This week's Java roundup for December 11th, 2023, features news highlighting: OpenJDK early access releases, Open Liberty 23.0.0.12, Infinispan 15.0.0-Dev06, JHipster 8.1.0, Piranha 23.12.0, Apache Tomcat 11.0.0-M15, 10.1.17, 9.0.84 and 8.5.97 and the debut of the Payara Virtual Conference.
JDK 23
Build 2 of the JDK 23 early-access builds was made available this past week featuring updates from Build 1 that include fixes for various issues. Further details on this release may be found in the release notes.
JDK 22
Build 28 of the JDK 22 early-access builds was also made available this past week featuring updates from Build 27 that include fixes to various issues. More details on this build may be found in the release notes.
For JDK 23 and JDK 22, developers are encouraged to report bugs via the Java Bug Database.
Spring Framework
Versions 6.1.2 and 6.0.15 of Spring Framework have been released to deliver bug fixes, improvements in documentation, dependency upgrades and new features such as: declare the isStatic() and releaseTarget() methods as default in the TargetSource interface; an improved @RegisterReflectionForBinding annotation for explicitly handling enums; and a resolution to avoid a race condition in the ConcurrentReferenceHashMap class. These versions may be consumed by the upcoming releases of Spring Boot 3.2.1 and 3.1.7, respectively. Further details on these releases may be found in the release notes for version 6.1.2 and version 6.0.15.
Versions 2023.1.1 and 2023.0.7 of Spring Data have been released providing bug fixes and respective dependency upgrades to sub-projects such as: Spring Data Commons 3.2.1 and 3.1.7; Spring Data MongoDB 4.2.1 and 4.1.7; Spring Data Elasticsearch 5.2.1 and 5.1.7; and Spring Data Neo4j 7.2.1 and 7.1.7. These versions may also be consumed by the upcoming releases of Spring Boot 3.2.1 and 3.1.7, respectively.
Open Liberty
IBM has released version 23.0.0.12 of Open Liberty featuring support for MicroProfile 6.1; updates to Liberty Maven plug-in 3.10, Liberty Gradle plug-in 3.8 and Liberty Tools 23.0.12 for Eclipse IDE, IntelliJ IDEA, and Visual Studio Code; and a resolution to CVE-2023-44487, a vulnerability in which Tomcat's implementation of HTTP/2 was vulnerable to the rapid reset attack causing a denial of service that was typically manifested as an OutOfMemoryError.
Quarkus
The release of Quarkus 3.6.3 provides resolutions to: a regression in version 3.6.2 that yielded a NullPointerException from within the ConfigDiagnostic class; disabling of Dev Services for Keycloak leads to startup error; and a NullPointerException when Quarkus tries to match unknown configuration files. More details on this release may be found in the changelog.
Micronaut
The Micronaut Foundation has released version 4.2.2 of the Micronaut Framework featuring Micronaut Core 4.2.2 and updates to modules: Micronaut AWS and Micronaut Cache. Further details on this release may be found in the release notes.
Helidon
The release of Helidon 2.6.5 delivers: dependency upgrades, support for provider-specializing injection points in the OciExtension class; and correct errors in the documentation on how OpenAPI generator configuration settings are set. More details on this release may be found in the changelog.
Grails
The Grails Foundation has released version 6.1.1 of Grails Framework featuring big fixes, dependency upgrades and notable changes such as: resolve flaky tests by using different template names for each test; update Grails to, and make compatible with, Groovy 3.0.19; and a SnakeYAML BOM. Further details on this release may be found in the release notes.
Infinispan
The sixth development release of Infinispan 15.0.0 features notable changes such as: a reintroduction of support for JCache since its CDI aspects that depend on the javax namespace are optional making it possible to implement JCache without CDI; a resolution for the IllegalArgumentException thrown from the getMembersPhysicalAddresses() method defined in the JGroupsTransport class; and a check to ensure that the MetricsRegistry interface is enabled before trying to register metrics. More details on this release may be found in the changelog.
Micrometer
Versions 1.12.1 and 1.11.7 of Micrometer Metrics both deliver dependency upgrades and notable changes: a new ModifiedClassPathClassLoader class to synchronize with the version from Spring Boot; and a fix for duplication of publishing data if closing step registries before completion of the first step closes within one step. Further details on these releases may be found in the release notes for version 1.12.1 and version 1.11.7.
