reference.

Also, since this is the target release for migrating from 6.x to 7.x, please also begin reviewing the migration guide.

Please check the release changelog as well as the previous changelogs for 6.5.0-M1, 6.5.0-M2, 6.5.0-M3, and 6.5.0-RC1 for more details.

Project Page | GitHub | Issues | Documentation

On behalf of the Spring Data engineering team and everyone who contributed to this release, I am delighted to announce the general availability of Spring Data 2025.0 from Maven Central! This release comes with driver upgrades and refinements in individual store modules.

Most notable changes include:

• Vector type and Vector Search support in MongoDB and Apache Cassandra
• Constructor Expression Derivation for DTO Projections in Spring Data JPA
• Support for identifier generation using sequences in Spring Data JDBC and R2DBC
• Index Creation using Cassandra 5 Storage-Attached Indexes

Please refer to our release notes for…

On behalf of the team and everyone who has contributed, I am pleased to announce the third milestone for the next Spring Data generation This milestone continues delivering new features and refinements mostly around infrastructure themes.

Ahead-of-Time Optimization for Repositories

Spring Data repositories can now be optimized at build time using the Spring AOT framework. AOT processing allows for faster startup times and reduced memory consumption featuring in the JPA (Hibernate only) and MongoDB modules. Ahead-of-Time optimizations capture some decisions that have been taken at build-time…

On behalf of the team and everyone who has contributed, I’m pleased to announce the availability of 2024.1.6 and 2024.0.12 service releases. These releases ship with dependency upgrades, fixes for regressions and selected improvements.

Note that OSS support for the 3.3.x development line (2024.0.x release train) is about to end by the end of June 2025. Please consider upgrading to the latest 3.4.x (2024.1.x release train) version at your earliest convenience.

The upcoming Spring Boot releases will pick up the above releases by next week.

2024.1.6

• Spring Data Commons 3.4.6 - Javadoc - Documentation - Changelog
• Spring Data JPA 3.4.6 - Javadoc - Documentation - Changelog
• Spring Data KeyValue 3.4.6 - Javadoc - Documentation - Changelog
• Spring Data for Apache Cassandra 4.4.6 - Javadoc - Documentation - Changelog
• Spring Data Neo4j 7.4.6 - Javadoc - Documentation - Changelog
• Spring Data MongoDB 4.4.6 - Javadoc - Documentation - Changelog
• Spring Data LDAP 3.4.6 - Javadoc - Documentation - Changelog
• Spring Data REST 4.4.6 - Javadoc - Documentation - Changelog
• Spring Data Redis 3.4.6 - Javadoc - Documentation - Changelog
• Spring Data Elasticsearch 5.4.6 - Javadoc - Documentation - …

On behalf of the team and everyone who has contributed, I am pleased to announce that the Spring Vault 3.2.0 release is generally available now.

Notable enhancements are:

• Add support for IMDSv2 on EC2
• Support for Github Token Authentication

You can find the full changelog at https://github.com/spring-projects/spring-vault/releases/tag/3.2.0.

Project Page | GitHub | Issues | Documentation

On behalf of the team and everyone who has contributed, I'm happy to announce that Spring Web Services 4.0.14 has been released and is now available from Maven Central.

This release includes 1 dependency upgrade. Thanks to all those who have contributed with issue reports and pull requests.

How can you help?

If you're interested in helping out, check out the "ideal for contribution" tag in the issue repository. If you have general questions, please ask on stackoverflow.com using the spring-ws tag.

Project Page | GitHub | Issues | Documentation | Stack Overflow

On behalf of the team and everyone who has contributed, I am pleased to announce a new milestone for the next Spring Framework generation. The fifth milestone continues delivering new features and refinements on top of 7.0.0-M1, 7.0.0-M2, 7.0.0-M3 and 7.0.0-M4.

Jackson 3.0 support

As of #33798, we default to supporting Jackson 3.x in our entire stack, falling back to Jackson 2.x. Support for the Jackson 2.x generation has been deprecated in Spring Framework, and our current plan is to disable its auto-detection in 7.1, and remove its support entirely in 7.2.

Jackson 3.x uses a new tools.jackson package, which differs from the usual com.fasterxml.jackson. Classes from the "jackson-annotation" artifact (like @JsonView, @JsonTypeInfo) remain in the com.fasterxml.jackson…

On behalf of the team and everyone who has contributed, I am pleased to announce that Spring Framework 6.1.20 and 6.2.7 are available now.

Spring Framework 6.1.20 ships with 4 fixes and documentation improvements. This version will be shipped next week with Spring Boot 3.3.12.

Spring Framework 6.2.7 ships with 25 fixes and documentation improvements. This version will be shipped next week with Spring Boot 3.4.6 and 3.5.0.

CVE-2025-22233:

The releases address CVE-2025-22233 for Spring Framework DataBinder Case Sensitive Match Exception (2nd update).

Open source support for Spring Framework 5.3.x and 6.0.x generations has ended and will expire for the 6.1.x generation next month, see our support page for more information…