Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Try out spring boot 3.2 #4006

Merged
merged 5 commits into from
Jan 4, 2024
Merged

Try out spring boot 3.2 #4006

merged 5 commits into from
Jan 4, 2024

Conversation

tasso94
Copy link
Member

@tasso94 tasso94 commented Dec 12, 2023
edited
Loading

related to #3722

@tasso94 tasso94 added ci:run Runs the integration tests for the Run distribution. ci:spring-boot Runs the integration tests for the Spring Boot starter. labels Dec 12, 2023
@tasso94 tasso94 self-assigned this Dec 12, 2023
@tasso94
Copy link
Member Author

tasso94 commented Dec 12, 2023

https://stackoverflow.com/questions/57340315/org-openqa-selenium-nosuchsessionexception-invalid-session-id-message-this-ver suggests adding the --disable-dev-shm-usage flag to prevent Chrome from crashing due to memory shortage.

@psavidis psavidis mentioned this pull request Dec 12, 2023
Closed
1 task
@tasso94 tasso94 changed the title Try out spring boot Try out spring boot 3.2 Dec 12, 2023
@psavidis psavidis force-pushed the try-out-spring-boot branch from 8878599 to 1e8fd61 Compare December 12, 2023 14:48
@psavidis psavidis marked this pull request as ready for review December 12, 2023 14:48
@psavidis psavidis added the bot:java-dependency-check When assigned to a PR, generates SBOMs for the PR and base branch and compares them. label Dec 13, 2023
@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 13, 2023
edited by psavidis
Loading

Java dependency diff

Omitted due to character limit. See workflow artifacts for full diff file.

Module details

Omitted due to character limit. See workflow artifacts for full diff file.

Checklist

Unique changes

Unique additions

  • micrometer-observation: 1.12.0
  • micrometer-commons: 1.12.0
  • awaitility: 4.2.0
  • hamcrest: 2.2
  • micrometer-jakarta9: 1.12.0
  • micrometer-core: 1.12.0
  • HdrHistogram: 2.1.12 ❓‼
  • LatencyUtils: 2.0.3
  • commons-lang3: 3.13.0
  • commons-text: 1.10.0
  • commons-collections4: 4.4

Developer comments

Glossary

Limitations

  • The reported transitive dependencies may not always be accurate in a multi-module project.
    The SBOM file format represents a unique dependency (coordinates + type) only once. In a multi-module
    project a dependency can be declared in multiple locations with different exclusions of transitive dependencies
    or different version overrides for transitive dependencies.

Emojies

  • ✔: All licenses are on the Go list
  • ⚠: (At least one) license is on the Caution list
  • ❌: (At least one) license is on the Stop list
  • ❓: (At least one) license cannot be determined or is unknown
  • ‼: Dependency has multiple licenses declared
  • ⬆: New dependency version is higher than previous
  • ⬇: New dependency version is lower than previous
  • 🔄: Dependency version is equal and the dependencies of this component changed (e.g. when comparing snapshots)
  • 🤷: The change of the dependency version can not be determined further (e.g. because the version does not follow semantic versioning)

@psavidis
Copy link
Contributor

psavidis commented Dec 13, 2023
edited
Loading

Dependency Old Version New Version License Has License change
junit-platform-commons 1.9.3 1.10.1 EPL 2.0 No
junit-jupiter-api 5.9.3 5.10.1 EPL 2.0 No
junit-jupiter-params 5.9.3 5.10.1 EPL 2.0 No
junit-platform-engine 1.9.3 1.10.1 EPL 2.0 No
junit-jupiter-engine 5.9.3 5.10.1 EPL 2.0 No
junit-jupiter 5.9.3 5.10.1 EPL 2.0 No
junit-vintage-engine 5.9.3 5.10.1 EPL 2.0 No
aspectjweaver 1.9.20 1.9.20.1 EPL 2.0 No
hibernate-core 6.2.13.Final 6.3.1.Final LGPL 2.1 No
jersey-bean-validation 3.1.3 3.1.3 Apache 2.0
BSD 2-clause
CC0 1.0
EDL 1.0
EPL 2.0
GPL
MIT
PublicW3C		 No
jaxb-api 2.3.1 2.3.1 CDDL 1.1
GPL2
w/ CPE		 No
jakarta.json-api 2.1.2 2.1.3 EPL 2.0 No
jakarta.jakartaee-web-api 10.0.0 10.0.0 EPL 2.0
GPL		 No
HdrHistogram - 2.1.12 BSD 2-clause
CC0 1.0		 -
LatencyUtils - 2.0.3 CC0 1.0 -

@psavidis
Copy link
Contributor

Only HdrHistogram, LatencyUtils are new dependencies and they both belong to the Go List and can use the CC0 1.0 license. No Approval is needed.

tasso94
tasso94 commented Jan 2, 2024
View reviewed changes
parent/pom.xml Outdated Show resolved Hide resolved
distro/run/qa/pom.xml Show resolved Hide resolved
@psavidis psavidis force-pushed the try-out-spring-boot branch from 73762ec to eb9e414 Compare January 4, 2024 08:48
@tasso94 tasso94 requested a review from psavidis January 4, 2024 08:51
@psavidis psavidis added bot:java-dependency-check When assigned to a PR, generates SBOMs for the PR and base branch and compares them. and removed bot:java-dependency-check When assigned to a PR, generates SBOMs for the PR and base branch and compares them. labels Jan 4, 2024
@github-actions GitHub Actions
Copy link

github-actions bot commented Jan 4, 2024
edited by psavidis
Loading

Java dependency diff

Omitted due to character limit. See workflow artifacts for full diff file.

Module details

Omitted due to character limit. See workflow artifacts for full diff file.

Checklist

Unique changes

Unique additions

  • micrometer-observation: 1.12.1
  • micrometer-commons: 1.12.1
  • awaitility: 4.2.0
  • hamcrest: 2.2
  • micrometer-jakarta9: 1.12.1
  • micrometer-core: 1.12.1
  • HdrHistogram: 2.1.12 ❓‼
  • LatencyUtils: 2.0.3
  • commons-lang3: 3.13.0
  • commons-text: 1.10.0
  • commons-collections4: 4.4
  • asm: 9.5

Developer comments

Glossary

Limitations

  • The reported transitive dependencies may not always be accurate in a multi-module project.
    The SBOM file format represents a unique dependency (coordinates + type) only once. In a multi-module
    project a dependency can be declared in multiple locations with different exclusions of transitive dependencies
    or different version overrides for transitive dependencies.

Emojies

  • ✔: All licenses are on the Go list
  • ⚠: (At least one) license is on the Caution list
  • ❌: (At least one) license is on the Stop list
  • ❓: (At least one) license cannot be determined or is unknown
  • ‼: Dependency has multiple licenses declared
  • ⬆: New dependency version is higher than previous
  • ⬇: New dependency version is lower than previous
  • 🔄: Dependency version is equal and the dependencies of this component changed (e.g. when comparing snapshots)
  • 🤷: The change of the dependency version can not be determined further (e.g. because the version does not follow semantic versioning)

@psavidis
Copy link
Contributor

psavidis commented Jan 4, 2024
edited
Loading

Dependencies of Spring Boot 3.2.1 checked, no licence changes from Spring Boot 3.2 were found.

@psavidis psavidis merged commit 7763c9d into master Jan 4, 2024
4 of 5 checks passed
@psavidis psavidis deleted the try-out-spring-boot branch January 4, 2024 10:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@psavidis psavidis psavidis approved these changes

Assignees

@tasso94 tasso94

Labels
bot:java-dependency-check When assigned to a PR, generates SBOMs for the PR and base branch and compares them. ci:run Runs the integration tests for the Run distribution. ci:spring-boot Runs the integration tests for the Spring Boot starter.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@tasso94 @psavidis