• See full diff in compare view

Sourced from org.apache.httpcomponents.client5:httpclient5's changelog.

Release 5.5

This is the first GA release in the 5.5 release series. This release finalizes the 5.5 APIs and adds several experimental features and improvements, such as request multiplexing over a shared HTTP/2 connection and the Classic API facade acting as a compatibility bridge between classic I/O client services and the asynchronous message transport used internally.

Notable changes and features included in the 5.5 series:

• Improved conformance to RFC 7616 (HTTP Digest Access Authentication).

• The connection pool implementation acts as a caching facade in front of a standard managed connection pool and shares already leased connections to multiplex message exchanges over active HTTP/2 connections. Experimental.

• Extended Auth API and improved authentication protocol logic to support mutual authentication.

• The Classic API facade now acts as a compatibility bridge between the classic I/O client services (based on the standard InputStream / OutputStream model) and the asynchronous message transport used internally. This is experimental.

• HTTP/2 support for the Fluent Facade (via Classic API facade). This is experimental.

Compatibility notes:

• As of this release, HttpClient does not automatically execute redirects if the original request manually added headers that are considered sensitive.

Change Log

• HTTPCLIENT-2367: Fixed NPE in InternalAbstractHttpAsyncClient by adding a null check for resolvedTarget (#634). Contributed by Arturo Bernal

• Fixed case of Cookie#HTTP_ONLY_ATTR Contributed by Finn Petersen fp7@posteo.net

• Simplified ProtocolSwitchStrategy by leveraging ProtocolVersionParser (#627). Contributed by Arturo Bernal

• HTTPCLIENT-2364: Fixed incorrect re-binding of the upgraded SSL socket to the HTTP connection by the #upgrade method of the DefaultHttpClientConnectionOperator. Contributed by Oleg Kalnichevski

... (truncated)

• b42e73c HttpClient 5.5 release
• 3061c34 Updated release notes for HttpClient 5.5 release
• 14a9208 Updated NOTICE to 2025
• 4021b7c Link text adjustment
• be441c1 Update the GitHub Security page with a link to the new HttpComponents
• f5f9ae8 HTTPCLIENT-2367 - Fix NPE in InternalAbstractHttpAsyncClient by adding null c...
• 19c0278 Bump org.junit:junit-bom from 5.12.1 to 5.12.2 #632
• ef06a27 Bump org.junit:junit-bom from 5.12.1 to 5.12.2 (#632)
• 9bae302 Fix case of Cookie.HTTP_ONLY_ATTR
• 0ba6102 Simplify ProtocolSwitchStrategy by Leveraging ProtocolVersionParser (#627)
• Additional commits viewable in compare view

Sourced from org.springframework.boot:spring-boot-maven-plugin's releases.

v3.5.0

Full release notes for Spring Boot 3.5 are available on the wiki.

⭐ New Features

• Make heapdump endpoint restricted by default #45624
• Remove SSL status tag from metrics #45602
• Remove 'spring.http.client' deprecation and change 'spring.http.reactiveclient.settings' to 'spring.http.reactiveclient' #45507

🐞 Bug Fixes

• Unable to override/set nested ConfigurationProperties by passing as a system property #45639
• ValidationAutoConfiguration triggers early initialization of properties binding #45618
• Micrometer "enable" annotations property does not cover observed aspect #45617
• spring.graphql.sse.timeout is no longer exposed #45613
• SpringApplication.setEnvironmentPrefix is ignored when reading SPRING_PROFILES_ACTIVE #45549
• IllegalStateException when extracting using layers a module with no code of its own #45449
• Removed spring.batch.initialize-schema property is still considered #45380
• ReactorHttpClientBuilder does not offer a factory method to create the HttpClient #45378
• Suggested values for spring.jpa.hibernate.ddl-auto are not aligned with Hibernate #45351
• Custom default units declared on a field are ignored when binding properties in a native image #45347
• DockerRegistryConfigAuthentication uses the wrong serverUrl as a fallback for the Credentials helper #45345
• Various spring.datasource properties are mistakenly marked as ignored #45342
• JerseyWebApplicationInitializer always gets loaded, setting a ServletContext initParameter #45297
• DockerRegistryConfigAuthentication does not align with Docker CLI #45292
• Unlike the Docker CLI, "\x00" characters are not trimmed from a decoded Docker Registry password #45290
• CloudFoundry security matcher logs a warning due to use of the 'ignoring()' method #32622

