[Snyk] Upgrade org.springframework.boot:spring-boot-starter-jdbc from 3.4.0 to 3.5.6#86
[Snyk] Upgrade org.springframework.boot:spring-boot-starter-jdbc from 3.4.0 to 3.5.6#86tcheeric wants to merge 1 commit into
Conversation
….4.0 to 3.5.6 Snyk has created this PR to upgrade org.springframework.boot:spring-boot-starter-jdbc from 3.4.0 to 3.5.6. See this package in maven: org.springframework.boot:spring-boot-starter-jdbc See this project in Snyk: https://app.snyk.io/org/tcheeric/project/9bc078ce-fad7-4cfa-9814-2243292863b2?utm_source=github&utm_medium=referral&page=upgrade-pr
![chatgpt-codex-connector[bot]](https://avatars.githubusercontent.com/in/1144995?s=60&v=4){kind=small}
There was a problem hiding this comment.
💡 Codex Review
Here are some automated review suggestions for this pull request.
ℹ️ About Codex in GitHub
Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you
- Open a pull request for review
- Mark a draft as ready
- Comment "@codex review".
If Codex has suggestions, it will comment; otherwise it will react with 👍.
Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".
| <maven-failsafe-plugin.version>2.22.2</maven-failsafe-plugin.version> | ||
| <flatten-maven-plugin.version>1.5.0</flatten-maven-plugin.version> | ||
|
|
||
| <spring.boot.version>3.4.0</spring.boot.version> | ||
| <spring.boot.version>3.5.6</spring.boot.version> | ||
|
|
There was a problem hiding this comment.
The root POM now sets spring.boot.version to 3.5.6, which bumps every module that inherits this property (e.g. cashu-gateway-model) to Spring Boot 3.5.6. However, other modules such as cashu-gateway-rest still inherit spring-boot-starter-parent 3.4.0 and use the default plugin/bom from that parent. When cashu-gateway-rest depends on cashu-gateway-model, Maven will resolve a mixture of 3.5.6 and 3.4.0 Spring Boot starters at the same depth, producing an inconsistent dependency graph and mismatched plugin versions. This can lead to ClassNotFound errors or build-time failures because Spring Boot expects all starters and the Maven plugin to be at the same release level. Either upgrade the remaining modules’ parents to 3.5.6 or keep the property aligned at 3.4.0.
Useful? React with 👍 / 👎.
Qodana Community for JVMIt seems all right 👌 No new problems were found according to the checks applied ☁️ View the detailed Qodana report Contact Qodana teamContact us at qodana-support@jetbrains.com
|
|
This pull request has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. |
|
Closing this pull request due to prolonged inactivity. |
2 participants
Snyk has created this PR to upgrade org.springframework.boot:spring-boot-starter-jdbc from 3.4.0 to 3.5.6.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 18 versions ahead of your current version.
The recommended version was released 2 months ago.
Issues fixed by the recommended upgrade:
SNYK-JAVA-ORGAPACHETOMCATEMBED-10365122
SNYK-JAVA-ORGAPACHETOMCATEMBED-10674391
SNYK-JAVA-ORGAPACHETOMCATEMBED-10676855
SNYK-JAVA-ORGAPACHETOMCATEMBED-11799152
SNYK-JAVA-ORGAPACHETOMCATEMBED-13733966
SNYK-JAVA-ORGAPACHETOMCATEMBED-13746602
SNYK-JAVA-ORGAPACHETOMCATEMBED-9396739
SNYK-JAVA-ORGAPACHETOMCATEMBED-9905132
SNYK-JAVA-ORGSPRINGFRAMEWORK-12008931
SNYK-JAVA-ORGAPACHETOMCATEMBED-10264469
SNYK-JAVA-ORGAPACHETOMCATEMBED-10365310
SNYK-JAVA-ORGAPACHETOMCATEMBED-11798986
SNYK-JAVA-ORGAPACHETOMCATEMBED-8523186
SNYK-JAVA-ORGAPACHETOMCATEMBED-8547999
SNYK-JAVA-ORGSPRINGFRAMEWORK-12817817
SNYK-JAVA-ORGAPACHETOMCATEMBED-9905136
SNYK-JAVA-ORGSPRINGFRAMEWORK-10345766
SNYK-JAVA-ORGSPRINGFRAMEWORK-10176071
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information: