build(deps-dev): bump org.springframework:spring-core from 2.5.5 to 7.0.7

[dependabot]

Bumps org.springframework:spring-core from 2.5.5 to 7.0.7.

Release notes

Sourced from org.springframework:spring-core's releases.

v7.0.7

⭐ New Features

• Improve SpringValidatorAdapter and MethodValidationAdapter performance #36621
• Support JSON array decoding to Flux in KotlinSerializationJsonDecoder #36597
• Deprecate methodIdentification() in CacheAspectSupport for removal #36575
• Add MockRestServiceServer#createServer variant for RestClient #36572
• Create RestClientXhrTransport variant replacing RestTemplateXhrTransport #36566
• Improve error handling in multipart codecs #36563
• Make ApplicationListenerMethodAdapter#getTargetMethod() public #36558
• ApiVersionConfigurer.setSupportedVersionPredicate() returns void instead of ApiVersionConfigurer #36551
• LazyConnectionDataSourceProxy does not work well with Hibernate's multi-tenancy by schema strategy #36527
• Add registerManagedResource variant with bean key argument to MBeanExporter #36520
• Handle blank Accept-Language header in AcceptHeaderLocaleResolver #36513
• Make AbstractStreamingClientHttpRequest and AbstractBufferingClientHttpRequest public #36501
• MySQL Error 149 (Galera/WSREP conflict) not translated to ConcurrencyFailureException in Spring JDBC/ORM #36499
• Add PreFlightRequestFilter #36482
• Support configuration of extension context scope for SpringExtension via Spring or JUnit properties #36460
• Lower log level of "Cache miss for REQUEST dispatch" in HandlerMappingIntrospector #36309

🐞 Bug Fixes

• WebDataBinder unnecessarily instantiates collections when using the "!" and "_" prefixes #36625
• Cache pollution from high-cardinality FieldError default messages in MessageSourceSupport #36609
• MergedAnnotation does not use ClassLoader for method or field #36606
• @Sql fails if DataSource is wrapped in a TransactionAwareDataSourceProxy #36611
• AnnotatedTypeMetadata no longer retains source declaration order on Java 24+ #36598
• MergedAnnotation.asMap() fails when an attribute references a non-existent class #36586
• FileSystemResource does not strictly follow the Resource#isReadable() contract #36584
• Converter overrides in HttpMessageConverters only apply when defaults are registered #36579
• Invalid method return type metadata for ClassFile variant on JDK 24+ #36577
• Fix Writer lifecycle for AbstractJsonHttpMessageConverter.writeInternal(Object, Type, Writer) #36565
• Flushing-related regression in SseServerResponse #36537
• LazyConnectionDataSourceProxy does not pass on holdability to target Connection #36528
• AnnotationBeanNameGenerator fails when an annotation references a non-existent class #36524
• Perserve default API version in RestClientAdapter #36514
• Inconsistent codings resolution in resource resolvers #36507
• DefaultJmsListenerContainer may hang in an endless loop in doShutdown #36506
• Query not hidden in DefaultClientResponse checkpoint #36502
• RestClient closes stream for ResponseEntity responses #36492
• IllegalStateException when using websocket handshake headers with Tomcat #36486
• Invalid nullness information for ParameterizedTypeReference #36477
• WebTestClient cannot assert null list elements #36476
• Handle Kotlin nullable value class param correctly in CoroutineUtils #36449
• Remove RFC 2047 encoding from Content-Disposition filename #36328
• Parent traceId is not reused when calling WebClient.awaitExchange function #36182

📔 Documentation

• Clarify semantics of HttpMethod.valueOf() #36652

... (truncated)

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.