Bump org.springframework.security:spring-security-bom from 5.8.7 to 5.8.8

[dependabot]

Bumps org.springframework.security:spring-security-bom from 5.8.7 to 5.8.8.

Release notes

Sourced from org.springframework.security:spring-security-bom's releases.

5.8.8

⭐ New Features

• Document how to publish an AuthenticationManager @Bean without WebSecurityConfigurerAdapter #11926
• Use Gradle's Version Catalog #13868

🪲 Bug Fixes

• Fix snapshot_tests on CI workflow #13876
• fix corrupted saml2 metadata once special characters are present #13777
• Saml-Metadata with special characters is corrupted #13776
• Saml2LogoutRequestMixin relayState property should be binding #12539

🔨 Dependency Upgrades

• Bump com.github.spullara.mustache.java:compiler from 0.9.10 to 0.9.11 #13982
• Bump com.github.spullara.mustache.java:compiler from 0.9.4 to 0.9.10 #13927
• Bump com.google.code.gson:gson from 2.8.6 to 2.8.9 #13890
• Bump com.gradle.enterprise from 3.11.1 to 3.11.4 #13928
• Bump io.projectreactor.netty:reactor-netty from 1.0.35 to 1.0.36 #13885
• Bump io.projectreactor.netty:reactor-netty from 1.0.36 to 1.0.38 #13998
• Bump io.projectreactor:reactor-bom from 2020.0.35 to 2020.0.36 #13944
• Bump io.projectreactor:reactor-bom from 2020.0.36 to 2020.0.37 #13997
• Bump io.spring.ge.conventions from 0.0.7 to 0.0.14 #13925
• Bump org-aspectj from 1.9.20 to 1.9.20.1 #13893
• Bump org-eclipse-jetty from 9.4.51.v20230217 to 9.4.52.v20230823 #13909
• Bump org-eclipse-jetty from 9.4.52.v20230823 to 9.4.53.v20231009 #13996
• Bump org.apache.logging.log4j:log4j-core from 2.17.1 to 2.17.2 #13926
• Bump org.jfrog.buildinfo:build-info-extractor-gradle from 4.29.0 to 4.29.4 #13954
• Bump org.springframework.data:spring-data-bom from 2021.2.15 to 2021.2.16 #13907
• Bump org.springframework.data:spring-data-bom from 2021.2.16 to 2021.2.17 #14018
• Bump org.springframework:spring-framework-bom from 5.3.29 to 5.3.30 #13908

❤️ Contributors

We'd like to thank all the contributors who worked on this release!

• @​JannickWeisshaupt
• @​erichaagdev
• @​dependabot[bot]

Commits

• e4e31f2 Release 5.8.8
• 49cd8ae Bump org.springframework.data:spring-data-bom
• 81d9106 Document how to publish an AuthenticationManager
• 7f50bb5 Bump io.projectreactor.netty:reactor-netty from 1.0.36 to 1.0.38
• 7556df6 Bump io.projectreactor:reactor-bom from 2020.0.36 to 2020.0.37
• 71ceb5b Bump org-eclipse-jetty from 9.4.52.v20230823 to 9.4.53.v20231009
• bd9643a Bump com.github.spullara.mustache.java:compiler from 0.9.10 to 0.9.11
• d46627b Bump org.jfrog.buildinfo:build-info-extractor-gradle
• 8c6b5e0 Bump io.spring.ge.conventions from 0.0.7 to 0.0.14
• 3315775 Bump org.apache.logging.log4j:log4j-core from 2.17.1 to 2.17.2
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[sonarqubecloud]

Kudos, SonarCloud Quality Gate passed!   

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

No Coverage information
No Duplication information

[codecov-commenter]

Codecov Report

Merging #13257 (2d700e2) into 3.2 (ad26a69) will increase coverage by 0.05%.
Report is 1 commits behind head on 3.2.
The diff coverage is n/a.

@@             Coverage Diff              @@
##                3.2   #13257      +/-   ##
============================================
+ Coverage     69.49%   69.54%   +0.05%     
  Complexity        2        2              
============================================
  Files          1653     1653              
  Lines         68937    68937              
  Branches      10045    10045              
============================================
+ Hits          47907    47943      +36     
+ Misses        16398    16379      -19     
+ Partials       4632     4615      -17     

see 34 files with indirect coverage changes

📣 We’re building smart automated test selection to slash your CI/CD build times. Learn more