📔 Documentation

• Document the java info contribution #45634
• Document the process info contribution #45632
• Document the os info contribution #45630
• Document typical spring.application.group and name use #45628
• Document that bean methods should be static when annotated with @ConfigurationPropertiesBinding #45626
• Document the way that primary Kotlin constructors are used when binding #45553
• Improve "profile" reference documentation with additional admonitions #45551
• Improve setEnvironmentPrefix(...) reference documentation #45376
• Document all the available Testcontainers integrations #45367
• Document when a spring.config.import value is relative and when it is fixed #45363
• Update org.cyclonedx.bom version in docs to 2.3.0 #45320
• Update link to "Parameter Name Retention" section of Spring Framework's release notes #45299

🔨 Dependency Upgrades

• Prevent upgrade to Prometheus Client 1.3.7 #45541
• Upgrade to Couchbase Client 3.8.1 #45539
• Upgrade to Elasticsearch 8.18.1 #45447
• Upgrade to GraphQL Java 24.0 #45588
• Upgrade to Hibernate 6.6.15.Final #45540

... (truncated)

• 8c2d645 Release v3.5.0
• 0b49e78 Merge branch '3.4.x'
• c684fa4 Switch make-default for publish-to-sdkman to 3.5.x
• 5695192 Ensure descendants are always recalculated on cache refresh
• 31f549e Merge branch '3.4.x'
• 68df6f5 Next development version (v3.4.7-SNAPSHOT)
• 9f46877 Merge branch '3.4.x'
• 404a0df Merge branch '3.3.x' into 3.4.x
• e331846 Next development version (v3.3.13-SNAPSHOT)
• b142798 Merge branch '3.4.x'
• Additional commits viewable in compare view

Sourced from org.springframework.boot:spring-boot-dependencies's releases.

v3.5.0

Full release notes for Spring Boot 3.5 are available on the wiki.

⭐ New Features

• Make heapdump endpoint restricted by default #45624
• Remove SSL status tag from metrics #45602
• Remove 'spring.http.client' deprecation and change 'spring.http.reactiveclient.settings' to 'spring.http.reactiveclient' #45507

🐞 Bug Fixes

• Unable to override/set nested ConfigurationProperties by passing as a system property #45639
• ValidationAutoConfiguration triggers early initialization of properties binding #45618
• Micrometer "enable" annotations property does not cover observed aspect #45617
• spring.graphql.sse.timeout is no longer exposed #45613
• SpringApplication.setEnvironmentPrefix is ignored when reading SPRING_PROFILES_ACTIVE #45549
• IllegalStateException when extracting using layers a module with no code of its own #45449
• Removed spring.batch.initialize-schema property is still considered #45380
• ReactorHttpClientBuilder does not offer a factory method to create the HttpClient #45378
• Suggested values for spring.jpa.hibernate.ddl-auto are not aligned with Hibernate #45351
• Custom default units declared on a field are ignored when binding properties in a native image #45347
• DockerRegistryConfigAuthentication uses the wrong serverUrl as a fallback for the Credentials helper #45345
• Various spring.datasource properties are mistakenly marked as ignored #45342
• JerseyWebApplicationInitializer always gets loaded, setting a ServletContext initParameter #45297
• DockerRegistryConfigAuthentication does not align with Docker CLI #45292
• Unlike the Docker CLI, "\x00" characters are not trimmed from a decoded Docker Registry password #45290
• CloudFoundry security matcher logs a warning due to use of the 'ignoring()' method #32622

