build(deps): bump spring-security-6.version from 6.5.7 to 6.5.8 by dependabot[bot] · Pull Request #16089 · apache/dubbo

dependabot · 2026-02-16T08:07:26Z

Bumps spring-security-6.version from 6.5.7 to 6.5.8.
Updates org.springframework.security:spring-security-core from 6.5.7 to 6.5.8

Release notes

Sourced from org.springframework.security:spring-security-core's releases.

6.5.8

⭐ New Features

Add @FunctionalInterface to RequestMatcher #18337

Spring Security 7 should provide migration path from request-matcher="ant" #18211

Stop deploying JavaDoc outside of Antora #18199

🪲 Bug Fixes

Add Missing Migration Pages to Navigation #18313

Create SHA-1 MessageDigest for every new check request in Compromised Password Checker #18235

Fix typo in "Preparing for 7.0" in reference to PathPatternRequestMatcher #18336

Fix typo in AnnotationTemplateExpressionDefaults documentation #18176

Fix typos in documentation depenendencies->dependencies #18208

🔨 Dependency Upgrades

Bump @antora/atlas-extension from 1.0.0-alpha.2 to 1.0.0-alpha.5 in /docs #18675

Bump @antora/collector-extension from 1.0.1 to 1.0.2 in /docs #18677

Bump @springio/antora-extensions from 1.14.4 to 1.14.7 in /docs #18676

Bump antora from 3.2.0-alpha.8 to 3.2.0-alpha.11 in /docs #18679

Bump ch.qos.logback:logback-classic from 1.5.20 to 1.5.21 #18192

Bump ch.qos.logback:logback-classic from 1.5.21 to 1.5.22 #18321

Bump ch.qos.logback:logback-classic from 1.5.22 to 1.5.24 #18387

Bump ch.qos.logback:logback-classic from 1.5.24 to 1.5.25 #18525

Bump ch.qos.logback:logback-classic from 1.5.25 to 1.5.26 #18591

Bump ch.qos.logback:logback-classic from 1.5.26 to 1.5.27 #18631

Bump ch.qos.logback:logback-classic from 1.5.27 to 1.5.28 #18678

Bump ch.qos.logback:logback-classic from 1.5.28 to 1.5.29 #18710

Bump gradle-wrapper from 8.14 to 8.14.4 #18704

Bump io.micrometer:context-propagation from 1.1.3 to 1.1.4 #18703

Bump io.micrometer:micrometer-observation from 1.14.13 to 1.14.14 #18279

Bump io.mockk:mockk from 1.14.6 to 1.14.7 #18275

Bump io.projectreactor:reactor-bom from 2024.0.12 to 2024.0.13 #18293

Bump io.projectreactor:reactor-bom from 2024.0.13 to 2024.0.14 #18495

Bump io.projectreactor:reactor-bom from 2024.0.14 to 2024.0.15 #18716

Bump io.spring.develocity.conventions from 0.0.24 to 0.0.25 #18535

Bump io.spring.gradle:spring-security-release-plugin from 1.0.13 to 1.0.14 #18724

Bump jakarta.xml.bind:jakarta.xml.bind-api from 4.0.4 to 4.0.5 #18670

Bump org-apache-maven-resolver from 1.9.24 to 1.9.25 #18292

Bump org-aspectj from 1.9.25 to 1.9.25.1 #18329

Bump org.apache.maven:maven-resolver-provider from 3.9.11 to 3.9.12 #18352

Bump org.assertj:assertj-core from 3.27.6 to 3.27.7 #18590

Bump org.hibernate.orm:hibernate-core from 6.6.34.Final to 6.6.36.Final #18193

Bump org.hibernate.orm:hibernate-core from 6.6.36.Final to 6.6.38.Final #18241

Bump org.hibernate.orm:hibernate-core from 6.6.38.Final to 6.6.39.Final #18308

Bump org.hibernate.orm:hibernate-core from 6.6.39.Final to 6.6.40.Final #18351

Bump org.hibernate.orm:hibernate-core from 6.6.40.Final to 6.6.41.Final #18524

Bump org.hibernate.orm:hibernate-core from 6.6.41.Final to 6.6.42.Final #18632

Bump org.springframework.data:spring-data-bom from 2024.1.12 to 2024.1.13 #18320

... (truncated)

Commits

0fab34f Release 6.5.8
08e5b37 Bump io.projectreactor:reactor-bom from 2024.0.14 to 2024.0.15
f9c32af Bump org.springframework:spring-framework-bom from 6.2.15 to 6.2.16
3d61276 Bump io.spring.gradle:spring-security-release-plugin
10cb6f7 Update spring-security-release-tools 1.0.14
3131642 Bump io.micrometer:context-propagation from 1.1.3 to 1.1.4
552d8d1 Bump ch.qos.logback:logback-classic from 1.5.28 to 1.5.29
f240f29 Bump gradle-wrapper from 8.14 to 8.14.4
1efacf1 Remove unnecessary Gradle wrapper from buildSrc
fa7c6ea Bump spring-io/spring-doc-actions from 0.0.20 to 0.0.22
Additional commits viewable in compare view

Updates org.springframework.security:spring-security-oauth2-client from 6.5.7 to 6.5.8

Release notes

Sourced from org.springframework.security:spring-security-oauth2-client's releases.

6.5.8

⭐ New Features

Add @FunctionalInterface to RequestMatcher #18337

Spring Security 7 should provide migration path from request-matcher="ant" #18211

Stop deploying JavaDoc outside of Antora #18199

🪲 Bug Fixes

Add Missing Migration Pages to Navigation #18313

Create SHA-1 MessageDigest for every new check request in Compromised Password Checker #18235

Fix typo in "Preparing for 7.0" in reference to PathPatternRequestMatcher #18336

Fix typo in AnnotationTemplateExpressionDefaults documentation #18176

Fix typos in documentation depenendencies->dependencies #18208

🔨 Dependency Upgrades

Bump @antora/atlas-extension from 1.0.0-alpha.2 to 1.0.0-alpha.5 in /docs #18675

Bump @antora/collector-extension from 1.0.1 to 1.0.2 in /docs #18677

Bump @springio/antora-extensions from 1.14.4 to 1.14.7 in /docs #18676

Bump antora from 3.2.0-alpha.8 to 3.2.0-alpha.11 in /docs #18679

Bump ch.qos.logback:logback-classic from 1.5.20 to 1.5.21 #18192

Bump ch.qos.logback:logback-classic from 1.5.21 to 1.5.22 #18321

Bump ch.qos.logback:logback-classic from 1.5.22 to 1.5.24 #18387

Bump ch.qos.logback:logback-classic from 1.5.24 to 1.5.25 #18525

Bump ch.qos.logback:logback-classic from 1.5.25 to 1.5.26 #18591

Bump ch.qos.logback:logback-classic from 1.5.26 to 1.5.27 #18631

Bump ch.qos.logback:logback-classic from 1.5.27 to 1.5.28 #18678

Bump ch.qos.logback:logback-classic from 1.5.28 to 1.5.29 #18710

Bump gradle-wrapper from 8.14 to 8.14.4 #18704

Bump io.micrometer:context-propagation from 1.1.3 to 1.1.4 #18703

Bump io.micrometer:micrometer-observation from 1.14.13 to 1.14.14 #18279

Bump io.mockk:mockk from 1.14.6 to 1.14.7 #18275

Bump io.projectreactor:reactor-bom from 2024.0.12 to 2024.0.13 #18293

Bump io.projectreactor:reactor-bom from 2024.0.13 to 2024.0.14 #18495

Bump io.projectreactor:reactor-bom from 2024.0.14 to 2024.0.15 #18716

Bump io.spring.develocity.conventions from 0.0.24 to 0.0.25 #18535

Bump io.spring.gradle:spring-security-release-plugin from 1.0.13 to 1.0.14 #18724

Bump jakarta.xml.bind:jakarta.xml.bind-api from 4.0.4 to 4.0.5 #18670

Bump org-apache-maven-resolver from 1.9.24 to 1.9.25 #18292

Bump org-aspectj from 1.9.25 to 1.9.25.1 #18329

Bump org.apache.maven:maven-resolver-provider from 3.9.11 to 3.9.12 #18352

Bump org.assertj:assertj-core from 3.27.6 to 3.27.7 #18590

Bump org.hibernate.orm:hibernate-core from 6.6.34.Final to 6.6.36.Final #18193

Bump org.hibernate.orm:hibernate-core from 6.6.36.Final to 6.6.38.Final #18241

Bump org.hibernate.orm:hibernate-core from 6.6.38.Final to 6.6.39.Final #18308

Bump org.hibernate.orm:hibernate-core from 6.6.39.Final to 6.6.40.Final #18351

Bump org.hibernate.orm:hibernate-core from 6.6.40.Final to 6.6.41.Final #18524

Bump org.hibernate.orm:hibernate-core from 6.6.41.Final to 6.6.42.Final #18632

Bump org.springframework.data:spring-data-bom from 2024.1.12 to 2024.1.13 #18320

... (truncated)

Commits

0fab34f Release 6.5.8
08e5b37 Bump io.projectreactor:reactor-bom from 2024.0.14 to 2024.0.15
f9c32af Bump org.springframework:spring-framework-bom from 6.2.15 to 6.2.16
3d61276 Bump io.spring.gradle:spring-security-release-plugin
10cb6f7 Update spring-security-release-tools 1.0.14
3131642 Bump io.micrometer:context-propagation from 1.1.3 to 1.1.4
552d8d1 Bump ch.qos.logback:logback-classic from 1.5.28 to 1.5.29
f240f29 Bump gradle-wrapper from 8.14 to 8.14.4
1efacf1 Remove unnecessary Gradle wrapper from buildSrc
fa7c6ea Bump spring-io/spring-doc-actions from 0.0.20 to 0.0.22
Additional commits viewable in compare view

Updates org.springframework.security:spring-security-config from 6.5.7 to 6.5.8

Release notes

Sourced from org.springframework.security:spring-security-config's releases.

6.5.8

⭐ New Features

Add @FunctionalInterface to RequestMatcher #18337

Spring Security 7 should provide migration path from request-matcher="ant" #18211

Stop deploying JavaDoc outside of Antora #18199

🪲 Bug Fixes

Add Missing Migration Pages to Navigation #18313

Create SHA-1 MessageDigest for every new check request in Compromised Password Checker #18235

Fix typo in "Preparing for 7.0" in reference to PathPatternRequestMatcher #18336

Fix typo in AnnotationTemplateExpressionDefaults documentation #18176

Fix typos in documentation depenendencies->dependencies #18208

🔨 Dependency Upgrades

Bump @antora/atlas-extension from 1.0.0-alpha.2 to 1.0.0-alpha.5 in /docs #18675

Bump @antora/collector-extension from 1.0.1 to 1.0.2 in /docs #18677

Bump @springio/antora-extensions from 1.14.4 to 1.14.7 in /docs #18676

Bump antora from 3.2.0-alpha.8 to 3.2.0-alpha.11 in /docs #18679

Bump ch.qos.logback:logback-classic from 1.5.20 to 1.5.21 #18192

Bump ch.qos.logback:logback-classic from 1.5.21 to 1.5.22 #18321

Bump ch.qos.logback:logback-classic from 1.5.22 to 1.5.24 #18387

Bump ch.qos.logback:logback-classic from 1.5.24 to 1.5.25 #18525

Bump ch.qos.logback:logback-classic from 1.5.25 to 1.5.26 #18591

Bump ch.qos.logback:logback-classic from 1.5.26 to 1.5.27 #18631

Bump ch.qos.logback:logback-classic from 1.5.27 to 1.5.28 #18678

Bump ch.qos.logback:logback-classic from 1.5.28 to 1.5.29 #18710

Bump gradle-wrapper from 8.14 to 8.14.4 #18704

Bump io.micrometer:context-propagation from 1.1.3 to 1.1.4 #18703

Bump io.micrometer:micrometer-observation from 1.14.13 to 1.14.14 #18279

Bump io.mockk:mockk from 1.14.6 to 1.14.7 #18275

Bump io.projectreactor:reactor-bom from 2024.0.12 to 2024.0.13 #18293

Bump io.projectreactor:reactor-bom from 2024.0.13 to 2024.0.14 #18495

Bump io.projectreactor:reactor-bom from 2024.0.14 to 2024.0.15 #18716

Bump io.spring.develocity.conventions from 0.0.24 to 0.0.25 #18535

Bump io.spring.gradle:spring-security-release-plugin from 1.0.13 to 1.0.14 #18724

Bump jakarta.xml.bind:jakarta.xml.bind-api from 4.0.4 to 4.0.5 #18670

Bump org-apache-maven-resolver from 1.9.24 to 1.9.25 #18292

Bump org-aspectj from 1.9.25 to 1.9.25.1 #18329

Bump org.apache.maven:maven-resolver-provider from 3.9.11 to 3.9.12 #18352

Bump org.assertj:assertj-core from 3.27.6 to 3.27.7 #18590

Bump org.hibernate.orm:hibernate-core from 6.6.34.Final to 6.6.36.Final #18193

Bump org.hibernate.orm:hibernate-core from 6.6.36.Final to 6.6.38.Final #18241

Bump org.hibernate.orm:hibernate-core from 6.6.38.Final to 6.6.39.Final #18308

Bump org.hibernate.orm:hibernate-core from 6.6.39.Final to 6.6.40.Final #18351

Bump org.hibernate.orm:hibernate-core from 6.6.40.Final to 6.6.41.Final #18524

Bump org.hibernate.orm:hibernate-core from 6.6.41.Final to 6.6.42.Final #18632

Bump org.springframework.data:spring-data-bom from 2024.1.12 to 2024.1.13 #18320

... (truncated)

Commits

0fab34f Release 6.5.8
08e5b37 Bump io.projectreactor:reactor-bom from 2024.0.14 to 2024.0.15
f9c32af Bump org.springframework:spring-framework-bom from 6.2.15 to 6.2.16
3d61276 Bump io.spring.gradle:spring-security-release-plugin
10cb6f7 Update spring-security-release-tools 1.0.14
3131642 Bump io.micrometer:context-propagation from 1.1.3 to 1.1.4
552d8d1 Bump ch.qos.logback:logback-classic from 1.5.28 to 1.5.29
f240f29 Bump gradle-wrapper from 8.14 to 8.14.4
1efacf1 Remove unnecessary Gradle wrapper from buildSrc
fa7c6ea Bump spring-io/spring-doc-actions from 0.0.20 to 0.0.22
Additional commits viewable in compare view

Updates org.springframework.security:spring-security-web from 6.5.7 to 6.5.8

Release notes

Sourced from org.springframework.security:spring-security-web's releases.

6.5.8

⭐ New Features

Add @FunctionalInterface to RequestMatcher #18337

Spring Security 7 should provide migration path from request-matcher="ant" #18211

Stop deploying JavaDoc outside of Antora #18199

🪲 Bug Fixes

Add Missing Migration Pages to Navigation #18313

Create SHA-1 MessageDigest for every new check request in Compromised Password Checker #18235

Fix typo in "Preparing for 7.0" in reference to PathPatternRequestMatcher #18336

Fix typo in AnnotationTemplateExpressionDefaults documentation #18176

Fix typos in documentation depenendencies->dependencies #18208

🔨 Dependency Upgrades

Bump @antora/atlas-extension from 1.0.0-alpha.2 to 1.0.0-alpha.5 in /docs #18675

Bump @antora/collector-extension from 1.0.1 to 1.0.2 in /docs #18677

Bump @springio/antora-extensions from 1.14.4 to 1.14.7 in /docs #18676

Bump antora from 3.2.0-alpha.8 to 3.2.0-alpha.11 in /docs #18679

Bump ch.qos.logback:logback-classic from 1.5.20 to 1.5.21 #18192

Bump ch.qos.logback:logback-classic from 1.5.21 to 1.5.22 #18321

Bump ch.qos.logback:logback-classic from 1.5.22 to 1.5.24 #18387

Bump ch.qos.logback:logback-classic from 1.5.24 to 1.5.25 #18525

Bump ch.qos.logback:logback-classic from 1.5.25 to 1.5.26 #18591

Bump ch.qos.logback:logback-classic from 1.5.26 to 1.5.27 #18631

Bump ch.qos.logback:logback-classic from 1.5.27 to 1.5.28 #18678

Bump ch.qos.logback:logback-classic from 1.5.28 to 1.5.29 #18710

Bump gradle-wrapper from 8.14 to 8.14.4 #18704

Bump io.micrometer:context-propagation from 1.1.3 to 1.1.4 #18703

Bump io.micrometer:micrometer-observation from 1.14.13 to 1.14.14 #18279

Bump io.mockk:mockk from 1.14.6 to 1.14.7 #18275

Bump io.projectreactor:reactor-bom from 2024.0.12 to 2024.0.13 #18293

Bump io.projectreactor:reactor-bom from 2024.0.13 to 2024.0.14 #18495

Bump io.projectreactor:reactor-bom from 2024.0.14 to 2024.0.15 #18716

Bump io.spring.develocity.conventions from 0.0.24 to 0.0.25 #18535

Bump io.spring.gradle:spring-security-release-plugin from 1.0.13 to 1.0.14 #18724

Bump jakarta.xml.bind:jakarta.xml.bind-api from 4.0.4 to 4.0.5 #18670

Bump org-apache-maven-resolver from 1.9.24 to 1.9.25 #18292

Bump org-aspectj from 1.9.25 to 1.9.25.1 #18329

Bump org.apache.maven:maven-resolver-provider from 3.9.11 to 3.9.12 #18352

Bump org.assertj:assertj-core from 3.27.6 to 3.27.7 #18590

Bump org.hibernate.orm:hibernate-core from 6.6.34.Final to 6.6.36.Final #18193

Bump org.hibernate.orm:hibernate-core from 6.6.36.Final to 6.6.38.Final #18241

Bump org.hibernate.orm:hibernate-core from 6.6.38.Final to 6.6.39.Final #18308

Bump org.hibernate.orm:hibernate-core from 6.6.39.Final to 6.6.40.Final #18351

Bump org.hibernate.orm:hibernate-core from 6.6.40.Final to 6.6.41.Final #18524

Bump org.hibernate.orm:hibernate-core from 6.6.41.Final to 6.6.42.Final #18632

Bump org.springframework.data:spring-data-bom from 2024.1.12 to 2024.1.13 #18320

... (truncated)

