The release contain dependency updates.

What's Changed

• Spring Boot starter parent: 3.4.5 → 3.5.0 (across pet-
  store samples)
• JUnit BOM: 5.12.1/5.12.2 → 5.13.1 (across multiple archetypes)
• Spring Security: 6.4.5 → 6.5.0
• Maven Archetype plugin & packaging: 3.3.1 → 3.4.0 (across archetypes)
• Jakarta Validation API: 3.0.2 → 3.1.1
• FindSecBugs plugin: 1.13.0 → 1.14.0
• OWASP dependency-check: 12.1.0 → 12.1.1
• Various Jackson, Spring, and HTTP client group updates
• commons-fileupload2-jakarta-servlet6 from 2.0.0-M2 to 2.0.0-M4 by @vicheey

Full Changelog: aws-serverless-java-container-2.1.3...aws-serverless-java-container-2.1.4

This release contains one bugfix and dependency updates.

Bugfixes

• Request parameter decoding when using ALB (#1279, #1386) - thanks to @mbfreder

Dependencies

• Update Spring dependencies (framework to 6.2.5, security to 6.4.4, boot to 3.4.4)
• Update Jackson version to 2.18.3
• Update Apache HttpClient to 5.4.3
• Update JUnit version to 5.12.1

This release contains one bugfix and dependency updates.

Bugfixes

• Request Parameters not picked up for v1 payload format with multivalue headers enabled (#1256)

Dependencies

• Update Spring dependencies (framework to 6.2.2, boot to 3.4.2)
• Update Spring Cloud Function to 4.1.5 - thanks to @olegz
• Update Jersey to 3.1.10
• Update Apache HttpClient to 5.4.2
• Update commons-codec from 1.17.2 to 1.18.0

This release contains one bugfix and dependency updates.

Bugfixes

• Regression: NPE when multi-value headers are used with ALB - content type for v1 payload should be retrieved from multi value headers (#1193)

Dependencies

• Update Spring dependencies (framework to 6.2.1, security to 6.4.2, boot to 3.4.1)
• Update Jackson version to 2.18.2
• Update Log4J to 2.24.3
• Update JUnit version to 5.11.4

This release supports the latest Spring Boot 3.4.0 version along with Spring Framework version 6.2.0.
Note: Changes in parameter decoding may lead to changed behavior (encoded variable seen before, now correctly decoded - see #1084).

Features

• Spring Boot 3.4.0 and Spring Framework 6.2.0 support.

Bugfixes

• Added GraalVM Runtime Hints for HttpApiV2 - thanks to @maschnetwork
• decode body if base64 is enable (#1085) - thanks to @npeters
• Fixed NPE when using PathVariable in native image (#1084)
• Update cookie handling to align with rfc6265 specifications (#867, #1056) - thanks to @2012160085
• Native sample: remove --enable-preview (#1061)
• Remove logging of credentials - thanks to @mbfreder
• Query parameter values not URL decoded when using a RequestStreamHandler implementation (#976, #1084) - thanks to @jpfennelly
• avoid ClassCastException for non-web application contexts (e.g. webflux) (#904)

Dependencies

• Update Spring dependencies (framework to 6.2.0, security to 6.4.1, boot to 3.4.0, spring-cloud-function-serverless-web to 4.1.4)
• Update Log4J dependencies to 2.24.2
• Update SLF4J version to 2.0.16
• Update Jackson version to 2.18.1
• Update Jersey dependency to 3.1.9
• Update maven-dependency-plugin to 3.8.1
• Update JUnit version to 5.11.3
• Update to Apache HttpClient 5.4.1
• Update maven-archetype-plugin and archetype-packaging to 3.3.1 (#563)

This release contains one bugfix and dependency updates.

Bugfixes

• Regression: NPE when multi-value headers are used with ALB (#909, #910) - thanks to @mbfreder

Dependencies (only mentioning major dependencies)

• Update Spring dependencies (framework to 6.1.10, security to 6.2.5, boot to 3.2.7)

This release contains bugfixes and several dependency updates.

