Hi, I know this is against the TOS. Due to I don't know when the next Spring boot minor release is. Here is the fix for CVE-2023-41080. Which is in fact only a version change.
regards Max
Comment From: pivotal-cla
@gterminator Please sign the Contributor License Agreement!
Click here to manually synchronize the status of this Pull Request.
See the FAQ for frequently asked questions.
Comment From: pivotal-cla
@gterminator Thank you for signing the Contributor License Agreement!
Comment From: bclozel
@gterminator next minors are already scheduled on our milestone page and public release calendar. As usual, obvious dependency upgrades (which require no code change) will be applied with our semi-automated process.
I know this is against the TOS.
Then why submit a PR? Unless this PR contributes code changes, this is not making the upgrade easier for us.