Commits

0fab34f Release 6.5.8
08e5b37 Bump io.projectreactor:reactor-bom from 2024.0.14 to 2024.0.15
f9c32af Bump org.springframework:spring-framework-bom from 6.2.15 to 6.2.16
3d61276 Bump io.spring.gradle:spring-security-release-plugin
10cb6f7 Update spring-security-release-tools 1.0.14
3131642 Bump io.micrometer:context-propagation from 1.1.3 to 1.1.4
552d8d1 Bump ch.qos.logback:logback-classic from 1.5.28 to 1.5.29
f240f29 Bump gradle-wrapper from 8.14 to 8.14.4
1efacf1 Remove unnecessary Gradle wrapper from buildSrc
fa7c6ea Bump spring-io/spring-doc-actions from 0.0.20 to 0.0.22
Additional commits viewable in compare view

Updates org.springframework.security:spring-security-crypto from 6.5.7 to 6.5.8

Release notes

Sourced from org.springframework.security:spring-security-crypto's releases.

6.5.8

⭐ New Features

Add @FunctionalInterface to RequestMatcher #18337

Spring Security 7 should provide migration path from request-matcher="ant" #18211

Stop deploying JavaDoc outside of Antora #18199

🪲 Bug Fixes

Add Missing Migration Pages to Navigation #18313

Create SHA-1 MessageDigest for every new check request in Compromised Password Checker #18235

Fix typo in "Preparing for 7.0" in reference to PathPatternRequestMatcher #18336

Fix typo in AnnotationTemplateExpressionDefaults documentation #18176

Fix typos in documentation depenendencies->dependencies #18208

🔨 Dependency Upgrades

Bump @antora/atlas-extension from 1.0.0-alpha.2 to 1.0.0-alpha.5 in /docs #18675

Bump @antora/collector-extension from 1.0.1 to 1.0.2 in /docs #18677

Bump @springio/antora-extensions from 1.14.4 to 1.14.7 in /docs #18676

Bump antora from 3.2.0-alpha.8 to 3.2.0-alpha.11 in /docs #18679

Bump ch.qos.logback:logback-classic from 1.5.20 to 1.5.21 #18192

Bump ch.qos.logback:logback-classic from 1.5.21 to 1.5.22 #18321

Bump ch.qos.logback:logback-classic from 1.5.22 to 1.5.24 #18387

Bump ch.qos.logback:logback-classic from 1.5.24 to 1.5.25 #18525

Bump ch.qos.logback:logback-classic from 1.5.25 to 1.5.26 #18591

Bump ch.qos.logback:logback-classic from 1.5.26 to 1.5.27 #18631

Bump ch.qos.logback:logback-classic from 1.5.27 to 1.5.28 #18678

Bump ch.qos.logback:logback-classic from 1.5.28 to 1.5.29 #18710

Bump gradle-wrapper from 8.14 to 8.14.4 #18704

Bump io.micrometer:context-propagation from 1.1.3 to 1.1.4 #18703

Bump io.micrometer:micrometer-observation from 1.14.13 to 1.14.14 #18279

Bump io.mockk:mockk from 1.14.6 to 1.14.7 #18275

Bump io.projectreactor:reactor-bom from 2024.0.12 to 2024.0.13 #18293

Bump io.projectreactor:reactor-bom from 2024.0.13 to 2024.0.14 #18495

Bump io.projectreactor:reactor-bom from 2024.0.14 to 2024.0.15 #18716

Bump io.spring.develocity.conventions from 0.0.24 to 0.0.25 #18535

Bump io.spring.gradle:spring-security-release-plugin from 1.0.13 to 1.0.14 #18724

Bump jakarta.xml.bind:jakarta.xml.bind-api from 4.0.4 to 4.0.5 #18670

Bump org-apache-maven-resolver from 1.9.24 to 1.9.25 #18292

Bump org-aspectj from 1.9.25 to 1.9.25.1 #18329

Bump org.apache.maven:maven-resolver-provider from 3.9.11 to 3.9.12 #18352

Bump org.assertj:assertj-core from 3.27.6 to 3.27.7 #18590

Bump org.hibernate.orm:hibernate-core from 6.6.34.Final to 6.6.36.Final #18193

Bump org.hibernate.orm:hibernate-core from 6.6.36.Final to 6.6.38.Final #18241

Bump org.hibernate.orm:hibernate-core from 6.6.38.Final to 6.6.39.Final #18308

Bump org.hibernate.orm:hibernate-core from 6.6.39.Final to 6.6.40.Final #18351

Bump org.hibernate.orm:hibernate-core from 6.6.40.Final to 6.6.41.Final #18524

Bump org.hibernate.orm:hibernate-core from 6.6.41.Final to 6.6.42.Final #18632

Bump org.springframework.data:spring-data-bom from 2024.1.12 to 2024.1.13 #18320

... (truncated)

