Spring News Roundup: Important GA Releases in Boot, Security, Integration & More (Nov 2024)

It's been a hectic week of November 2024, and the Spring ecosystem has seen significant updates with GA releases that are going to boost development and security capabilities for users. Here's a rundown of the latest Spring releases covering some of the most popular frameworks, such as Spring Boot, Spring Security, Spring Authorization Server, and many more.

Spring Boot 3.4.0 has been released with lots of exciting new features: dependency upgrades and built-in support for structured logging, including support for Elastic Common Schema and Graylog Extended Log Format. Spring Boot 3.4 brings further virtual thread support improvements, particularly in Micrometer OtlpMeterRegistry and the Undertow web server.

The Spring Security 6.4.0 release is primarily aimed at simplifying OAuth 2.0 configurations by removing older components and replacing them with newer, more secure alternatives. This release also introduces support for Passkeys and one-time tokens to streamline authentication processes across platforms.

Spring Authorization Server 1.4.0 is accompanied by a string of new features that can include better support for RP-Initiated OpenID Connect 1.0 logout requests. It's also an upgrade of the configuration of the authentication server allowing easier integration with the Spring Security class HttpSecurity.

Spring Integration 6.4.0 introduces the new Control Bus interaction model and improved configuration options for AMQP inbound adapters, which will be especially good for teams working with the complex messaging and integration patterns.

For developers interested in modular applications, Spring Modulith 1.3.0 delivers the following important updates: nest application modules and customize the detection strategy of application modules. These updates are also integrated with Spring Boot 3.4 and Spring Framework 6.2 to keep the updates aligned with the latest Spring ecosystem trends.

Spring AMQP 3.2.0 includes some critical fixes, such as a method that needs to be called before republishing the messages to DLX. Spring for Apache Kafka 3.3.0 adds significant improvements in generics optimization and test configurations, making messaging in event-driven applications much more streamlined.

This brings with it added support for the Amazon Bedrock Converse API and enhancements to the Java Function, Supplier, and Consumer interfaces, enhancing the flexibility of AI applications in the Spring environment.

Spring LDAP 2.4.4 has been updated with fixes for sensitive data exposure vulnerabilities, while Spring for Apache Pulsar 1.2.0 has significant upgrades for dependencies. The Spring ecosystem remains a strong choice for enterprise-level development across many domains.

These releases, part of the November 2024 updates, reflect Spring's commitment to ongoing support for leading edge development practices in security, cloud, and integration tools.

Also read: How Hackers Leverage Avast Anti-Rootkit Driver to Avoid Detection: All You Should Know