deps: bump the minor-patch-dependencies group across 1 directory with 3 updates by dependabot[bot] · Pull Request #230 · bigboxer23/VeraAutomationHub

dependabot · 2026-04-21T23:04:03Z

Bumps the minor-patch-dependencies group with 3 updates in the / directory: org.springframework.security:spring-security-web, org.springframework.security:spring-security-config and org.springframework.security:spring-security-core.

Updates org.springframework.security:spring-security-web from 7.0.4 to 7.0.5

Release notes

Sourced from org.springframework.security:spring-security-web's releases.

7.0.5

⭐ New Features

Add XML Based shouldWriteHeadersEagerly tests #19018

Merge Add CredentialRecordOwnerAuthorizationManager #19005

🪲 Bug Fixes

Add equals and hashcode to HttpMethodRequestMatcher #18963

auth_time claim doesn't show the time of the original authentication #18282

auth_time validation fails when SSO session is renewed #18978

Fallback defaultTargetUrl if refererHeader is empty #18981

Fix HttpSessionRequestCache#getMatchingRequest query string parsing #18972

Merge Handle null value in OnCommittedResponseWrapper header methods #18990

OAuth2 client sessionManagement ineffective with DefaultOidcUser #19022

🔨 Dependency Upgrades

Bump @springio/antora-extensions from 1.14.10 to 1.14.11 in /docs #19054

Bump @springio/antora-extensions from 1.14.7 to 1.14.9 in /docs #18953

Bump @springio/antora-extensions from 1.14.9 to 1.14.10 in /docs #19029

Bump @springio/asciidoctor-extensions from 1.0.0-alpha.17 to 1.0.0-alpha.18 in /docs #18957

Bump actions/upload-artifact from 7.0.0 to 7.0.1 #19096

Bump com.webauthn4j:webauthn4j-core from 0.31.1.RELEASE to 0.31.2.RELEASE #19021

Bump com.webauthn4j:webauthn4j-core from 0.31.2.RELEASE to 0.31.3.RELEASE #19114

Bump io.projectreactor:reactor-bom from 2025.0.4 to 2025.0.5 #19080

Bump org.apache.maven:maven-resolver-provider from 3.9.14 to 3.9.15 #19111

Bump org.springframework.data:spring-data-bom from 2025.1.4 to 2025.1.5 #19113

Bump org.springframework.ldap:spring-ldap-core from 4.0.2 to 4.0.3 #19098

Bump org.springframework:spring-framework-bom from 7.0.6 to 7.0.7 #19112

Bump spring-io/spring-gradle-build-action from 2.0.5 to 2.0.6 #18996

Bump spring-io/spring-release-actions from 0.0.3 to 0.0.4 #19095

Bump spring-io/spring-security-release-tools/.github/workflows/update-scheduled-release-version.yml from 1.0.14 to 1.0.15 #18948

❤️ Contributors

Thank you to all the contributors who worked on this release:

@rwinch

Commits

53bc6a7 Fix Formatting
aed95aa Fix Formatting
7b57a4a Release 7.0.5
1104796 Merge branch '6.5.x' into 7.0.x
3d4e205 Merge remote-tracking branch 'oss/6.5.x' into 6.5.x
4c40eeb Merge remote-tracking branch 'oss/6.5.x' into 7.0.x
ff1e925 Merge remote-tracking branch 'oss/7.0.x' into 7.0.x
7b309cf Bump org.springframework.data:spring-data-bom from 2025.1.4 to 2025.1.5
51a1f88 Bump com.webauthn4j:webauthn4j-core
762d8f1 Bump org.springframework:spring-framework-bom from 7.0.6 to 7.0.7
Additional commits viewable in compare view

Updates org.springframework.security:spring-security-config from 7.0.4 to 7.0.5

Release notes

Sourced from org.springframework.security:spring-security-config's releases.