📔 Documentation

• Document the java info contribution #45634
• Document the process info contribution #45632
• Document the os info contribution #45630
• Document typical spring.application.group and name use #45628
• Document that bean methods should be static when annotated with @ConfigurationPropertiesBinding #45626
• Document the way that primary Kotlin constructors are used when binding #45553
• Improve "profile" reference documentation with additional admonitions #45551
• Improve setEnvironmentPrefix(...) reference documentation #45376
• Document all the available Testcontainers integrations #45367
• Document when a spring.config.import value is relative and when it is fixed #45363
• Update org.cyclonedx.bom version in docs to 2.3.0 #45320
• Update link to "Parameter Name Retention" section of Spring Framework's release notes #45299

🔨 Dependency Upgrades

• Prevent upgrade to Prometheus Client 1.3.7 #45541
• Upgrade to Couchbase Client 3.8.1 #45539
• Upgrade to Elasticsearch 8.18.1 #45447
• Upgrade to GraphQL Java 24.0 #45588
• Upgrade to Hibernate 6.6.15.Final #45540

... (truncated)

• 8c2d645 Release v3.5.0
• 0b49e78 Merge branch '3.4.x'
• c684fa4 Switch make-default for publish-to-sdkman to 3.5.x
• 5695192 Ensure descendants are always recalculated on cache refresh
• 31f549e Merge branch '3.4.x'
• 68df6f5 Next development version (v3.4.7-SNAPSHOT)
• 9f46877 Merge branch '3.4.x'
• 404a0df Merge branch '3.3.x' into 3.4.x
• e331846 Next development version (v3.3.13-SNAPSHOT)
• b142798 Merge branch '3.4.x'
• Additional commits viewable in compare view

Sourced from org.apache.maven.plugins:maven-clean-plugin's releases.

3.5.0

🚀 New features and improvements

• Configuration parameter for deleting read-only files (#252) @​desruisseaux

👻 Maintenance

• Bump project to 3.5.0-SNAPSHOT version (#254) @​slawekjaranowski
• Update README in 3.x branch (#249) @​slawekjaranowski

📦 Dependency updates

• Bump org.apache.maven.resolver:maven-resolver-api from 1.9.22 to 1.9.23 (#251) @dependabot[bot]
• Bump org.codehaus.plexus:plexus-testing from 1.4.0 to 1.5.0 (#244) @dependabot[bot]
• Bump org.apache.maven.plugins:maven-plugins from 43 to 44 (#237) @dependabot[bot]

3.4.1

🚀 New features and improvements

• release-drafter configuration (#88) @​slawekjaranowski
• Add PR Automation (#80) @​slawekjaranowski
• [MCLEAN-126] - Replaced old File API with new Path equivalent where possible (#62) @​peterdemaeyer
• Add Release Drafter - 3.x (#69) @​slawekjaranowski
• [MCLEAN-124] - Replaced JUnit Assumptions with @​DisabledOnOs (#64) @​peterdemaeyer
• [MCLEAN-124] - Leverage Files.delete(Path) API to provide more accurate reason in case of failure (#60) @​peterdemaeyer
• [MCLEAN-110] - Replaced Utils.createSymlink with Java 7 Files.createSymbolicLink (#59) @​peterdemaeyer

📦 Dependency updates

• Bump org.apache.maven.resolver:maven-resolver-api from 1.1.1 to 1.9.22 (#78) @dependabot[bot]
• Bump mavenVersion from 3.6.3 to 3.9.9 (#77) @dependabot[bot]
• Bump org.codehaus.plexus:plexus-testing from 1.3.0 to 1.4.0 (#72) @dependabot[bot]
• Bump org.apache.maven.plugins:maven-plugins from 42 to 43 (#76) @dependabot[bot]

👻 Maintenance

• Update scm tag according to branch (#102) @​slawekjaranowski
• PR Automation only on close event (#101) @​slawekjaranowski
• [MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#94) @​Bukama
• Fix license/notice (#83) @​slawekjaranowski

• d18c596 [maven-release-plugin] prepare release maven-clean-plugin-3.5.0
• 5117885 Bump project to 3.5.0-SNAPSHOT version
• 7350dbe Configuration parameter for deleting read-only files
• bdf8c5d Bump org.apache.maven.resolver:maven-resolver-api from 1.9.22 to 1.9.23 (#251)
• d720e18 Update README in 3.x branch
• 6c0745c Bump org.codehaus.plexus:plexus-testing from 1.4.0 to 1.5.0
• 5dedab5 fix
• c22ab2d Bump org.apache.maven.plugins:maven-plugins from 43 to 44
• 68f2009 [maven-release-plugin] prepare for next development iteration
• 8211bc5 [maven-release-plugin] prepare release maven-clean-plugin-3.4.1
• Additional commits viewable in compare view

Sourced from org.apache.maven.plugins:maven-compiler-plugin's releases.

3.14.0

🚀 New features and improvements

• Enable GitHub Issues (#305) @​slawekjaranowski
• [MCOMPILER-579] - allow module-version configuration (#273) @​mguillem
• Bump org.codehaus.plexus:plexus-java from 1.2.0 to 1.4.0 - JDK 24 support (#293) @dependabot[bot]
• Update release-drafter configuration, PR automation (#281) @​slawekjaranowski
• [MCOMPILER-588] - JUnit4 test framework to JUnit5 migration (#236) @​MidNight-er

🐛 Bug Fixes

• Fix release-drafter config (#292) @​slawekjaranowski
• [MCOMPILER-591] - testCompile - fix detections of target less than 1.9 (#240) @​slawekjaranowski

📦 Dependency updates

• Bump org.codehaus.plexus:plexus-java from 1.2.0 to 1.4.0 - JDK 24 support (#293) @dependabot[bot]
• Bump mavenVersion from 3.6.3 to 3.9.9 (#283) @dependabot[bot]
• Bump org.mockito:mockito-core from 4.8.0 to 4.11.0 (#288) @dependabot[bot]
• Bump org.apache.maven.plugins:maven-plugins from 42 to 43 (#285) @dependabot[bot]
• [MCOMPILER-590] - Bump org.apache.maven.plugins:maven-plugins from 41 to 42 (#235) @dependabot[bot]

👻 Maintenance

• Update scm tag according to branch (#303) @​slawekjaranowski
• [MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#300) @​Bukama
• Use JUnit version from parent (#299) @​slawekjaranowski
• [MCOMPILER-529] - Update docs about version schema (Maven 3) (#295) @​Bukama
• Use default Maven versions for build on GitHub (#289) @​slawekjaranowski
• Remove Maven 3 note (#241) @​elharo
• Remove info about old versions (#237) @​elharo

🔧 Build

• Exclude JDK 8 - temurin, adopt-openj9 on macos, use defaults values (#238) @​slawekjaranowski

• b5e7d9b [maven-release-plugin] prepare release maven-compiler-plugin-3.14.0
• 9134f12 Enable GitHub Issues
• 19b8b12 Update scm tag according to branch
• 09dce4e [MCOMPILER-579] allow module-version configuration (#273)
• f7c3c5f Bump org.codehaus.plexus:plexus-java from 1.2.0 to 1.4.0
• 764a54b [MNGSITE-529] Rename "Goals" to "Plugin Documentation"
• cfacbc1 PR Automation only on close event
• 5c26bba Use JUnit version from parent
• 5449407 [MCOMPILER-529] Update docs about version schema (Maven 3)
• 01d5b88 Bump mavenVersion from 3.6.3 to 3.9.9 (#283)
• Additional commits viewable in compare view

Sourced from org.apache.maven.plugins:maven-surefire-plugin's releases.

3.5.3

🐛 Bug Fixes

• [SUREFIRE-1737] - Fix disable in statelessTestsetReporter (#816) @​slawekjaranowski
• [SUREFIRE-1643] - surefire junit5 parallel tests (#815) @​olamy
• [SUREFIRE-2289] - Make exceptions more appropriate to context (#798) @​elharo