Similarly, versions 1.2.1 and 1.1.8 of Micrometer Tracing both provide dependency upgrades and a resolution to the default value of 0 returned by the getWallTime() method defined in the Event inner interface of the Observation interface causing backend failures when spans are uploaded. More details on these releases may be found in the release notes for version 1.2.1 and version 1.1.8.
Eclipse Vert.x
The release of Eclipse Vert.x 4.5.1 ships with notable changes such as: a switch from Locale.ROOT to Local.US for parsing PostgreSQL timestamps due to a change in JDK 22; a NullPointerException in the ForwardedParser class when the host header is missing for HTTP/1.1; and a new @JsonGen annotation that replaces the @DataObject annotation to trigger generation of a converter. Further details on this release may be found in the release notes and deprecations and breaking changes.
JHipster
The release of JHipster 8.1.0 features bug fixes, dependency upgrades and new features such as: use of a session endpoint metadata for OAuth logout; a refactor of the authorization header in the CustomClaimConverter class. More details on this release may be found in the release notes and this InfoQ news story on JHipster 8.0.
Project Reactor
Project Reactor 2023.0.1, the first maintenance release, provides dependency upgrades to reactor-core 3.6.1, reactor-netty 1.1.14 and reactor-pool 1.0.4. There was also a realignment to version 2023.0.1 with the reactor-kafka 1.3.22, reactor-addons 3.5.1 and reactor-kotlin-extensions 1.2.2 artifacts that remain unchanged. More details on this release may be found in the changelog.
Similarly, Project Reactor 2022.0.14, the fourteenth maintenance release, provides dependency upgrades to reactor-core 3.5.13, reactor-netty 1.1.14 and reactor-pool 1.0.4. There was also a realignment to version 2022.0.14 with the reactor-kafka 1.3.22, reactor-addons 3.5.1 and reactor-kotlin-extensions 1.2.2 artifacts that remain unchanged. Further details on this release may be found in the changelog.
Apache Software Foundation
Versions 11.0.0-M15, 10.1.17, 9.0.84 and 8.5.97 of Apache Tomcat all feature bug fixes and notable changes such as: background processes for a container no longer execute while lifecycle operations are in progress for that container; correct unintended escaping of XML in some responses from WebDAV; use an HTTP 408 status code, Request Timeout, instead of an HTTP 400 status code, Bad Request, if a read timeout occurs during HTTP request processing. More details on these releases may be found in the changelog for version 11.0.0-M15, version 10.1.17, version 9.0.84 and version 8.5.97.
The ninth alpha release of Apache Maven 4.0.0 delivers notable changes such as: a dependency upgrade to Maven Resolver 2.0.0-alpha-3; a multithreaded map/reduce algorithm to parse the lengthy reactor models in parallel; and the @SessionScoped annotation will now create proxies to wrap beans when there's a need to inject a bean while the session scope is not yet available. Further details on this release may be found in the release notes.
Versions 3.21.3 and 3.20.9 of Apache Camel both feature dependency upgrades and notable bug fixes such as: an OutOfMemoryError upon initiating a large file upload via multipart; the addHeaderNameMethod() method defined in the EndpointDslMojo class generates the wrong header names; and configuration of Kubernetes secrets with Apache Camel K not working as expected. More details on these releases may be found in the release notes for version 3.21.3 and version 3.20.9.
Piranha
The release of Piranha 23.12.0 delivers notable changes such as: support for CRaC in the Payara Web Profile; an update to the Docker files to JDK 21; and a dependency upgrade to Spring Boot 3.1.6. Further details on this release may be found in their documentation and issue tracker.
OpenXava
The release of OpenXava 7.2.1 provides dependency upgrades and notable bug fixes such as: a Remote Code Execution vulnerability via XSTL from dependencies; use of an @OnChange action in @Coordinates not working as intended; and the idProperties attribute defined in the @Tree annotation was ignored. More details on this release may be found in the release notes.
Payara Virtual Conference
The first-ever Payara Virtual Conference, a one-day event, was held this past week featuring talks from top industry analysts, Java Champions and Jakarta EE experts. Attendees also learned more about the Payara Platform 2024 roadmap from Steve Millidge, CEO at Payara.
Editor's Note
Michael Redlich served as one of the speakers at the Payara Virtual Conference.