7.0.5

⭐ New Features

Add XML Based shouldWriteHeadersEagerly tests #19018

Merge Add CredentialRecordOwnerAuthorizationManager #19005

🪲 Bug Fixes

Add equals and hashcode to HttpMethodRequestMatcher #18963

auth_time claim doesn't show the time of the original authentication #18282

auth_time validation fails when SSO session is renewed #18978

Fallback defaultTargetUrl if refererHeader is empty #18981

Fix HttpSessionRequestCache#getMatchingRequest query string parsing #18972

Merge Handle null value in OnCommittedResponseWrapper header methods #18990

OAuth2 client sessionManagement ineffective with DefaultOidcUser #19022

🔨 Dependency Upgrades

Bump @springio/antora-extensions from 1.14.10 to 1.14.11 in /docs #19054

Bump @springio/antora-extensions from 1.14.7 to 1.14.9 in /docs #18953

Bump @springio/antora-extensions from 1.14.9 to 1.14.10 in /docs #19029

Bump @springio/asciidoctor-extensions from 1.0.0-alpha.17 to 1.0.0-alpha.18 in /docs #18957

Bump actions/upload-artifact from 7.0.0 to 7.0.1 #19096

Bump com.webauthn4j:webauthn4j-core from 0.31.1.RELEASE to 0.31.2.RELEASE #19021

Bump com.webauthn4j:webauthn4j-core from 0.31.2.RELEASE to 0.31.3.RELEASE #19114

Bump io.projectreactor:reactor-bom from 2025.0.4 to 2025.0.5 #19080

Bump org.apache.maven:maven-resolver-provider from 3.9.14 to 3.9.15 #19111

Bump org.springframework.data:spring-data-bom from 2025.1.4 to 2025.1.5 #19113

Bump org.springframework.ldap:spring-ldap-core from 4.0.2 to 4.0.3 #19098

Bump org.springframework:spring-framework-bom from 7.0.6 to 7.0.7 #19112

Bump spring-io/spring-gradle-build-action from 2.0.5 to 2.0.6 #18996

Bump spring-io/spring-release-actions from 0.0.3 to 0.0.4 #19095

Bump spring-io/spring-security-release-tools/.github/workflows/update-scheduled-release-version.yml from 1.0.14 to 1.0.15 #18948

❤️ Contributors

Thank you to all the contributors who worked on this release:

@rwinch

Commits

53bc6a7 Fix Formatting
aed95aa Fix Formatting
7b57a4a Release 7.0.5
1104796 Merge branch '6.5.x' into 7.0.x
3d4e205 Merge remote-tracking branch 'oss/6.5.x' into 6.5.x
4c40eeb Merge remote-tracking branch 'oss/6.5.x' into 7.0.x
ff1e925 Merge remote-tracking branch 'oss/7.0.x' into 7.0.x
7b309cf Bump org.springframework.data:spring-data-bom from 2025.1.4 to 2025.1.5
51a1f88 Bump com.webauthn4j:webauthn4j-core
762d8f1 Bump org.springframework:spring-framework-bom from 7.0.6 to 7.0.7
Additional commits viewable in compare view

Updates org.springframework.security:spring-security-core from 7.0.4 to 7.0.5

Release notes

Sourced from org.springframework.security:spring-security-core's releases.

7.0.5

⭐ New Features

Add XML Based shouldWriteHeadersEagerly tests #19018

Merge Add CredentialRecordOwnerAuthorizationManager #19005

🪲 Bug Fixes

Add equals and hashcode to HttpMethodRequestMatcher #18963

auth_time claim doesn't show the time of the original authentication #18282

auth_time validation fails when SSO session is renewed #18978

Fallback defaultTargetUrl if refererHeader is empty #18981

Fix HttpSessionRequestCache#getMatchingRequest query string parsing #18972

Merge Handle null value in OnCommittedResponseWrapper header methods #18990

OAuth2 client sessionManagement ineffective with DefaultOidcUser #19022

🔨 Dependency Upgrades

Bump @springio/antora-extensions from 1.14.10 to 1.14.11 in /docs #19054

Bump @springio/antora-extensions from 1.14.7 to 1.14.9 in /docs #18953

Bump @springio/antora-extensions from 1.14.9 to 1.14.10 in /docs #19029

Bump @springio/asciidoctor-extensions from 1.0.0-alpha.17 to 1.0.0-alpha.18 in /docs #18957

Bump actions/upload-artifact from 7.0.0 to 7.0.1 #19096

Bump com.webauthn4j:webauthn4j-core from 0.31.1.RELEASE to 0.31.2.RELEASE #19021

Bump com.webauthn4j:webauthn4j-core from 0.31.2.RELEASE to 0.31.3.RELEASE #19114

Bump io.projectreactor:reactor-bom from 2025.0.4 to 2025.0.5 #19080

Bump org.apache.maven:maven-resolver-provider from 3.9.14 to 3.9.15 #19111

Bump org.springframework.data:spring-data-bom from 2025.1.4 to 2025.1.5 #19113

Bump org.springframework.ldap:spring-ldap-core from 4.0.2 to 4.0.3 #19098

Bump org.springframework:spring-framework-bom from 7.0.6 to 7.0.7 #19112

Bump spring-io/spring-gradle-build-action from 2.0.5 to 2.0.6 #18996

Bump spring-io/spring-release-actions from 0.0.3 to 0.0.4 #19095

Bump spring-io/spring-security-release-tools/.github/workflows/update-scheduled-release-version.yml from 1.0.14 to 1.0.15 #18948

