Skip to content

Bump io.quarkus:quarkus-bom from 3.36.1 to 3.37.2 in /s3-uploader/runtimes/quarkus_native_on_provided_al2#3688

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/maven/s3-uploader/runtimes/quarkus_native_on_provided_al2/io.quarkus-quarkus-bom-3.37.2
Closed

Bump io.quarkus:quarkus-bom from 3.36.1 to 3.37.2 in /s3-uploader/runtimes/quarkus_native_on_provided_al2#3688
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/maven/s3-uploader/runtimes/quarkus_native_on_provided_al2/io.quarkus-quarkus-bom-3.37.2

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 8, 2026

Copy link
Copy Markdown
Contributor

Bumps io.quarkus:quarkus-bom from 3.36.1 to 3.37.2.

Release notes

Sourced from io.quarkus:quarkus-bom's releases.

3.37.1

Complete changelog

  • #49919 - Prevent invocation of Task.project at execution time in Gradle plugin
  • #54854 - OIDC DPoP Nonce response uses from status code and message
  • #54855 - For missing and invalid nonces, return 401/use_dpop_nonce
  • #54889 - Response not handled in ContainerResponseFilter for dropped HTTP requests
  • #54903 - Allow the use of @Cancellable on ContainerResponseFilter
  • #54909 - Change log level of some OIDC log messages from debug to warn
  • #54919 - Improve the update-quarkus.adoc guide a bit
  • #54924 - Fix status in update-quarkus.adoc
  • #54942 - Include additional args in AOTMode=create" command
  • #54949 - Infinispan - Add missing service implementations for native
  • #54950 - JAXB - Register a new service implementation for native
  • #54955 - Significant CPU regression
  • #54958 - Prevent invocation of Task.project at execution time in Gradle plugin
  • #54975 - Infinispan - Register services properly and enforce basic client intelligence in ITs
  • #54997 - Bump org.hibernate.validator:hibernate-validator from 9.1.0.Final to 9.1.1.Final
  • #55008 - Quarkus REST sub-resources return 500 for malformed content type unlike 415 from top-level resource
  • #55009 - Quarkus REST: fix response status for sub-resource requests with a malformed content type
  • #55010 - Fix TransactionalInterceptorBase to handle reaper-cancelled transactions
  • #55018 - Enforce no duplicate POM dependencies via maven-enforcer-plugin
  • #55022 - infinispan-client and infinispan-cache IT tests fail with GraalVM CE 25.2.4-dev
  • #55028 - Switch from org.fusesource.jansi to org.jline:jansi
  • #55030 - Reduce allocation in HTTP instrumentation
  • #55046 - CycloneDX SBOM fixes
  • #55048 - Add Literal helper to NamedOidcClient qualifier
  • #55053 - Register for reflection all constructors of service providers
  • #55057 - Qute should handle properties that are not found more gracefully than throwing ClassCastException
  • #55066 - Qute: handle not-found params in JsonObject and Plus value resolvers
  • #55068 - Bump io.quarkus.develocity:quarkus-project-develocity-extension from 1.3.0 to 1.3.1
  • #55080 - Generated quarkusjacksonserializer fails for JSON property names containing ‘-’ and ‘.’
  • #55081 - Sanitize json property names while generating reflection-free Jackson serializers
  • #55095 - Bump eu.maveniverse.maven.nisse:extension3 from 0.9.2 to 0.9.3
  • #55096 - Bump eu.maveniverse.maven.njord:extension3 from 0.9.8 to 0.9.9
  • #55099 - Update to MicroProfile API 3.1.1
  • #55105 - Bump Agroal to 3.2.1
  • #55107 - Signals: clarify SignalMetadataEnricher threading
  • #55121 - Bump com.ibm.db2:jcc from 12.1.0.0 to 12.1.5.0
  • #55128 - @JsonFormat on java.util.Date ignored by reflection-free Jackson serializers
  • #55140 - Fix support for @JsonFormat on java.util.Date in reflection-free Jackson serializers
  • #55143 - quarkus-rest-jackson: reflection-free serializer drops JsonNullable contained type (3.37.0 regression)
  • #55146 - Generalize handing of any single-type-parameter parameterized type
  • #55158 - OIDC: Multiple AuthenticationCompletionAction beans silently ignored
  • #55159 - Bump org.junit:junit-bom from 6.1.0 to 6.1.1 in /devtools/gradle
  • #55165 - Bump the hibernate group across 1 directory with 11 updates
  • #55168 - Bump org.junit:junit-bom from 6.1.0 to 6.1.1
  • #55173 - quarkus-rest-jackson ignores @JsonIgnoreProperties in combination with @JsonUnwrapped
  • #55176 - Fix performance regression in AotQuarkusEntryPoint

... (truncated)

Commits
  • c3b6791 [RELEASE] - Bump version to 3.37.2
  • 8b47481 Merge pull request #55332 from gsmet/3.37.2-backports-1
  • 36fb148 Fix reflection-free Jackson serializers when using raw types
  • 4c75bc4 Fix serialiation of java.time fields with custom format in generated reflecti...
  • b33ab4a Bump com.ongres.scram:scram-client from 3.2 to 3.3 in /bom/application
  • 90ae502 Opt-out Kotlin classes from generation of reflection-free Jackson serializers
  • 5ec06d8 fix(oidc): include invalid_dpop_proof in auth failure exception
  • 01e9256 Honor @​JsonUnwrapped prefix/suffix in reflection-free Jackson serialisers
  • d249632 Fix exception thrown in case of unknown field in reflection-free Jackson seri...
  • 0c2b4ee Serialize null boxed primitives in reflection-free Jackson serializers
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [io.quarkus:quarkus-bom](https://github.com/quarkusio/quarkus) from 3.36.1 to 3.37.2.
- [Release notes](https://github.com/quarkusio/quarkus/releases)
- [Commits](quarkusio/quarkus@3.36.1...3.37.2)

---
updated-dependencies:
- dependency-name: io.quarkus:quarkus-bom
  dependency-version: 3.37.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Jul 8, 2026
@dependabot @github

dependabot Bot commented on behalf of github Jul 15, 2026

Copy link
Copy Markdown
Contributor Author

Superseded by #3693.

@dependabot dependabot Bot closed this Jul 15, 2026
@dependabot dependabot Bot deleted the dependabot/maven/s3-uploader/runtimes/quarkus_native_on_provided_al2/io.quarkus-quarkus-bom-3.37.2 branch July 15, 2026 11:52
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file java Pull requests that update Java code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants