Spring Data 2022.0.0-M5 2021.2.2 and 2021.1.6 released

Releases | Christoph Strobl | July 15, 2022 | ...

On behalf of the team, I’m pleased to announce the 5th Milestone of Spring Data 2022.0.0 as well as service releases 2021.2.2 and 2021.1.6. The service releases ship with mostly bug fixes and dependency upgrades. One notable upgrade in 2022.0.0-M5 is the move to Hibernate 6.

For your convenience, the next Spring Boot releases are going to pick up 2021.2.2 and 2021.1.6 in the upcoming days. To round things off, here are the links to the individual modules, changelogs, and documentation:

2022.0.0-M5

Spring Framework 6.0.0-M5 and 5.3.22 available now

Releases | Stéphane Nicoll | July 14, 2022 | ...

On behalf of the team and everyone who has contributed, I am pleased to announce that Spring Framework 6.0.0-M5 and 5.3.22 are available now.

Spring Framework 5.3.22 includes 45 fixes and improvements and is a recommended upgrade for all Spring production scenarios.

Spring Framework 6.0.0-M5 includes 85 additional fixes and improvements specific to the 6.0 branch.

Project Page | GitHub | Issues | Documentation

Spring Native 0.12.1 available now

Releases | Sébastien Deleuze | July 13, 2022 | ...

On behalf of the team and everyone who has contributed, I'm happy to announce that Spring Native 0.12.1 has been released and is now available from https://repo.spring.io/release.

This release includes 15 bug fixes, documentation improvements, and dependency upgrades to Spring Boot 2.7.1 and Native Build Tools 0.9.13. Thanks to all those who have contributed with issue reports and pull requests.

GitHub | Issues | Documentation

Spring for Apache Kafka 2.9 Release Candidate Available

Releases | Gary Russell | July 07, 2022 | ...

I am pleased to announce that the release candidate Spring for Apache Kafka 2.9.0 is now available (2.9.0-RC1) in the Spring Milestone Repo.

This version is not provided by Spring Boot dependency management, but it can be used with Boot 2.7 (or 2.6), as long as you override the Kafka dependencies as described in this appendix, especially if you are using the embedded Kafka broker.

Notable Changes

  • This version uses the 3.2.0 kafka-clients version

  • Non-blocking retry bootstrapping is now more robust

  • New Error Handler Mode

By default, after an error, the DefaultErrorHandler performs seeks on the remaining records from the last poll and re-fetches them from the broker on the next poll. With high error rates and large max.poll.records, this can cause unnecessary strain on the network. For this reason, the error handler has a new property seekAfterError, when set to false, instead of seeking the records, the remaining records are retained in memory and the consumer paused for the next poll (or multiple polls if the error handler is configured to use the ContainerPausingBackOffHandler

Spring Cloud 2020.0.6 is available

Releases | Olga Maciaszek-Sharma | June 30, 2022 | ...

On behalf of the community, I am pleased to announce the Spring Cloud 2020.0.6 Release Train is available today. The release can be found in Maven Central. You can check out the 2020.0.6 release notes for more information. Please consider upgrading to the latest 2021.0.x release train since the 2020.0.x release train has reached the end of OSS support.

Notable Changes in the 2020.0.6 Release

This is primarily a bugfix and dependency upgrade release, including backports of various issues over from 2021.0.x releases. Some enhancements have also been backported.

See the project page for all…

Spring Boot 2.6.9 available now

Releases | Andy Wilkinson | June 23, 2022 | ...

On behalf of the team and everyone who has contributed, I'm happy to announce that Spring Boot 2.6.9 has been released and is now available from Maven Central.

This release includes 44 bug fixes, documentation improvements, and dependency upgrades. Thanks to all those who have contributed with issue reports and pull requests.

How can you help?

If you're interested in helping out, check out the "ideal for contribution" tag in the issue repository. If you have general questions, please ask on stackoverflow.com using the spring-boot tag or chat with the community on Gitter.

Project Page | GitHub | Issues | Documentation | Stack Overflow |

Spring Boot 2.7.1 available now

Releases | Andy Wilkinson | June 23, 2022 | ...

On behalf of the team and everyone who has contributed, I'm happy to announce that Spring Boot 2.7.1 has been released and is now available from Maven Central.

This release includes 66 bug fixes, documentation improvements, and dependency upgrades. Thanks to all those who have contributed with issue reports and pull requests.

How can you help?

If you're interested in helping out, check out the "ideal for contribution" tag in the issue repository. If you have general questions, please ask on stackoverflow.com using the spring-boot tag or chat with the community on Gitter.

Project Page | GitHub | Issues | Documentation | Stack Overflow |

Spring Authorization Server 0.3.1 available now

Releases | Joe Grandja | June 20, 2022 | ...

On behalf of the team and everyone who has contributed, it is my pleasure to announce the general availability of Spring Authorization Server 0.3.1.

You can download it from Maven Central by using the module coordinates:

implementation 'org.springframework.security:spring-security-oauth2-authorization-server:0.3.1'

See the release notes for complete details.

This release includes downgrading to JDK 1.8 baseline along with some minor enhancements and bug fixes.

To get started using Spring Authorization Server, see the Getting Started chapter of the reference documentation and the samples to…

Spring Data 2021.2.1 and 2021.1.5 released

Releases | Mark Paluch | June 20, 2022 | ...

On behalf of the team, I’m pleased to announce Spring Data service releases 2021.2.1 and 2021.1.5. Both releases ship with a fix for mostly bug fixes and dependency upgrades. For your convenience, Spring Boot 2.7.1 respective 2.6.9 are going to pick up these releases in the upcoming days.

In addition, these releases include fixes for one vulnerability:

  • CVE-2022-22980 "Spring Data MongoDB SpEL Expression Injection Vulnerability"

SpEL injection attack in MongoDB applications through repository query methods annotated with @Query or @Aggregation using parametrized SpEL statements with non-sanitized input. Severity:

Get the Spring newsletter

Stay connected with the Spring newsletter

Subscribe

Get ahead

VMware offers training and certification to turbo-charge your progress.

Learn more

Get support

Tanzu Spring offers support and binaries for OpenJDK™, Spring, and Apache Tomcat® in one simple subscription.

Learn more

Upcoming events

Check out all the upcoming events in the Spring community.

View all