❤️ Contributors

Thank you to all the contributors who worked on this release:

@rwinch

Commits

53bc6a7 Fix Formatting
aed95aa Fix Formatting
7b57a4a Release 7.0.5
1104796 Merge branch '6.5.x' into 7.0.x
3d4e205 Merge remote-tracking branch 'oss/6.5.x' into 6.5.x
4c40eeb Merge remote-tracking branch 'oss/6.5.x' into 7.0.x
ff1e925 Merge remote-tracking branch 'oss/7.0.x' into 7.0.x
7b309cf Bump org.springframework.data:spring-data-bom from 2025.1.4 to 2025.1.5
51a1f88 Bump com.webauthn4j:webauthn4j-core
762d8f1 Bump org.springframework:spring-framework-bom from 7.0.6 to 7.0.7
Additional commits viewable in compare view

Bumps the minor-patch-dependencies group with 3 updates: [org.springframework.security:spring-security-web](https://github.com/spring-projects/spring-security), [org.springframework.security:spring-security-config](https://github.com/spring-projects/spring-security) and [org.springframework.security:spring-security-core](https://github.com/spring-projects/spring-security). Updates `org.springframework.security:spring-security-web` from 7.0.4 to 7.0.5 - [Release notes](https://github.com/spring-projects/spring-security/releases) - [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc) - [Commits](spring-projects/spring-security@7.0.4...7.0.5) Updates `org.springframework.security:spring-security-config` from 7.0.4 to 7.0.5 - [Release notes](https://github.com/spring-projects/spring-security/releases) - [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc) - [Commits](spring-projects/spring-security@7.0.4...7.0.5) Updates `org.springframework.security:spring-security-core` from 7.0.4 to 7.0.5 - [Release notes](https://github.com/spring-projects/spring-security/releases) - [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc) - [Commits](spring-projects/spring-security@7.0.4...7.0.5) --- updated-dependencies: - dependency-name: org.springframework.security:spring-security-web dependency-version: 7.0.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-patch-dependencies - dependency-name: org.springframework.security:spring-security-config dependency-version: 7.0.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-patch-dependencies - dependency-name: org.springframework.security:spring-security-core dependency-version: 7.0.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-patch-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

…fd58f16b6e

dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Apr 21, 2026

github-actions Bot enabled auto-merge (squash) April 21, 2026 23:04

dependabot Bot changed the title ~~deps: bump the minor-patch-dependencies group with 3 updates~~ deps: bump the minor-patch-dependencies group across 1 directory with 3 updates Apr 21, 2026

dependabot Bot force-pushed the dependabot/maven/minor-patch-dependencies-fd58f16b6e branch from 2800b74 to 29b4212 Compare April 21, 2026 23:24

Merge branch 'master' into dependabot/maven/minor-patch-dependencies-…

282b5ba

…fd58f16b6e

github-actions Bot merged commit 55913a1 into master Apr 21, 2026
1 check passed

github-actions Bot deleted the dependabot/maven/minor-patch-dependencies-fd58f16b6e branch April 21, 2026 23:27

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

deps: bump the minor-patch-dependencies group across 1 directory with 3 updates#230

deps: bump the minor-patch-dependencies group across 1 directory with 3 updates#230
github-actions[bot] merged 2 commits intomasterfrom
dependabot/maven/minor-patch-dependencies-fd58f16b6e

dependabot Bot commented on behalf of github Apr 21, 2026 •

edited

Loading

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

dependabot Bot commented on behalf of github Apr 21, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

7.0.5

⭐ New Features

🪲 Bug Fixes

🔨 Dependency Upgrades

❤️ Contributors

7.0.5

⭐ New Features

🪲 Bug Fixes

🔨 Dependency Upgrades

❤️ Contributors

7.0.5

⭐ New Features

🪲 Bug Fixes

🔨 Dependency Upgrades

❤️ Contributors

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

dependabot Bot commented on behalf of github Apr 21, 2026 •

edited

Loading