Skip to content

chore(deps): bump org.springframework.vault:spring-vault-core from 3.1.1 to 3.2.1 in /agentic-net-vault#46

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/maven/agentic-net-vault/org.springframework.vault-spring-vault-core-3.2.1
Open

chore(deps): bump org.springframework.vault:spring-vault-core from 3.1.1 to 3.2.1 in /agentic-net-vault#46
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/maven/agentic-net-vault/org.springframework.vault-spring-vault-core-3.2.1

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 11, 2026

Copy link
Copy Markdown

Bumps org.springframework.vault:spring-vault-core from 3.1.1 to 3.2.1.

Release notes

Sourced from org.springframework.vault:spring-vault-core's releases.

3.2.1

📗 Links

⭐ New Features

  • Use set-based lookups for IN and NOT_IN query predicates #999

🐞 Bug Fixes

  • Remove rule from set before adding another one with the same path #998
  • LeaseAwareVaultPropertySource assertion mixup between variables and text #928

📔 Documentation

  • Align secrets engines and auth methods terminology #963
  • Documentation grammar #959
  • Broken link to Spring Framework reference documentation #955
  • Document relative and absolute Vault path behavior #926

🔨 Dependency Upgrades

  • Upgrade to Spring Framework 6.2.19 #1005

3.2.0

📗 Links

⭐ New Features

  • Configure SimpleClientHttpRequestFactory with timeouts #908
  • SimpleClientHttpRequestFactory is not configured with timeouts in ClientHttpRequestFactoryFactory #907
  • Add reference support in Transform FPE #897
  • Feature request for incorporating "reference" in Transform FPE encode() and decode() operations #894
  • Log exception when KeyValueDelegate.getMountInfo(…) fails #888
  • Add support for IMDSv2 on EC2 instances #865
  • Add GitHub authentication #853
  • Github Token Authentication #821
  • Add expiry Predicate to SecretLeaseContainer to determine whether a Lease is expired #809

🐞 Bug Fixes

  • Correct error message when failing to unwrap AppRole #906
  • KeyValueDelegate caches empty path during Vault unavailability #889
  • Fix otherSans in VaultCertificateRequest #887
  • Secret rotation failing after LoginTokenExpiredEvent #867
  • Apply read timeout to http-components request factory. Fixes #861 #866
  • Read-Timeout not applied with Apache Http Components and no-SSL #861
  • Private Key is null in CertificateBundle using of(String serialNumber, String certificate, String issuingCaCertificate, String privateKey) #857
  • Leases no longer revoked after stopping SecretLeaseContainer #844

📔 Documentation

... (truncated)

Commits
  • 8bf3af1 Release Spring Vault 3.2.1.
  • 38fc899 Upgrade to Spring Data 2025.0.12, Spring Security 6.4.13, Reactor 2024.0.18.
  • c1ef9f5 Upgrade to Spring Framework 6.2.19.
  • 4ebc7e9 Upgrade build dependencies.
  • bfb23b7 Polishing.
  • 567d0fd Use set-based lookups for IN and NOT_IN query predicates.
  • 42279af Polishing.
  • 62b7a2a Remove rule from set before adding another one with the same path.
  • a8cef76 Refine Vault installation and download.
  • 8a61c59 Enable releases from a tag.
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [org.springframework.vault:spring-vault-core](https://github.com/spring-projects/spring-vault) from 3.1.1 to 3.2.1.
- [Release notes](https://github.com/spring-projects/spring-vault/releases)
- [Commits](spring-projects/spring-vault@3.1.1...3.2.1)

---
updated-dependencies:
- dependency-name: org.springframework.vault:spring-vault-core
  dependency-version: 3.2.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Jul 11, 2026
@dependabot dependabot Bot requested a review from alexejsailer as a code owner July 11, 2026 15:30
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Jul 11, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file java Pull requests that update java code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants