We are happy to announce the availability of the third milestone of Spring Framework 6.2. We released M2 last week, but decided to ship M3 along our latest set of maintenance releases.

Spring Framework 6.2.0-M3 is available from repo.spring.io/milestone now, with a few new features.

6.2 features recap

Check out our What's New page for details about the new features available at this point.

On behalf of the team and everyone who has contributed, I am pleased to announce that Spring Batch 5.0.6 and 5.1.2 are available now from Maven Central!

These patch releases come with a number of bug fixes, improvements and dependencies updates. You can find the release notes of each version here: 5.0.6 and 5.1.2.

We look forward to your feedback on Github Issues, Github Discussions, Twitter, and StackOverflow.

Spring Batch Home|Source on Github|Reference documentation

On behalf of the team and everyone who has contributed, I’m happy to announce that Spring Cloud Data Flow 2.11.3 has been released and is now available from Maven Central.

Notable Changes in 2.11.3

• Updated versions and mitigations for CVEs.

  • CVE-2024-22263 Skipper upload validation vulnerability mitigated.
  • Nimbus 9.37.2
  • BouncyCastle 1.78.1
  • Spring Kafka 2.9.13
  • Embedded Tomcat 9.0.88
  • Netty family
    • Netty to 4.1.109.Final
    • Reactor BOM to 2020.0.43
    • Rsocket BOM to 1.1.4

• Added tasks/thinexecutions used to list Task Executions more efficiently.

Library Updates

• Spring Framework 5.3.34
• Spring Security 5.7.12
…

On behalf of the team and everyone who contributed, I am pleased to announce Spring Integration 6.3.0.

In addition to regular bug fixes, dependency upgrade, there were some deprecation refactoring. The Migration Guide includes some of them.

Here are some notable improvements and new features:

• The ObservationPropagationChannelInterceptor has been deprecated in favor of enabling observation on the specific channel.
• The spring-integration-security module is completely removed in favor of API from spring-security-messaging module.
• The MockIntegrationContext.substituteTriggerFor() API has been introduced.
• The MessageHistory header is now mutable, append-only container. This provides some performance optimization when we don't create a new Message on every history track.
…

I’m happy to announce that Spring for Apache Pulsar 1.0.6 has been released and is now available from Maven Central.

This release will be included in the upcoming Spring Boot 3.2.6 release.

This release includes documentation improvements and dependency upgrades.

Please see the release notes for more details.

Welcome to another installment of This Week in Spring! It's been yet another amazing and exciting week and with it a bevy of new releases. And of course, in about a week's time, we will find ourselves at Spring IO, ready to show a lot of these new things. Will you be there? I will! Anyway, let's dive right into it. There are a ton of new releases!

• Spring for Apache Pulsar 1.0.6 is available now
• Spring for Apache Pulsar 1.1.0 is available now
• Spring AMQP 3.0.14 and 3.1.5 available now
• Spring Web Services 4.0.11 is available now
• Spring Data 2024.0 goes GA
• Spring Data 2024.1.6 and 2023.0.12 available now
• Spring Framework 6.2.0-M2 available now
• In last week's exciting installment of a A Bootiful Podcast, I talked to Oleg Šelajev, of Docker and Testcontainers legend
• Spring Framework 6.1.7, 6.0.20 and 5.3.35 available now
…

On behalf of the team and everyone in the community who contributed, we are pleased to announce the general availability of Spring for Apache Kafka 3.2.0.

Spring for Apache Kafka 3.2.0

Th 3.2.0 GA version includes new additions, feature enhancements, bug fixes, and documentation updates. For more details on all the changes in the 3.2.0 release, please see https://github.com/spring-projects/spring-kafka/releases/tag/v3.2.0.

The upcoming Spring Boot 3.3.0 will include the 3.2.0 version of Spring for Apache Kafka.

Since this is the first GA version in the 3.2.x line, here is a recap of all the…

I'm pleased to announce the release of Spring for GraphQL 1.3.0. In addition to the M1 and the RC1 releases, the final release adds the following features:

• Virtual thread support for controller methods.
• GraphQL over WebSocket authentication via "connect_init" message.
• Interceptors in WebSocketGraphQlTester.
• Kotlin Flow as controller method return value.

See the Versions page on the wiki for a list of features.

On behalf of the Spring Security team and everyone who contributed to this release, I am delighted to announce the general availability of Spring Security 6.3.0 from Maven Central!

The 6.3 release brings several compelling features including

• Long-term JDK serialization backward compatibility
• New method security annotations and capabilities
• Compromised password checking, and
• OAuth 2.0 Token Exchange support

To find out more about what’s new, see the what's new section of the documentation.

This release will be included in the upcoming Spring Boot 3.3 GA release. We'd like to hear from you, so…