[PF-2987]: Bump org.springframework.boot from 2.7.3 to 3.2.3

[dependabot]

Bumps org.springframework.boot from 2.7.3 to 3.2.3.

Release notes

Sourced from org.springframework.boot's releases.

v3.2.3

⚠️ Noteworthy

• This release upgrades to Hibernate 6.4.4.Final. While it contains a number of valuable bug fixes, it does not work correctly in a native image. If you are using GraalVM, Hibernate should be temporarily downgraded to 6.4.2.Final using the hibernate.version property.

🐞 Bug Fixes

• Nested jar URLs can not be resolved if the path contains spaces #39675
• Image building runs for a long time when a long image name is used and the tag contains an illegal character #39638
• Banner printing doesn't respect set charset #39621
• "micrometer.observations.*" configuration properties should be "management.observations.*" #39600
• Metadata reading during configuration class parsing uses the default resource loader rather than the application's resource loader #39598
• Several gson properties, including spring.gson.disable-html-escaping, do not behave correctly when set to false #39524
• Property placeholders aren't resolved when configuration property binding creates a Map from a property value using a converter #39515
• Gradle plugin allows the use of Gradle 7.4 but the documented and tested minimum is 7.5 #39513
• WebFlux auto-configuration should only configure the blocking executor when virtual threads are enabled #39469
• TestcontainersPropertySource assertion has typo #39449
• Webflux actuator endpoints respond with 500 when a parameter is missing #39444
• NoSuchMethod error when using the non-shaded Pulsar client and configuring authentications parameters #39389
• Jetty GracefulShutdown writes to System.out #39360
• Building images fails with Docker 25.0 when custom buildpacks are configured #39347
• Creating a RestClient from a RestTemplateBuilder-created RestTemplate requires double configuration of the baseUrl/rootUri #39317
• Auto-configured ConcurrentPulsarListenerContainerFactory and PulsarConsumerFactory cannot be injected into injection points with specific generic type information #39308
• Startup failure when you have multiple @DynamicPropertySources in Spring Boot 3.2.2 #39297
• Mockito's MockedStatic isn't closed in all cases #39272
• TracingProperties exposes package-private PropagationType from public methods #39268

📔 Documentation

• Add note regarding mixing of bundle-based and direct SSL configuration #39641
• Add link to Pulsar workaround when using environment variables for authentication #39630
• Document that task executor pool size properties are ignored when using virtual threads #39629
• Document default value for show-value configuration properties #39596
• Clarify that configuration properties only apply to the auto-configured OpenTelemetry Resource bean #39509
• Update the Debugging Documentation of the Spring Boot Maven Plugin #39422
• Awaitility link in Test Scoped Dependencies is incorrect #39415
• Fixed NestedJarFile constructor javadoc #39285
• Endpoint documentation contains the typo 'Unuthorized' #39280
• Update Revved up by Develocity badge #39263

🔨 Dependency Upgrades

• Upgrade to Byte Buddy 1.14.12 #39665
• Upgrade to Commons Codec 1.16.1 #39566
• Upgrade to Dropwizard Metrics 4.2.25 #39567
• Upgrade to Groovy 4.0.18 #39568
• Upgrade to Hibernate 6.4.4.Final #39569
• Upgrade to Infinispan 14.0.24.Final #39570
• Upgrade to Jackson Bom 2.15.4 #39666
• Upgrade to Janino 3.1.12 #39571
• Upgrade to Jetty 12.0.6 #39573

... (truncated)

Commits

• c24afef Release v3.2.3
• 5d88ada Merge branch '3.1.x' into 3.2.x
• 8dff249 Next development version (v3.1.10-SNAPSHOT)
• d13c006 Merge pull request #39675' from slovi
• a457638 Polish 'Decode URL content before passing it to NestedLocation.parse'
• 06569e7 Decode URL content before passing it to NestedLocation.parse
• 428ddb7 Merge branch '3.1.x' into 3.2.x
• 3930414 Upgrade CI images to ubuntu:jammy-20240212
• 12de6aa Merge branch '3.1.x' into 3.2.x
• 2c4909a Update copyright year of changed files
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

The following labels could not be found: dependency, gradle.

[okotsopoulos]

Note that Gradle will need an update:

FAILURE: Build failed with an exception.

* Where:
Build file '/home/runner/work/stairway/stairway/stairctl/build.gradle' line: 6

* What went wrong:
An exception occurred applying plugin request [id: 'org.springframework.boot', version: '3.2.3']
> Failed to apply plugin 'org.springframework.boot'.
   > Spring Boot plugin requires Gradle 7.x (7.5 or later). The current version is Gradle 7.4.1

[cahrens]

Yes, I've been updating Gradle for this reason in other repos and have not had an issue (for example DataBiosphere/terra-common-lib#155).

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
No data about Duplication

See analysis details on SonarCloud

[cahrens]

We have already done these upgrades elsewhere, so I assume this is low risk.

[cahrens]

Looks like we probably need to revert this, as the bump commit failed on publish to artifactory:

* What went wrong:
A problem occurred configuring project ':stairctl'.
> Could not resolve all files for configuration ':stairctl:classpath'.
   > Could not resolve org.springframework.boot:spring-boot-gradle-plugin:3.2.3.
     Required by:
         project :stairctl > org.springframework.boot:org.springframework.boot.gradle.plugin:3.2.3
      > No matching variant of org.springframework.boot:spring-boot-gradle-plugin:3.2.3 was found. The consumer was configured to find a runtime of a library compatible with Java 11, packaged as a jar, and its dependencies declared externally, as well as attribute 'org.gradle.plugin.api-version' with value '7.6.4' but:
          - Variant 'apiElements' capability org.springframework.boot:spring-boot-gradle-plugin:3.2.3 declares a library, packaged as a jar, and its dependencies declared externally:
              - Incompatible because this component declares an API of a component compatible with Java 17 and the consumer needed a runtime of a component compatible with Java 11
              - Other compatible attribute:
                  - Doesn't say anything about org.gradle.plugin.api-version (required '7.6.4')
          - Variant 'javadocElements' capability org.springframework.boot:spring-boot-gradle-plugin:3.2.3 declares a runtime of a component, and its dependencies declared externally:
              - Incompatible because this component declares documentation and the consumer needed a library
              - Other compatible attributes:
                  - Doesn't say anything about its target Java version (required compatibility with Java 11)
                  - Doesn't say anything about its elements (required them packaged as a jar)
                  - Doesn't say anything about org.gradle.plugin.api-version (required '7.6.4')
          - Variant 'mavenOptionalApiElements' capability org.springframework.boot:spring-boot-gradle-plugin-maven-optional:3.2.3 declares a library, packaged as a jar, and its dependencies declared externally:
              - Incompatible because this component declares an API of a component compatible with Java 17 and the consumer needed a runtime of a component compatible with Java 11