Josh LongSPRING:FF63FD0D49DBB2A3845A2CE00DB969A4This Week in Spring - May 23rd, 2023
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.0004 Low
EPSS
Percentile
12.2%
Hi, Spring fans! Welcome to another installment of This Week in Spring! It’s May 23rd and, famously, nothing major has happened in the last week OH WAIT WE RELEASED SPRING BOOT 3.1! Have you checked it out yet? It’s dope. I did a Spring Tips installment looking at some of its features here that you might like.
Friends, we’ve got a ton of stuff to get into this week, so let’s dive right into it!
- Spring Boot 3.1 is now available!
- If you want to learn all about Spring Boot 3.1 (and why wouldn’t you?), watch this Spring Tips installment: Go fast with Spring Boot 3.1
- Spring Boot 3.0.7 available now, fixing CVE-2023-20883. There’s also a Spring Boot 2.7x line fix for the same issue and one for Spring Boot 2.5
- Happy 28th birthday, Java!
- Tomorrow! I’ll be doing a webinar with Marcus Hellberg over at Vaadin called Bootiful development with Spring Boot 3 and Vaadin
- Matt Raible’s updated his article showing how to build a beautiful CRUD application with Spring Boot and Angular
- In last week’s installment of A Bootiful Podcast, I talked to Grubhub’s John Burns about their use of Kotlin and Spring Boot
- Our friends over at AtomicJar just posted a fantastic blog looking at Testcontainers-local development with Spring Boot 3.1
- Custom WebFlux Exceptions in Spring Boot 3
- Hibernate Natural IDs in Spring Boot
- Congrats Ronald Dehuysser on the new JobRunr release supporting Spring Boot 3.1.0
- Shared Secret Authentication in Spring Boot Application
- Spring Integration 6.1 goes GA
- Spring for GraphQL 1.2.0 released
- Mon cher ami Mahmoud looks at the tantalyzing opportunity that is CRaC, which we just announced Spring Framework will support soon: What the CRaC?!
- Let’s goooo! The Microsoft Build of OpenJDK has been optimized for #Azure Arm64 VMs. It takes advantage of CPU-specific features that improve scalability. Take a deep look at optimizations
- Periodic remidner for those who don’t know: you should be using Java 17
- Not for nothing, but if you want some beautiful wallpapers, [Jetbrains has made their splash screen art available][<https://drive.google.com/drive/folders/1_d-zswKtsPOLkSKzYPX_Ch59VcOTHPgy>]
Related
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.0004 Low
EPSS
Percentile
12.2%