Spring Cloud 2020.0.5 (Ilford) Has Been Released

Releases | Ryan Baxter | December 16, 2021 | ...

On behalf of the community, I am pleased to announce that the General Availability (RELEASE) of the Spring Cloud 2020.0.5 Release Train is available today. The release can be found in Maven Central. You can check out the 2020.0.5 release notes for more information.

Notable Changes in the 2020.0.5 Release Train

Spring Cloud Netflix

  • Upgraded Netflix/Eureka to 1.10.17 issue

Spring Cloud Config

  • Support Using HTTPS proxies for Git Repositories (1965)
  • Support ordering AWS, Redis, and CredHub Repositories (1980)

Spring Cloud Gateway

This Week in Spring - December 14th, 2021

Engineering | Josh Long | December 14, 2021 | ...

Hi, Spring fans! How are you? Welcome to another installment of This Week in Spring! I'm doing alright! It's noon as I write this, and I've got GSUG joint presentation with Matt Raible later today. Then, tonight at midnight my time to 5 am or 6 am, I'm kicking off a two-day workshop for GOTO! I look forward to seeing ya there! Anyway, we've got a lot to cover so let's dive into it!

Spring Cloud Square 0.4.0-RC1 is available

Releases | Olga Maciaszek-Sharma | December 14, 2021 | ...

On behalf of the community, I am pleased to announce that the Release Candidate 1 (RC1) of the Spring Cloud Square 0.4.0 is available today. The release can be found in Spring Milestone repository. You can check out the 0.4.0-RC1 release notes for more information.

This is primarily a bugfix release. See all issues included in this release here.

Notable changes in RC1:

  • Spring Cloud Sleuth integration for OkHttpClient #36

The documentation for this milestone can be found here.

Spring GraphQL 1.0.0-M4 Released

Releases | Brian Clozel | December 14, 2021 | ...

The Spring GraphQL team has just released the 4th milestone towards a 1.0.0 release. Thanks to all contributors!

In this milestone, we have further improved the annotation programming model and extended the Spring Data support that were provided in the previous milestones.

Interface Projections for GraphQL Arguments

If you're familiar with Spring Data's Interface-based Projections, then this new feature will make perfect sense: you can use a well-defined interface to work with GraphQL arguments, without the need for any Object implementation.

For example:

@Controller
public class…

Log4J2 Vulnerability and Spring Boot

Engineering | Phil Webb | December 10, 2021 | ...

Updates: Since this blog post has been published, a new logback 1.2.9 version has been published. While this fixes a security issue, prerequisites for exploits are very different as they "requires write access to logback's configuration file". Log4J also released a new 2.17.0 version with fixes for CVE-2021-45046 and CVE-2021-45105. Spring Boot 2.5.8 and 2.6.2 haven been released and provide dependency management for logback 1.2.9 and Log4J 2.17.0. Log4J 2.17.1 contains a fix for CVE-2021-44832

As you may have seen in the news, a new zero-day exploit has been reported against the popular Log4J2 library which can allow an attacker to remotely execute code. The vulnerability has been reported with CVE-2021-44228 against the log4j-core jar and has been fixed in Log4J v2.15.0

New AOT Engine Brings Spring Native to the Next Level

Engineering | Sébastien Deleuze | December 09, 2021 | ...

On behalf of the team and everyone who has contributed, it is my pleasure to announce the release of Spring Native 0.11, which provides native support for Spring Boot 2.6. This ambitious release is the result of five months of hard work by the Spring team, who have been working on a brand new architecture to bring Spring support for creating native executables with GraalVM to the next level. You can already try it on start.spring.io!

Learn more about Spring Native 0.11 and see it in action in this new Spring Tips video from Spring Developer Advocate Josh Long.

New Ahead-Of-Time Engine

The…

Spring Tools 4.13.0 released

Releases | Martin Lippert | December 08, 2021 | ...

Dear Spring Community,

I am happy to announce the 4.13.0 release of the Spring Tools 4 for Eclipse, Visual Studio Code, and Theia.

major changes to the Spring Tools 4 for Eclipse distribution

  • updated to Eclipse 2021-12 release (including support for Java 17) (new and noteworthy)
  • builds for Apple Silicon platform (ARM M1) are available now from the regular download page

additional changes

  • (Spring Boot) fixed: STS 4.12.0 (for eclipse) *.yml can't automatic prompt (#690)
  • (Spring Boot) fixed: A StackOverFlow error for serializable Kotlin data class for autocompletion in the Eclipse IDE (#693)
  • (Eclipse) fixed: Typescript comparison: An internal error occurred during: "LSP4E Linked Editing Highlight" (#700)
  • (Eclipse) fixed: js syntax highlight disabled by STS4 (#702)
  • (Eclipse) fixed: Cannot copy/paste from ANSI console without escape sequences (#667) - fixed in ANSI Color Console project thanks to @mihnita

Secure communications end-to-end for Spring Boot apps – in Zero Trust environment

Engineering | Josh Long | December 08, 2021 | ...

Secure communications end-to-end for Spring Boot apps - in a Zero Trust environment

Hi, Spring fans! Today, we are excited to announce the general availability of all the features to secure communications end-to-end for Spring Boot apps – in a Zero Trust environment. You can secure communications end-to-end or terminate transport level security at any communication point for Spring Boot apps. You can also automate the provisioning and configuration for all the Azure resources needed for securing communications.

Implementing secure communications as part of your solution architecture can be…

Get the Spring newsletter

Thank you for your interest. Someone will get back to you shortly.

Get ahead

VMware offers training and certification to turbo-charge your progress.

Learn more

Get support

Tanzu Spring Runtime offers support and binaries for OpenJDK™, Spring, and Apache Tomcat® in one simple subscription.

Learn more

Upcoming events

Check out all the upcoming events in the Spring community.

View all