Commits

0fab34f Release 6.5.8
08e5b37 Bump io.projectreactor:reactor-bom from 2024.0.14 to 2024.0.15
f9c32af Bump org.springframework:spring-framework-bom from 6.2.15 to 6.2.16
3d61276 Bump io.spring.gradle:spring-security-release-plugin
10cb6f7 Update spring-security-release-tools 1.0.14
3131642 Bump io.micrometer:context-propagation from 1.1.3 to 1.1.4
552d8d1 Bump ch.qos.logback:logback-classic from 1.5.28 to 1.5.29
f240f29 Bump gradle-wrapper from 8.14 to 8.14.4
1efacf1 Remove unnecessary Gradle wrapper from buildSrc
fa7c6ea Bump spring-io/spring-doc-actions from 0.0.20 to 0.0.22
Additional commits viewable in compare view

Updates org.springframework.security:spring-security-oauth2-core from 6.5.7 to 6.5.8

Release notes

Sourced from org.springframework.security:spring-security-oauth2-core's releases.

6.5.8

⭐ New Features

Add @FunctionalInterface to RequestMatcher #18337

Spring Security 7 should provide migration path from request-matcher="ant" #18211

Stop deploying JavaDoc outside of Antora #18199

🪲 Bug Fixes

Add Missing Migration Pages to Navigation #18313

Create SHA-1 MessageDigest for every new check request in Compromised Password Checker #18235

Fix typo in "Preparing for 7.0" in reference to PathPatternRequestMatcher #18336

Fix typo in AnnotationTemplateExpressionDefaults documentation #18176

Fix typos in documentation depenendencies->dependencies #18208

🔨 Dependency Upgrades

Bump @antora/atlas-extension from 1.0.0-alpha.2 to 1.0.0-alpha.5 in /docs #18675

Bump @antora/collector-extension from 1.0.1 to 1.0.2 in /docs #18677

Bump @springio/antora-extensions from 1.14.4 to 1.14.7 in /docs #18676

Bump antora from 3.2.0-alpha.8 to 3.2.0-alpha.11 in /docs #18679

Bump ch.qos.logback:logback-classic from 1.5.20 to 1.5.21 #18192

Bump ch.qos.logback:logback-classic from 1.5.21 to 1.5.22 #18321

Bump ch.qos.logback:logback-classic from 1.5.22 to 1.5.24 #18387

Bump ch.qos.logback:logback-classic from 1.5.24 to 1.5.25 #18525

Bump ch.qos.logback:logback-classic from 1.5.25 to 1.5.26 #18591

Bump ch.qos.logback:logback-classic from 1.5.26 to 1.5.27 #18631

Bump ch.qos.logback:logback-classic from 1.5.27 to 1.5.28 #18678

Bump ch.qos.logback:logback-classic from 1.5.28 to 1.5.29 #18710

Bump gradle-wrapper from 8.14 to 8.14.4 #18704

Bump io.micrometer:context-propagation from 1.1.3 to 1.1.4 #18703

Bump io.micrometer:micrometer-observation from 1.14.13 to 1.14.14 #18279

Bump io.mockk:mockk from 1.14.6 to 1.14.7 #18275

Bump io.projectreactor:reactor-bom from 2024.0.12 to 2024.0.13 #18293

Bump io.projectreactor:reactor-bom from 2024.0.13 to 2024.0.14 #18495

Bump io.projectreactor:reactor-bom from 2024.0.14 to 2024.0.15 #18716

Bump io.spring.develocity.conventions from 0.0.24 to 0.0.25 #18535

Bump io.spring.gradle:spring-security-release-plugin from 1.0.13 to 1.0.14 #18724

Bump jakarta.xml.bind:jakarta.xml.bind-api from 4.0.4 to 4.0.5 #18670

Bump org-apache-maven-resolver from 1.9.24 to 1.9.25 #18292

Bump org-aspectj from 1.9.25 to 1.9.25.1 #18329

Bump org.apache.maven:maven-resolver-provider from 3.9.11 to 3.9.12 #18352

Bump org.assertj:assertj-core from 3.27.6 to 3.27.7 #18590

Bump org.hibernate.orm:hibernate-core from 6.6.34.Final to 6.6.36.Final #18193

Bump org.hibernate.orm:hibernate-core from 6.6.36.Final to 6.6.38.Final #18241

Bump org.hibernate.orm:hibernate-core from 6.6.38.Final to 6.6.39.Final #18308

Bump org.hibernate.orm:hibernate-core from 6.6.39.Final to 6.6.40.Final #18351

Bump org.hibernate.orm:hibernate-core from 6.6.40.Final to 6.6.41.Final #18524

Bump org.hibernate.orm:hibernate-core from 6.6.41.Final to 6.6.42.Final #18632

Bump org.springframework.data:spring-data-bom from 2024.1.12 to 2024.1.13 #18320

... (truncated)

Commits

0fab34f Release 6.5.8
08e5b37 Bump io.projectreactor:reactor-bom from 2024.0.14 to 2024.0.15
f9c32af Bump org.springframework:spring-framework-bom from 6.2.15 to 6.2.16
3d61276 Bump io.spring.gradle:spring-security-release-plugin
10cb6f7 Update spring-security-release-tools 1.0.14
3131642 Bump io.micrometer:context-propagation from 1.1.3 to 1.1.4
552d8d1 Bump ch.qos.logback:logback-classic from 1.5.28 to 1.5.29
f240f29 Bump gradle-wrapper from 8.14 to 8.14.4
1efacf1 Remove unnecessary Gradle wrapper from buildSrc
fa7c6ea Bump spring-io/spring-doc-actions from 0.0.20 to 0.0.22
Additional commits viewable in compare view

Updates org.springframework.security:spring-security-oauth2-jose from 6.5.7 to 6.5.8

Release notes

Sourced from org.springframework.security:spring-security-oauth2-jose's releases.

6.5.8

⭐ New Features

Add @FunctionalInterface to RequestMatcher #18337

Spring Security 7 should provide migration path from request-matcher="ant" #18211

Stop deploying JavaDoc outside of Antora #18199

🪲 Bug Fixes

Add Missing Migration Pages to Navigation #18313

Create SHA-1 MessageDigest for every new check request in Compromised Password Checker #18235

Fix typo in "Preparing for 7.0" in reference to PathPatternRequestMatcher #18336

Fix typo in AnnotationTemplateExpressionDefaults documentation #18176

Fix typos in documentation depenendencies->dependencies #18208

🔨 Dependency Upgrades

Bump @antora/atlas-extension from 1.0.0-alpha.2 to 1.0.0-alpha.5 in /docs #18675

Bump @antora/collector-extension from 1.0.1 to 1.0.2 in /docs #18677

Bump @springio/antora-extensions from 1.14.4 to 1.14.7 in /docs #18676

Bump antora from 3.2.0-alpha.8 to 3.2.0-alpha.11 in /docs #18679

Bump ch.qos.logback:logback-classic from 1.5.20 to 1.5.21 #18192

Bump ch.qos.logback:logback-classic from 1.5.21 to 1.5.22 #18321

Bump ch.qos.logback:logback-classic from 1.5.22 to 1.5.24 #18387

Bump ch.qos.logback:logback-classic from 1.5.24 to 1.5.25 #18525

Bump ch.qos.logback:logback-classic from 1.5.25 to 1.5.26 #18591

Bump ch.qos.logback:logback-classic from 1.5.26 to 1.5.27 #18631

Bump ch.qos.logback:logback-classic from 1.5.27 to 1.5.28 #18678

Bump ch.qos.logback:logback-classic from 1.5.28 to 1.5.29 #18710

Bump gradle-wrapper from 8.14 to 8.14.4 #18704

Bump io.micrometer:context-propagation from 1.1.3 to 1.1.4 #18703

Bump io.micrometer:micrometer-observation from 1.14.13 to 1.14.14 #18279

Bump io.mockk:mockk from 1.14.6 to 1.14.7 #18275

Bump io.projectreactor:reactor-bom from 2024.0.12 to 2024.0.13 #18293

Bump io.projectreactor:reactor-bom from 2024.0.13 to 2024.0.14 #18495

Bump io.projectreactor:reactor-bom from 2024.0.14 to 2024.0.15 #18716

Bump io.spring.develocity.conventions from 0.0.24 to 0.0.25 #18535

Bump io.spring.gradle:spring-security-release-plugin from 1.0.13 to 1.0.14 #18724

Bump jakarta.xml.bind:jakarta.xml.bind-api from 4.0.4 to 4.0.5 #18670

Bump org-apache-maven-resolver from 1.9.24 to 1.9.25 #18292

Bump org-aspectj from 1.9.25 to 1.9.25.1 #18329

Bump org.apache.maven:maven-resolver-provider from 3.9.11 to 3.9.12 #18352

Bump org.assertj:assertj-core from 3.27.6 to 3.27.7 #18590

Bump org.hibernate.orm:hibernate-core from 6.6.34.Final to 6.6.36.Final #18193

Bump org.hibernate.orm:hibernate-core from 6.6.36.Final to 6.6.38.Final #18241

Bump org.hibernate.orm:hibernate-core from 6.6.38.Final to 6.6.39.Final #18308

Bump org.hibernate.orm:hibernate-core from 6.6.39.Final to 6.6.40.Final #18351

Bump org.hibernate.orm:hibernate-core from 6.6.40.Final to 6.6.41.Final #18524

Bump org.hibernate.orm:hibernate-core from 6.6.41.Final to 6.6.42.Final #18632

Bump org.springframework.data:spring-data-bom from 2024.1.12 to 2024.1.13 #18320

... (truncated)

