I am pleased to announce that the release candidate Spring for Apache Kafka 2.9.0 is now available (2.9.0-RC1) in the Spring Milestone Repo.

This version is not provided by Spring Boot dependency management, but it can be used with Boot 2.7 (or 2.6), as long as you override the Kafka dependencies as described in this appendix, especially if you are using the embedded Kafka broker.

Notable Changes

• This version uses the 3.2.0 kafka-clients version

• Non-blocking retry bootstrapping is now more robust

• New Error Handler Mode

By default, after an error, the DefaultErrorHandler performs seeks on the remaining records from the last poll and re-fetches them from the broker on the next poll. With high error rates and large max.poll.records, this can cause unnecessary strain on the network. For this reason, the error handler has a new property seekAfterError, when set to false, instead of seeking the records, the remaining records are retained in memory and the consumer paused for the next poll (or multiple polls if the error handler is configured to use the ContainerPausingBackOffHandler…

On behalf of the community, I am pleased to announce the Spring Cloud 2020.0.6 Release Train is available today. The release can be found in Maven Central. You can check out the 2020.0.6 release notes for more information. Please consider upgrading to the latest 2021.0.x release train since the 2020.0.x release train has reached the end of OSS support.

Notable Changes in the 2020.0.6 Release

This is primarily a bugfix and dependency upgrade release, including backports of various issues over from 2021.0.x releases. Some enhancements have also been backported.

See the project page for all…

On behalf of the team and everyone who has contributed, I'm happy to announce that Spring Boot 2.6.9 has been released and is now available from Maven Central.

This release includes 44 bug fixes, documentation improvements, and dependency upgrades. Thanks to all those who have contributed with issue reports and pull requests.

How can you help?

If you're interested in helping out, check out the "ideal for contribution" tag in the issue repository. If you have general questions, please ask on stackoverflow.com using the spring-boot tag or chat with the community on Gitter.

Project Page | GitHub | Issues | Documentation | Stack Overflow | …

On behalf of the team and everyone who has contributed, I'm happy to announce that Spring Boot 2.7.1 has been released and is now available from Maven Central.

This release includes 66 bug fixes, documentation improvements, and dependency upgrades. Thanks to all those who have contributed with issue reports and pull requests.

How can you help?

If you're interested in helping out, check out the "ideal for contribution" tag in the issue repository. If you have general questions, please ask on stackoverflow.com using the spring-boot tag or chat with the community on Gitter.

Project Page | GitHub | Issues | Documentation | Stack Overflow | …

On behalf of the team and everyone who has contributed, it is my pleasure to announce the general availability of Spring Authorization Server 0.3.1.

You can download it from Maven Central by using the module coordinates:

implementation 'org.springframework.security:spring-security-oauth2-authorization-server:0.3.1'

See the release notes for complete details.

This release includes downgrading to JDK 1.8 baseline along with some minor enhancements and bug fixes.

To get started using Spring Authorization Server, see the Getting Started chapter of the reference documentation and the samples to…

On behalf of the team, I’m pleased to announce Spring Data service releases 2021.2.1 and 2021.1.5. Both releases ship with a fix for mostly bug fixes and dependency upgrades. For your convenience, Spring Boot 2.7.1 respective 2.6.9 are going to pick up these releases in the upcoming days.

In addition, these releases include fixes for one vulnerability:

• CVE-2022-22980 "Spring Data MongoDB SpEL Expression Injection Vulnerability"

SpEL injection attack in MongoDB applications through repository query methods annotated with @Query or @Aggregation using parametrized SpEL statements with non-sanitized input. Severity: …

On behalf of the team and everyone who has contributed, I am pleased to announce that Spring Security 5.7.2 and 5.6.6 are available now.

You can find more details about the respective releases here and here.

On behalf of the community, I am pleased to announce that the Milestone 3 (M3) of the Spring Cloud 2022.0.0 Release Train is available today. The release can be found in Spring Milestone repository. You can check out the 2022.0.0 release notes for more information.

Notable Changes in the 2022.0.0 Release Train

See the project page for all the issues and pull requests included in this release.

Spring Cloud 2022.0.0-M3 is compatible with Spring Boot 3.0.0-M3.

Spring Cloud Stream

• Enhanced support for Kafka "tombstone" records via recently added support for BiFunction/BiConsumer
• Added support for function-based error-handling, thus no longer requiring annotations
…

On behalf of the team and everyone who has contributed, I am pleased to announce that Spring Framework 5.3.21 is available now.

Spring Framework 5.3.21 includes 22 fixes and improvements.

Project Page | GitHub | Issues | Documentation