Bugfixes

• reuse AsyncInitializationWrapper in SpringDelegatingLambdaContainerHandler (#758, #883)
• getRemoteHost and getRemotePort for ALB (#816, #827) - thanks to @mbfreder
• SpringDelegatingLambdaContainerHandler unable to respond with rendered templates (#858) - thanks to @olegz

Dependencies (only mentioning major dependencies)

• Update Spring dependencies (framework to 6.1.8, security to 6.2.4, boot to 3.2.6)
• Update Jersey to 3.1.7
• Update spring-cloud-function-serverless-web to 4.1.2
• Update Jackson to 2.17.1
• Update commons-codec to 1.17.0
• Update SLF4J to 2.0.13
• Update aws-lambda-java-events to 3.11.5

This release contains bugfixes and several dependency updates.

Bugfixes

• Add support for IAM Authorizers in combination with 2.0 payload (#780, #815) - thanks to @jonife
• Fix web context initialization during Snapstart (#805, #814) - thanks to @olegz

Dependencies (only mentioning major dependencies)

• Update Spring dependencies (framework to 6.1.5, security to 6.2.3, boot to 3.2.4)
• Update Jersey to 3.1.6
• Update spring-cloud-function-serverless-web to 4.1.1
• Update Log4J to 2.23.1
• Update Jackson to 2.17.0
• Update maven-shade-plugin to 3.5.2
• Update maven-assembly-plugin to 3.7.0
• Update com.github.spotbugs:spotbugs-maven-plugin from 4.8.3.0 to 4.8.3.1
• Update commons-codec:commons-codec from 1.16.0 to 1.16.1
• Update com.h3xstream.findsecbugs:findsecbugs-plugin from 1.12.0 to 1.13.0
• Update org.mockito:mockito-core from 5.10.0 to 5.11.0
• Update jakarta.activation:jakarta.activation-api from 2.1.2 to 2.1.3
• Update org.apache.maven.plugins:maven-gpg-plugin from 3.1.0 to 3.2.1
• Update org.apache.maven.plugins:maven-compiler-plugin from 3.12.1 to 3.13.0
• Update org.apache.maven.plugins:maven-gpg-plugin from 3.2.1 to 3.2.2
• Update org.owasp:dependency-check-maven from 9.0.9 to 9.1.0
• Update org.jacoco:jacoco-maven-plugin from 0.8.11 to 0.8.12
• Update com.github.spotbugs:spotbugs-annotations from 4.8.3 to 4.8.4
• Update org.apache.maven.plugins:maven-source-plugin from 3.3.0 to 3.3.1

After two milestones we're finally releasing the next major version 2.0.0 with support for Spring Framework 6.x, Spring Boot 3.x and JAX-RS/ Jersey 3.x.

Features

• GraalVM native image support for Spring Web workloads (#739, #760) - thanks to @olegz (and @maschnetwork for improving the related sample)
• Added SpringBoot3-GraphQL sample (#751) - thanks to @mbfreder
• Use of Kong as alternative API-Gateway - thanks to @seshubaws

Bugfixes

• Fix typos in FilterChainManager (#625) - thanks to @2012160085
• Modify algorithm for parameter transformation logic (#616) - thanks to @valerena
• Deprecate asyncInit & account for other initialization types (#659) - thanks to @richarddd
• Fix multipart files processing when Array of files with same fieldName is sent in request (#675) - thanks to @mbfreder
• Fix Incorrect ServerName with ALB (#684) - thanks to @mbfreder
• handle Spring's ErrorResponse in separate default ExceptionHandlers (#691)
• Changed Maven version range to resolve both SNAPSHOTs and released versions for samples (#750) - thanks to @Neves97
• Fix Asynchronous Dispatch Logic in AwsAsyncContext with Spring's DispatcherServlet (#631) - thanks to @2012160085
• Fix request parameter parsing (#754, #755) - thanks to @olegz

Dependencies (only mentioning major dependencies)

• Update SLF4J to 2.0.12
• Update Jackson dependency to 2.16.1
• Update Spring dependencies (framework to 6.1.3, security to 6.2.1, boot to 3.2.2)
• Update Jersey dependency to 3.1.5

Release 1.9.4 is a maintenance release. Main development happens in the main branch for the 2.x versions therefore releases in 1.x branch contain only dependency and security related updates.

Fixes

• Modify version range for archetypes and samples to avoid 2.x release is picked up for 1.x

Dependencies

• Update Spring dependencies (framework to 5.3.31, security to 5.7.11, boot to 2.7.18)
• Update Jersey dependency to 2.41
• Update Struts dependency to 6.3.0.2
• Update Jackson dependency to 2.16.1
• Update aws-lambda-java-core dependency to 1.2.3