Skip to content

chore(deps): bump io.micronaut:micronaut-inject from 3.10.3 to 3.10.6 in /flexible/java-25/micronaut-helloworld#10296

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/maven/flexible/java-25/micronaut-helloworld/io.micronaut-micronaut-inject-3.10.6
Open

chore(deps): bump io.micronaut:micronaut-inject from 3.10.3 to 3.10.6 in /flexible/java-25/micronaut-helloworld#10296
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/maven/flexible/java-25/micronaut-helloworld/io.micronaut-micronaut-inject-3.10.6

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 1, 2026

Copy link
Copy Markdown
Contributor

Bumps io.micronaut:micronaut-inject from 3.10.3 to 3.10.6.

Release notes

Sourced from io.micronaut:micronaut-inject's releases.

Micronaut Core 3.10.6

Security 👮🏻‍♂️🚨

This release contains fixes for this security advisory:

*Unbounded bundleCache in ResourceBundleMessageSource Allows Memory Exhaustion via Accept-Language Header

Full Changelog: micronaut-projects/micronaut-core@v3.10.5...v3.10.6

Micronaut Core 3.10.5

What's Changed

Other Changes 💡

Full Changelog: micronaut-projects/micronaut-core@v3.10.4...v3.10.5

Commits
  • 324db9b [skip ci] Release v3.10.6
  • c2048ab Merge commit from fork
  • 22a924d chore: Bump version to 3.10.6-SNAPSHOT
  • df467a4 [skip ci] Release v3.10.5
  • 77f4649 Publishing via the Portla API [ci skip]
  • 26257fb Revert "[skip ci] Release v3.10.5"
  • 5a55d07 [skip ci] Release v3.10.5
  • 8f2f316 ci: upload-artifact to 4.6.2
  • a650c4d fix: prevent denial of service submitting form-url-encoded payload (#12411)
  • 94eacf7 Merge branch '3.9.x' into 3.10.x
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.
Bumps [io.micronaut:micronaut-inject](https://github.com/micronaut-projects/micronaut-core) from 3.10.3 to 3.10.6.
- [Release notes](https://github.com/micronaut-projects/micronaut-core/releases)
- [Changelog](https://github.com/micronaut-projects/micronaut-core/blob/5.1.x/RELEASE.adoc)
- [Commits](micronaut-projects/micronaut-core@v3.10.3...v3.10.6)

---
updated-dependencies:
- dependency-name: io.micronaut:micronaut-inject
  dependency-version: 3.10.6
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Jul 1, 2026
@dependabot dependabot Bot requested review from a team and yoshi-approver as code owners July 1, 2026 11:26
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Jul 1, 2026
@trusted-contributions-gcf trusted-contributions-gcf Bot added the kokoro:force-run Add this label to force Kokoro to re-run the tests. label Jul 1, 2026
@product-auto-label product-auto-label Bot added samples Issues that are directly related to samples. api: appengine Issues related to the App Engine Admin API API. labels Jul 1, 2026
@kokoro-team kokoro-team removed the kokoro:force-run Add this label to force Kokoro to re-run the tests. label Jul 1, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

api: appengine Issues related to the App Engine Admin API API. dependencies Pull requests that update a dependency file java Pull requests that update java code samples Issues that are directly related to samples.

2 participants