Bump the maven group across 3 directories with 5 updates

[dependabot]

Bumps the maven group with 5 updates in the / directory:

Package	From	To
org.springframework.security:spring-security-config	5.8.3	5.8.7
org.hsqldb:hsqldb	2.5.2	2.7.1
ch.qos.logback:logback-classic	1.3.7	1.3.12
org.apache.tomcat.embed:tomcat-embed-core	9.0.75	9.0.86
org.apache.tomcat:tomcat	8.5.89	8.5.99
Bumps the maven group with 4 updates in the /dss-demo-bundle directory: org.springframework.security:spring-security-config, org.hsqldb:hsqldb, ch.qos.logback:logback-classic and org.apache.tomcat:tomcat.
Bumps the maven group with 4 updates in the /dss-demo-webapp directory: org.springframework.security:spring-security-config, org.hsqldb:hsqldb, ch.qos.logback:logback-classic and org.apache.tomcat.embed:tomcat-embed-core.

Updates org.springframework.security:spring-security-config from 5.8.3 to 5.8.7

Release notes

Sourced from org.springframework.security:spring-security-config's releases.

5.8.7

⭐ New Features

• Automate spring-security.xsd #13823

🪲 Bug Fixes

• CookieRequestCache ignores user Locale #13792
• Default Security Configuration adds WWW-Authenticate Twice #13737
• OAuth2AuthenticationExceptionMixin doesn't work in JDK 17 #11893
• Saml2AuthenticationExceptionMixin doesn't work in JDK 17 #13804

5.8.6

⭐ New Features

• Closes #11450 - Add Java beans configuration for Remmember Me Docs #13570
• Dependencies are resolved from appropriate repositories #13582
• requestMatchers servlet validation error should include information about servlet paths #13667
• requestMatchers should not count servlets without mappings #13666

🪲 Bug Fixes

• Fix Bearer Token RestTemplate Support example #13434
• Referrer Header is set in Reactive Web Applications by default, although doc says it is not. #13561
• The bean 'preFilterAuthorizationAdvisor', defined in class path resource could not be registered #13572

🔨 Dependency Upgrades

• Update io.projectreactor to 2020.0.35 #13702
• Update org.aspectj to 1.9.20 #13704
• Update org.springframework.data to 2021.2.15 #13705
• Update reactor-netty to 1.0.35 #13703

❤️ Contributors

We'd like to thank all the contributors who worked on this release!

• @​erichaagdev
• @​petrovskimario
• @​daniel-shuy

5.8.5

⭐ New Features

• Improve RequestMatcher Validation #13551
• Improve Security Filters Documentation #8167

🪲 Bug Fixes

• Optimize Querying of RequestCache -> continue parameter #13438

... (truncated)

Commits

• 564a022 Release 5.8.7
• 779541b Merge branch '5.7.x' into 5.8.x
• 5b293d2 Automate spring-security.xsd
• f026e29 Add dependency on rncToXsd task from nohttp
• 620e6e0 Add rncToXsd task to resources set
• 4ebfa2c Use lazy API to configure rncToXsd task
• 3feb809 Fix Saml2AuthenticationExceptionMixin on JDK 17
• 9b7a110 Fix OAuth2AuthenticationExceptionMixinTests on JDK 17
• ce012a4 CookieRequestCache Should Preserve Request Locale
• 96d1763 WWW-Authenticate header should not be added twice
• Additional commits viewable in compare view

Updates org.hsqldb:hsqldb from 2.5.2 to 2.7.1

Updates ch.qos.logback:logback-classic from 1.3.7 to 1.3.12

Commits

• 0df4ec1 prepare release 1.3.12
• 189af50 ensure JDK 8 compatibility
• 14a71d0 cater for array size marked with -1
• b8eac23 prevent DOS attacks using on malicious serialized input
• d87dd12 further support for Virtual threads, issues 737
• 034aaee add support for Virtual threads
• d6294e5 parameterizable invocation gate delay
• 3b91f6d minor refactoring
• d94ebec fix guthub issue 715
• c76b303 minor refactoring for better readability
• Additional commits viewable in compare view

Updates org.apache.tomcat.embed:tomcat-embed-core from 9.0.75 to 9.0.86

Updates org.apache.tomcat:tomcat from 8.5.89 to 8.5.99

Updates org.springframework.security:spring-security-config from 5.8.3 to 5.8.7

Release notes

Sourced from org.springframework.security:spring-security-config's releases.

5.8.7

⭐ New Features

• Automate spring-security.xsd #13823

🪲 Bug Fixes

• CookieRequestCache ignores user Locale #13792
• Default Security Configuration adds WWW-Authenticate Twice #13737
• OAuth2AuthenticationExceptionMixin doesn't work in JDK 17 #11893
• Saml2AuthenticationExceptionMixin doesn't work in JDK 17 #13804

5.8.6

⭐ New Features

• Closes #11450 - Add Java beans configuration for Remmember Me Docs #13570
• Dependencies are resolved from appropriate repositories #13582
• requestMatchers servlet validation error should include information about servlet paths #13667
• requestMatchers should not count servlets without mappings #13666

🪲 Bug Fixes

• Fix Bearer Token RestTemplate Support example #13434
• Referrer Header is set in Reactive Web Applications by default, although doc says it is not. #13561
• The bean 'preFilterAuthorizationAdvisor', defined in class path resource could not be registered #13572

🔨 Dependency Upgrades

• Update io.projectreactor to 2020.0.35 #13702
• Update org.aspectj to 1.9.20 #13704
• Update org.springframework.data to 2021.2.15 #13705
• Update reactor-netty to 1.0.35 #13703

❤️ Contributors

We'd like to thank all the contributors who worked on this release!