Commits

0fab34f Release 6.5.8
08e5b37 Bump io.projectreactor:reactor-bom from 2024.0.14 to 2024.0.15
f9c32af Bump org.springframework:spring-framework-bom from 6.2.15 to 6.2.16
3d61276 Bump io.spring.gradle:spring-security-release-plugin
10cb6f7 Update spring-security-release-tools 1.0.14
3131642 Bump io.micrometer:context-propagation from 1.1.3 to 1.1.4
552d8d1 Bump ch.qos.logback:logback-classic from 1.5.28 to 1.5.29
f240f29 Bump gradle-wrapper from 8.14 to 8.14.4
1efacf1 Remove unnecessary Gra...
Description has been truncated

Bumps `spring-security-6.version` from 6.5.7 to 6.5.8. Updates `org.springframework.security:spring-security-core` from 6.5.7 to 6.5.8 - [Release notes](https://github.com/spring-projects/spring-security/releases) - [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc) - [Commits](spring-projects/spring-security@6.5.7...6.5.8) Updates `org.springframework.security:spring-security-oauth2-client` from 6.5.7 to 6.5.8 - [Release notes](https://github.com/spring-projects/spring-security/releases) - [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc) - [Commits](spring-projects/spring-security@6.5.7...6.5.8) Updates `org.springframework.security:spring-security-config` from 6.5.7 to 6.5.8 - [Release notes](https://github.com/spring-projects/spring-security/releases) - [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc) - [Commits](spring-projects/spring-security@6.5.7...6.5.8) Updates `org.springframework.security:spring-security-web` from 6.5.7 to 6.5.8 - [Release notes](https://github.com/spring-projects/spring-security/releases) - [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc) - [Commits](spring-projects/spring-security@6.5.7...6.5.8) Updates `org.springframework.security:spring-security-crypto` from 6.5.7 to 6.5.8 - [Release notes](https://github.com/spring-projects/spring-security/releases) - [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc) - [Commits](spring-projects/spring-security@6.5.7...6.5.8) Updates `org.springframework.security:spring-security-oauth2-core` from 6.5.7 to 6.5.8 - [Release notes](https://github.com/spring-projects/spring-security/releases) - [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc) - [Commits](spring-projects/spring-security@6.5.7...6.5.8) Updates `org.springframework.security:spring-security-oauth2-jose` from 6.5.7 to 6.5.8 - [Release notes](https://github.com/spring-projects/spring-security/releases) - [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc) - [Commits](spring-projects/spring-security@6.5.7...6.5.8) Updates `org.springframework.security:spring-security-oauth2-resource-server` from 6.5.7 to 6.5.8 - [Release notes](https://github.com/spring-projects/spring-security/releases) - [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc) - [Commits](spring-projects/spring-security@6.5.7...6.5.8) --- updated-dependencies: - dependency-name: org.springframework.security:spring-security-core dependency-version: 6.5.8 dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.security:spring-security-oauth2-client dependency-version: 6.5.8 dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.security:spring-security-config dependency-version: 6.5.8 dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.security:spring-security-web dependency-version: 6.5.8 dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.security:spring-security-crypto dependency-version: 6.5.8 dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.security:spring-security-oauth2-core dependency-version: 6.5.8 dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.security:spring-security-oauth2-jose dependency-version: 6.5.8 dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.security:spring-security-oauth2-resource-server dependency-version: 6.5.8 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Feb 16, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Comments

build(deps): bump spring-security-6.version from 6.5.7 to 6.5.8#16089

build(deps): bump spring-security-6.version from 6.5.7 to 6.5.8#16089
dependabot[bot] wants to merge 1 commit into3.3from
dependabot/maven/spring-security-6.version-6.5.8

dependabot bot commented on behalf of github Feb 16, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Comments

Conversation

dependabot bot commented on behalf of github Feb 16, 2026

6.5.8

⭐ New Features

🪲 Bug Fixes

🔨 Dependency Upgrades

6.5.8

⭐ New Features

🪲 Bug Fixes

🔨 Dependency Upgrades

6.5.8

⭐ New Features

🪲 Bug Fixes

🔨 Dependency Upgrades

6.5.8

⭐ New Features

🪲 Bug Fixes

🔨 Dependency Upgrades

6.5.8

⭐ New Features

🪲 Bug Fixes

🔨 Dependency Upgrades

6.5.8

⭐ New Features

🪲 Bug Fixes

🔨 Dependency Upgrades

6.5.8

⭐ New Features

🪲 Bug Fixes

🔨 Dependency Upgrades

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants