Bump spring-framework-bom from 5.1.2.RELEASE to 5.1.18.RELEASE

[dependabot]

Bumps spring-framework-bom from 5.1.2.RELEASE to 5.1.18.RELEASE.

Release notes

Sourced from spring-framework-bom's releases.

v5.1.18.RELEASE

⭐ New Features

• PropertiesLoaderSupport should ignore socket/connect exceptions as well #25720
• Avoid full singleton lock for DefaultSingletonBeanRegistry.getSingleton(beanName, false) #25695
• Possible optimization in UrlResource #25550
• Refine use of substring operations #25513

🪲 Bug Fixes

• FileUrlResource isWritable method returns true if URL protocol is not indicating a file #25739
• VerifyErrors when using SpEL compilation with Thymeleaf when invoking a default method defined in an interface #25711
• CallMetaDataContext.reconcileParameters overwrites cursor name #25708
• SQLErrorCodesFactory.getErrorCodes(DataSource) returns empty error codes if access to transactional connection fails #25692
• Make "org.springframework.util.unit.DataSize" class Serializable #25676
• Joda-Time presence check fails to detect Joda-Time 2.x specifically #25658
• Potential integer overflow in AbstractResourceBasedMessageSource.setCacheSeconds(int) #25642
• Lazy dependency proxy does not populate bean dependencies #25563
• StaticListableBeanFactory.isSingleton() returns false for singleton beans #25523
• MockHttpServletResponse reset() does not reset charset field #25510

📔 Documentation

• Document how to specify Jackson JSON view serialization hints with @RestController and Webflux #25704
• Prevent confusion about build(boolean) method in UriComponentsBuilder #25701

🔨 Dependency Upgrades

• Upgrade to Reactor Californium-SR21 #25731

v5.1.17.RELEASE

⭐ New Features

• Defer creating logger in StandardWebSocketHandlerAdapter #25433
• Unnecessarily alarming stack trace logged during scheduler resolution #25416
• MutablePropertySources will not find or remove proxied sources #25406
• Profiles should be comparable when created via Profiles.of() #25363

🪲 Bug fixes

• UriComponentsBuilder.cloneBuilder() cause sharing query parameters between builders #25424
• DefaultListableBeanFactory.getBean(Class) may throw NoSuchBeanDefinitionException when removeBeanDefinition is being called simultaneously to remove an unrelated bean #25421
• Oracle LOB segments holding TEMP space after executing SP using SimpleJdbcCall with SqlParameterSource #25417
• MappingJackson2HttpMessageConverter might be too specific in its Charset support #25343
• ServerHttpRequest.getSslInfo() always returns null for reactor-netty HTTP/2 requests #25286
• NoRollbackFor rule causes TransactionAspectSupport to log unwarranted "exception overridden" error on WebSphere #25267
• AbstractJackson2HttpMessageConverter - Check for encoding breaks JSON to POJO de-serialization experience #25252
• The AbstractTemplateViewResolver class is not abstract #25241

📔 Documentation

... (truncated)

Commits

• c6dd9c6 Release version 5.1.18.RELEASE
• a3bb9b2 Polishing
• c2b2701 Upgrade to Reactor Californium-SR21
• ec87fdb Polishing
• c1f5345 Javadoc refinement (aligned with 5.2.x)
• b7883c3 FileUrlResource.isWritable() exclusively relies on getFile() implementation
• 5de4f75 Explain how to provide serialization view programmatically
• 385c97d Expose protected method in AbstractJackson2HttpMessageConverter
• 32cbbfe UriComponentsBuilder Javadoc update
• ca4a696 Switch to Reactor Californium snapshots
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.