close

This Week in Spring - March 9th, 2021

Hi, Spring fans! Welcome to another installment of This Week in Spring! Tomorrow is the day of Spring One Tour - do not miss this event! We’ve also got a lot to get into this week so, without further ado…

Read more

This Week in Spring - March 2nd, 2021

Hi, Spring fans! Welcome to another installment of This Week in Spring! I’ve finally managed to get my joshlong.com/feed.html page working again so if you’re curious about what I’m doing, check this feed out.

We’ve got a really great roundup this week, so let’s get into it.

Read more

Spring Integration Zip 1.0.4 & CVE-2021-22114

Dear Spring community,

On behalf of the team and everyone who contributed, it is my pleasure to announce 1.0.4.RELEASE version for Spring Integration Zip extension.

CVE-2021-22114

The UnZipTransformer doesn’t cover all the cases for Zip Slip Vulnerability and some particular zip entry names may still end up outside of working directory.

The updated fix has been released in the spring-integration-zip-1.0.4.RELEASE version together with some other bug fixes and improvements. We also have published a new advisory for CVE-2021-22114.

Credit: Trung Pham, Viettel Cyber Security.

Everybody who’s using unzip feature from Spring Integration Zip is encouraged to upgrade respectively.

Cheers, 
Artem

Read more

Spring Tips: Spring Cloud Gateway (Redux)

Hi, Spring fans! In this installment of Spring Tips, I revisit Spring Cloud Gateway.

Here’s what’s inside:

Intro

11:12​ Have your cake and Eat it too with an API Gateway

Basics

00:11:37​ Get to Know Your New Gateway
00:21:18​ The Observable Gateway
00:22:39​ Meet The Supporting Characters
00:24:30​ Reactive Data For The Demo
00:28:10​ A Reactive WebSocket Endpoint
00:31:00​ Reactive HTTP Endpoint

Behind the Source with Spring Cloud co-founder, lead, and Spring Cloud Gateway creator Spencer Gibb

00:33:00​ Spencer Gibb

Read more

This Week in Spring - February 23rd, 2021

Hi, Spring fans! Welcome to another installment of This Week in Spring! This week’s been exciting and only going to get more exciting as the days carry on.

Tomorrow, the 24th of February, I’ll be participating in a panel with Angie Jones, Daniel Bryant, Stefania Chaplin, and Jonathan Harris on how to debug and fix issues so that it doesn’t block production.

Tomorrow, I’ll_also_ be streaming on Twitch.tv around noon PST. Join us!

Alright, without any further ado, this week’s roundup! Enjoy!

Read more

Spring Initializr 0.10.0 available now

On behalf of the team and everyone who has contributed, I’m happy to announce that Spring Initializr 0.10.0 has been released and is now available from Maven Central.

This release includes 27 fixes, improvements and dependency upgrades.
Thanks to all those who have contributed with issue reports and pull requests.

For full upgrade instructions and new and noteworthy features please see the release notes.

GitHub | Issues | Documentation | Stack Overflow | Gitter

Read more

Spring HATEOAS 1.3 M2 released

For all users building hypermedia based API, I’d like to announce that we shipped Spring HATEOAS 1.3 M2. We ship two major themes with the release:

Read more

Spring Boot 2.5.0-M2 available now

Continuing our monthly milestone release cadence, I am pleased to announce that the second milestone of Spring Boot 2.5 has been released and is available from our milestone repository. This release adds a number of new features and bug fixes.

Highlights of this milestone include:

  • Layered WARs support for use with Docker
  • Custom Buildpack Builder Support
  • Jetty 10 Support
  • Early Support for Gradle 7

We’ve also made some significant behind-the-scenes changes to do with the way that schema.sql and data.sql files are processed. If you use those features, please try the milestone and let us know if you find any issues.

Read more