👻 Maintenance

• surefire shared utils version current version (#825) @​olamy
• Update site descriptors (#821) @​slawekjaranowski
• Use newer version of surefire for itself testing, enable JUnit 5 in tests (#822) @​slawekjaranowski
• Remove dependencies from root pom (#819) @​slawekjaranowski
• move this dependency to dptMngt (#818) @​olamy
• [SUREFIRE-2291] - Change logger from Plexus to SLF4J (#811) @​jeffjensen
• Add GitHub Automation actions (#812) @​slawekjaranowski
• Convert reports to Guice (#803) @​elharo
• [MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#809) @​Bukama
• Update encoding docs (#802) @​elharo
• Guice injection (#801) @​elharo

📦 Dependency updates

• Bump org.htmlunit:htmlunit from 4.10.0 to 4.11.1 (#823) @dependabot[bot]
• Bump parent to 44 (#817) @​slawekjaranowski
• Bump org.codehaus.plexus:plexus-java from 1.3.0 to 1.4.0 (#810) @dependabot[bot]
• Bump org.htmlunit:htmlunit from 4.4.0 to 4.10.0 (#813) @dependabot[bot]
• Bump commons-io:commons-io from 2.17.0 to 2.18.0 (#797) @dependabot[bot]
• Bump org.assertj:assertj-core from 3.27.2 to 3.27.3 (#807) @dependabot[bot]
• Bump org.assertj:assertj-core from 3.27.0 to 3.27.2 (#805) @dependabot[bot]
• Bump org.assertj:assertj-core from 3.26.3 to 3.27.0 (#800) @dependabot[bot]

• 4434650 [maven-release-plugin] prepare release surefire-3.5.3
• 1270950 use github directly
• 59f3a1f release tag name backward compatible
• dfbabe2 assertj-core must be test scope (#826)
• e1f8119 back to 3.5.3-SNAPSHOT
• c497559 [maven-release-plugin] prepare for next development iteration
• 3962112 [maven-release-plugin] prepare release v3.5.3
• 227c134 surefire shared utils version current version (#825)
• 1d34c34 Bump org.htmlunit:htmlunit from 4.10.0 to 4.11.1
• 906b65a Update site descriptors
• Additional commits viewable in compare view

Sourced from org.apache.maven.plugins:maven-install-plugin's releases.

3.1.4

🚀 New features and improvements

• Enable GitHub Issues (#119) @​slawekjaranowski
• Add release-drafter, PR automation (#101) @​slawekjaranowski

📦 Dependency updates

• Bump resolverVersion from 1.9.18 to 1.9.22 (#108) @dependabot[bot]
• Bump org.mockito:mockito-core from 4.8.1 to 4.11.0 (#109) @dependabot[bot]
• Bump mavenVersion from 3.9.6 to 3.9.9 (#104) @dependabot[bot]

👻 Maintenance

• [MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#112) @​Bukama
• Remove unused method (#97) @​pzygielo

• 29b220d [maven-release-plugin] prepare release maven-install-plugin-3.1.4
• 0df7304 Enable GitHub Issues
• 2fda8ce Bump resolverVersion from 1.9.18 to 1.9.22
• 57b57dd [MNGSITE-529] Rename "Goals" to "Plugin Documentation"
• 6894c0d PR Automation only on close event
• d97234c Bump org.mockito:mockito-core from 4.8.1 to 4.11.0
• f8aa35e Bump mavenVersion from 3.9.6 to 3.9.9
• e2c6c78 Add release-drafter, PR automation
• ef37684 Remove unused method
• dcf39a0 [maven-release-plugin] prepare for next development iteration
• See full diff in compare view

Sourced from org.apache.maven.plugins:maven-deploy-plugin's releases.

3.1.4

🚀 New features and improvements

• Enable GitHub Issues (#107) @​slawekjaranowski
• Release drafter configuration and PR Automation (#88) @​slawekjaranowski

📦 Dependency updates

• Bump resolverVersion from 1.9.18 to 1.9.22 (#96) @dependabot[bot]
• Bump mavenVersion from 3.9.6 to 3.9.9 (#94) @dependabot[bot]

👻 Maintenance

• PR Automation only on close event (#104) @​slawekjaranowski
• [MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#100) @​Bukama
• Fix IT deploy-bom for Maven rc-2 (#89) @​slawekjaranowski