• @​erichaagdev
• @​petrovskimario
• @​daniel-shuy

5.8.5

⭐ New Features

• Improve RequestMatcher Validation #13551
• Improve Security Filters Documentation #8167

🪲 Bug Fixes

• Optimize Querying of RequestCache -> continue parameter #13438

... (truncated)

Commits

• 564a022 Release 5.8.7
• 779541b Merge branch '5.7.x' into 5.8.x
• 5b293d2 Automate spring-security.xsd
• f026e29 Add dependency on rncToXsd task from nohttp
• 620e6e0 Add rncToXsd task to resources set
• 4ebfa2c Use lazy API to configure rncToXsd task
• 3feb809 Fix Saml2AuthenticationExceptionMixin on JDK 17
• 9b7a110 Fix OAuth2AuthenticationExceptionMixinTests on JDK 17
• ce012a4 CookieRequestCache Should Preserve Request Locale
• 96d1763 WWW-Authenticate header should not be added twice
• Additional commits viewable in compare view

Updates org.hsqldb:hsqldb from 2.5.2 to 2.7.1

Updates ch.qos.logback:logback-classic from 1.3.7 to 1.3.12

Commits

• 0df4ec1 prepare release 1.3.12
• 189af50 ensure JDK 8 compatibility
• 14a71d0 cater for array size marked with -1
• b8eac23 prevent DOS attacks using on malicious serialized input
• d87dd12 further support for Virtual threads, issues 737
• 034aaee add support for Virtual threads
• d6294e5 parameterizable invocation gate delay
• 3b91f6d minor refactoring
• d94ebec fix guthub issue 715
• c76b303 minor refactoring for better readability
• Additional commits viewable in compare view

Updates org.apache.tomcat:tomcat from 8.5.89 to 8.5.99

Updates org.springframework.security:spring-security-config from 5.8.3 to 5.8.7

Release notes

Sourced from org.springframework.security:spring-security-config's releases.

5.8.7

⭐ New Features

• Automate spring-security.xsd #13823

🪲 Bug Fixes

• CookieRequestCache ignores user Locale #13792
• Default Security Configuration adds WWW-Authenticate Twice #13737
• OAuth2AuthenticationExceptionMixin doesn't work in JDK 17 #11893
• Saml2AuthenticationExceptionMixin doesn't work in JDK 17 #13804

5.8.6

⭐ New Features

• Closes #11450 - Add Java beans configuration for Remmember Me Docs #13570
• Dependencies are resolved from appropriate repositories #13582
• requestMatchers servlet validation error should include information about servlet paths #13667
• requestMatchers should not count servlets without mappings #13666

🪲 Bug Fixes

• Fix Bearer Token RestTemplate Support example #13434
• Referrer Header is set in Reactive Web Applications by default, although doc says it is not. #13561
• The bean 'preFilterAuthorizationAdvisor', defined in class path resource could not be registered #13572

🔨 Dependency Upgrades

• Update io.projectreactor to 2020.0.35 #13702
• Update org.aspectj to 1.9.20 #13704
• Update org.springframework.data to 2021.2.15 #13705
• Update reactor-netty to 1.0.35 #13703

❤️ Contributors

We'd like to thank all the contributors who worked on this release!

• @​erichaagdev
• @​petrovskimario
• @​daniel-shuy

5.8.5

⭐ New Features

• Improve RequestMatcher Validation #13551
• Improve Security Filters Documentation #8167

🪲 Bug Fixes

• Optimize Querying of RequestCache -> continue parameter #13438

... (truncated)

Commits

• 564a022 Release 5.8.7
• 779541b Merge branch '5.7.x' into 5.8.x
• 5b293d2 Automate spring-security.xsd
• f026e29 Add dependency on rncToXsd task from nohttp
• 620e6e0 Add rncToXsd task to resources set
• 4ebfa2c Use lazy API to configure rncToXsd task
• 3feb809 Fix Saml2AuthenticationExceptionMixin on JDK 17
• 9b7a110 Fix OAuth2AuthenticationExceptionMixinTests on JDK 17
• ce012a4 CookieRequestCache Should Preserve Request Locale
• 96d1763 WWW-Authenticate header should not be added twice
• Additional commits viewable in compare view

Updates org.hsqldb:hsqldb from 2.5.2 to 2.7.1

Updates ch.qos.logback:logback-classic from 1.3.7 to 1.3.12

Commits

• 0df4ec1 prepare release 1.3.12
• 189af50 ensure JDK 8 compatibility
• 14a71d0 cater for array size marked with -1
• b8eac23 prevent DOS attacks using on malicious serialized input
• d87dd12 further support for Virtual threads, issues 737
• 034aaee add support for Virtual threads
• d6294e5 parameterizable invocation gate delay
• 3b91f6d minor refactoring
• d94ebec fix guthub issue 715
• c76b303 minor refactoring for better readability
• Additional commits viewable in compare view

Updates org.apache.tomcat.embed:tomcat-embed-core from 9.0.75 to 9.0.86

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
  You can disable automated security fix PRs for this repo from the Security Alerts page.