Spring Cloud, Liberica NIK, Open Liberty, Micronaut, JHipster, Apache ShenYu

This week’s Java Roundup for August 1, 2022 includes news on JDK 19, JDK 20, Spring Point and Milestone releases, Liberica NIK 22.2.0 and 21.3.3, Open Liberty 22.0.0.8 and 22.0.0.9-beta , Micronaut 3.6. 0, WildFly 27 Alpha4, Hibernate ORM 6.1.2, Hibernate Validator 6.2.4, 7.0.5 and 8.0.0.CR2, Hibernate Search 6.1.6, JHipster 7.9.2, 7.9.1 and 7.9.0, JBang 0.96. 4 and Apache ShenYu.

JDK 19

34 build of the JDK 19 Early Access Builds was made available last week, with Update of Build 33, which includes fixes for various expenditure. More details on this build can be found in the Release Notes.

JDK20

build 9 of the JDK 20 Early Access Builds was also made available last week, with Update of Build 8, which includes fixes for various expenditure. More details on this build can be found in the Release Notes.

To the JDK 19 and JDK20Developers are encouraged to report bugs through the Java bug database.

spring frame

Heading towards Spring Cloud 2022.0.0, codenamed Kilburn, the fourth milestone release has been deployed over the past week with updates to Milestone 4 releases of Spring Cloud sub-projects such as Spring Cloud Stream, Spring Cloud Config, Spring Cloud Gateway, and Spring Cloud Function. Spring Cloud 2022.0.0-M4 is compatible with Spring Boot 3.0.0-M4. More details about this release can be found in the Release Notes.

Spring for Apache Kafka 2.9.0 was released with: a more robust non-blocking retry bootstrapping; and a new error handling mode. This version requires the kafka-clients 3.2.0 module. More details about this release can be found in the what’s new section of the documentation.

Spring Tools 4.15.2 was released released with numerous fixes for the Eclipse IDE, such as B.: Improvements in diagnostic output of Eclipse logs; a broken Devtools integration with the boot dash in a Docker image; Suspend/resume malfunctions in a boot dash in a docker image; and an “Improperly disposed of SWT resource” message caused by the Spring Starter project. More details about this release can be found in the Release Notes.

Liberica Native Image Kit

As part of a critical patch update, BellSoft released Liberica Native Image Kit (NIK) version 22.2.0 and an updated version 21.3.3. This release provides enhanced support for AWS and Swing and provides security fixes for the following Common Vulnerabilities and Exposures (CVE):

  • CVE-2022-21540: Vulnerability in Oracle Java SE, Oracle GraalVM Enterprise Edition (Component: Hotspot)
  • CVE-2022-21541: Vulnerability in Oracle Java SE, Oracle GraalVM Enterprise Edition (Component: Hotspot)
  • CVE-2022-21549: Vulnerability in Oracle Java SE, Oracle GraalVM Enterprise Edition (Component: Libraries)
  • CVE-2022-34169: The Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets.

CVE-2022-21540 and CVE-2022-21541 affect JDK versions 7u343, 8u333, 11.0.15.1, 17.0.3.1, 18.0.1.1 and Oracle GraalVM Enterprise Editions 20.3.6, 21.3.2 and 22.1.0. CVE 2022-21549 affects JDK 17.0.3.1 and Oracle GraalVM Enterprise Editions 21.3.2 and 22.1.0.

open freedom

IBM has promoted Open Liberty 22.0.0.8 from its beta version to deliver: a fix for CVE-2022-22476, IBM WebSphere Application Server Liberty is vulnerable to identity spoofing; a dependency upgrade Apache CXF 3.4 in which jaxws-2.2 Module; Stack trace has been separated from logged messages to allow log analysis tools to present them more clearly; and the ability for developers to enable time-based periodic rollover of all log files supported by Open Liberty.

Open Liberty 22.0.0.9-beta has also been released released with support for many of the Jakarta EE 10 specifications to include the specifications that are in the new version Jakarta EE core profilenamely Jakarta Contexts and Dependency Injection 4.0, Jakarta RESTful Web Services 3.1, Jakarta JSON Binding 3.0, Jakarta JSON Processing 2.1, Notes on Jakarta 2.1, Jakarta Interceptor 2.1. There is also support for the upcoming GA version of MicroProfile OpenAPI 3.1 (currently in RC2) and Password Utilities 1.1.

micronaut

The Micronaut Foundation has released Micronaut 3.6.0 with: support for GraalVM 22.2, Sleep Reactive and the OpenTelemetry Specification; and a new one Micronaut Test Resources Project. More details about this release can be found in the Release Notes.

Wild Fly

Heading towards WildFly 27.0.0, the fourth alpha version was made available. This release serves as a major milestone in supporting Jakarta EE 10 in WildFly, previously only available in WildFly preview. WildFly 27.0.0.Alpha4 supports JDK 11 and JDK 17. JDK 8 is no longer supported. Red Hat is planning more alpha and beta releases over the next few weeks. More details about this release can be found in the Release Notes.

hibernate

Hibernate ORM 6.1.2.Final was released with bug fixes and the ability to use those @Any mapping and HQL function, type()to access the type of a polymorphic association.

Versions 6.2.4.Final, 7.0.5.Final and 8.0.0.CR2 of Hibernate Validator have been made available as maintenance versions for release trains 6.2 and 7.0. Both versions improve testing of Java data sets and ensure that the annotation processor works correctly with data sets. The version 8.0 release candidate will add support for Jakarta EE 10.

Hibernate Search 6.1.6.Final was released with dependency upgrades to Hibernate ORM 5.6.10.Final, Hibernate ORM 6.0.2.Final and Hibernate ORM 6.1.2.Final for the -orm6 artifacts. There were also upgrades to the latest version of Jakarta dependencies for -orm6/-jakarta artifacts.

JHipster

versions 7.9.2 (included with 7.9.1) and 7.9.0 from JHipster were released with: dependency upgrades to Spring Boot 2.7.2, Angular 14 and React 18; Support for generating custom generators with the generate-blueprint command line argument; Support for mixed use of microservice and microfrontend entities; and microfrontend support at the JHipster domain language (JDL). For more details on these versions, see the release notes for Version 7.9.2 and Version 7.9.0.

jbang

JBang 0.96.4 became released with the removal of --native flag that was broken and incomplete. Instead, developers should use the command, jbang export native. If the old flag is used, an expiration warning is issued. More details about this release can be found in the Release Notes.

Apache Software Foundation

The Apache Software Foundation has announced the Apache Shen Yu, a Java-native API gateway for service proxy, protocol conversion, and API governance, has been promoted from incubation to a top-level project. InfoQ will follow with a more detailed message.

Comments are closed.