On behalf of the community, I’m pleased to announce the release of Spring Security OAuth 2.3.2.RELEASE.

This release resolves a runtime incompatibility issue with RedisTokenStore and Spring Data Redis 2.0.x. See #1319 and #1335. This release also includes a few minor enhancements and bug fixes.

Project Page | GitHub | Documentation | Help

CVE-2018-1270 reported last week was unfortunately not fully addressed in the 4.3.x branch of the Spring Framework. Spring Framework 4.3.16 has been released today, so we've decided to also release Spring Boot 1.5.12 to help people upgrade easily.

This release includes just 3 fixed issues, but should be considered a priority upgrade for all existing Spring Boot 1.5 users.

Spring Boot 2.0 users are not affected and should use the existing 2.0.1 release.

Project Page | GitHub | Issues | Documentation | Stack Overflow | Gitter

I am pleased to announce that Spring IO Platform Brussels-SR9 is now available from both repo.spring.io and Maven Central.

This maintenance release upgrades the versions of a number of the projects in the Platform:

• Spring Boot 1.5.12
• Spring Framework 4.3.16

Project Page | GitHub | Issues | Documentation

It's my pleasure to announce that Spring IO Platform Cairo-RELEASE is now available from the Spring release repository and Maven Central. The Cairo generation of the Platform builds on top of Spring Framework 5.0 and Spring Boot 2.0 and requires Java 8.

What has changed

Cairo upgrades the versions of a number of projects:

• Reactor Bismuth
• Spring AMQP 2.0
• Spring Batch 4.0
• Spring Boot 2.0
• Spring Cloud Connectors 2.0
• Spring Data Kay
• Spring Framework 5.0
• Spring Integration 5.0
• Spring Kafka 2.1
• Spring REST Docs 2.0
• Spring Security 5.0
• Spring Security OAuth 2.2
• Spring Session 2.0
• Spring Web Flow 2.5
• Spring Web Services 3.0
…

CVE-2018-1270 was reported last week, and unfortunately, was not fully addressed in the 4.3.x branch of the Spring Framework.

A follow-up 4.3.16 version was created and released to Maven Central, and a new CVE-2018-1275 report was published. Please upgrade to 4.3.16 immediately!

Spring Boot 1.5.x Instructions: if impacted by this issue, please upgrade to Spring Boot 1.5.12.

I am pleased to announce that Spring IO Platform Brussels-SR8 is now available from both repo.spring.io and Maven Central.

This maintenance release upgrades the versions of a number of the projects in the Platform:

• Spring AMQP 1.7.7
• Spring Batch 3.0.9
• Spring Boot 1.5.11
• Spring Data Ingalls SR11
• Spring Framework 4.3.15
• Spring Integration 4.3.15
• Spring Kafka 1.1.8
• Spring Security 4.2.5
• Spring Session 1.3.2
• Spring Social 1.1.6

The versions of a number of third-party dependencies have also been updated.

Project Page | GitHub | Issues | Documentation

I’m pleased to announce the releases of Spring Security 5.0.4 and 4.2.5. Both releases primarily deliver bug fixes and dependency version updates along with some minor improvements.

For a complete list of changes, please refer to the 5.0.4 changelog and 4.2.5 changelog.

Project Site | Reference | Help

On behalf of the community, I’d like to announce the availability of Spring Vault service releases 1.1.2 and 2.0.1, available from Maven Central.

Both releases primarily deliver bug fixes and dependency version updates along with some minor improvements.

For a complete list of changes see the changelogs of 1.1.2 RELEASE and 2.0.1 RELEASE.

Project Page | GitHub | Issues | Documentation for 1.1.2.RELEASE | Documentation for 2.0.1.RELEASE | Stack Overflow

On behalf of the team, I am pleased to announce that Spring Boot 1.5.11 has been released and is is now available from repo.spring.io and Maven Central.

Spring Boot 1.5.11 includes over 70 fixes, improvements and dependency updates. Thanks to all that have contributed with issue reports and pull requests.

How can you help?

If you're interested in helping out, check out the "ideal for contribution" tag in the issue repository. If you have general questions, please ask on stackoverflow.com using the spring-boot tag or chat with the community on Gitter.

Project Page | GitHub | Issues | Documentation | Stack Overflow | …