• 538c67c [maven-release-plugin] prepare release maven-deploy-plugin-3.1.4
• 6dd30b3 Enable GitHub Issues
• 39f204c Bump resolverVersion from 1.9.18 to 1.9.22
• 65c05b7 PR Automation only on close event
• 69b6824 [MNGSITE-529] Rename "Goals" to "Plugin Documentation"
• 66b357b Bump mavenVersion from 3.9.6 to 3.9.9
• 386fcf9 Release drafter configuration and PR Automation
• 2173944 Fix IT deploy-bom for Maven rc-2
• 424f215 [maven-release-plugin] prepare for next development iteration
• See full diff in compare view

Sourced from org.apache.maven.plugins:maven-project-info-reports-plugin's releases.

3.9.0

🚀 New features and improvements

• Enable GitHub Issues (#102) @​slawekjaranowski
• [MPIR-478] - Allow to save avatars images for team report during project build (#97) @​slawekjaranowski
• [MPIR-476] - Remove direct usage of localRepository as Mojo parameter (#95) @​slawekjaranowski
• [MPIR-475] - Drop usage of maven-artifact-transfer (#94) @​slawekjaranowski

📦 Dependency updates

• [MPIR-474] - Bump org.apache.maven.shared:maven-shared-jar from 3.1.1 to 3.2.0 (#93) @dependabot[bot]

👻 Maintenance

• Upgrade dependencies for ITs (#101) @​slawekjaranowski
• Add Release Drafter (#99) @​slawekjaranowski
• Remove empty javadoc tags on private methods (#100) @​elharo
• Add PR Automation and Stale actions (#98) @​slawekjaranowski
• [MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#96) @​Bukama
• Switch to modern I/O (#91) @​elharo
• Convert to Guice constructor injection (#90) @​elharo

• f89321c [maven-release-plugin] prepare release maven-project-info-reports-plugin-3.9.0
• 3f47dd0 Enable GitHub Issues
• e51cef8 [MPIR-478] Allow to save avatars images for team report during project build
• 3a991e2 Upgrade dependencies for ITs
• df61a5a Add Release Drafter
• d4ae6c6 Remove empty javadoc tags on private methods (#100)
• cbe9f0c Add PR Automation and Stale actions
• c80a10d [MNGSITE-529] Rename "Goals" to "Plugin Documentation"
• b1b55bb [MPIR-476] Remove direct usage of localRepository as Mojo parameter
• 03b9832 [MPIR-475] Drop usage of maven-artifact-transfer
• Additional commits viewable in compare view

Sourced from org.springframework.boot:spring-boot-dependencies's releases.

v3.5.0

Full release notes for Spring Boot 3.5 are available on the wiki.

⭐ New Features

• Make heapdump endpoint restricted by default #45624
• Remove SSL status tag from metrics #45602
• Remove 'spring.http.client' deprecation and change 'spring.http.reactiveclient.settings' to 'spring.http.reactiveclient' #45507

🐞 Bug Fixes

• Unable to override/set nested ConfigurationProperties by passing as a system property #45639
• ValidationAutoConfiguration triggers early initialization of properties binding #45618
• Micrometer "enable" annotations property does not cover observed aspect #45617
• spring.graphql.sse.timeout is no longer exposed #45613
• SpringApplication.setEnvironmentPrefix is ignored when reading SPRING_PROFILES_ACTIVE #45549
• IllegalStateException when extracting using layers a module with no code of its own #45449
• Removed spring.batch.initialize-schema property is still considered #45380
• ReactorHttpClientBuilder does not offer a factory method to create the HttpClient #45378
• Suggested values for spring.jpa.hibernate.ddl-auto are not aligned with Hibernate #45351
• Custom default units declared on a field are ignored when binding properties in a native image #45347
• DockerRegistryConfigAuthentication uses the wrong serverUrl as a fallback for the Credentials helper #45345
• Various spring.datasource properties are mistakenly marked as ignored #45342
• JerseyWebApplicationInitializer always gets loaded, setting a ServletContext initParameter #45297
• DockerRegistryConfigAuthentication does not align with Docker CLI #45292
• Unlike th...

  Description has been truncated